From 8cdc9b112ec37ce4343017d7fe6dda5a06a0a7b7 Mon Sep 17 00:00:00 2001
From: Jorge Moratinos Salcines <jorge.moratinossalcines@telefonica.com>
Date: Fri, 12 Jan 2024 12:21:35 +0100
Subject: [PATCH] Initial Commit

---
 .gitignore                                    |   46 +
 CITATION.cff                                  |    9 +
 FAQ.md                                        |   88 +
 LICENSE                                       |  201 +
 README.md                                     |  198 +-
 cicd/exclusions                               |    5 +
 cicd/ruff.toml                                |    3 +
 docs/images/flows/01 - Register del AEF.png   |  Bin 0 -> 71533 bytes
 .../02 - AEF API Provider registration.png    |  Bin 0 -> 49215 bytes
 docs/images/flows/03 - AEF Publish.png        |  Bin 0 -> 43268 bytes
 docs/images/flows/04 - Invoker Register.png   |  Bin 0 -> 71642 bytes
 docs/images/flows/05 - Invoker Onboarding.png |  Bin 0 -> 64059 bytes
 .../flows/06 - Invoker Discover AEF.png       |  Bin 0 -> 43087 bytes
 .../07 - Invoker Create Security Context.png  |  Bin 0 -> 43568 bytes
 docs/images/flows/08 - Invoker Get Token.png  |  Bin 0 -> 55546 bytes
 ...nvoker Send Request to AEF Service API.png |  Bin 0 -> 26214 bytes
 docs/images/robot_log_example.png             |  Bin 0 -> 158079 bytes
 docs/images/robot_report_example.png          |  Bin 0 -> 183065 bytes
 docs/test_plan/README.md                      |   16 +
 .../api_access_control_policy/README.md       |  813 ++++
 .../service_api_description_post_example.json |  113 +
 docs/test_plan/api_auditing_service/README.md |  244 ++
 docs/test_plan/api_discover_service/README.md |  336 ++
 docs/test_plan/api_events_service/README.md   |  265 ++
 .../event_subscription.json                   |   31 +
 .../api_invoker_management/README.md          |  306 ++
 .../invoker_details_post_example.json         |   15 +
 .../invoker_details_put_example.json          |  393 ++
 .../invoker_getauth_example.json              |    4 +
 .../invoker_register_body.json                |    7 +
 docs/test_plan/api_logging_service/README.md  |  241 ++
 .../api_logging_service/invocation_log.json   |   45 +
 .../api_provider_management/README.md         |  398 ++
 ...tails_enrolment_details_patch_example.json |   29 +
 .../provider_details_post_example.json        |   17 +
 .../provider_getauth_example.json             |    4 +
 .../provider_register_body.json               |    7 +
 docs/test_plan/api_publish_service/README.md  |  599 +++
 .../publisher_register_body.json              |    7 +
 .../service_api_description_post_example.json |  113 +
 docs/test_plan/api_security_service/README.md | 1244 +++++++
 .../access_token_req.json                     |    6 +
 .../access_token_req_example.json             |    5 +
 .../security_notification.json                |    9 +
 .../service_security.json                     |   25 +
 docs/test_plan/common_operations/README.md    |   86 +
 docs/testing_with_curl/README.md              |  369 ++
 .../capif_tls_curls_exposer.sh                |  205 +
 .../capif_tls_curls_invoker.sh                |   86 +
 docs/testing_with_curl/exposer.key            |   28 +
 docs/testing_with_curl/invoker.key            |   28 +
 .../CAPIF.postman_collection.json             |  982 +++++
 .../CAPIF.postman_environment.json            |  237 ++
 docs/testing_with_postman/README.md           |  108 +
 docs/testing_with_postman/hello_api.py        |   38 +
 docs/testing_with_postman/package.json        |   16 +
 docs/testing_with_postman/script.js           |  199 +
 docs/testing_with_robot/README.md             |   74 +
 helm/README-vault.md                          |   52 +
 helm/README.md                                |   47 +
 helm/capif/.helmignore                        |   23 +
 helm/capif/Chart.yaml                         |   26 +
 helm/capif/README.md                          |  304 ++
 helm/capif/docker-monitoring.json             |  690 ++++
 helm/capif/kubernetes-dashboard.json          | 2629 +++++++++++++
 helm/capif/loki-logs.json                     |  281 ++
 helm/capif/templates/_helpers.tpl             |   62 +
 .../templates/access-control-policy.yaml      |   17 +
 helm/capif/templates/api-invocation-logs.yaml |   17 +
 .../templates/api-invoker-management.yaml     |   17 +
 .../templates/api-provider-management.yaml    |   17 +
 .../templates/capif-events-configmap.yaml     |   28 +
 helm/capif/templates/capif-events.yaml        |   17 +
 .../templates/capif-invocation-configmap.yaml |   29 +
 .../templates/capif-invoker-configmap.yaml    |   41 +
 .../capif/templates/capif-logs-configmap.yaml |   27 +
 .../templates/capif-provider-configmap.yaml   |   41 +
 .../templates/capif-published-configmap.yaml  |   27 +
 helm/capif/templates/capif-routing-info.yaml  |   17 +
 .../templates/capif-security-configmap.yaml   |   28 +
 helm/capif/templates/capif-security.yaml      |   17 +
 .../templates/capif-service-configmap.yaml    |   27 +
 helm/capif/templates/deployment.yaml          | 1001 +++++
 helm/capif/templates/fluent-bit-service.yaml  |   24 +
 helm/capif/templates/fluentbit-configmap.yaml |   24 +
 .../capif/templates/fluentbit-deployment.yaml |   59 +
 helm/capif/templates/grafana-configmap.yaml   |  108 +
 helm/capif/templates/grafana-deployment.yaml  |  109 +
 .../templates/grafana-ingress-route.yaml      |   18 +
 helm/capif/templates/grafana-ingress.yaml     |   34 +
 helm/capif/templates/grafana-pvc.yaml         |   16 +
 helm/capif/templates/grafana-secrets.yaml     |   10 +
 helm/capif/templates/grafana-service.yaml     |   17 +
 helm/capif/templates/logs.yaml                |   17 +
 helm/capif/templates/loki-deployment.yaml     |   54 +
 helm/capif/templates/loki-pvc.yaml            |   16 +
 helm/capif/templates/loki-service.yaml        |   19 +
 helm/capif/templates/mongo-express.yaml       |   17 +
 helm/capif/templates/mongo-pvc.yaml           |   16 +
 helm/capif/templates/mongo-register.yaml      |   17 +
 helm/capif/templates/mongo.yaml               |   17 +
 helm/capif/templates/nginx-ingress-route.yaml |   17 +
 .../templates/nginx-ssl-ingress-route.yaml    |   18 +
 helm/capif/templates/nginx-ssl-route.yaml     |   22 +
 helm/capif/templates/nginx-ssl.yaml           |   32 +
 helm/capif/templates/nginx.yaml               |   48 +
 .../templates/otel-collector-configmap.yaml   |   37 +
 .../templates/otel-collector-deployment.yaml  |   54 +
 .../templates/otel-collector-service.yaml     |   22 +
 .../templates/prometheus-clusterrole.yaml     |   49 +
 .../capif/templates/prometheus-configmap.yaml |  141 +
 .../templates/prometheus-deployment.yaml      |   68 +
 .../templates/prometheus-ingress-route.yaml   |   20 +
 helm/capif/templates/prometheus-ingress.yaml  |   36 +
 helm/capif/templates/prometheus-pvc.yaml      |   19 +
 helm/capif/templates/prometheus-service.yaml  |   22 +
 helm/capif/templates/published-apis.yaml      |   17 +
 helm/capif/templates/redis.yaml               |   17 +
 helm/capif/templates/register-configmap.yaml  |   21 +
 helm/capif/templates/register.yaml            |   19 +
 helm/capif/templates/renderer-configmap.yaml  |    8 +
 helm/capif/templates/renderer-deployment.yaml |   44 +
 helm/capif/templates/renderer-service.yaml    |   18 +
 helm/capif/templates/service-apis.yaml        |   17 +
 helm/capif/values.yaml                        |  660 ++++
 helm/helmfile-capif.yaml                      |   19 +
 helm/vault-job/vault-job.yaml                 |  251 ++
 monitoring/docker-compose.yml                 |  110 +
 monitoring/fluent_bit/fluent-bit.conf         |   15 +
 monitoring/grafana/grafana_config/grafana.ini | 1894 ++++++++++
 .../grafana_dashboards/Docker-monitoring.json |  690 ++++
 .../grafana/grafana_dashboards/Loki-Logs.json |  281 ++
 .../grafana-datasources.yaml                  |   54 +
 .../grafana-default-provisioning.yaml         |   14 +
 .../provisioning/dashboards/default.yaml      |    0
 .../provisioning/datasources/datasources.yaml |    0
 monitoring/otlp_collector/otel-config.yaml    |   26 +
 monitoring/prometheus/prometheus.yml          |   19 +
 monitoring/tempo/tempo.yaml                   |   46 +
 prometheus/kustomization.yaml                 |   11 +
 ...ometheus-claim1-persistentvolumeclaim.yaml |   14 +
 ...ometheus-claim2-persistentvolumeclaim.yaml |   14 +
 ...ometheus-claim3-persistentvolumeclaim.yaml |   14 +
 ...ometheus-claim4-persistentvolumeclaim.yaml |   14 +
 prometheus/prometheus-configmap.yaml          |   38 +
 prometheus/prometheus-deployment.yaml         |   71 +
 prometheus/prometheus-service.yaml            |   19 +
 services/.env                                 |   24 +
 .../.dockerignore                             |   72 +
 .../.gitignore                                |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   46 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../Dockerfile                                |   18 +
 .../README.md                                 |   49 +
 .../api_invoker_management/__init__.py        |    0
 .../api_invoker_management/__main__.py        |  152 +
 .../api_invoker_management/config.py          |   21 +
 .../controllers/__init__.py                   |    0
 .../controllers/default_controller.py         |  123 +
 .../controllers/security_controller_.py       |    2 +
 .../core/apiinvokerenrolmentdetails.py        |  159 +
 .../core/auth_manager.py                      |   25 +
 .../core/consumer_messager.py                 |   26 +
 .../core/invoker_internal_ops.py              |   40 +
 .../api_invoker_management/core/publisher.py  |   11 +
 .../api_invoker_management/core/resources.py  |    7 +
 .../api_invoker_management/core/responses.py  |   31 +
 .../core/validate_user.py                     |   26 +
 .../api_invoker_management/db/db.py           |   76 +
 .../api_invoker_management/encoder.py         |   20 +
 .../api_invoker_management/models/__init__.py |   29 +
 .../models/aef_profile.py                     |  250 ++
 .../models/api_invoker_enrolment_details.py   |  271 ++
 .../models/base_model_.py                     |   69 +
 .../models/communication_type.py              |   39 +
 .../models/communication_type_any_of.py       |   42 +
 .../models/custom_operation.py                |  158 +
 .../models/data_format.py                     |   39 +
 .../models/data_format_any_of.py              |   41 +
 .../models/interface_description.py           |  158 +
 .../models/invalid_param.py                   |   96 +
 .../models/onboarding_information.py          |  124 +
 .../models/onboarding_notification.py         |  156 +
 .../models/operation.py                       |   39 +
 .../models/operation_any_of.py                |   45 +
 .../models/problem_details.py                 |  270 ++
 .../api_invoker_management/models/protocol.py |   39 +
 .../models/protocol_any_of.py                 |   42 +
 .../models/published_api_path.py              |   68 +
 .../api_invoker_management/models/resource.py |  216 ++
 .../models/security_method.py                 |   39 +
 .../models/security_method_any_of.py          |   43 +
 .../models/service_api_description.py         |  328 ++
 .../models/shareable_information.py           |   98 +
 .../api_invoker_management/models/version.py  |  160 +
 .../models/websock_notif_config.py            |   94 +
 .../openapi/openapi.yaml                      | 2448 ++++++++++++
 .../api_invoker_management/typing_utils.py    |   32 +
 .../api_invoker_management/util.py            |  172 +
 .../config.yaml                               |   35 +
 .../git_push.sh                               |   57 +
 .../prepare_invoker.sh                        |   18 +
 .../requirements.txt                          |   21 +
 .../setup.py                                  |   39 +
 .../test-requirements.txt                     |    4 +
 .../tox.ini                                   |   11 +
 .../.dockerignore                             |   72 +
 .../.gitignore                                |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   29 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../Dockerfile                                |   18 +
 .../README.md                                 |   49 +
 .../api_provider_management/__init__.py       |    0
 .../api_provider_management/__main__.py       |  136 +
 .../api_provider_management/config.py         |   18 +
 .../controllers/__init__.py                   |    0
 .../controllers/default_controller.py         |  115 +
 ...i_provider_enrolment_details_controller.py |   38 +
 .../controllers/security_controller_.py       |    2 +
 .../core/auth_manager.py                      |   27 +
 .../core/provider_enrolment_details_api.py    |  169 +
 .../api_provider_management/core/publisher.py |   10 +
 .../api_provider_management/core/resources.py |    9 +
 .../api_provider_management/core/responses.py |   31 +
 .../core/sign_certificate.py                  |   22 +
 .../core/validate_user.py                     |   26 +
 .../api_provider_management/db/db.py          |   73 +
 .../api_provider_management/encoder.py        |   20 +
 .../models/__init__.py                        |   13 +
 .../models/api_provider_enrolment_details.py  |  216 ++
 .../api_provider_enrolment_details_patch.py   |   98 +
 .../models/api_provider_func_role.py          |   39 +
 .../models/api_provider_func_role_any_of.py   |   43 +
 .../models/api_provider_function_details.py   |  154 +
 .../models/base_model_.py                     |   69 +
 .../models/invalid_param.py                   |   96 +
 .../models/problem_details.py                 |  270 ++
 .../models/registration_information.py        |   96 +
 .../openapi/openapi.yaml                      |  619 +++
 .../api_provider_management/typing_utils.py   |   32 +
 .../api_provider_management/util.py           |  183 +
 .../config.yaml                               |   37 +
 .../git_push.sh                               |   57 +
 .../prepare_provider.sh                       |   19 +
 .../requirements.txt                          |   21 +
 .../setup.py                                  |   39 +
 .../test-requirements.txt                     |    4 +
 .../tox.ini                                   |   11 +
 .../.dockerignore                             |   72 +
 .../.gitignore                                |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   28 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../Dockerfile                                |   16 +
 .../README.md                                 |   49 +
 .../config.yaml                               |   30 +
 .../git_push.sh                               |   57 +
 .../openapi_server/__init__.py                |    0
 .../openapi_server/__main__.py                |  149 +
 .../openapi_server/config.py                  |   21 +
 .../openapi_server/controllers/__init__.py    |    0
 .../controllers/default_controller.py         |   46 +
 .../controllers/security_controller_.py       |    2 +
 .../core/accesscontrolpolicyapi.py            |   54 +
 .../openapi_server/core/consumer_messager.py  |   37 +
 .../core/internal_service_ops.py              |   85 +
 .../openapi_server/core/publisher.py          |   11 +
 .../openapi_server/core/resources.py          |    7 +
 .../openapi_server/core/responses.py          |   31 +
 .../openapi_server/db/db.py                   |   46 +
 .../openapi_server/encoder.py                 |   20 +
 .../openapi_server/models/__init__.py         |   10 +
 .../models/access_control_policy_list.py      |   70 +
 .../models/api_invoker_policy.py              |  156 +
 .../openapi_server/models/base_model_.py      |   69 +
 .../openapi_server/models/invalid_param.py    |   96 +
 .../openapi_server/models/problem_details.py  |  270 ++
 .../openapi_server/models/time_range_list.py  |   94 +
 .../openapi_server/openapi/openapi.yaml       |  375 ++
 .../openapi_server/test/__init__.py           |   16 +
 .../test/test_default_controller.py           |   38 +
 .../openapi_server/typing_utils.py            |   32 +
 .../openapi_server/util.py                    |  186 +
 .../requirements.txt                          |   29 +
 .../setup.py                                  |   39 +
 .../test-requirements.txt                     |    4 +
 .../tox.ini                                   |   11 +
 .../TS29222_CAPIF_Auditing_API/.dockerignore  |   72 +
 .../TS29222_CAPIF_Auditing_API/.gitignore     |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   33 +
 .../.openapi-generator/VERSION                |    1 +
 .../TS29222_CAPIF_Auditing_API/.travis.yml    |   14 +
 .../TS29222_CAPIF_Auditing_API/Dockerfile     |   17 +
 services/TS29222_CAPIF_Auditing_API/README.md |   49 +
 .../TS29222_CAPIF_Auditing_API/config.yaml    |   20 +
 .../TS29222_CAPIF_Auditing_API/git_push.sh    |   57 +
 .../logs/__init__.py                          |    0
 .../logs/__main__.py                          |  116 +
 .../TS29222_CAPIF_Auditing_API/logs/config.py |   20 +
 .../logs/controllers/__init__.py              |    0
 .../logs/controllers/default_controller.py    |   88 +
 .../logs/controllers/security_controller_.py  |    2 +
 .../logs/core/auditoperations.py              |   71 +
 .../logs/core/resources.py                    |    8 +
 .../logs/core/responses.py                    |   36 +
 .../TS29222_CAPIF_Auditing_API/logs/db/db.py  |   43 +
 .../logs/encoder.py                           |   20 +
 .../logs/models/__init__.py                   |   16 +
 .../logs/models/base_model_.py                |   69 +
 .../logs/models/interface_description.py      |  158 +
 .../logs/models/invalid_param.py              |   96 +
 .../logs/models/invocation_log.py             |  164 +
 .../logs/models/log.py                        |  470 +++
 .../logs/models/operation.py                  |   45 +
 .../logs/models/operation_any_of.py           |   45 +
 .../logs/models/problem_details.py            |  270 ++
 .../logs/models/protocol.py                   |   42 +
 .../logs/models/protocol_any_of.py            |   42 +
 .../logs/models/security_method.py            |   42 +
 .../logs/models/security_method_any_of.py     |   43 +
 .../logs/openapi/openapi.yaml                 |  664 ++++
 .../logs/typing_utils.py                      |   32 +
 .../TS29222_CAPIF_Auditing_API/logs/util.py   |  186 +
 .../requirements.txt                          |   20 +
 services/TS29222_CAPIF_Auditing_API/setup.py  |   39 +
 .../test-requirements.txt                     |    4 +
 services/TS29222_CAPIF_Auditing_API/tox.ini   |   11 +
 .../.dockerignore                             |   72 +
 .../.gitignore                                |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   43 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../Dockerfile                                |   17 +
 .../README.md                                 |   49 +
 .../config.yaml                               |   21 +
 .../git_push.sh                               |   57 +
 .../requirements.txt                          |   22 +
 .../service_apis/__init__.py                  |    0
 .../service_apis/__main__.py                  |  131 +
 .../service_apis/config.py                    |   20 +
 .../service_apis/controllers/__init__.py      |    0
 .../controllers/default_controller.py         |   48 +
 .../controllers/security_controller_.py       |    2 +
 .../service_apis/core/discoveredapis.py       |   65 +
 .../service_apis/core/resources.py            |    7 +
 .../service_apis/core/responses.py            |   32 +
 .../service_apis/db/db.py                     |   44 +
 .../service_apis/encoder.py                   |   20 +
 .../service_apis/models/__init__.py           |   26 +
 .../service_apis/models/aef_profile.py        |  250 ++
 .../service_apis/models/base_model_.py        |   69 +
 .../service_apis/models/communication_type.py |   39 +
 .../models/communication_type_any_of.py       |   42 +
 .../service_apis/models/custom_operation.py   |  158 +
 .../service_apis/models/data_format.py        |   39 +
 .../service_apis/models/data_format_any_of.py |   41 +
 .../service_apis/models/discovered_apis.py    |   70 +
 .../models/interface_description.py           |  158 +
 .../service_apis/models/invalid_param.py      |   96 +
 .../service_apis/models/operation.py          |   39 +
 .../service_apis/models/operation_any_of.py   |   45 +
 .../service_apis/models/problem_details.py    |  270 ++
 .../service_apis/models/protocol.py           |   39 +
 .../service_apis/models/protocol_any_of.py    |   42 +
 .../service_apis/models/published_api_path.py |   68 +
 .../service_apis/models/resource.py           |  216 ++
 .../service_apis/models/security_method.py    |   39 +
 .../models/security_method_any_of.py          |   43 +
 .../models/service_api_description.py         |  328 ++
 .../models/shareable_information.py           |   98 +
 .../service_apis/models/version.py            |  160 +
 .../service_apis/openapi/openapi.yaml         | 1330 +++++++
 .../service_apis/typing_utils.py              |   32 +
 .../service_apis/util.py                      |  190 +
 .../setup.py                                  |   39 +
 .../test-requirements.txt                     |    4 +
 .../tox.ini                                   |   11 +
 .../TS29222_CAPIF_Events_API/.dockerignore    |   72 +
 services/TS29222_CAPIF_Events_API/.gitignore  |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   67 +
 .../.openapi-generator/VERSION                |    1 +
 services/TS29222_CAPIF_Events_API/.travis.yml |   14 +
 services/TS29222_CAPIF_Events_API/Dockerfile  |   18 +
 services/TS29222_CAPIF_Events_API/README.md   |   49 +
 .../capif_events/__init__.py                  |    0
 .../capif_events/__main__.py                  |  151 +
 .../capif_events/config.py                    |   18 +
 .../capif_events/controllers/__init__.py      |    0
 .../controllers/default_controller.py         |   82 +
 .../controllers/security_controller_.py       |    2 +
 .../capif_events/core/auth_manager.py         |   63 +
 .../capif_events/core/consumer_messager.py    |   33 +
 .../capif_events/core/events_apis.py          |  121 +
 .../capif_events/core/internal_event_ops.py   |   59 +
 .../capif_events/core/notifications.py        |   43 +
 .../capif_events/core/resources.py            |    7 +
 .../capif_events/core/responses.py            |   31 +
 .../capif_events/core/validate_user.py        |   26 +
 .../capif_events/db/db.py                     |   48 +
 .../capif_events/encoder.py                   |   20 +
 .../capif_events/models/__init__.py           |   50 +
 .../models/access_control_policy_list.py      |   70 +
 .../models/access_control_policy_list_ext.py  |  102 +
 .../access_control_policy_list_ext_all_of.py  |   64 +
 .../capif_events/models/aef_profile.py        |  250 ++
 .../capif_events/models/api_invoker_policy.py |  156 +
 .../capif_events/models/base_model_.py        |   69 +
 .../capif_events/models/capif_event.py        |   39 +
 .../capif_events/models/capif_event_any_of.py |   53 +
 .../capif_events/models/capif_event_detail.py |  218 ++
 .../capif_events/models/capif_event_filter.py |  128 +
 .../capif_events/models/communication_type.py |   39 +
 .../models/communication_type_any_of.py       |   42 +
 .../capif_events/models/custom_operation.py   |  158 +
 .../capif_events/models/data_format.py        |   39 +
 .../capif_events/models/data_format_any_of.py |   41 +
 .../capif_events/models/event_notification.py |  126 +
 .../capif_events/models/event_subscription.py |  250 ++
 .../models/interface_description.py           |  158 +
 .../capif_events/models/invalid_param.py      |   96 +
 .../capif_events/models/invocation_log.py     |  164 +
 .../capif_events/models/ipv4_address_range.py |  100 +
 .../capif_events/models/ipv6_address_range.py |   98 +
 .../capif_events/models/log.py                |  470 +++
 .../capif_events/models/notification_flag.py  |   39 +
 .../models/notification_flag_any_of.py        |   43 +
 .../models/notification_method.py             |   39 +
 .../models/notification_method_any_of.py      |   43 +
 .../capif_events/models/operation.py          |   39 +
 .../capif_events/models/operation_any_of.py   |   45 +
 .../models/partitioning_criteria.py           |   39 +
 .../models/partitioning_criteria_any_of.py    |   45 +
 .../capif_events/models/problem_details.py    |  270 ++
 .../capif_events/models/protocol.py           |   39 +
 .../capif_events/models/protocol_any_of.py    |   42 +
 .../capif_events/models/published_api_path.py |   68 +
 .../models/reporting_information.py           |  298 ++
 .../capif_events/models/resource.py           |  216 ++
 .../capif_events/models/routing_rule.py       |  128 +
 .../capif_events/models/security_method.py    |   39 +
 .../models/security_method_any_of.py          |   43 +
 .../models/service_api_description.py         |  328 ++
 .../models/shareable_information.py           |   98 +
 .../capif_events/models/time_range_list.py    |   94 +
 .../capif_events/models/topology_hiding.py    |   98 +
 .../capif_events/models/version.py            |  160 +
 .../models/websock_notif_config.py            |   94 +
 .../capif_events/openapi/openapi.yaml         | 3314 +++++++++++++++++
 .../capif_events/typing_utils.py              |   32 +
 .../capif_events/util.py                      |  175 +
 services/TS29222_CAPIF_Events_API/config.yaml |   23 +
 services/TS29222_CAPIF_Events_API/git_push.sh |   57 +
 .../TS29222_CAPIF_Events_API/requirements.txt |   23 +
 services/TS29222_CAPIF_Events_API/setup.py    |   39 +
 .../test-requirements.txt                     |    4 +
 services/TS29222_CAPIF_Events_API/tox.ini     |   11 +
 .../.dockerignore                             |   72 +
 .../.gitignore                                |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   33 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../Dockerfile                                |   17 +
 .../README.md                                 |   49 +
 .../api_invocation_logs/__init__.py           |    0
 .../api_invocation_logs/__main__.py           |  120 +
 .../api_invocation_logs/config.py             |   20 +
 .../controllers/__init__.py                   |    0
 .../controllers/default_controller.py         |   69 +
 .../controllers/security_controller_.py       |    2 +
 .../core/invocationlogs.py                    |  121 +
 .../api_invocation_logs/core/resources.py     |    8 +
 .../api_invocation_logs/core/responses.py     |   43 +
 .../api_invocation_logs/core/validate_user.py |   26 +
 .../api_invocation_logs/db/db.py              |   46 +
 .../api_invocation_logs/encoder.py            |   20 +
 .../api_invocation_logs/models/__init__.py    |   16 +
 .../api_invocation_logs/models/base_model_.py |   69 +
 .../models/interface_description.py           |  158 +
 .../models/invalid_param.py                   |   96 +
 .../models/invocation_log.py                  |  164 +
 .../api_invocation_logs/models/log.py         |  470 +++
 .../api_invocation_logs/models/operation.py   |   39 +
 .../models/operation_any_of.py                |   45 +
 .../models/problem_details.py                 |  270 ++
 .../api_invocation_logs/models/protocol.py    |   39 +
 .../models/protocol_any_of.py                 |   42 +
 .../models/security_method.py                 |   39 +
 .../models/security_method_any_of.py          |   43 +
 .../api_invocation_logs/openapi/openapi.yaml  |  524 +++
 .../api_invocation_logs/typing_utils.py       |   32 +
 .../api_invocation_logs/util.py               |  186 +
 .../config.yaml                               |   23 +
 .../git_push.sh                               |   57 +
 .../requirements.txt                          |   20 +
 .../setup.py                                  |   39 +
 .../test-requirements.txt                     |    4 +
 .../tox.ini                                   |   11 +
 .../.dockerignore                             |   72 +
 .../.gitignore                                |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   42 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../Dockerfile                                |   17 +
 .../README.md                                 |   49 +
 .../config.yaml                               |   21 +
 .../git_push.sh                               |   57 +
 .../published_apis/__init__.py                |    0
 .../published_apis/__main__.py                |  142 +
 .../published_apis/config.py                  |   21 +
 .../published_apis/controllers/__init__.py    |    0
 .../controllers/default_controller.py         |  160 +
 .../controllers/security_controller_.py       |    2 +
 .../published_apis/core/auth_manager.py       |   47 +
 .../published_apis/core/consumer_messager.py  |   29 +
 .../core/internal_service_ops.py              |   22 +
 .../published_apis/core/publisher.py          |   10 +
 .../published_apis/core/resources.py          |    7 +
 .../published_apis/core/responses.py          |   37 +
 .../core/serviceapidescriptions.py            |  218 ++
 .../published_apis/core/validate_user.py      |   26 +
 .../published_apis/db/db.py                   |   45 +
 .../published_apis/encoder.py                 |   20 +
 .../published_apis/models/__init__.py         |   25 +
 .../published_apis/models/aef_profile.py      |  250 ++
 .../published_apis/models/base_model_.py      |   69 +
 .../models/communication_type.py              |   39 +
 .../models/communication_type_any_of.py       |   42 +
 .../published_apis/models/custom_operation.py |  158 +
 .../published_apis/models/data_format.py      |   39 +
 .../models/data_format_any_of.py              |   41 +
 .../models/interface_description.py           |  158 +
 .../published_apis/models/invalid_param.py    |   96 +
 .../published_apis/models/operation.py        |   39 +
 .../published_apis/models/operation_any_of.py |   45 +
 .../published_apis/models/problem_details.py  |  270 ++
 .../published_apis/models/protocol.py         |   39 +
 .../published_apis/models/protocol_any_of.py  |   42 +
 .../models/published_api_path.py              |   68 +
 .../published_apis/models/resource.py         |  216 ++
 .../published_apis/models/security_method.py  |   39 +
 .../models/security_method_any_of.py          |   43 +
 .../models/service_api_description.py         |  328 ++
 .../models/shareable_information.py           |   98 +
 .../published_apis/models/version.py          |  160 +
 .../published_apis/openapi/openapi.yaml       | 1285 +++++++
 .../published_apis/typing_utils.py            |   32 +
 .../published_apis/util.py                    |  187 +
 .../requirements.txt                          |   21 +
 .../setup.py                                  |   39 +
 .../test-requirements.txt                     |    4 +
 .../TS29222_CAPIF_Publish_Service_API/tox.ini |   11 +
 .../.dockerignore                             |   72 +
 .../TS29222_CAPIF_Routing_Info_API/.gitignore |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   43 +
 .../.openapi-generator/VERSION                |    1 +
 .../.travis.yml                               |   14 +
 .../TS29222_CAPIF_Routing_Info_API/Dockerfile |   16 +
 .../TS29222_CAPIF_Routing_Info_API/README.md  |   49 +
 .../capif_routing_info/__init__.py            |    0
 .../capif_routing_info/__main__.py            |   19 +
 .../controllers/__init__.py                   |    0
 .../controllers/default_controller.py         |   23 +
 .../controllers/security_controller_.py       |    2 +
 .../capif_routing_info/encoder.py             |   20 +
 .../capif_routing_info/models/__init__.py     |   26 +
 .../capif_routing_info/models/aef_profile.py  |  250 ++
 .../capif_routing_info/models/base_model_.py  |   69 +
 .../models/communication_type.py              |   39 +
 .../models/communication_type_any_of.py       |   42 +
 .../models/custom_operation.py                |  158 +
 .../capif_routing_info/models/data_format.py  |   39 +
 .../models/data_format_any_of.py              |   41 +
 .../models/interface_description.py           |  158 +
 .../models/invalid_param.py                   |   96 +
 .../models/ipv4_address_range.py              |  100 +
 .../models/ipv6_address_range.py              |   98 +
 .../capif_routing_info/models/operation.py    |   39 +
 .../models/operation_any_of.py                |   45 +
 .../models/problem_details.py                 |  270 ++
 .../capif_routing_info/models/protocol.py     |   39 +
 .../models/protocol_any_of.py                 |   42 +
 .../capif_routing_info/models/resource.py     |  216 ++
 .../capif_routing_info/models/routing_info.py |   70 +
 .../capif_routing_info/models/routing_rule.py |  128 +
 .../models/security_method.py                 |   39 +
 .../models/security_method_any_of.py          |   43 +
 .../capif_routing_info/models/version.py      |  160 +
 .../capif_routing_info/openapi/openapi.yaml   |  972 +++++
 .../capif_routing_info/test/__init__.py       |   16 +
 .../test/test_default_controller.py           |   37 +
 .../capif_routing_info/typing_utils.py        |   32 +
 .../capif_routing_info/util.py                |  148 +
 .../git_push.sh                               |   57 +
 .../requirements.txt                          |    5 +
 .../TS29222_CAPIF_Routing_Info_API/setup.py   |   39 +
 .../test-requirements.txt                     |    4 +
 .../TS29222_CAPIF_Routing_Info_API/tox.ini    |   11 +
 .../TS29222_CAPIF_Security_API/.dockerignore  |   72 +
 .../TS29222_CAPIF_Security_API/.gitignore     |   66 +
 .../.openapi-generator-ignore                 |   23 +
 .../.openapi-generator/FILES                  |   36 +
 .../.openapi-generator/VERSION                |    1 +
 .../TS29222_CAPIF_Security_API/.travis.yml    |   14 +
 .../TS29222_CAPIF_Security_API/Dockerfile     |   18 +
 services/TS29222_CAPIF_Security_API/README.md |   49 +
 .../capif_security/__init__.py                |    0
 .../capif_security/__main__.py                |  148 +
 .../capif_security/config.py                  |   21 +
 .../capif_security/controllers/__init__.py    |    0
 .../controllers/default_controller.py         |  191 +
 .../controllers/security_controller_.py       |    2 +
 .../capif_security/core/consumer_messager.py  |   32 +
 .../core/internal_security_ops.py             |   22 +
 .../capif_security/core/notification.py       |   14 +
 .../capif_security/core/publisher.py          |   10 +
 .../capif_security/core/resources.py          |    9 +
 .../capif_security/core/responses.py          |   37 +
 .../capif_security/core/servicesecurity.py    |  376 ++
 .../capif_security/core/validate_user.py      |   26 +
 .../capif_security/db/db.py                   |   46 +
 .../capif_security/encoder.py                 |   20 +
 .../capif_security/models/__init__.py         |   28 +
 .../models/access_token_claims.py             |  126 +
 .../capif_security/models/access_token_err.py |  122 +
 .../models/access_token_err1.py               |  122 +
 .../capif_security/models/access_token_req.py |  151 +
 .../models/access_token_req1.py               |  559 +++
 .../capif_security/models/access_token_rsp.py |  158 +
 .../capif_security/models/base_model_.py      |   69 +
 .../capif_security/models/cause.py            |   39 +
 .../capif_security/models/cause_any_of.py     |   42 +
 .../models/interface_description.py           |  158 +
 .../capif_security/models/invalid_param.py    |   96 +
 .../capif_security/models/invalid_param1.py   |   96 +
 .../capif_security/models/nf_type.py          |   39 +
 .../capif_security/models/nf_type_any_of.py   |   95 +
 .../capif_security/models/plmn_id.py          |  104 +
 .../capif_security/models/plmn_id_nid.py      |  134 +
 .../capif_security/models/problem_details.py  |  270 ++
 .../capif_security/models/problem_details1.py |  354 ++
 .../models/security_information.py            |  239 ++
 .../capif_security/models/security_method.py  |   41 +
 .../models/security_method_any_of.py          |   44 +
 .../models/security_notification.py           |  158 +
 .../capif_security/models/service_security.py |  186 +
 .../capif_security/models/snssai.py           |  104 +
 .../models/websock_notif_config.py            |   94 +
 .../capif_security/openapi/openapi.yaml       | 1729 +++++++++
 .../capif_security/typing_utils.py            |   32 +
 .../capif_security/util.py                    |  186 +
 .../TS29222_CAPIF_Security_API/config.yaml    |   22 +
 .../TS29222_CAPIF_Security_API/git_push.sh    |   57 +
 services/TS29222_CAPIF_Security_API/main.py   |   61 +
 .../requirements.txt                          |   22 +
 .../security_prepare.sh                       |   19 +
 services/TS29222_CAPIF_Security_API/setup.py  |   39 +
 .../test-requirements.txt                     |    4 +
 services/TS29222_CAPIF_Security_API/tox.ini   |   11 +
 .../CAPIFInvokerGUI/invoker_gui/Dockerfile    |   13 +
 .../invoker_gui/capif_ops/__init__.py         |    0
 .../config_files/capif_registration.json      |   17 +
 .../config_files/credentials.properties       |   14 +
 .../capif_ops/config_files/demo_values.json   |    1 +
 .../capif_ops/config_files/events.json        |    6 +
 .../config_files/invoker_details.json         |   13 +
 .../capif_ops/config_files/security_info.json |   18 +
 .../config_files/service_request_body.json    |   32 +
 .../capif_ops/config_files/token_request.json |    6 +
 .../invoker_gui/capif_ops/invoker_delete.py   |   71 +
 .../capif_ops/invoker_discover_service.py     |   96 +
 .../invoker_gui/capif_ops/invoker_get_auth.py |   71 +
 .../capif_ops/invoker_get_security_auth.py    |   90 +
 .../capif_ops/invoker_previous_register.py    |  134 +
 .../capif_ops/invoker_register_to_capif.py    |  134 +
 .../invoker_remove_security_context.py        |   82 +
 .../capif_ops/invoker_secutiry_context.py     |   96 +
 .../capif_ops/invoker_to_service.py           |  168 +
 .../capif_ops/nef_calback_server/__init__.py  |    0
 .../capif_ops/nef_calback_server/callback.py  |   26 +
 .../CAPIFInvokerGUI/invoker_gui/main.py       |   98 +
 .../CAPIFInvokerGUI/invoker_gui/prepare.sh    |   11 +
 .../invoker_gui/requirements.txt              |   13 +
 services/capif-client/Dockerfile              |    5 +
 services/check_services_are_running.sh        |   12 +
 services/clean_capif_docker_services.sh       |   40 +
 services/docker-compose-capif.yml             |  259 ++
 services/docker-compose-register.yml          |   51 +
 services/docker-compose-vault.yml             |   16 +
 .../docker-compose/docker-compose-capif.yml   |  246 ++
 .../docker-compose-montoring.yml              |  110 +
 .../docker-compose-register.yml               |   37 +
 .../docker-compose/docker-compose-vault.yml   |   16 +
 services/docker-compose/run.sh                |   91 +
 services/docker-compose/stop.sh               |   98 +
 services/nginx/Dockerfile                     |   16 +
 services/nginx/certs/sign_req_body_tmp.json   |    5 +
 services/nginx/nginx.conf                     |  169 +
 services/nginx/nginx_prepare.sh               |   38 +
 services/register/.gitignore                  |   66 +
 services/register/Dockerfile                  |   18 +
 services/register/config.yaml                 |   14 +
 services/register/register_prepare.sh         |   55 +
 .../register/register_service/__init__.py     |    0
 .../register/register_service/__main__.py     |   27 +
 services/register/register_service/config.py  |   20 +
 .../controllers/register_controller.py        |   39 +
 .../core/register_operations.py               |   71 +
 services/register/register_service/db/db.py   |   38 +
 services/register/requirements.txt            |    8 +
 services/run.sh                               |   91 +
 services/runCapifTests.sh                     |   52 +
 services/stop.sh                              |   98 +
 services/vault/Dockerfile                     |   12 +
 services/vault/vault_prepare_certs.sh         |  138 +
 .../__init__.robot                            |    2 +
 .../capif_api_access_control_policy.robot     |  627 ++++
 .../CAPIF Api Auditing Service/__init__.robot |    2 +
 .../capif_auditing_api.robot                  |  243 ++
 .../CAPIF Api Discover Service/__init__.robot |    2 +
 .../capif_api_service_discover.robot          |  257 ++
 .../features/CAPIF Api Events/__init__.robot  |    2 +
 .../CAPIF Api Events/capif_events_api.robot   |  156 +
 .../__init__.robot                            |    2 +
 .../capif_api_invoker_managenet.robot         |  201 +
 .../CAPIF Api Logging Service/__init__.robot  |    2 +
 .../capif_logging_api.robot                   |  221 ++
 .../__init__.robot                            |    2 +
 .../capif_api_provider_management.robot       |  222 ++
 .../CAPIF Api Publish Service/__init__.robot  |    2 +
 .../capif_api_publish_service.robot           |  374 ++
 .../CAPIF Security Api/__init__.robot         |    2 +
 .../capif_security_api.robot                  | 1192 ++++++
 tests/features/__init__.robot                 |   56 +
 tests/libraries/api_events/bodyRequests.py    |   32 +
 .../api_invoker_management/bodyRequests.py    |   20 +
 .../api_logging_service/bodyRequests.py       |  133 +
 .../api_provider_management/bodyRequests.py   |   41 +
 .../api_publish_service/bodyRequests.py       |   68 +
 tests/libraries/bodyRequests.py               |    8 +
 tests/libraries/common/bodyRequests.py        |  125 +
 tests/libraries/common/types.json             |  606 +++
 tests/libraries/environment.py                |   25 +
 tests/libraries/helpers.py                    |  141 +
 tests/libraries/security_api/bodyRequests.py  |   96 +
 tests/requirements.txt                        |    7 +
 .../apiInvokerManagementRequests.robot        |    4 +
 tests/resources/common.resource               |   84 +
 tests/resources/common/basicRequests.robot    |  593 +++
 tests/resources/common/httpServer.robot       |    2 +
 tests/resources/common/httpServerCtrl.robot   |    3 +
 .../generate_all_capif_apis.sh                |   92 +
 tools/robot/Dockerfile                        |  100 +
 tools/robot/README.md                         |   37 +
 tools/robot/basicRequirements.txt             |  101 +
 tools/robot/basicRobotInstall.sh              |    7 +
 tools/robot/doc_entrypoint.sh                 |   48 +
 tools/robot/entrypoint.sh                     |   48 +
 tools/robot/featdoc_entrypoint.sh             |   48 +
 tools/robot/libdoc_entrypoint.sh              |   48 +
 tools/robot/linter_entrypoint.sh              |   48 +
 771 files changed, 77973 insertions(+), 57 deletions(-)
 create mode 100644 .gitignore
 create mode 100644 CITATION.cff
 create mode 100644 FAQ.md
 create mode 100644 LICENSE
 create mode 100644 cicd/exclusions
 create mode 100644 cicd/ruff.toml
 create mode 100644 docs/images/flows/01 - Register del AEF.png
 create mode 100644 docs/images/flows/02 - AEF API Provider registration.png
 create mode 100644 docs/images/flows/03 - AEF Publish.png
 create mode 100644 docs/images/flows/04 - Invoker Register.png
 create mode 100644 docs/images/flows/05 - Invoker Onboarding.png
 create mode 100644 docs/images/flows/06 - Invoker Discover AEF.png
 create mode 100644 docs/images/flows/07 - Invoker Create Security Context.png
 create mode 100644 docs/images/flows/08 - Invoker Get Token.png
 create mode 100644 docs/images/flows/09 - Invoker Send Request to AEF Service API.png
 create mode 100644 docs/images/robot_log_example.png
 create mode 100644 docs/images/robot_report_example.png
 create mode 100644 docs/test_plan/README.md
 create mode 100644 docs/test_plan/api_access_control_policy/README.md
 create mode 100644 docs/test_plan/api_access_control_policy/service_api_description_post_example.json
 create mode 100644 docs/test_plan/api_auditing_service/README.md
 create mode 100644 docs/test_plan/api_discover_service/README.md
 create mode 100644 docs/test_plan/api_events_service/README.md
 create mode 100644 docs/test_plan/api_events_service/event_subscription.json
 create mode 100644 docs/test_plan/api_invoker_management/README.md
 create mode 100644 docs/test_plan/api_invoker_management/invoker_details_post_example.json
 create mode 100644 docs/test_plan/api_invoker_management/invoker_details_put_example.json
 create mode 100644 docs/test_plan/api_invoker_management/invoker_getauth_example.json
 create mode 100644 docs/test_plan/api_invoker_management/invoker_register_body.json
 create mode 100644 docs/test_plan/api_logging_service/README.md
 create mode 100644 docs/test_plan/api_logging_service/invocation_log.json
 create mode 100644 docs/test_plan/api_provider_management/README.md
 create mode 100644 docs/test_plan/api_provider_management/provider_details_enrolment_details_patch_example.json
 create mode 100644 docs/test_plan/api_provider_management/provider_details_post_example.json
 create mode 100644 docs/test_plan/api_provider_management/provider_getauth_example.json
 create mode 100644 docs/test_plan/api_provider_management/provider_register_body.json
 create mode 100644 docs/test_plan/api_publish_service/README.md
 create mode 100644 docs/test_plan/api_publish_service/publisher_register_body.json
 create mode 100644 docs/test_plan/api_publish_service/service_api_description_post_example.json
 create mode 100644 docs/test_plan/api_security_service/README.md
 create mode 100644 docs/test_plan/api_security_service/access_token_req.json
 create mode 100644 docs/test_plan/api_security_service/access_token_req_example.json
 create mode 100644 docs/test_plan/api_security_service/security_notification.json
 create mode 100644 docs/test_plan/api_security_service/service_security.json
 create mode 100644 docs/test_plan/common_operations/README.md
 create mode 100644 docs/testing_with_curl/README.md
 create mode 100755 docs/testing_with_curl/capif_tls_curls_exposer.sh
 create mode 100755 docs/testing_with_curl/capif_tls_curls_invoker.sh
 create mode 100644 docs/testing_with_curl/exposer.key
 create mode 100644 docs/testing_with_curl/invoker.key
 create mode 100644 docs/testing_with_postman/CAPIF.postman_collection.json
 create mode 100644 docs/testing_with_postman/CAPIF.postman_environment.json
 create mode 100644 docs/testing_with_postman/README.md
 create mode 100644 docs/testing_with_postman/hello_api.py
 create mode 100644 docs/testing_with_postman/package.json
 create mode 100644 docs/testing_with_postman/script.js
 create mode 100644 docs/testing_with_robot/README.md
 create mode 100644 helm/README-vault.md
 create mode 100644 helm/README.md
 create mode 100644 helm/capif/.helmignore
 create mode 100644 helm/capif/Chart.yaml
 create mode 100644 helm/capif/README.md
 create mode 100644 helm/capif/docker-monitoring.json
 create mode 100644 helm/capif/kubernetes-dashboard.json
 create mode 100644 helm/capif/loki-logs.json
 create mode 100644 helm/capif/templates/_helpers.tpl
 create mode 100644 helm/capif/templates/access-control-policy.yaml
 create mode 100644 helm/capif/templates/api-invocation-logs.yaml
 create mode 100644 helm/capif/templates/api-invoker-management.yaml
 create mode 100644 helm/capif/templates/api-provider-management.yaml
 create mode 100644 helm/capif/templates/capif-events-configmap.yaml
 create mode 100644 helm/capif/templates/capif-events.yaml
 create mode 100644 helm/capif/templates/capif-invocation-configmap.yaml
 create mode 100644 helm/capif/templates/capif-invoker-configmap.yaml
 create mode 100644 helm/capif/templates/capif-logs-configmap.yaml
 create mode 100644 helm/capif/templates/capif-provider-configmap.yaml
 create mode 100644 helm/capif/templates/capif-published-configmap.yaml
 create mode 100644 helm/capif/templates/capif-routing-info.yaml
 create mode 100644 helm/capif/templates/capif-security-configmap.yaml
 create mode 100644 helm/capif/templates/capif-security.yaml
 create mode 100644 helm/capif/templates/capif-service-configmap.yaml
 create mode 100644 helm/capif/templates/deployment.yaml
 create mode 100644 helm/capif/templates/fluent-bit-service.yaml
 create mode 100644 helm/capif/templates/fluentbit-configmap.yaml
 create mode 100644 helm/capif/templates/fluentbit-deployment.yaml
 create mode 100644 helm/capif/templates/grafana-configmap.yaml
 create mode 100644 helm/capif/templates/grafana-deployment.yaml
 create mode 100644 helm/capif/templates/grafana-ingress-route.yaml
 create mode 100644 helm/capif/templates/grafana-ingress.yaml
 create mode 100644 helm/capif/templates/grafana-pvc.yaml
 create mode 100644 helm/capif/templates/grafana-secrets.yaml
 create mode 100644 helm/capif/templates/grafana-service.yaml
 create mode 100644 helm/capif/templates/logs.yaml
 create mode 100644 helm/capif/templates/loki-deployment.yaml
 create mode 100644 helm/capif/templates/loki-pvc.yaml
 create mode 100644 helm/capif/templates/loki-service.yaml
 create mode 100644 helm/capif/templates/mongo-express.yaml
 create mode 100644 helm/capif/templates/mongo-pvc.yaml
 create mode 100644 helm/capif/templates/mongo-register.yaml
 create mode 100644 helm/capif/templates/mongo.yaml
 create mode 100644 helm/capif/templates/nginx-ingress-route.yaml
 create mode 100644 helm/capif/templates/nginx-ssl-ingress-route.yaml
 create mode 100644 helm/capif/templates/nginx-ssl-route.yaml
 create mode 100644 helm/capif/templates/nginx-ssl.yaml
 create mode 100644 helm/capif/templates/nginx.yaml
 create mode 100644 helm/capif/templates/otel-collector-configmap.yaml
 create mode 100644 helm/capif/templates/otel-collector-deployment.yaml
 create mode 100644 helm/capif/templates/otel-collector-service.yaml
 create mode 100644 helm/capif/templates/prometheus-clusterrole.yaml
 create mode 100644 helm/capif/templates/prometheus-configmap.yaml
 create mode 100644 helm/capif/templates/prometheus-deployment.yaml
 create mode 100644 helm/capif/templates/prometheus-ingress-route.yaml
 create mode 100644 helm/capif/templates/prometheus-ingress.yaml
 create mode 100644 helm/capif/templates/prometheus-pvc.yaml
 create mode 100644 helm/capif/templates/prometheus-service.yaml
 create mode 100644 helm/capif/templates/published-apis.yaml
 create mode 100644 helm/capif/templates/redis.yaml
 create mode 100644 helm/capif/templates/register-configmap.yaml
 create mode 100644 helm/capif/templates/register.yaml
 create mode 100644 helm/capif/templates/renderer-configmap.yaml
 create mode 100644 helm/capif/templates/renderer-deployment.yaml
 create mode 100644 helm/capif/templates/renderer-service.yaml
 create mode 100644 helm/capif/templates/service-apis.yaml
 create mode 100644 helm/capif/values.yaml
 create mode 100644 helm/helmfile-capif.yaml
 create mode 100644 helm/vault-job/vault-job.yaml
 create mode 100644 monitoring/docker-compose.yml
 create mode 100644 monitoring/fluent_bit/fluent-bit.conf
 create mode 100644 monitoring/grafana/grafana_config/grafana.ini
 create mode 100644 monitoring/grafana/grafana_dashboards/Docker-monitoring.json
 create mode 100644 monitoring/grafana/grafana_dashboards/Loki-Logs.json
 create mode 100644 monitoring/grafana/grafana_provisioning/grafana-datasources.yaml
 create mode 100644 monitoring/grafana/grafana_provisioning/grafana-default-provisioning.yaml
 create mode 100755 monitoring/grafana_config/provisioning/dashboards/default.yaml
 create mode 100755 monitoring/grafana_config/provisioning/datasources/datasources.yaml
 create mode 100644 monitoring/otlp_collector/otel-config.yaml
 create mode 100644 monitoring/prometheus/prometheus.yml
 create mode 100644 monitoring/tempo/tempo.yaml
 create mode 100644 prometheus/kustomization.yaml
 create mode 100644 prometheus/prometheus-claim1-persistentvolumeclaim.yaml
 create mode 100644 prometheus/prometheus-claim2-persistentvolumeclaim.yaml
 create mode 100644 prometheus/prometheus-claim3-persistentvolumeclaim.yaml
 create mode 100644 prometheus/prometheus-claim4-persistentvolumeclaim.yaml
 create mode 100644 prometheus/prometheus-configmap.yaml
 create mode 100644 prometheus/prometheus-deployment.yaml
 create mode 100644 prometheus/prometheus-service.yaml
 create mode 100644 services/.env
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/README.md
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__init__.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__main__.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/config.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/apiinvokerenrolmentdetails.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/auth_manager.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/consumer_messager.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/invoker_internal_ops.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/publisher.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/resources.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/responses.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/validate_user.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/db/db.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/encoder.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/aef_profile.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/api_invoker_enrolment_details.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type_any_of.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/custom_operation.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format_any_of.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_information.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_notification.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/published_api_path.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/resource.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/service_api_description.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/shareable_information.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/version.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/websock_notif_config.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/util.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/prepare_invoker.sh
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/setup.py
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_API_Invoker_Management_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/README.md
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__init__.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__main__.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/config.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/individual_api_provider_enrolment_details_controller.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/auth_manager.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/provider_enrolment_details_api.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/publisher.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/resources.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/responses.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/sign_certificate.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/validate_user.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/db/db.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/encoder.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details_patch.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role_any_of.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_function_details.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/registration_information.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/util.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/prepare_provider.sh
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/setup.py
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_API_Provider_Management_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/README.md
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__init__.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__main__.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/config.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/accesscontrolpolicyapi.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/consumer_messager.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/internal_service_ops.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/publisher.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/db/db.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/encoder.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/access_control_policy_list.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/api_invoker_policy.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/time_range_list.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/__init__.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/test_default_controller.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/util.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Access_Control_Policy_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Auditing_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Auditing_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Auditing_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Auditing_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Auditing_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Auditing_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Auditing_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Auditing_API/README.md
 create mode 100644 services/TS29222_CAPIF_Auditing_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Auditing_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/__init__.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/__main__.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/config.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/core/auditoperations.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/db/db.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/encoder.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/invocation_log.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/log.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/operation.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/logs/util.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Auditing_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Auditing_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Auditing_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/README.md
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/__init__.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/__main__.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/config.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/core/discoveredapis.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/db/db.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/encoder.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/aef_profile.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type_any_of.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/custom_operation.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format_any_of.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/discovered_apis.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/published_api_path.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/resource.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/service_api_description.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/shareable_information.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/models/version.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/service_apis/util.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Discover_Service_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Events_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Events_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Events_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Events_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Events_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Events_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Events_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Events_API/README.md
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/__init__.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/__main__.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/config.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/auth_manager.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/consumer_messager.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/events_apis.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/internal_event_ops.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/notifications.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/core/validate_user.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/db/db.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/encoder.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext_all_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/aef_profile.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/api_invoker_policy.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/capif_event.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_detail.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_filter.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/communication_type.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/communication_type_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/custom_operation.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/data_format.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/data_format_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/event_notification.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/event_subscription.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/invocation_log.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/ipv4_address_range.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/ipv6_address_range.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/log.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/notification_method.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/notification_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/operation.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/published_api_path.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/reporting_information.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/resource.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/routing_rule.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/service_api_description.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/shareable_information.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/time_range_list.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/topology_hiding.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/version.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/models/websock_notif_config.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Events_API/capif_events/util.py
 create mode 100644 services/TS29222_CAPIF_Events_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Events_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Events_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Events_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Events_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Events_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/README.md
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__init__.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__main__.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/config.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/invocationlogs.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/validate_user.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/db/db.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/encoder.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invocation_log.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/log.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/util.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Logging_API_Invocation_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/README.md
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/__init__.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/__main__.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/config.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/auth_manager.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/consumer_messager.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/internal_service_ops.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/publisher.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/serviceapidescriptions.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/core/validate_user.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/db/db.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/encoder.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/aef_profile.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type_any_of.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/custom_operation.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format_any_of.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/published_api_path.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/resource.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/service_api_description.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/shareable_information.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/models/version.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/published_apis/util.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Publish_Service_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/README.md
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__init__.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__main__.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/encoder.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/aef_profile.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type_any_of.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/custom_operation.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format_any_of.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv4_address_range.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv6_address_range.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation_any_of.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol_any_of.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/resource.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_info.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_rule.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/version.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/__init__.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/test_default_controller.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/util.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Routing_Info_API/tox.ini
 create mode 100644 services/TS29222_CAPIF_Security_API/.dockerignore
 create mode 100644 services/TS29222_CAPIF_Security_API/.gitignore
 create mode 100644 services/TS29222_CAPIF_Security_API/.openapi-generator-ignore
 create mode 100644 services/TS29222_CAPIF_Security_API/.openapi-generator/FILES
 create mode 100644 services/TS29222_CAPIF_Security_API/.openapi-generator/VERSION
 create mode 100644 services/TS29222_CAPIF_Security_API/.travis.yml
 create mode 100644 services/TS29222_CAPIF_Security_API/Dockerfile
 create mode 100644 services/TS29222_CAPIF_Security_API/README.md
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/__init__.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/__main__.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/config.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/controllers/__init__.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/controllers/default_controller.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/controllers/security_controller_.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/consumer_messager.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/internal_security_ops.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/notification.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/publisher.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/resources.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/responses.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/servicesecurity.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/core/validate_user.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/db/db.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/encoder.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/__init__.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/access_token_claims.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err1.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req1.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/access_token_rsp.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/base_model_.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/cause.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/cause_any_of.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/interface_description.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param1.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/nf_type.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/nf_type_any_of.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id_nid.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/problem_details.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/problem_details1.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/security_information.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/security_method.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/security_method_any_of.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/security_notification.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/service_security.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/snssai.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/models/websock_notif_config.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/openapi/openapi.yaml
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/typing_utils.py
 create mode 100644 services/TS29222_CAPIF_Security_API/capif_security/util.py
 create mode 100644 services/TS29222_CAPIF_Security_API/config.yaml
 create mode 100644 services/TS29222_CAPIF_Security_API/git_push.sh
 create mode 100644 services/TS29222_CAPIF_Security_API/main.py
 create mode 100644 services/TS29222_CAPIF_Security_API/requirements.txt
 create mode 100644 services/TS29222_CAPIF_Security_API/security_prepare.sh
 create mode 100644 services/TS29222_CAPIF_Security_API/setup.py
 create mode 100644 services/TS29222_CAPIF_Security_API/test-requirements.txt
 create mode 100644 services/TS29222_CAPIF_Security_API/tox.ini
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/Dockerfile
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/__init__.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/capif_registration.json
 create mode 100755 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/credentials.properties
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/demo_values.json
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/events.json
 create mode 100755 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/invoker_details.json
 create mode 100755 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/security_info.json
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/service_request_body.json
 create mode 100755 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/token_request.json
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_delete.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_discover_service.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_auth.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_security_auth.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_previous_register.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_register_to_capif.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_remove_security_context.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_secutiry_context.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_to_service.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/__init__.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/callback.py
 create mode 100644 services/capif-client/CAPIFInvokerGUI/invoker_gui/main.py
 create mode 100755 services/capif-client/CAPIFInvokerGUI/invoker_gui/prepare.sh
 create mode 100755 services/capif-client/CAPIFInvokerGUI/invoker_gui/requirements.txt
 create mode 100644 services/capif-client/Dockerfile
 create mode 100755 services/check_services_are_running.sh
 create mode 100755 services/clean_capif_docker_services.sh
 create mode 100644 services/docker-compose-capif.yml
 create mode 100644 services/docker-compose-register.yml
 create mode 100644 services/docker-compose-vault.yml
 create mode 100644 services/docker-compose/docker-compose-capif.yml
 create mode 100644 services/docker-compose/docker-compose-montoring.yml
 create mode 100644 services/docker-compose/docker-compose-register.yml
 create mode 100644 services/docker-compose/docker-compose-vault.yml
 create mode 100755 services/docker-compose/run.sh
 create mode 100755 services/docker-compose/stop.sh
 create mode 100644 services/nginx/Dockerfile
 create mode 100644 services/nginx/certs/sign_req_body_tmp.json
 create mode 100644 services/nginx/nginx.conf
 create mode 100644 services/nginx/nginx_prepare.sh
 create mode 100644 services/register/.gitignore
 create mode 100644 services/register/Dockerfile
 create mode 100644 services/register/config.yaml
 create mode 100644 services/register/register_prepare.sh
 create mode 100644 services/register/register_service/__init__.py
 create mode 100644 services/register/register_service/__main__.py
 create mode 100644 services/register/register_service/config.py
 create mode 100644 services/register/register_service/controllers/register_controller.py
 create mode 100644 services/register/register_service/core/register_operations.py
 create mode 100644 services/register/register_service/db/db.py
 create mode 100644 services/register/requirements.txt
 create mode 100755 services/run.sh
 create mode 100755 services/runCapifTests.sh
 create mode 100755 services/stop.sh
 create mode 100644 services/vault/Dockerfile
 create mode 100644 services/vault/vault_prepare_certs.sh
 create mode 100644 tests/features/CAPIF Api Access Control Policy/__init__.robot
 create mode 100644 tests/features/CAPIF Api Access Control Policy/capif_api_access_control_policy.robot
 create mode 100644 tests/features/CAPIF Api Auditing Service/__init__.robot
 create mode 100644 tests/features/CAPIF Api Auditing Service/capif_auditing_api.robot
 create mode 100644 tests/features/CAPIF Api Discover Service/__init__.robot
 create mode 100644 tests/features/CAPIF Api Discover Service/capif_api_service_discover.robot
 create mode 100644 tests/features/CAPIF Api Events/__init__.robot
 create mode 100644 tests/features/CAPIF Api Events/capif_events_api.robot
 create mode 100644 tests/features/CAPIF Api Invoker Management/__init__.robot
 create mode 100644 tests/features/CAPIF Api Invoker Management/capif_api_invoker_managenet.robot
 create mode 100644 tests/features/CAPIF Api Logging Service/__init__.robot
 create mode 100644 tests/features/CAPIF Api Logging Service/capif_logging_api.robot
 create mode 100644 tests/features/CAPIF Api Provider Management/__init__.robot
 create mode 100644 tests/features/CAPIF Api Provider Management/capif_api_provider_management.robot
 create mode 100644 tests/features/CAPIF Api Publish Service/__init__.robot
 create mode 100644 tests/features/CAPIF Api Publish Service/capif_api_publish_service.robot
 create mode 100644 tests/features/CAPIF Security Api/__init__.robot
 create mode 100644 tests/features/CAPIF Security Api/capif_security_api.robot
 create mode 100644 tests/features/__init__.robot
 create mode 100644 tests/libraries/api_events/bodyRequests.py
 create mode 100644 tests/libraries/api_invoker_management/bodyRequests.py
 create mode 100644 tests/libraries/api_logging_service/bodyRequests.py
 create mode 100644 tests/libraries/api_provider_management/bodyRequests.py
 create mode 100644 tests/libraries/api_publish_service/bodyRequests.py
 create mode 100644 tests/libraries/bodyRequests.py
 create mode 100644 tests/libraries/common/bodyRequests.py
 create mode 100644 tests/libraries/common/types.json
 create mode 100644 tests/libraries/environment.py
 create mode 100644 tests/libraries/helpers.py
 create mode 100644 tests/libraries/security_api/bodyRequests.py
 create mode 100644 tests/requirements.txt
 create mode 100644 tests/resources/api_invoker_management_requests/apiInvokerManagementRequests.robot
 create mode 100644 tests/resources/common.resource
 create mode 100644 tests/resources/common/basicRequests.robot
 create mode 100644 tests/resources/common/httpServer.robot
 create mode 100644 tests/resources/common/httpServerCtrl.robot
 create mode 100755 tools/open_api_script/generate_all_capif_apis.sh
 create mode 100644 tools/robot/Dockerfile
 create mode 100644 tools/robot/README.md
 create mode 100644 tools/robot/basicRequirements.txt
 create mode 100644 tools/robot/basicRobotInstall.sh
 create mode 100755 tools/robot/doc_entrypoint.sh
 create mode 100644 tools/robot/entrypoint.sh
 create mode 100755 tools/robot/featdoc_entrypoint.sh
 create mode 100755 tools/robot/libdoc_entrypoint.sh
 create mode 100755 tools/robot/linter_entrypoint.sh

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..ed021d2
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,46 @@
+.idea
+.git
+# Byte-compiled / optimized / DLL files
+__pycache__/
+./libraries/__pycache__/*.py[cod]
+*.py[cod]
+*$py.class
+*.DS_Store
+*.key
+*.csr
+*.pem
+*.crt
+*.zip
+*.srl
+services/nginx/certs/sign_req_body.json
+services/easy_rsa/certs/pki
+services/easy_rsa/certs/*EasyRSA*
+services/easy_rsa/certs/*.profile
+services/easy_rsa/certs/*.csr
+
+
+monitoring/grafana/*grafana_db*
+monitoring/prometheus/*prometheus_db
+monitoring/prometheus/*.rules
+monitoring/tempo/*tempo-data
+
+
+
+
+
+
+
+!docs/testing_with_curl/exposer.key
+!docs/testing_with_curl/invoker.key
+
+
+services/docker-elk/elasticsearch/_state
+services/docker-elk/elasticsearch/snapshot_cache
+services/docker-elk/elasticsearch/indices
+services/docker-elk/elasticsearch/node.lock
+services/docker-elk/elasticsearch/nodes
+
+results
+
+helm/capif/*.lock
+helm/capif/charts
\ No newline at end of file
diff --git a/CITATION.cff b/CITATION.cff
new file mode 100644
index 0000000..ef7f8ff
--- /dev/null
+++ b/CITATION.cff
@@ -0,0 +1,9 @@
+cff-version: 2.1.0
+message: "If you use this software, please cite it as below."
+authors:
+- family-names: "EVOLVED-5g"
+  given-names: "EVOLVED-5g"
+title: "CAPIF_API_Services"
+version: 2.1
+date-released: 2022-01-30
+url: "https://github.com/EVOLVED-5G/CAPIF_API_Services"
diff --git a/FAQ.md b/FAQ.md
new file mode 100644
index 0000000..14a88ff
--- /dev/null
+++ b/FAQ.md
@@ -0,0 +1,88 @@
+[**[Return To Main]**]
+
+# FAQ
+
+### Does the user have to develop the 3 elements of the provider (AEF, AMF and APF)?
+No, you only have to make the request to the "/onboarding" endpoint. In it you must specify a CSR for the AEF, APF and AMF and you will receive the certificates for each of them in the response.
+
+### There is one party that publishes the API and another that exposes it, what is the difference?
+There are different services, the APF, intended for publishing the APIs, and the AEF, intended so that the invoker can call it. The APF is what connects to the Capif Core Function to publish the service and when the service is up, you need the AEF service so that invokers can connect to it.
+
+
+### Before publishing an API, do you have to be registered in CAPIF?
+Yes, before publishing an API you must register using the POST /register endpoint.
+
+
+### Where is the registration done?
+Registration is done in a REST API outside of the CAPIF specification taht we have implemented.
+
+
+### Is the username and password chosen by the user when registering or is it assigned when requesting registration to CAPIF public instance?
+When you make the request to the "/endpoint" of register, you will be returned a username and a password determined by CAPIF.
+
+
+### What is a CSR?
+A CSR is a Certificate Signing Request. It is a generated data block where the certificate is planned to be installed and contains key information such as public key, organization, and location, and is used to request a certificate from a certificate authority (CA). In CAPIF, 3 CSRs are necessary to register a provider, for AEF, APF and AMF.
+
+
+### When doing the register_provider where can I find the CSRs that are generated?
+When using the "register_provider" command, if you add the "debug" option, it shows you a json with the data used to register the provider. There we can find in the body a list of 3 elements corresponding to AEF, APF and AMF. IN each of them, the apiProbPubKey field corresponds to the CSR.
+
+
+### How to use the example client (CAPIF_INVOKER_GUI)?
+First you have to make a "./run.sh host:port" indicating the address of the public CAPIF. Once the Docker containers are up, you have to do a "./terminal_to_py_netapp.sh" and then a "python main.py". At this point we will find ourselves in a console with some predefined commands to use the Client. If we press tab twice it will bring up the list of available commands.
+
+
+### Where is the CAPIF public instance located?
+The CAPIF public instance can be found at the following URLs:
+- capif.mobilesandbox.cloud:37211 (HTTPS)
+- capif.mobilesandbox.cloud:37212 (HTTP)
+
+
+### Do you have to publish 3 APIs? one for each instance?
+No, you only have to publish a single API but each component is responsible for a specific service, whether publishing or exposing.
+
+
+### Once the API is published, is it always active? Or do you have to republish it every time you want to use it?
+It is better to unsubscribe the API every time you exit the application since otherwise it could be republished and it would be double.
+
+
+### Would the same username and password be valid for different invokers?
+Yes, a user can have multiple invokers at the same time, and as such, the username and password would be the same.
+
+
+### What is the notfication destination field in the register_invoker request?
+This is the callback URL used to notify events. CAPIF has an Event service to subscribe to that notifies actions such as a subscription to an API, a change in the state of an API...
+
+
+### Is the notification_destination a required field in the register_invoker
+No, it is not mandatory, but if you do not enter it you will not receive any CAPIF events. For example, the APF may delete the API, you will not be notified that the API is no longer available.
+
+
+### What is the purpose of the "discover_service" function in the invoker client?
+The discover_service returns a json with all the services that exist exposed in CAPIF at that moment.
+
+
+### What is the purpose of the "get_security_auth" function in the invoker client?
+Sirve para pedir el token o para refrescarlo en caso de que haya caducado. You have to use that token to call the API from the invoker.
+
+
+### What is the purpose of the "register_security_context" function in the invoker client?
+To consume the API it is necessary to have a Security Context registered with the data and the authentication method.
+
+
+### Is a user the same as an exposer?
+No, a user registers in CAPIF and once done can have the role of invoker, provider or both.
+
+
+### Where can I put my endpoint?
+You have to set your endpoint when doing the "publish_service" functionality:  
+    ```
+    publish_service capif_ops/config_files/service_api_description_hello.json
+    ```
+
+In the file "service_api_description_hello.json" you configure the service that is going to be exposed and by developing one to suit you, you expose your API.
+
+
+
+ [Return To Main]: ./README.md#faq-documentation
\ No newline at end of file
diff --git a/LICENSE b/LICENSE
new file mode 100644
index 0000000..7077d0e
--- /dev/null
+++ b/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright 2022 Telefónica Innovación Digital, Fogus Innovations & Services P.C. and ETSI.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/README.md b/README.md
index c150cd3..27dc1bd 100644
--- a/README.md
+++ b/README.md
@@ -1,92 +1,176 @@
-# capif
+# Common API Framework (CAPIF)
+
+- [Common API Framework (CAPIF)](#common-api-framework-capif)
+- [Repository structure](#repository-structure)
+- [CAPIF\_API\_Services](#capif_api_services)
+  - [How to run CAPIF services in this Repository](#how-to-run-capif-services-in-this-repository)
+    - [Run All CAPIF Services locally with Docker images](#run-all-capif-services-locally-with-docker-images)
+    - [Run All CAPIF Services locally with Docker images and deploy monitoring stack](#run-all-capif-services-locally-with-docker-images-and-deploy-monitoring-stack)
+    - [Run each service using Docker](#run-each-service-using-docker)
+    - [Run each service using Python](#run-each-service-using-python)
+- [How to test CAPIF APIs](#how-to-test-capif-apis)
+  - [Test Plan Documentation](#test-plan-documentation)
+  - [Robot Framework](#robot-framework)
+  - [Using Curl](#using-curl)
+  - [Using PostMan](#using-postman)
+- [Important urls:](#important-urls)
+  - [Mongo DB Dashboard](#mongo-db-dashboard)
+- [FAQ Documentation](#faq-documentation)
+- [CAPIF Release 1.0](#capif-release-10)
+
+
+# Repository structure
 
+```
+CAPIF_API_Services
+└───docs
+│    └───test_plan
+│    └───testing_with_postman
+└───services
+└───tests
+└───tools
+    └───robot
+    └───open_api_script
+```
+* **services**: Services developed following CAPIF API specifications. Also, other complementary services (e.g., NGINX and JWTauth services for the authentication of API consuming entities).
+* **tools**: Auxiliary tools. Robot Framework related code and OpenAPI scripts.
+* **test**: Tests developed using Robot Framework.
 
+* **docs**: Documents related to the code in the repository.
+  * images: images used in the repository
+  * test_plan: test plan descriptions for each API service referring to the test that are executed with the Robot Framework.
+  * testing_with_postman: auxiliary JSON file needed for the Postman-based examples.
 
-## Getting started
+# CAPIF_API_Services
+This repository has the python-flask Mockup servers created with openapi-generator related with CAPIF APIS defined here:
+[Open API Descriptions of 3GPP 5G APIs]
 
-To make it easy for you to get started with GitLab, here's a list of recommended next steps.
+## How to run CAPIF services in this Repository
+Capif services are developed under /service/ folder.
 
-Already a pro? Just edit this README.md and make it your own. Want to make it easy? [Use the template at the bottom](#editing-this-readme)!
+### Run All CAPIF Services locally with Docker images
+To run using docker and docker compose, version 2.10 or higher, you must ensure you have that tools installed at your machine. Also to simplify the process, we have 3 script to control docker images to deploy, check and cleanup.
 
-## Add your files
+To run all CAPIF APIs locally using docker and docker-compose you can execute:
+```
+cd services/
 
-- [ ] [Create](https://docs.gitlab.com/ee/user/project/repository/web_editor.html#create-a-file) or [upload](https://docs.gitlab.com/ee/user/project/repository/web_editor.html#upload-a-file) files
-- [ ] [Add files using the command line](https://docs.gitlab.com/ee/gitlab-basics/add-file.html#add-a-file-using-the-command-line) or push an existing Git repository with the following command:
+./run.sh
+```
+This will build and run all services using docker images, including mongodb and nginx locally and in background, and import ca.crt to nginx.
 
+Nginx deployed by default use **capifcore** hostname, but can add a parameter when run.sh is executed setting a different hostname, for example,
 ```
-cd existing_repo
-git remote add origin https://labs.etsi.org/rep/ocf/capif.git
-git branch -M main
-git push -uf origin main
+./run.sh openshift.evolved-5g.eu
 ```
 
-## Integrate with your tools
+If you want to check if all CAPIF services are running properly in local machine after execute run.sh, we can use:
+```
+./check_services_are_running.sh
+```
+This shell script will return 0 if all services are running properly.
 
-- [ ] [Set up project integrations](https://labs.etsi.org/rep/ocf/capif/-/settings/integrations)
+When we need to stop CAPIF services, we can use next bash script:
+```
+./clean_capif_docker_services.sh
+```
 
-## Collaborate with your team
+or also the next script:
+```
+./stop.sh
+```
 
-- [ ] [Invite team members and collaborators](https://docs.gitlab.com/ee/user/project/members/)
-- [ ] [Create a new merge request](https://docs.gitlab.com/ee/user/project/merge_requests/creating_merge_requests.html)
-- [ ] [Automatically close issues from merge requests](https://docs.gitlab.com/ee/user/project/issues/managing_issues.html#closing-issues-automatically)
-- [ ] [Enable merge request approvals](https://docs.gitlab.com/ee/user/project/merge_requests/approvals/)
-- [ ] [Automatically merge when pipeline succeeds](https://docs.gitlab.com/ee/user/project/merge_requests/merge_when_pipeline_succeeds.html)
+This shell script will remove and clean all CAPIF services started previously with run.sh
 
-## Test and Deploy
+### Run All CAPIF Services locally with Docker images and deploy monitoring stack
+It is now possible to deploy a monitoring stack for CAPIF with Grafana, Prometheus, FluentBit, Loki, Cadvisor, Tempo and Opentelemetry.
 
-Use the built-in continuous integration in GitLab.
+To deploy CAPIF together with the monitoring stack, it is only necessary to execute the following.
 
-- [ ] [Get started with GitLab CI/CD](https://docs.gitlab.com/ee/ci/quick_start/index.html)
-- [ ] [Analyze your code for known vulnerabilities with Static Application Security Testing(SAST)](https://docs.gitlab.com/ee/user/application_security/sast/)
-- [ ] [Deploy to Kubernetes, Amazon EC2, or Amazon ECS using Auto Deploy](https://docs.gitlab.com/ee/topics/autodevops/requirements.html)
-- [ ] [Use pull-based deployments for improved Kubernetes management](https://docs.gitlab.com/ee/user/clusters/agent/)
-- [ ] [Set up protected environments](https://docs.gitlab.com/ee/ci/environments/protected_environments.html)
+```
+./run.sh --m true
+```
 
-***
+After they have been built, the different panels can be consulted in Grafana at the url
 
-# Editing this README
+```
+http:<0.0.0.0>:3000
+```
 
-When you're ready to make this README your own, just edit this file and use the handy template below (or feel free to structure it however you want - this is just a starting point!). Thank you to [makeareadme.com](https://www.makeareadme.com/) for this template.
+By default, the monitoring option is set to false. Once up, all data sources and dashboards are automatically provisioned
 
-## Suggestions for a good README
-Every project is different, so consider which of these sections apply to yours. The sections used in the template are suggestions for most open source projects. Also keep in mind that while a README can be too long and detailed, too long is better than too short. If you think your README is too long, consider utilizing another form of documentation rather than cutting out information.
+### Run each service using Docker
 
-## Name
-Choose a self-explaining name for your project.
+Also you can run service by service using docker:
+```
+cd <Service>
+docker build -t capif_security .
+docker run -p 8080:8080 capif_security
+```
+
+### Run each service using Python
+
+Run using python
+```
+cd <Service>
+pip3 install -r requirements.txt
+python3 -m <service>
+```
+
+# How to test CAPIF APIs
+The above APIs can be tested either with "curl" command, POSTMAN tool or running developed tests with Robot Framework.
+## Test Plan Documentation
+
+Complete documentation of tests is here: [Test Plan Directory]
+## Robot Framework
 
-## Description
-Let people know what your project can do specifically. Provide context and add a link to any reference visitors might be unfamiliar with. A list of Features or a Background subsection can also be added here. If there are alternatives to your project, this is a good place to list differentiating factors.
+In order to ensure modifications over CAPIF services still accomplish the required functionality, Robot Framework test suite must be success.
 
-## Badges
-On some READMEs, you may see small images that convey metadata, such as whether or not all the tests are passing for the project. You can use Shields to add some to your README. Many services also have instructions for adding a badge.
+Test suite implemented accomplish requirements described under test plan at [Test Plan Directory] folder.
 
-## Visuals
-Depending on what you are making, it can be a good idea to include screenshots or even a video (you'll frequently see GIFs rather than actual videos). Tools like ttygif can help, but check out Asciinema for a more sophisticated method.
+Please go to [Testing with Robot Framework] Section
 
-## Installation
-Within a particular ecosystem, there may be a common way of installing things, such as using Yarn, NuGet, or Homebrew. However, consider the possibility that whoever is reading your README is a novice and would like more guidance. Listing specific steps helps remove ambiguity and gets people to using your project as quickly as possible. If it only runs in a specific context like a particular programming language version or operating system or has dependencies that have to be installed manually, also add a Requirements subsection.
+## Using Curl
 
-## Usage
-Use examples liberally, and show the expected output if you can. It's helpful to have inline the smallest example of usage that you can demonstrate, while providing links to more sophisticated examples if they are too long to reasonably include in the README.
+Please go to [Testing Using Curl] section.
 
-## Support
-Tell people where they can go to for help. It can be any combination of an issue tracker, a chat room, an email address, etc.
+## Using PostMan
+You can test the CAPIF flow using the Postman tool. To do this, we have created a collection with some examples of CAPIF requests with everything necessary to carry them out.
+
+For more information on how to test the APIs with POSTMAN, follow this [Document](docs/testing_with_postman/README.md).
+Also you have here the [POSTMAN Collection](docs/testing_with_postman/CAPIF.postman_collection.json)
+
+# Important urls:
+
+## Mongo DB Dashboard
+```
+http://0.0.0.0:8082/ (if accessed from localhost) 
+
+or
+
+http://<Mongo Express Host IP>:8082/ (if accessed from another host)
+```
+# FAQ Documentation
 
-## Roadmap
-If you have ideas for releases in the future, it is a good idea to list them in the README.
+Frequently asked questions can be found here: [FAQ Directory]
 
-## Contributing
-State if you are open to contributions and what your requirements are for accepting them.
+# CAPIF Release 1.0
 
-For people who want to make changes to your project, it's helpful to have some documentation on how to get started. Perhaps there is a script that they should run or some environment variables that they need to set. Make these steps explicit. These instructions could also be useful to your future self.
+The APIs included in release 1.0 are:
+- JWT Authentication APIs
+- CAPIF Invoker Management API
+- CAPIF Publish API
+- CAPIF Discover API
+- CAPIF Security API
+- CAPIF Events API
+- CAPIF Provider Management API
 
-You can also document commands to lint the code or run tests. These steps help to ensure high code quality and reduce the likelihood that the changes inadvertently break something. Having instructions for running tests is especially helpful if it requires external setup, such as starting a Selenium server for testing in a browser.
+Testing Suite of all services.
 
-## Authors and acknowledgment
-Show your appreciation to those who have contributed to the project.
 
-## License
-For open source projects, say how it is licensed.
 
-## Project status
-If you have run out of energy or time for your project, put a note at the top of the README saying that development has slowed down or stopped completely. Someone may choose to fork your project or volunteer to step in as a maintainer or owner, allowing your project to keep going. You can also make an explicit request for maintainers.
+[Open API Descriptions of 3GPP 5G APIs]: https://forge.3gpp.org/rep/all/5G_APIs  "Open API Descriptions of 3GPP 5G APIs"
+[Test Plan Directory]: ./docs/test_plan/README.md  "Test Plan Directory"
+[Testing Using Curl]: ./docs/testing_with_curl/README.md  "Testing Using Curl"
+[Testing with Robot Framework]: ./docs/testing_with_robot/README.md  "Testing with Robot Framework"
+[FAQ Directory]: ./FAQ.md "FAQ directory"
\ No newline at end of file
diff --git a/cicd/exclusions b/cicd/exclusions
new file mode 100644
index 0000000..84a40a8
--- /dev/null
+++ b/cicd/exclusions
@@ -0,0 +1,5 @@
+../helm/capif/README.md
+../helm/capif/values.yaml
+../services/docker-compose-capif.yml
+../docs/
+../monitoring/
\ No newline at end of file
diff --git a/cicd/ruff.toml b/cicd/ruff.toml
new file mode 100644
index 0000000..bff59ea
--- /dev/null
+++ b/cicd/ruff.toml
@@ -0,0 +1,3 @@
+line-length = 120
+target-version = "py39"
+select = ["E", "W"]
\ No newline at end of file
diff --git a/docs/images/flows/01 - Register del AEF.png b/docs/images/flows/01 - Register del AEF.png
new file mode 100644
index 0000000000000000000000000000000000000000..f1454c8bffe50c74247e2ddbd9e3ae4a4da77579
GIT binary patch
literal 71533
zcmbTe1yon-*Dm@q5Jd!0kZ$Re1_?nBrMtVOyThVOMLH!!y1N9VOS(a&ySvW(?fw78
z{q8;AIOC4P-W%8`YpwTvXFT(n&s>3WGUE5p2+$A+#JyK9MHLW;8(Q!m$?fa#6F=O~
z`|#zKfuy)7;tKgsN?m3I0zrm&B`U1sny@}?s)xNWg1XIaY*B8+9r;m*?AbCI(+9+L
zzW|g}jz|VqmVg3mvA83Jn}qbv*=VXCDXPfGl+&MIe|h`ko153kKgfx^WSKOX!A!G|
z5_u^?f9{j)Y?9=a#9k8{QKE=1k9`Mjk07zK^g=~`gE+txBS(Hsp}mRxg6)g^{EQau
z8hm*phmCw@#MgiSOho=R^8Y@h-ba49{qOJH4-!HCAKCx-i&#4c#0Uhx(l^=Uq|cv4
zL>arXhgTPS;v4n{B(1HjF~>Fv^_v6CcIP{^s~xLU;~7-*W2C5ASXfX|{ZWbXb7cij
z=6?o0OnVU;6cF&ea-q_0uDGORsV|un56`uL>-Fo`ir=KjQ~T4zkG5tT<|)ol)jCtf
zf*&!e$vMkEd-kJdt6sAz5`p;s@is!vVWQkhlfDBF-EVAc40T;))x6p79!}}&nOa_~
zjj^J+Yi;zSgR(->qRHN;D_)usIJQz!QYcoBn6+s0`r!|>&E>~2<?J^m%ItBS*2i|<
zs-Po&%Z@4DMsV6pRoc~g9LdPaUY+mtDJm$mhTunh{J2d<EECTa8u0G@dkfkh?vIFx
znd-*MEL6R{>tCeN4gX$<*2TDcmw~s<j3cV1eSEx%ixTCH_-)wH?{36Tojos4mI7&c
zcz7r%D4sld!p=U}(GeI>TwJV@t7dn&t}ZU#CX>i_kC^Yv($!1Rm6erQ&%K^V2G#TP
z^IR1R1%=NSwpPx_k8*{q#}x9|+*T8g+rJyn&pmy7u9lKKm}zO3^D1T}WMyemF$ItH
z7CIw|+Ag-6F^>qWyJMc9pr8zXlb$TI7_D+xqLxV*D>7^=w)phvQ;|`}=dNfL4-XIB
z2JgC|0W_6#1GqapB7J0MR~G{v-O5t3PZUO2^bl-{&-onbLVevkF$4lLz1~In`j6*g
zd_Su^PwZc_QB%K=;B<3yOQmgXYpbcQj*=3-I6JCPV@#zbdFtHV-(RHku9!5xj5Gr0
zrZC@Ui#FEot%j?aY~`HK?7U$)dOUSHvZC~n5^+_|8xzG0_J4l{QcK58F(jd>%-8#e
zH=OTEQV_5iwNF(!1k%#eXTQTN{2UC{Pn0is>&*m3(BGq3A6Zd2(Lpl~l^jlbdU{Gq
z!_)nhhRf5nYNs_%PfzEqnL6(a_ncuqgP#HG>+AX2HQswY+@wC|MVXnVRbHFpC8m3e
zJ-6QLj~5$Xoy}fROT~~ycQHNcisQ6^-w#*@%Lxq(<h7rFiPHQ^TRm@t{JEc0B43$$
ziAlzbqH)VK@$h=Pxfg9=#L<lEyB##iu5NDQ(K8iGL9g1vl07zgUz@HTZcN_2dsnjT
zWH~LoNiv4dX|?W=7g$FmJ~rZaz3nj`!h9xL*BhUh*lT4VV}9N!R_YM0bibda;oN>@
zfJ#+$l#tu{WlL&W+T3uCDkcg4^8EalgoNDDHJ7cKykYae<zHW)gF6{})Vm+hW8sIk
zf_?P%_uGNJu$y$-Iyx%RM-DVD{QmtLcHlvO81d6h&V-@iZ_@D;l$2eeK1;ocrhQ4n
z=4Bp->z@vFN%&p2C(0}az&4EL+dtv>uvOU13OX)-l*kAQ2^liuASWlkbLY-e=XE?b
zqn8~fum1TseD!*`Qycri1BIOc1R@d{Xv}9~*-d*Bc%MV;u%0Z>lT8*BbzB{yqp0>e
zJM@7K{~YSz;E*AvUE>@{--NcmIvhM#2^#<_hD|$ye}`3dnbg_Gm01(^Q(q5$J0e)v
zUl|k~%G0bU7B6KObU@*<o}#_|PKr7>D2O68H<ytjC@hRw8Cxcf<Mod>*A8Fd;zoNg
zeLf7oj^O8kC?~fEiynbf`_t@?i;bPDS&<KJAgZLLB_(>}7W(meNuLDQ$ciI)NVLvW
z#ZpR23f!wV=E)q~w=JAh$ou@b*tn}VNkH@PyaCN`vdB=pB~2|)h2pb}0AtR(q%Fd$
ztIH!Hiq4*%=`xFGuf=k!Nh#_Gk*|e)uZOdTAIkE}TVvudUPrjzhcKP8h;r)|1_6f|
z*dL{M*!gD77MREWYEFSf=AFySv#qyp-yYs|VtOR0qm$&=nsjk&i6SZ=5`g@8DJv`F
zxcqCapdsngCoE#(i_^6Nc67yJW0dA;7i=3F8;WYTJ(DWQoM{IWlf}!6Gv2Vta;x~d
zo1P~N(Gcap=?;bzWv97W5pO2m-<3wBl!xFw`CB%sLzx=*kcNcU{xJo`yQPyH)q*fW
zZe|7sN$eJQMmVIkV3zvjfsDJ&tYG((m3D?IDkE@SvPt~v*2$#a$A7?Uyx^EIF~f!5
z-#R%vd-zESqq?T%p}c`XDs51vY;wL{<=KmwJWXyteFFo7^hpMtYR46D=L(iQ=RTo}
z{fJ@nje(4=H`i{gs|LM1nkt&Dk~1jN2)^2^e{uuCkIYwc!4TV#@i@5U0S-=!U4rAo
zD4T|h5i<^Y?4V!2<W`b6^EArb7h_FD<%!sg0{YEDLPEaev(X*(`e>G0uKfD?{zaOd
zqa(lbdW^q+8+cIQOTIzt&M$OqvAKqAVLCcGM+BSoaoje7uG@M!!xLYhqY4Q%nDoSH
zSK2n#mre*sM(SpvF1(7+tgz;c?>USus6WkK-Ri7czlBJ-1zGov#^dNNZp*RXfB)J;
zl==SsJDuV;%dx_*;A;aYRE>>|HgyLhk}P$iq6{jzu5c;`?sXCwXqcGMBt(qUTh-~f
zI<ESwLs?c6rC4I}c`D*!V#NHea@81ykaMq&APxNeOA+1m)MZmj6#T4q)b^;%pe4xX
zaxWPJ0|Or)-|KXr&dFuXd_N&E@d6CxfqWMG^|SpI%IL0=l9HqKamCml2!#0^%F7cu
zdBhv{{k=XRLUcbkONPkKhcq(#YojbeLPET}<9&Sv_0Ml0Tp#}yd5AE(AH}F%Y&FS6
zVW6&Z|0ad|P7AI))^)@XKAg)hvi*%oZYtzQizOH8ty^J4y!Mb$4~Vf5KPYedha<5G
z0yhr%8S#IDAOF|5<^RtwQq)W2iOFM&^{c!iyZw&rWw1F-)0rNgUw~Sav3eB4TYbFO
zSP1?p0zI8<!glXpV*<s5HhJzJyXAaS<xUqFA4$r~@0@&DmmJ-@8{9phO6ygCS^8kO
zg*7C^G>(8*$R$G~Pa$U*l3SKirxDu<<@f0Ch!ks%?ph`8j~6NO9$&a;G!DpOznY7E
zZ83ON6M1$ZJDNXT^yOaK>ZeicPwlJe^@QWSi!0x_@zCAtbn;Z#(VOkGF2qm}W%<{Z
zGOFLMqlOMsHtdXKo15ISh7cP`)M#Gz2pikGRxqQMrQi}ry^?{u$2w>dy?L9TC8EPM
z$yEK3Q1mqtgM0ie!}pAY%t8uxM#{~N{OH%|O2;ji6pIOWqoXbCcsy3vusRm(GZg5e
zyE5jM4~TIQLs5Ro(W|$LNjdn&T-Tl{vp>hl7c3vQjLu&geHKzicTj#ZlBYR7KJM%5
ztCE95LxtQrv46L&Qg1GgP`MLbnE`DNts9d_XQPv$)CeNd;^HG59Q8bv70=;Q3^atf
zWLmqV(~WUV0$j^lr!<M!uV`Xl$!@E}=TTGSicy#Fval2s7XGs2nyX;@@w`BO{@+cw
z%QaIipV2K>mMT~6A@|&*OhcMF!mH=gqiZDAp%nkFR0~!bN^k6!EzqC-#}r@qJ^-u^
zLcQxhn)CkrXD>0hX87dbGQO#WMd$n2SE9%7Z@7+eM*VwUSdFckru519B;}^0lr-0W
zq}>_EM092=n7EGpYr)_B{0nIr)v+Nq@qN5Nq~vy*B7cGe<!`e8gS?g94(&L3R_4<v
zJOh_UBPwKdJDIDNeJ^M7ZyAqQFizU@HneMO4#c|zkDh<luxNzG>r2uUmFH0Zu;vnk
zk<i)R>+>tKp#DiIK9-fhXYVH)N#PszoU}&#9yD!6Y;)dE5Xy$L_Eub9e;G+OD0;Hd
zt(lnERauG3m)<dusi$J5J6m5!=yVAyl?xX8s#oH;9eHH7Au8%t(QBnqG0s#Nud&t3
znw$08nt^53#9PLAmh&o&s>;N;%g2=qld*1JOTqlG=dOmSZkXzj&KP3*z6D{*j!iZT
z@6yU<Z^Z1y&WpEc5^GI`N1ih0bz_VzZY~P$rJFBAg|?2%cw{q%_^_T(O$Mau(YMDv
zsjsQ<w`+Qu!!i|_LmXddxp7I2>KapOv$(vrDQDl?b;B#Qg5=n87z=gjS;qUKO0ts3
zOj-7;24xIcUw6hc{n2XOK@J%~Hs9(YKe{Kl3m;s&-g#afwr1AwhWdECcCXi2Tc=dy
z`Eu5Z7LY2J5KW%p8%oG+oWahA>m#G$t{UB=!0%ur$>MThadk;eKAh^X6G2you9)m^
zYw?6(Ja>^~<9f#E9|6*m9$jntb_MeU9v$-AT=Lif%l-%PGE_Q|bexRMSkH+HIM_8P
za>&p`OP!lXj`v1gV?PJzyQ&vSt8XRaA~@_Ru=2Esz1YZGdWK&Q{kmQ7ZIk_S*rt2E
z$38MFI!CP0q$JKN%0Re~4ZUjzP3D^(Fa9Umv0N_6q8{@{VsFX)@cb5B{q*spG<W87
z;xl*-OqiSb0#a$my5X<rm3*dUBkE%f$@-nIS8`vzaoXY}mMv<|Sc15%ORVuwT+&aU
z7oSFvm62wQ@m<T~pzB!AAG0yi_{tAoNg*&}ab^pi+MT9~D;8Y-2^Sdoy5Jz|Ye6($
zQa@&F_Q0|PThghebGW}vmd1jk`r04j)5BFZ_p!OPa;Cz#1lQQ&DP6BrvX?emMdlZQ
z$HCI^?qLLv{;d4r^7#Al&%<bXBJ>2Qj^czK^CI;ilz3m!PYbRp-+sHIG#94om8eT|
z<*1jcXJFt*8S=)yEM3i1Q`8?BCRAr!dLjC*$DkzcW{x`cO+RCG852%iw0DsKyX*yv
zGt7UDB_d^h<Cy#DTd73!7*NO?sf8^p5V7Ej$rr|DaELs9@Pv_N$tWo9!c85lT!+f<
zCMO*;SB7>23EuD762-j;RqNLwNkl9a6}%423vwd$y)C|TI6qk#yXfv+mgjQ3e%;g(
z{{&YoQl^WQvAHloDr@MwI)+fewUh}w3W@4C{OG2_(cS!Mtp>-&pJYC=D2lXdJzP=I
z^4`hi?xZel2?@2c5rddNFY*VtmCX}hVGmpC%=YG6zj&_Ueyh(xP-n9yT#G-#;E|Yo
zrhHB$LGVF!dr;KhDU8eAM}oIdWJhgGHU*q_Mzr@T^|iG__$Ub2bA42Fo-io-RQ`==
zYE03S_Ig@<!tK<@Kr2!0eq{DnS|=->mE(gcBg4qn%E;HMh6;=Q-s3f1iLx~Dj`=&=
zxA|OlG^7l|F2lN5c2KJ;_%1F>|6qC5*o@;iP;(|m=e)!YTyBcgw2RI|yBG1XHq)kn
znZIpCN$S%u<7c&<@N9=yqXvCT=GM4Vozo{R3GzMHy>O(yX7K3#(JPEY<L#Pmds=zQ
z$+@_Idy!<nWY*-AF#=aDMUzYpyM-%0Uba@@8g;N^KkZGn(;Z2n^C!hgj&DtyQRS^#
zs|lxikOSY%@6WG?(4$0qKVAA^qnhMhn^=-|1M6ZfBa^M<u3GHsbjBISE!j|wk%F}N
z@EUUNg5O776&T4?dA}+HD5Qx9DCRyy5+1s&-N*htIG^c-JGeJwUsiw1C2CmZE!FK2
z=DdCM=Jj!({d3>>3hGmF{+WwkH1UirCu|wzMw0S{f$zwIxcqqh{^0ph`CaVAKNOR{
zkMb5zzWTABKHj;?tv9GYckDA-10%A6tYQa<N;()z)NA*nT-y8z_kD;n_^=;dwR)^^
z_FilBmbp8F_kH-g#GwP*rj)$(tuBV9nsP_B)e#$^SVgt%WYy{q&f8@bZdPCLo_K1E
zme*ro&{M3=lu=@h-~6+IV)6c-w{DMjquDV770JcM)KIw3=D489T*~_RlV@2<_xopV
zJc%CIi`2ly_T3Hu$7yO@*4v(6SdE~=Zy@2FtPo!_O<sO<)=wQdB4$o`DbG6=hr&Ug
znlN=fIo{%qiSN+x_w9m_eVK5E1LwsFBTqy}I=1D=-|H^gJK{EiuN}`V6b0-l>{?A5
zK9t@*x80r7@NXc-4GR^B@;J+G?Wi$bdPXDO<1@O|&D?Doa4GOjv4ELry{EN-7VX^+
zJ0h%u<&oF`OD_G1bDN8})rPpe)P8wG8@J=JSZ<*J6E!ilrOZ-{?84rj^lsbZpC>sk
zyT;jZ{O>d@#J&y_P4tEblwaBNESUV!6!r3OG88<XQHo)@Sd5Chuox<NzqMGD5Q682
zw+N@-Fu7aPWB&P3ILYPDLG_b?OC7(3u%EhD3ra~^8v&H<h;1@hS5tyk*j&=`?5BWU
z?Mh2>UP?8S`l$~2%uD-@BYy+gs_IIaWd3T?3g>Cf4MFT=p1tXcGJ@fb<Dd89eTLT#
zuJE`D18ahZ6)ZV%9Vh}H-~ZI3H8mkiIMK*W!)-I;uZt7&ebR8lUtm)8tDH>YQBU+%
z{p!k}!(<mh-eh~#EIWOCcb`tZ_i2k=898A|FFBSu*=O+v>lC{-^Du%RKfr3U6WSW{
zxNz<btud(*=~KDz6o2D?znPV>tpi&k^vU6RXuW_&h1K+wQVf-%d3xucjPKVjnoEYw
zoifXN9QJmvE@l*7d|NP<FxXVYM&pvSyCja)IywH4FZ$*9jEaFyO~!<-Gfu!NMY!O^
zer1)it&iYdb!<f2{_<3|M_0_K&StigTvCXv)=@*^t+c@|$|TFbi<TviG`mr_a$eCp
z<t|d>WTkkqXX<Ec%+Jr))!4cTfBKc7*j{K#dUfP~mB_Q0^-Wr9CTUMtM4?(@D}Mk_
z(A6S9cx!uMKv~?NkB67gRLY&VR5G4~{LGn{PdxRRC{dr)tk-gD;yXf@9-@K<n<7oB
zGG%P@`EssC>EK{#56q;GE49ozGIw{6)<<T9E;amGmtWgF`n^T?`)agCs)gD?pR3t^
zz)k3y_slhKAEvs5IQ=s0E-|b#D5tAMDctq9=VbSL_jb(x&JF)GC}Tc1iPu;f$*+pY
zteH#fuIYVYH8gmk9@W>=Ly1`tmUmI&uv^QY0K3^Hb@_5*;PXNYb7DTXos0hErOk`S
z{lnjpyh1|W)1y6&<cN;NgPI656dJ`(9R@gov`lHg-IG-4%&T3jSLRlt>}Upu$61Z!
zbmg&&9qa|-xn9o>XrAis?p9{eL=-3RYvvqC4~4yWRCDK=gr2(K(}sY6gwR{@E&EFy
z&O^mwa$Q1`tfCtt*XNj%ac@p~Jw0y=5SGPgKR7tp-Epi?%OmyNdEdI+(t%ArQ(NKh
z(3&WPOLOrt^Ynqdj7+|%;?bx$ruoEAUT&5vU!NW&g7+LUo=2Pb(o+fQDk|Bg^4MDF
z5)_@Cy(bHL{Au=AOeYohJU-tIvU)^_)jzzS`vtvK-eetzV10V%KxR=JH_f_zFq|Dd
zJ|cc;e5mfZ#T8Rc*vq=m#PiJ+2I|D%28lIB)fK#QYL|#%75QVeyW&y$jE}lf!!zw_
zMJB5FQe2kObge65;>KkUwRU^54R=(H=mom$(7SLnjL=ZihP7ykDRs&Xrgzx0YPH1B
zn|FeUO5&mkw=~ypAe3^AgUMEW$!@3VCcE%TZY^7*n`P5bn9|H`FC{aLt7W=aj!%UL
z{Qdjz)t_{Sdt?+@q6`OwiR6pxE$G7cJ-zrJhFMASCwuZ={{1Fkn)~j(R8}PY%P__E
zVRxOc){AQ|MVWhLp8NBw7eCCCp{Z-{W?#`dKd|nZH-F7du0Z-jSM&jneOSQm?q0@S
z%=8mo=98^Y5z$}Ft#VAHX=-<;VsMk{-PyOy6r!{;3@d|HGgX-4Bw20>yXtonHq7d2
zU%cnhA^Dv}MS*LYsW1OtqTFWUXJ~*-l0@Ohrj{02!~MT*C|FMzRr%Oi*JFb#tls@z
zn{zvl-s;tU$?MH`vUKCs^_*jNruGGMU#%>Q#kCiry)v!(eFECWsC6=Zc0T8f-E@ol
z*1`m7xGbu}$8QHG=+Qh%ooFcXR0cCuG0(caz1%O)(l{5JEMr&0b6u#I_RjCgEUmV7
zd_l+R>L5n9)G^84xBE8J-QcR4Ia2kY831UP5?jWDwy<lzud#~mFZ_+nd{E$7rdO?z
zN5GM?guB*v|C3bfgZ`Ndf7807jNWn8eEToEPS)OyB^P}6<-LWmXcX;hMQTTNQ2nZ6
ztrB-udi(oItw?^AYOgJBXmI;j%Z>e3ongY}7!dv=<UNA+E@3IaZ1!!;QG-^_K($2l
zuO|t)?M7?EbplvLxgpV6=I5&-Z~WiumECk-4O}*`r!TPm?dq$<J5{L|6PM<s7f(&v
zgT5<tDJ5za&E<VICwnLCQ4~WRW<h!%u9pY>pWRg1%QO|bWc;D4_r?tmKG6o*CsC!=
zp@!8Tjhjc#BrYusoPX-`6Ff5NJAWq<rfOUJE<)x517=qj+g)s%UfrkGu4c9$WhYhM
zT4|yP;*NVQe<--RT;`Q$HcT&C^eWZbSSD9A!}BALV&J-KURU#_o=2v4k6z~6_fY%q
zD)yl&Jry>8UYFcqsolMm!_kgS@W5&>Gjw;~c5PzjYAO`{%<evb`znq6A$v9)tS9J{
zx4F)+@MXTqy(UuT<Hml6kb7@E#l#mu-+kdY?Qhd?e$F0Fqg_{Ww4WCubpwm@E?VU$
zc|Db!Qgh6x=qFqyBASjgZBnArQ`))Tt~=N<2c|mO%Z}3o7Bk|yJUQE*Tr0D8$U!uB
z-)T-jKTRU8<-Ty2!4{=>a5JYz!Ez3#f(>YP+V(A(w^9X8(K{ILdPGzrw5-q8NbfS|
z-Jli5MrkxJj=TE`Tj|S@<1C5j{@!LYeI7fDs-zWO)Eo|meMYYd=j2TairA2cH*;vw
z1`@S4hutPZb1Q@0w!EuWrn8#;#Rc3h6;4@b6p4xAXX?8i%9lL53gI7kiid;tp7wTX
z-u4TVCs=MAc2FNYQhZy*vlU)55Rj_I$IV)+MdHKjF;u!$W-lq})4Wc1Wy?n3UT#5u
z(S!|ERM7<Ew@H`X^djpiPC_L<)H2lO!Vo=`@1n8A-yaF~5140+x##+Rnj5Pe45aCs
zmFZ!hDLwrb?-iCTO_>@XIF06DtuBq?<7vQELdTs)HfM0Tv3F9@hdU$9+*xN;61T(S
zg7_{#R4{~BXTXA8FkTuS@U7v|f*~#6`6Nob^tR=M(M-2pE>#KZQ>Gtc=f^#Qvc4yY
zGPSfp2L9ztH5GOxQ+2<Zrm@#&KLm)%A5Yd_lMh*a$a)sZJkz_r(Y>CQng30@L0UA`
zjMA^8yOWYaNH(+fsVe_|)bq9nxm@v?{%0Yol<IqlO$m-drfW@f7s;DAZ*Ja}V~%h6
zk{n4ruf0N`cjoCX^j^nd#eOwPw~vp<z5NTpYs1nww7t!A?5V0>yl=vn2LmApy;@u_
zU-VwmgX$*3A+$>Fe6HM3bU&Fc%`1@+WqhS*C)$cD9@0td)e)mby<&{l^lZ!F$`Fml
zan;M$UtOa0G<75#D*lq`no<<s85j>eED~)r_b!h<dOGKU!ZB>Tpc(d)D)ZYkw5{%M
z8ZBVSrzDFDA3C{6|9KmuIH2Y*<N3B^hN-)LbBV(9++>!<!#y5t>&h$&Rh7X5t;UxJ
ztN*gOffp~%JVb{+FPIiBlX>AD$+L^Ieb=R6v*4^}<|mC)+>&)Jzl4NXO4TyvcF>#u
zqC?xwj<Kr?+rCPn!c)<pi>$zz{Ow(nFwd19<E{~6S0|$_tUdwWzg0AODhz#lqNQ6u
z`XyCuHU;dfZOm#~Nc(8V!+T5&@meqY{Pfl33;mqYZf|g86@FJ^j@aRMSvyP=@b_`C
z-RJY>Ds!kYxpK2u@8-T~@LjuMwBg)jaK1>sPhfbdD)Uq=k1J^@U|DW`Md;nUQOKM3
zj}bm6W|yVm_^sYNPdGPPE!Z3EZ84NqrkTXt2D*<-WnGi;4*N7G6JOOH?|n7O^T_ca
zd3sqQ<TuA7lkdoyKNdx_zBTjBw-0wumyqjnPBS*D;Ht*3X_>}faL{I%{bD`#&)S%4
zl;PQ-S;={qi^QQRXFUEX!%M#fsET8Qn@R3scraEXS2E|8)DUUsa%Dr;yD6ABd8;Sx
zaAHyss$`8LlC$BUyob7OCSxB1^q*6#8xr$)HkmVj;WOe*s_J9H%_&$67D1(&ZPk?(
zrFoEV5u(FZ6{nBq_opxOky<WSqRhjIyyn=hmLvCsFM1_~wIY0VFTM@g6E&wW-+V(r
zaq)XTl0b*KQ;9Efne!}XnnBRk!H&(7$LpBzuCrD{;?epX)BB5fdhFtPhS5Wkph>6W
zcQY+lX*lBcduXIv<0`Ftb~}Nao4uFyGrVqM2~u>5JTEgV+m%l*0CWWzCO+q{jjw)$
zgG(AFaB<=?spj>jwc~6lX0q2W##=xmYq;}nw1P6<=(3mU;MV!kNqd{dtrO(kzLeg0
za;M>^4hiQMa*D`S-r3x&aml;a2sopRQH0xBXlv~`z4{s>`k%_~XxP-16iEFcL*rUm
z*Nid_Y&T-lm24=R8-2LuOik-3y0)?RUs?d^!1gab6^<_G%}53$s$AE1LO%bmTU8wP
zs!KzlI$Kvq%lL7}x+-;D1+TkJ=YggWKW=}K*vD`Ya>@G7<wA?=NrtKwBz5v~Mk~{0
zz9CD0WoWqU91iymdV718jL>xQqpFqp@D@~t>nqpHTk7*SZg}!f2L(xshb3#(9^TKY
zt01nKTP2#Uk$j_(!IS)jLe+fq%6?~Ynl$ZJ>0ONd&#e<K^Fy1IuQ0--)9qj850sdQ
z^~?k=7KG1l(eSD~W@mS3>BBW(R-q3I$pOrkb+9Rcnx>RAnft9NK~t=%LM=@7`#r9l
zD%zu{mM<&<Ixo=tqH~7bU8*EZ>D!BA(3A*h%F<9-RFzrf=ulLBb_S=+M)S2_z6>ZR
zDCjqXh9oV+H4+u&PDxQCPF&+}iLja>cohGMShQla;z6bsH?~NbJO^Xmsw&z{+O4o*
zrDvjS8824!=5baJuVHZKYX?0&(e&0)$uZHfs6Y87oJYXw`AvFI>#H+kXN@5zE`3=q
zeP~IK0exqU6@7QPI#e5S<{|WXIZ|0zmQjDtyHlqoA1PjAQO$D9x6c?cU}o&?V#Qqy
zNd3{FB!T)~Dx*X_Bi>=hJTYFxFn8XU8rlGrN=|ci9s)&V4AR(QQFFXH<f<#!7%zM$
z$fi?&n$t6OSE<K1G#fB~NfK@A8b&Ki>+d-J`{PlR!Ak4frdfBR7(-J9S)KN%B%Zb%
z`?4ABKYB)LGOKw!LhtcpGMu7v_PKJhc!UPEVwlDl8ChU|(aH>$qL?eJ(=VMVxLD4d
zbI1yYC6}IlSJwYjpf>#0{m6tXxI@V{I)ZMPk2`8k+IPI=Bo-Fc%*vLblHs8Iofto=
z0(%K(!8itO^D`|yQHVt7L#$Y|lAyh<2}UvWt`22B--#cE301VJg|Q3f;*ld|yU`@7
zbnHVTVpd_BJ@|h5ZdC$_uShEt48O?Sz!4M9bHNpRE1{Hu-c_8Sl}#Yl-&)LX-GhSQ
z42Yl$Az{J~i%8P!w9QqRd#q?K)<{2nDk0Hm?)7k`+?0{VP_5UT-nCe@WOD=c{wK14
zflpb|LR(!=auSIX=FRJ*vL1>Nc6F%9v@#GG(I@Jae58GeJ6J>{`x7$N2Cb@jf>`4V
zs1xk{7Ut>e;0_bHsk8!fYQS2PjScZ}zjoAeM<?sAI<`QU4h+Ckad&3z+C5AQs};$6
z;+}nAJ-~Da)}xlRU=+r;xiZsuw95XJ;pyQ%XI^k}>oT2H!@x)<!w><DO<7va{;~av
zGpj^sgkH&5vKAv+Q-uCoZH*%e_x_|usoYz=^iefjcB;tzRb0`+^D}hAZ!WA=NE@gL
z<RZLq`>uhO<ira3w{iIuMG+B;K=1Q>XGd1opm(AAcrW7Uf(A;2(oGpg2T&@@BCU<k
z{Mq*K!lJJ>o=6vaY+lbjuC_zGS=Gl=`8ITJh0ztsN7QJ`*wqoR&Mwy2nat<YJe;y`
z%ieB$K5S7@z8R)nLn*&S@K|vr{fdgpgEn#P@@FwW!<EN~ae%4v{?UiFA|fnr%p2$T
zSXBG#!ifOscYH~ZQaATjdFwPkDTHf0OUv9z{b$PqO}*7JGRM&xEi&n9@A1b5cZL!i
z2gbG?w6k=*lApTmw*6gkmCMF#%nK8FOiwYr8t6vGI7IVYmW(9)^d-wp@uG~~=oP15
z_DGbcd(402qYd3A#73kTpwlQ?3q|2ybnz-SYR3=%+(E0F=r4M0;rsqtALT8xUwHXH
zvT>B`RW{{UJ$e1~l^EN0?N=&=BcGa7S+%iURxEkS>-agI<Vt;Y-d)KZ;_1MSd*RL?
zfK)9VHQKZJItH{YQU+abE@W&gsjdCA==DbYRczW9&S943UHh{4U$Z2Z=%=ke>bphF
zW!(71DX2C54AfAzKImO`jQ$Tb5kF-3SWfi${@fFCKz1j8>ocOo3JtrEArMYz|8#mh
zO<ZpW|09+9p6#CpogR$2CAR<S^+0Ed9@`hax$vG)e*gs=<&U&9yZ>~j(4eiP5DDEW
z0bhEt_p>Fm*n9kac0^spj7j)t+qcbbx@B3Doe3Mh53OKUqGDJ2bEc<0(){aJgV2n<
z_*c311^c8WyC%;6vETKpPkSYuOUU*^SxZ7h>Yv?GjXaIK@&X?(RA>@@|9>^MhLMe}
zk8?a_8aU&<-y(4MZ4)^A5+a(uU9CeKZhk&}a7Bq8r*Dt3i-P?+|4#zfe_MBW`g3_!
z!|mwGuBmt0?99t12Bn3*9}KhOMidyU?FQwV1nZS)pa_$tD#+s0`c#^fj9W%^E!ewp
zCJQyQhR~|vX+AOS_+{&6tz$hiGqbt5dF#D!p31-dyVgAgPJUPVoLkU|TqkI1)ucKo
z&QKk`Vd9sK;|oe8J=T~W6AJsm>CW!%-mWh8SSghpWo)sPvz+san54v{q$KP8?QPrr
z@1A%M&cry7UCshIyiyGt8X6iGmm?4oy<~v4r)@bWbou_d*~@=!=E}qIA+$nb)m5?}
zo1g>Pm5h|g&?%sysM5+GT>~`=NOgKlN_tFkT8}bSa!`bCqoZ4n<f<<;fBd557B)9;
zU!{=;0+Czq8}(S19r-d8I_!wN8E)`Tne($KH@{CWHh*^b-v9aYG1r{*u!{Zc>`(t}
zzCK>8)HjtJ^{B}D_S960l5xh3l`<cz$g4|eCWFW;Ia&AR%a;qyg{X!;jm3<8d-hdY
z846jT$<fGDqThLr|65*e&Mk|8<Z-0(jbc)MqJQ?xsWwAZIn)TbX9}To$|=zHhi#f@
z)2wU0;<law<&Pt5#=$|}0HLIxsOW%t#Cft2TdboH$+_Gu*X3b2Xg^e0<KZ{ZPS*bC
zk#)-Vv)zCE^T?OyXzEc5JTj*fBu1zOaNR5=SUPB}4(h0$rwScKOE83dxV`-{YrIzJ
z9_Q!I>}$}xt#O})h1Vmm0^Rbm)L()mZFc)VW@8<@h+vDA=t<L)KffJ*DTMg7JfsA-
zC-~3pRRyeTl?U#_FG5TEyNtZrMq_7v-TdA$D896&mma3Gy&>rTQIR69FWJ`74ql3Q
z^RJZg|3>Ec^*YF<(3{gUGKL$~KsrGLx}G{}QmpVrjT?w(H{PZe?i6X{4H!D}ggH1l
z5es>Hg6gl-4CGm$#gM0u%+JpU4G|~?qZh9ZCv8B@G`!*nKLo|x<?PjE+m}qmOqnC%
zy2{EJ{g~t9V}%0JU!ba>q@>*9R96P=6ngW|*48NP{ohYWpE~D?hm*j`U0z=5dY@!)
z>^1q`{rdH*L<Soxt1Spea7w?-FD{nb%+?Q~&U_ptfDLiS++R2RE-o3xxB}Y849RFv
zHAR88Prum@pWVb0glMp+_30WHclXotlf4?3EfQQ@RV}Tl0^NqUH&8D@=g1YmkqKJK
zEuSmGhYu+a*g@Fz@#Fp1sF5$yvZ9@;KsKkKppY!+)tQ)k3tI2WIVvDk8j*YB)6v^Y
z!ejgU3!S3#`j{Pv_CVu<a`UFBs3<x<+t10#vr%22X%HQPq9)?=XGcEm@u(Z97>`r`
z{{5So<WA4cJ*vk#=3(7#aSwqAzgcv-K3QP{0*150jhr?-0?ObP5mAu-1#^HZP{U9E
z!Gi}pVVc#BS#|0%GGP%BgP_Aw&C|$G$$=WxOCCJu!l^)~4%V--`3wLiW$MA&XodB(
zM$Yi%n(kHcxaGBL*A_0x>rNKqMN1u520*|H;uerN))yAaVYh&gkMs3_Xj;GH#snuQ
z8nMM*Cy%!T<8Itw0+rD3A8(CmG7um#8>{y^yLRJNK&tDXCSUj-q#d9JqLPeyxdE%J
zcHYRAqXngCJeL)p%}g!m^~U^Zah`P?gP3Wsm^g~K)aVB)CduPeSghppqvd|X!}W1H
zJ3G-YpFdOdprfH_6zU0AF^S1T6z}8T>jtf?;OTN2DD}9;%KSQ?)8BB#=10@y!yx5$
z=kMz>Du%PoQOX9{;JBb}=3poRr+HTtQ*Uptn3xz9Ch_XQY3C8rG8+y?G?RTUPe61D
zi*P;O)~A@Lu+e?-q7|g3>jiD0gyN#QJ{JeDtGFyWwHBlKzISn7h>Npml$wFE5)2a*
zN4EC%Y*<B%U3NsxtcT=ah|C)z3@-LfAMQN&LwB1C<?c4w17RB$35oaSR8^nQl_!Xn
z#KVZ5#P?jB9_$?*&4K|Y@H(g++V~6@-=M|6TJBHla#l0{rEsmntY0LpzdM1q1oTlU
zDZjy5|NQv_9`YiszpYK&-6m5e5v)Ve8nmF`DN@vDAaj%S>b+-`cMb7d{(W;>Xbf%8
z&d!d*Vz(QJy+F>lxwgg-(ILTg8+NtStRF;Vsi~=;FB<?Q+f1E@&|Wt?D8sVPX=|J}
zc8`u|QkR#PLF~kTG9Mv258tn^GZI@z>EPnxKI{isOI=-EAT1S@@pQElEUmVr#6e9B
zubCBOfl+)AH#|GK=wSUx0v>{J)b=!iW=EUTOd6$Rso*kIRaF;ASt$kBifOW!b59&6
z9UYxXi5sYO2dY_g>uZg+K@iP?^9DN;+o6gWgobJJDH+#6_B&JS=5Td+;d8o@3CT<<
zmW_&^AKX@G)V%Can3$Lt6nvdlye^wlAiG{4D@s$sA4U8V8#u=l$JFlOvA&tB1oOFd
z^CqKC?XgZzI>Srv^PM(OwjHbtf&xtdBAGfE-2&?8u7!cSrlv~?2?;@jlNO0wRuk#p
zzP)(y;#+$9hYug%)?yRt$|H^MQDG~*yu7*+A5(bLMaIP7k&<p*X2OnvvhL^4pK!OR
zY`+b9jFc%1$$J_S!orQ|uOgzrk3b=7W3v@5c>0phS*y6cL?iFW+zlyO^~YF2rchqP
z){x3d9!OPw4I>D|Htmn3rdD%^wh#uT<2XKrp`4wZWTdC7F-Cp%Z9;md(+htLVm`-Z
zRycN)yN|j-uM3*EBYL{cjQMM`XT@ra1fk#H@?c0p=iAN5V~68~6RF#7x|^Ya6r;{l
zRb)_07Hi~zy@CF&un*!oT&*ZN&p7fP8R(7wVr)d)M_a&|!7)O(r%r`K_Vf2|*z0`?
zhTqZERZ`K>)5A#+x=^lFWFRIi{C3E)B?t#pmXoEg6`OU}#0NJfE3~z>*Pfyw-c-LA
z@C}VDD6p}$ExcI&(cTU?AQh=toFRMq)B_CS{jGZv5)z*ewO?JoaRWv8{>`uMbG!T?
z?-<hW7|kF8>o@L-dPjEi=1t^s!8YEbV$Oj6bUX?tSx!wM_z@GxQY~2V);+2m`4THC
zjvxqc;#iF%BwDqs{c#GsLA2iy4!UvREy}E?PkR%e4wMmyI>N?*nMY3!fcpDbmYJCu
zG7l~7_df*(X&sZ39{bDv1A&DQtFL4GV&2i!odq3k9Z0N8OnUfifByibb+yY@{@@CP
z;Brt$f~Xz5YxQ_%j*!bThRaGrN$HEo*Y7jW`1{U|k3Fw0jv(wsv*?yL$Vf;~q(T^K
zZEa-+N8S0`5<w%I1ZqZ)t-9!#7*}|%^z?L)sbclRSb%F%^yMfu4b5z|69Wf_(rWFH
z5nZ!Crl~p?J^kvBw>LnF8qaAlat0FfDTlsSM+@VSj5TfQsI>PiRJq=K-f;mhvGg}?
zW5Tx;75xeByV#rP0m^4c-d1CU`ac7(tR~Cv-MQnoQ8pSzBESc>Ff=p-HX1cqJau3m
zV{wl<Vg)XbdFM`GK)~@v#q8=+BE%aF|J3b2J0RTk1{Ea4{q@;~E09{wWGQBXS{5&~
z^%JGI;Nh4d2(cmRwdEAlBX<o_wqX0SWUs^V)=<Lcrlv4bA)Q@Ltd^fY_qS$s=_PJq
z5aB&~R1VK(JzaeOf=Wh4OGve%k8i(o^dX`^4nu$exLt-1;z>wHrK;q(Y)lxJjDwsT
z@+k7i3JX~wYr}@Tq*8@w0zZ`;sad$C7tTvg{`EiG02u??*tJe;Dx{>zFdyK(-H6Ik
ze@xNL3P;!8-3<WZ=oHdvzV_PMnx=J^{b-JUJ|}d+O&FM&XFz)E>gozHwA^}{{sJE+
zMZUziciWvEZ3)@_eg-)?UDN4VT2xfj;=+OxBv)D4zRm^<5M@)o2*KktSE`B_zE4DS
z-urZmALcHGH@|KQ#92&lM+yY0r1kUg^7bS?b%8^nlI;-tuk3e-EmB9v$jI-wEC+C-
zDk75G=ki>@;}98!7rSFYrB1@C_e@$`BbcP8%sPE{Zx0@WPrvCVD3L*3d{vJ-cLTw}
ze9(|t2y-Sl32d05V%FB1fP?tlcIT@b%=HgehX=$+Am+IJ4WvnrujSu|E9FZ%EcNE;
zWoa?viWPxY9qu^q2AWKvsWVK-L1T()S7KlL%@SDkMZ8)de7zA75dq&O+4RAIScdI;
z;FB!E&0PV*2BR+62!xMfhJdfrBOJuDjjSuJ#nsiIhx6A`zE-Kqe;-_#w?84YseR&o
z?z-~g>%isv>QD?s%HpsO)T_T}r`A>t5pVo&favf|5G#6`O3sZNH<o(hkLDv}RaV@>
z5r|Oa{K=bLJ0hBhj;7{j__I+k#8V7ZM2a&~7fb6e@)hri!B0R2#P{#Z%@!dLLnz2P
zdf}zCw3Cxl-WDwav5Jvob{!#yq4WW<{ayIqxuJh&iV**f4asTim{A0!LY*{j33Y+{
zr|4)^HMN-d`1sgZbyIyX1s;&j`2FDto8t*?p}75yHYk<$FS8%wm+P>$yjjWkEp)s>
zm|fr_#6qMT(nfXy=s4V(6#{H%$t9UV-c|hl?zNOp*@LOJFu{>ZJ2DOv1!YJ~J(wxW
zLQDH=?Er92OG}GMi8^z18W7AcvNwC_06RHxJwiOQa&UA^fH(rq>I1F-6E#y)Q}5ng
zhoXyEB7bWcfymC?3=)a&Q86{Vh8TML@#Dvyc<!tHL0KdQ@__tZ<06lH{n?yyrhoXF
zB_qUcECK=ubR+HUpt|pakTkwD$HRu;;B#_6uuBX@LCBekJbzvRl4!GEWRU6t0&bsq
z4uKfD5;>XWDmQT11lTtyKn|`-sq6x~_~SVv2ZtkgAabQUNQtN%`??c(Gb<JrR(JBe
zJujT2*)g)V8H)Mrq;F*OxNncBt%wnj4e}y4{Gs?si32cO0l=ns4-(GaAAeFn<nmd-
ztx8mBF$>%;*rdFP_|A_!-r*+}BQWe>J#Dc9_}_Y_HfwYZ)aDv_P_R4U6C$2*rqEi_
zVvq_>m6-McP7(x{3>P>Y!`1bapT$yEY5BxGbC4}?EJcE$udk284bh>yr-zA=5%zpw
zBiHUGK7ydQ+9UOjQnwk$gHKQ!6NKJ+|Fyn3>s=6KLDm61GqVXEwV>dou!t2I!IsNC
z<<HU4Gy=bWnwR}e(n9>&{tCAbd66bXJ!oF`B2Av2fFL-C(x!Gz*<(AFp8_T*#x2X$
z7+qJ15gcf=XoP4UUSxGpFzew_KYgmHL4bq9Y21lT5hvhL?(grflCuFB&C-$)3smR=
zm&bEJD9q04@+}E4F@@^KNXK(IE&uuxNR#xD8iL#8H)+B|8E)rwHR1bEi~}^%*3ud>
zcY>G+BPgama}~4R5CAPW2%?#_-64xWodnZcE;DZ8LFwzZ85A_BApH;0kCBXKj;z_=
zUFZVTtC*!EC@2UcSUK}?ejh&Emxrt2`<=ji355EY3`tyH5v=?73*8S^%~6Hm*iur+
zO2(x`0k5F>QgCs>d>f2}z=!~Sq&Wa3uy#=;=U=N{l*U32U1>oz9p6K(`~f*Zf^~nb
z6C&lRePt`;^}tlKA~j2{Nr*Lpv@o)v!C}<?k$cwD0jA}kIzR?z$ZPLV?y3~%Sh2-|
zYk&#4oa`<DN?UfUhJ>nH;~W~mFCYN0w83JO`869E*>7Z0g$$=eKkRpp5WsGCEIT*}
zAt|Yl-Ct3_$-?*3qhKbezrWw6cE?X4%W}MU!DZI#2rQBf-2n<Fdw&L;D%v2ZG&tMr
zU>E6Ybkx<=0guSb%fnO+<n*-^;rH}a-+;6rONFdwY-BW5?=?9-esVCXD+F^4pQ$7v
zH15o`<=~!!djhBuI{tk_9vgC}j?aaYJa$I@MCt1i7=OTFP+2}WJ=t4YT3m#>%YF9c
zxGXw}peS;xhFQCMzx@*>6#t-9KU}?!AV`Co^}v+UY`xb3@k=HV`LSn_n)G!5@nG|*
zuF8;r1wwwAY#5YS=f^t=ckDN(cwc|xh)qafl*S<9v4vXaumVO1=itJkjt8sCSqlqY
z(PHx8A5^I@5GUCa@?s9sXcuw5#9EnA#{(Ei0tV={!u<~t`B|j}n?qTOskF>GwPT~B
zqdGEm$A5zXIOIBSgBt?da`zGA_U<lB=9Tyus21o%Y5>T4`uK7BlyJ^b=#R8F0RSK>
zV5Sd_E{*o4>ur8CF><I9sbSO)N)0#_7_#K`JZ8nBqNYa9>0QzB@$peoJ~z)DHkYg)
z^%h6}2l^8U-=Fb5vyzpSh4Di9v=><N`ubmoo>51<vN2U3@iyfY7Z)!X*J`wl{POW5
z*>tURT<vH}jPYn``dwV+($|B2##hH{R<rdN5X!TO&tWeB8Ne*l5G2~y90X^yhnEne
zBI4pSHd8QnLxH~Gpsl2meouXQ!JiIL{_*3-fYUJ{_+B8BS)PV*nMQMSvuduIzD=4E
z{odXl!?I#_a}?A}uvow~fRh?vI%~>3!>EP2j@hL$JO5K%K0Rl{ywNykXiyOSc%_l0
zft$<ecZF><-**A)OPo;#MQR)b(pB$A+PPsg_SbzqS^XOsqib2Bu@u^O$Zw0l&}puE
z2{IG8ZvTcEPN*LLu8)@h*H>>LkvXXR?FzV@?d@$K0$4$=AwrdweQ1j;>VkuVBUJpM
zv!6R3_YY(rHm6F3al7MVSC28kyTZc4!x-LBLBjXI=y<>oVo7mvXZ;S0WrF81y8I$I
ze*t^4iW}5)D;oedAdr(jpUV=k&L@VgmebXd0RUIeW<0jw7?b$j*y!l8z%2h~0IVB(
z`CLQ<Y_rg9ZxNOOSV@U3TLJ@WZHlC&h=_<TW&*(G9Y*djbL4ZjQ2~#D{5$s2Zb?Tw
zJ0~!AHuv{0pUY-Ka<b6tfpp-KVBTlGjnoGTaSq-!z$w9CuMh;*mBGxK%1WtZ!RZ-q
zC}E0<il7Y9sCC_$?}z{fK;8MjFD%G-9N<2QfV<=I_8*8wQ1DQs78Vvlk>s*Ak_QAA
z<QAyJm2!r`c!0VA8-@)KaNl3{N-idITZmKz;J^yAoUbCN>vlUCB15u2H{W?jru|Xg
z`BP5L8h~|3ZR0RthMa){+mF;zq&S6`3)~05Y3IxH6TtWYvSA4Eb>lk}nDW~i$dEjE
zm&|4?0S^wqv~lko$qjj)>_WvSv0-RnaC)@G66pmL){uFbF=}3;4NP^Uct2UVT*|)}
z8ygGjaN;6*R+f>G0kg1hCOw0LCH01HTOlFX&9%Y+F7xBZqSY?n6taFAZXyT@AS96T
z*rtFlL*aQqENRu4^iO92*^+>dN~(L$)PdgS>4R1T2^91H{Pe%zmwvMya5#SY3W|!b
zMH;a+o5KZgE}pP5oHoyb4A{Vd_aTziTivY(CrBsbLnh0#{+FU)#AX}>=zgadnF{n_
zRYL>7L?LTpr~tl@$esgN1Rk#HZDM%t3BN~xh3$LKx8LkbhtWTruLO!*v#MQpMpSim
zHOyA7jGHD)10NR>;%IO0emHK*AXM_iTM&K`0BDn6lg`>pmVto*JU{hvOLeGsB{B&3
z9L?nAKeZUFjF)7ByJ+NDL$ClME&T`r+GKO{^PFMlwGk#RuJZK+U=+tOt1t+;)=969
z{r68ZqIKM%DhpVKsuE_+<!P~j)PwLyO+okO|4HU#sSt`B*G8l>6p$0%aInUP)c;A%
z9!wj9nSJbi{1Ab%ht0)930my57EGfyfP_St--l-wVUEuH_U%DGkgs64bUo+5Gl3!1
zyYBpjLuJyc{20*G)P$r^Vq#)+>fB*+TM4@b$PWl`dD=CHP~1U1E+Zqu{FH`+gYOB$
zv;Wcp?1QgB;noBs1kg2f)Am%%%=y5qfw_Qz!+LmuMTI2L7J^U7Nu7G<AvF-G^P$``
zF!a1SSy2!k-Ur<Atos_1@cquvSY!3Dx%4)!FB<MpyuzSk&M*N9i6B4-xIWUbcG<fw
zkVlx(8sM}5HNF$CmLXJ!oD|jW2iY9FFyagN<!k^-RT#_@HQ$B;>?SJe-FJGr8qU2i
z77P857K6aRKsYE<J-y!@5j4;e;SG~~^-8_gwFtWR`=ti**t(uOEl}A?Tmzsj6IW$9
z&W4GJ2>@Ff9@Pc7D`gEz;rlYlf=odMP=f^p2eY%WSx;5UpTsJkpCeZBv0xm>y5lpI
zKPIV+q$C3)BV*O8>(A0kAPDd}ECMH7P=6y!45+M>qIFVTIp9^n<WYoOAzBFt2wYrT
zz!8dxLKgqu@?2!%V3mU@1s^OFR!<4z_Y@ScJ6J$gL9=Ua4v9yA;u>o+|2JEuk80$p
zxWh>PI1pG8s@_VN&8)zUk*9+9+7T_m*!bqA&PnVr2`+3Z{S7hwIXz?==>eRFocRVG
z0LJbT_?#p(kYoW6X7KqE+zF~gtvYw7abEkXTBuxTU<Mz80WcM)7(|so!&O#R!s$^w
z5R>Qo%|ORV2i4M&#o`G!AT@?b<pop7P|vKM$&c~;hxq}H69NVdDeK|A;L8aQxG8-5
z_U#zRgfQ9*)N(Ccve+Sj7OD!sw4(*OHo!x<x*h|zfu#+miDOcrVPJ%XhgZ1Z0c69*
zR-#8h+5hvW=vjI|<_`!q{91C@TxLKghJ=P{BU4{XFz_)%4<6V94Gsm;)>skjrieK^
zSn<(}2g{Qu$S4o9-#`>IJoOKN3JA$odS9GkeNxCmzjtrC*f>}T8|FXRgoJzs(qF+S
zxO%ZsN4U_X+TrFefPSj^TCqHKe*uC55pCMAUG)W=X@@^KAwesc6!{8{A>f?uX~3Ht
zfb7Viuz}|&sNL-ZMi(OW6Ua=eI&Na-5B~?E#CYlcC#9=#$quN*G8D#vE}<AOFM}Nk
z2E!i88UzFkPy%pxw8AG>clUf~13(5ExMu)JRK@xSOoZa*4h^8f86e6&WR+aa{u}9O
zap~!pn0mUp)?hv!g7g9LU4#;TGwWPyC{XABUEN~bH-hq})c~Fwj(Zu#_JJ$$YE#fG
z%>3v58~<rqVQn7uKXY?;|10+txmx^ny8rebk2k4>e|P}7HM3@AA(K6mNBob~x*T_}
zk+-)9@enXgdsj^VxjqL$V7neGUg(SWjdGM*^ktBy*o^0wmPVJ|hn|hWW#x`+zrI5L
zJ!7_5cuxXBs6x;F?=5<l6)5id!Bsp6%QUnpcT`^;s62wdZjO0~&4qoq+kW}?|5M6H
zN=h2ynZRj-d-Sh3g2Cb3{JLIKf4a)xrw`Ct$vRnd2&lSzs@l`l9Kbv#C9wg}z`;fn
zv$V|R7=gigXptz>4+HZH^ZNf=IFI5>_&?QeK0pYIK6a`Ecm#lvf9L1Jg<H4afe&tb
zK#r@@N{Wk<5QP+Aq|Wv9X$@c$@IZKz!EYo}&!kDsc?N)r-Q&<QXZUo&q5ya;79e@&
zYXSoPiKwVFUse@inEAm?7^Ib`D`GrrL?wm5h%{-yV;+!yT4CB9T)4E9gW~kx>>wi=
zK`pIOY5V8Horl1^K`=ui2S^YA+Bj@x&R2(X09L>&3AhMCkz?92GEtrN@WK;7vHaxZ
ze|&LuZr`~Bj!lk?`XPke`9L&fT+dnSgC-xM6P*7INB}7Qx+MjS6zH<tZh|(>7YQmX
zu@^6N8oUz&;QbaGTU)ZCP<TOj2{`pR+~iLQwAdm%j{QJ&?fL^OZWZ~vQ|%~?kFc?P
zANh7!DP!a04WBA?)oli;<h_xzIv5$bXP4!QVpqY86Rq(`3?(PvL19WILYaX%pj~G1
z!jNRCCjy<E>~YF$pKeEoy7yA|eV^XXchElDh~2((5BagM9`Oq8;{1F}7Cr&_TL$b1
z^dPrgYoY0r#AEmFVjr@$ii*mIk8mU#(=`>aMrbYodZY|*bFjCsw*AutUI)-tfSsKk
zULO;b3e}SM?ZEKxt%<TVFq+%s<>lp26G0p}haxWKH!%^>mm4==i}IR<<D4bvBLS7L
z;ggep@G_#0ki-%Jazdxpwf|ibyfkJ1%mUa<GKk9`Dr;)|eSHD`;o;*KagH0hLbis=
z`sCyUzOnoo94zVW?F}^m5XX-nbU=t07#zGq4&?v%`1rKWQ+N%)>(_LHqK_Yxk?FzB
ze<6r6UuT-dsd(u`N<WOxfz$;REt>D?>FI}$#l>vB)Ig}gN;#yvFgt5EW*Zum=%)b#
z*xT;{8A(b?s;jHJwXs2ri`zDWefy?HRU43~h#`MU-wh=wN1;H7ITN}~ZgtvT15adP
zYz)uZlPq)vrEMn;8#_BRfi^ZaV30r7;n#<cxw*N5UZ+3-fbBzO0xSa+>na3j=q&T{
z@_zgFZM{*%&~UE&E(zR41Lbp*vpH0)oSd9cAXeEgbOHekQT3}yGc<OHi4y_rw9>!K
z7;xl;_d3LaD<L5@v|e0R27IeZJ`}+zLfZ#S9Wp~-;!|!YNmEk|pj8JYd_ZXEbc4?o
z)KcIS$RHmd?*YszP;gLdLJhy?S_`FHX=y1O6g+DI^b4e;k>@#qCqr7H2x%JFhh#`?
z@PeTaB7dNZG-OE|(Lq2!phTn&fFu8W5*!TPts@n~`u2V?P~@0GFs(M<(S1P$?1Dy}
zdzl=qR+W85LxT`G@*PC*N{$9YLqp)Jpf_^}j;*Am^ugaBS^MylusnWj1S!(p-5u~=
zl8_IW0D}DI^t1p!e{IVeJQX5NxNODkl^eXigcIK5GiJL@4UHN`CMLkKND7Sj?lXT;
z`JoVe_JqVlst19gp`mJwk8a;&s>jAdlrqB>Gcj4Ue<TMH%tTm5-tYY<$cvKw8|$?c
zZzllyu}vif;Zfo{N+9b%+K~QFmiUNWP73el!4|{8!KtdL>5Jo({G$jRnB`@&yqhCh
z*)*xAgU(b?%<Jl20VgwoA=<UOy9;gt98+)Y#xqU0N*u~7eGl?S!FR~P1PqGChK5R|
z+dfNVV2c6AV(YD;tt~CD1Ra71PTs7f|HasQfc4n_@BeQ*At9L|BNal0hM7%KDN<RX
zohYS<jEXX&jEXd*iL^um$w-R^LT051cPSF}e_Xjg-_QIV$NzoY$9>;Y@2>ZCy<X38
zp6By?9k_jwVI#lejbF9Xyu7^ds}LH$u%pw>7FpZaXgbwwu(mc{vErWJm0R^qZjO%i
zg@uJaKH?PvxVo4jG4bc}^73M0VxC!}WssVCR>LW}?|xm~<;x>pBw$_xc!ZZ!zHL99
z&ym!p3$Hy2PnSHH&E_5MyI`!eO6%ujnZ=7A(qmJ~rkLrRtnuEw>pJxW{q_~7?%lf=
z5506)ASGCaLY!Yr=MZ!G@|u+^T`^Q@>XM75f;TJA*trA7h=z<3P_}j3Jl?&*=x~E}
z(N;6Fw-nl4WvLqlEXBS=arWj*X$}QM@iNvLX`-?q`0@jpzI0Aq=Zin@));KmI2Y{)
zprWq)1_y}<V^}_FU|so7B{5I<{?oU?188Xv%o$DrTp3vo7B~IZ*V!SumUedOmXAV@
zAMfoGx(mA>%Cw$Cr>7xrp%mJ<aig~2nZO42)LOTB^JYUs|2e~DJtzuwrIM^m6eHwh
z-;;iax_#Y~k&$us>?$oS?7^%uEDDC8aAF_Rc|Y8sT;Xl|;+k)$yt#NzaBr=_g9pE;
z5bRw5%+{T29_zn|r%B<hHoM}GkK-)ACpznNq$b~E4@__Vq|)^58;O{>Iv7HLqV>H^
z87@|-sZ{2GeHogV%g|#<nSV>k{H@avVINyX<|UaPaZTrc_~(Ipnc{5u*r`YFz58?~
zG_tiRxb+$AoYjVI?L{}A?=JPDe6)19b|f+)!YiVhC&QA;$;p95?cAjcpW@52gnN%4
zE0cvIBJP%!3Pc_iJ4Bw!<jH7jppkaNCs<q8a7EyiXYu4h9)N{W=T4ngk!Z;)_~SqW
zcu02Zc92#Kc3_6vk7JS!G?Ec79z0Nh%v4g!zjJ4#hDJb>>Znl{5);3H?rZ1O)j6oB
zBv2cZN2dX|E?xSCyRGd=@TAhhP;9om6e^dQ>xQf9*q0@G7gQ0EO<V(VpXKsPo}`x+
z7JmKoOobf)gL^W<3a*Ved#su_K+(b=r`zq+P2x7gGiC9l`u6SHCDYW~CyPr;oIby3
zLTEv6#Ui;B6SH2tt1M<!W0qCX6%c;>{rz)P^y42He)|RDiam>px_T3(BQ2r;<#_~6
zbv^F*$au1c)@a4;Es%_2vXCf-<rz1<C6%GjaYo~}9Y20NCub3Av)c2b^A(7A=zsWk
zqRfIpTKZ3y*uA_i$U2gel5$O`|507=f!V$ZPI46c&>Uvj;+TUqx!aqqUw>n3wZ5TY
zcAEc#4chJfPMx~vCqL2?w>FC$u(?sayE=CKOd(u12@t_{{rW7qc5Ec^u3gs!^ploW
z_9O^^N8|;_?eHG-u%O^*M74)U#}OmK_(&$k#yr5|yUt1}dgKi7uiLx%QsC`?`w#Q;
zBjkNnxdlWN1gRInT$PoT!O486u0A_$$H|k6#WyN5%2@iUr7?wcrC4Bz-IwC>nR5#$
zzNsjGR?TQlg(RnQd!#xpSSmS3Qhdzi>s8dIBS(#j>M!<QR-vQI!?bP-WiKh%UUYD9
zFkQ8ZBwf)B;U9_ghSSHpX>pN}U%!7Btl-F83cd?Sihl{lUfZ`Xx}d*e#fm*MZyKy0
zno{=E-y(P6Y^?)mlE^+cSB{=B;}sTfan*0%9zT8hep+c!(fZY=&zwnj`75;3iI-rc
zJk)};$rC5a3dP8$7pW>^$9`fBQz9Jp%o$LU=2|Z$?cw<H^phZ)I@SpbJ!gCi8xuJI
z7s+d<o0|mgU+>;!x!u_i?{Vzr&6{N3F$MQuyfDpvVfam3tm*B+@yjony1u*H!#PR4
zUtIQV`O9fO=f;g2cc!(ho#>`X*M;jev#aWzwo0We*|{@4C1snb>0p!Ll44-BBmEb#
zp3VjZ{rdg=)xCT7id6F|7v}MqM+fhD5M~viqvZce*>7=iF$$t7Q>J)oAqLSBb5viy
zKEz>ONv6BIXQwx&Q~G{aD^eYo`9t~4Cs1Ibu(r9}i3gzJ6k~VXu5WxO4TZ)gR9R@q
z&#za}kGO83bs#m>RadtVXEu7=kiuj`FWnDwoW80Kap)lWx;*Q!T&-VHlGCP5O3f#m
zzCXQnOLp|=dt|cbHi!q5&*bLkZ-T?1O~PytDtE)*<<p=^3mjX<73AikgDigZC`8`p
zK~JN`#zyKn<uiv|1O5F=Ncqc8Ta0M@{E|PBW+%ZYQ+!O3{>MI6oHs>91xCHs^I8h8
zHEAwesAK>Ic(K_4xxRhdTDfe{ph0Y!#t9|~k)O}RBZC09Ogit_uwS<bEYix{y!7n?
zQr_7t-`mcL^78V~`IH>A`kGwrqD46bVtA0Dcs5B%C9b{Ie$UL!Z|`*7x$}2fnKA#S
zWxhuIL?4B<mdun*rYIN?;0ciM>s$LM!hld?`r7~qkt|?V0&%UvukFZ@BS}dOtRt7H
zLw2Z*qt1a;g8w-K{y`39BlBrpCsp<C(?<n<5N|<EP0f69{V2a_&veA%Q&NJd`&ir)
zz)vVa;V4e07Z}SHBLx~WzwdwnQCEfqeVhz+ez$#cLPD6lB3t0rtv!+s7|-!zh0mUy
ziF^I|^Dh1f>=B*X-s2cGBVb4#dM^q{+YpUuKvPMzUb;rEjj{1p2~7ScPeM>c59lru
zZJmmowAYjX)hGP4t(~2Ywl)|8{dE7nediW!UA?;eK(7(t47}JGq>gReQ?NttIm095
z94#UZ6lH+97mQS%G9`G1`*g=;bGK}nSd?)4upE&|JC9aQxi9F%;{=PPvu9^fZcdnF
z6_9`b{$@wVqLLCKBr?X)zkgQtOnwdu=2-q0B|_)qKAm#5O_tQc(n@8+eaVR1z+?(O
zG%;H1Lloy{rw+^c7$KR~o`e8d91uakf>1=6pwwE8YG-@nrw4-%Zu~O+WU#N6tWJ^O
zR*BqY^qR*T3Ubq@*By9qST0W4qkZN1Scd{q4~SWaqwe9?^ZM*gd3a-USl78WH5wr-
z+JG}>tZdbE=Pz97ec{5!EnDI#X_D7l?e&^Xi}4-ovzxg1)904u$5;SJ?^r3%71OO;
z4tRNWrUoanCR_coAK(*eo_qQYf;Zm<wzjr+%;IMbv;4~`MReYYy#z~!%;~Sj#!~08
zcAcI`wcp%-%BG-@kT<kvCKpm@5LmJ?YU^I+?-$gO<i$+5tK<)ZspGp+*52GxP$iJ+
z@SsD63<2!lo>fjF+Pime*|(;lc2n+<2UxK;@D}9uFaIL^T+g8Cokf;A)pmCOdh%BF
zdZ89}8U1&qJkqmv-uCSpbM@$h5R;=n(!clslwRKF`p#zOZW^|?HU~V~B=m(YH)IuT
z$DcOosI8-uZ5Gc*G1>OCCM)Tra~p2*yvLuCn20)exUbRJP5wI;82;Bc+^U?Jd+<N1
zw;)Le;tY11GpWM!^Oa;}XN9=_OGVhPURTXiqN^;}=7yzH#<)kn$Rd#AxRy2br<S6B
z&Bu=x8#YYXLk=z}FJCP$MIE%l&~TFUYS5vhL#E9c?z?~g{CV>_SILX37)r1OM5?pa
z7c9B8{&T>csmJ0_7>9)HaTN>n^qjkOEAM>q;lqb{xw+=~L9TGlPoEl1o0bl#k+3u-
zCMqgEDG46zI{S=V38q(6RMb}^+-f^$hTHU3aN3-#Esg)Hin%=0uIl}JDNw?G{VdGP
zddtY<4Jc;|(yal)vL@r9tx4tidQ#@mgD20NKj-UdO<{fVpI<IcnzyIw>CCTcwfBQK
zqDhm~qLMg#=n&ZX{2@nq=dB>Hh$()Pt=B~pxh{j9p@bOW@wBW=Kno{M+){XcmbeV%
zA}<Gtd(W~Emz7>xrMdoY_aR5O!9BwgU9rQCaT8s!SSneIjsburb}%qPx&`iH70f;w
zWbXPcCJVfh6Xw=XvZ79<!c?%$wX{*&`Qj2mqEe{rPn_s;^n2#>huPVqX3PkVJBf(p
z?Ae#KNr3rimnPeszq=ibX3Ms1J*hFhy(cOwn|)01MV~~n*y7bsQWA;EH19cA*WTJo
zCMel*RizWZBkty{(?|A1ST$M5%BRI$zWlwh@yNl0>lb%yKP%zqibwl0GN#Lh$HpE?
zz~tvF_Kg-U&_bscT>vuyix8Y2-@SXMK0hil(sDVylBiI6bNH3@S5i_6^7BtV*pU1D
zPrH95SVK(>XO7bW0av@c;TZ>(xUZi^i!^1-m@$fq*3d!)!82BDq7142@ZtV|bJ}v0
zIVKryu2j{LdSOe>O>L^&A|TC!X6ZkjNLfN-Oea|dsSKBgT;Npey8qp=FG@Y}51>G+
z;;7mV7h*45X={COD}vK&Xdw>v8*l#c3uO+ncR4w8cu$sMMfdT_%AgJYG#a#E<K*Qx
zJ3B8|St5MKsUtmQ_AMBx0UZJ`i)M$SKOMr3{kHpe@y(mBS@FbrxF13aW#PBFI{nXc
z<W5ZdUa#nW=UEnr4IL03uIIzT5&#AG(N$?KzEJ{ji1_rt!scJUf2(KJ*VWO!*U`7J
zH0tUCz#IdFd$7AwFGxYl#O3F=DA3-!Ui&5!t<0>fR+^gHLWb8GiORsH{wrV}%lsxS
z(m07$5I_TaSeG3;Y&1_M|9dC@^@M7nskF58H36`EUAyl;+I#_L7R}NZ6aLe2p{(#9
z$&nxdb{_ZM>0P$closuduu@XE^JKUvZ5hQ3ucyVj&)*Oq+VSl(F@RDnMn3T9(XEuB
zqOD>9&3{=>4_<m~VEdbzVcc~(;9-)(#&_H;F)M5#HTfG>H=N8+;8E@=DiFl^lw|1A
zXRlu;5+z=OP~h**laFCvU;pJoN@gpPVLv|#+ix^>@`MS6B_$h|47bt5A=^;(l+@KV
zejbv9ac=u0uBD`;f%gLu8`!M_*<?Wf{vcD8F^59sL9HnJd>4$AKFGV-T3X&8=~*Vx
zM|8gHz-juHmX-^|9zA*Tg)ZI6seu)AZu(A;hcUhjRHZwMW`2y0iD6~0&&Xl0UP4;D
zBc*YN*|TSJuL|`nRTa1gRe!m(-*fZn(`y+SEwtQV5H+Q7fj}~MZ?pAR(SmQt%z66i
zJecXDorepm-o2P8N^}ocEPlp*;gF*jdH)j+ECbAyZkaE+YB{#MXm=@yj)#_Pv*F$M
z?zytFJ1c96K1lM3duz%2yaffB9voq%b%4-JwFM<Gb6DX9!1*|YVn^#^x~C2kZ5=yM
zM||a{*6_a^TSbMB-o$hll}lV}6u>^wu|FQ&$F+n%3|sKWxcl#XxAzYSB=-OQ%kzeQ
zetx=AhWh%CufJS$;W0RgSjWBS4oYiN!;G$OSZHY(nH=^fffi;!_0YbA=*mkUgg-+D
zVDiGy$!XGDJ<8!415gvq=0h2TfS*6NS0?d!Qd66tmU9Pq8z^3o$6GlpdsehWbB|{G
zQt`;s%FS4kYK3e@&q<f>b|PMFlKM0E-yhddUQ@-c+1X%taK2t#-+r0nXuX&ZvDEb0
z)?WB1<4n@GHvsA3uMAp<-0U1HWxPqUwn`g)gfv*r!xVITnq=QWg8~_9A-V6F`TFBW
zy0hh;%L&SCTWXw5VUcCm-8U*mq_NM@t|Kl=0%4{DwQdLr4EjWQ_h+wCslTWROBpt#
zM>G0)>LLM$s-0QhBe4;EF~SG_Z8@>CX!n$FUTZd@7^BigymZ#>4ef{?&cI^mXRd(t
z1qTn+DFQ7f`mn?REGADr8BtAzj%o(zIz*Sz0WL(lDDmuBndTm?Sv_aSr|2`nqoZ{n
z&5~6BJ^u&~fmr@@@zt*8I9+)`&|eWa^&gmp+<j#9;9cHxLeb%dlItU?!AD7NFOiGC
zeEFNYF6h=6ZQbdgAj+aXBY?U2^5rUOk@9kop>t4bb#D}6XOjQuH7{Sh_yhn44T@)V
z%;~GQ=QBz%+#}7c>1upDFxOJCXDRl<T8Yt9_S9tmVoD*ukw7`BB2|9uh<ZUVTv}QR
zWT<_$8T=;?3`JR4|LjgLp*bHkXo>5=E40sIvZNP_a^%w6Nj2l1k2*aBHE_+BF9o}3
z^iIMOE*&O$NJcaH>eb_p8bMhKr&OQZIF=|ZaF-GGKMbWAJ(3cSiH?@aIpf|QEESJy
zP}Wt;maVt38PvD06ZIi9(||#PF7jbYOO;k$9SN9?UY=|NEaD3;aoqR#aeZUspKr6f
zRV)|p5Vb`7V@(Z(9~9{LS94^K#wR2QtPSKYP%>2vx|p@*<|hLJw!_*{f{q?Ja&za)
z6J|ACL2DWl+8Pir(8lH?e2nR}&FlCQ3r>7th}#OPjmau1fz;AaM}Wx<-@YlW$r!t4
zWwu|%jOfV7(=eGdynUB1-6be3dueU|{y9!Eu0|&Vrk2g!c1FPY?GtH5@~i6ILFs57
zd1wj+bJq<xlhWJ!J*^x`vX59tA_?Z&KS1H+eR2v4>>YyF^~+34ON)Oawbw6L!b1P)
z)m3||-<()F{n@oGBbxiY`HyN%U8drV-{KFIJNg}$7Sf3Q`yQD&`0Bs@@FCJP|5u;W
zAUSD*J@t(nn$6X41ccCMDFQmV`AvJ-_k>MDLqm^alx35i`GjaFgj<yr71cA?mg45E
zHDsBQ(S5(>=4QB*IHUO66tZ$B;v3YnbWfjmdm7!mbislTRAY8_<CcL`gdLO0*_MP6
zH63!JWhwg}arFB!F{hR5eTgyDL38zn`+fk|6OS1^L)s!yXH)x<6Bn!k3aV7zIpnw9
z8u;cAtLtfLL6XM<0&?8Q9OyDf&rqtGo^?0OOs!(r%Akeo9y)goh_JD?7D$P+Cz`(T
zA#&#fCJ?+GHF8*ai8on!uLFb#)JNR&@XnFFy-)Z1cXB66TTU1?qq?T>01nd@i;9i)
zv(JAP-Km$p)P=XpkRDWeo;mZ3#MHihd*aq;-v!*)W9QCY(&+BIx8{3rU?8iHEETil
z{U2UwYI$qRdW@Qn2M1qXGTS+asWK+$Flw)X9&y{b^MbyWW0+m3oUY}iN>izmzAFd&
zF1YjVuODvHmp%OhfXRIy;N-Qe*T{>~UwX42;Dy-0>lQzC5e9aAeAF(6O$~DBy7}=V
zXL86FRe~nVucWy6!^e*?k<0&&V>(G{5Y$h1@5;%^?fUj;KA%y4$rUw|Nn-@8pXJ4x
zk6d<UVR)P3>EEFsM=xT_qu2#cTS&jp!owFrYFQ+T+p8;RKVun}m!FfQgt$tiVuLLh
z*}Eak?k_prBMF@xeJ|fk+vE^zRl50br<p~Gzn=3cAS*3DWxTt79U<a~{A&50Q_zuC
z9KS2qqLk&!1F{nr6LSG(0YezJ#>mJhQaA4(kdNQAYi72#@GKzbwN+K~_58Hu)?3$n
z_&^#Y4jRRnd!`UU!3|N=HU$0;KCH$=c4)FSge3YKMaBEuHrm?<pFNwWw1h7)?`ZJ-
z)l)yZb|<H#+r4t+vUb($+_b)B>NhF1Anna&Ze1I<S82!kwyIW|CAN@K^85Fy!SXOe
zj~@B{S!-8*Pu=zF+JlAZnwv@DGXrU^rID5+)#e3i7Z4CY1xAxX_p>yk3=ohTv2X8Q
z*3vLZu_ZxjA(t<Y_g#R3p8_oU;>CWnV8tL<@yW@|UG#%D1+@IjMLh1L(yAP16BCo>
zx{AeG3j_h$DjCPu7cokH`t%1d4Pji9aT9_c18|`&hv4I&1O(+?O-&7*_|h4_{Zw2k
zHw;}o-L|AlFC<6_a26z&rXN3qM8$fmZ*1HY8$)UFr!}xZW=rk;0)7uX%)j}4kn)L<
zWVi97M_191()q?lM$$1^*^Zsu=lDJKZB07oGf>!*4koGhD+zdE@ig21*=B&HPvz;t
ztmw3Lw>_BD5{7L5<Ph<0-CBQs98Xehx=qCioeKA9SDw}cNX7y)Ja?pSbIvH+{XDNe
za@t00*k9wGeo-2?y5NVBX+l?#efshy#pl<ZY-s<0=tu>E&W$Q~;;9lk+5{&!GC<vR
z6q}ZogeXUb7P%X&{{H>@V_v=u2EyYQ5ZYtaog9AvT><fkbaqV2@uAz0kbIiag$g7$
zuCIsWkfWoe4+;Zjlrf6)V>a7&9Q2-W3O=*z|DdQoeNMoVkyY|v`;Wfwm2RFlu<!38
z)pYmPT_z^aL9LbsPOb%TT?1>W<xw~0n6K}f%F2kC7#ka#8;(^=JOdOXa(B%Uo2aV#
zixVU+txk_l8~Dj6W_jG(L(3cFbkk2K0vf66j47BK;(yzuDH$@4>(lwH^671i%HToa
zX&^Jt%gP208briqh&MlYM&`yFci`N?u(F&Vx{<HP_x1*%1w~(6q*}GrZ~wdQyJv~L
zsc&k(XDwRI%+{70b&VU-yDjWCxAj$@)&M^iFwHUemuKtycA~Arekc|x?by+b_L^+J
z{P~`lV^Hh{PFUA|$B!%F;ddTCzIyH2)7!U0`_5lC{$RL#&dr<Wd6dMI)*ts~_>Dj1
z*01I979AR&trMur$%^UdDA0TlnX&6rRn^7X1Lyq>moFE{Sw?~e4)Tqtrg>bIxoamw
zsE7kve}8eW=-D@Ogiue<?Bd8mLY&6RS&cRW`TqJ%n|7yo@7XhJ<Hiew{L1~8A|tQ4
zx3&<15tqipw>j-{tcu%HbdO}|(WL0Od9&`$#bZT@vyqo6PA@4c3bTS7a|Otx6YAW#
zv;DTmdv9Q6Z+wfg^TN+H{X`!&pAIf=;yJpv{@&(2=W*;S^O^&~<s|L}fMsmZh9N-9
zbLKJ%#YP5Yb&UnYg$~^FEgi<r++Sp*Z;3?a;zeN|3sqQUs9~j6ue^B|t^TwGEvI~a
z_1KF<iP5yTl_Qd04Q%_H*Q=hq|00#qt*wu^dE;O~73pXDjvX8oz~{8m9Bil6)>VFy
zr|Fv7eA=_ErzjU7G~*`kPmNuds<xx^-6o~1<@)DWiT<>o|G#?>&Jz091|=X7fFEve
z&&;)(HcdzWO(!X-1@NWdgCcM2vMN+%+&>nm@nNa+6>ZlYS;sLSK*Em2k$P;M)hU}+
zQNhBA0YA&FsRF5@5Z?miP4$r2cl6Cce^Q;O_6cnO-VA;E^r_G8w`Rg9kO6uN;{<aZ
z0|TjLb-)q3ckd?lFbr2aSNv;)5R66V^@Q<qUHKs8jp8QclBwX=)R+_PDIPens1Ndd
z&ajxZcw+lR388or9cI4q91SGpirYFe1mPkp?Ho^vsuC)7o}S<2_8l!JwcWme!#eHk
zY;C_aH1r#19RAWpR6h6;#cp9FP$|d~Ye4r@TwE>JO~iTMQ@Z@R)5E)Wy<F1;5zO`L
zTrT*vr-z5-=ta9rcMB-NKz$=4HK!T_@~&N%_IZ*_Z5bLiKm){&f<&f;h8N$kn0OYC
zQk4K)RZ(FzV&3l3J;D#$ea`V8LlFdhNZ5CBaw?PP5^(G8U2|eQ;GEmn*LzTxq9PY`
z_AJ278ETNQJR)G#7S=MTU1HyHHv?~ym3L3}J9ln6Tb}tQAbcuB*%6-(WH47xJv?-}
z+Ye*{0qTwsfq~DN0RT&OlbIfz$ySC=A;jsJY-yh+JD8hcxf5y#Q3lE=MP%%ZeOnnn
z?{#ZXQ{6*Oys2C4sRc$rGr>&)f3TXYw7b-U2X}rF&sI@Zb{!)g6%`f0Z+sZh%vHjD
zH@@}m-cd$DP{r_~(Ta;RT$KrUMkxPeGG<H+l~m~93VHjK3a*>=_r7+X%~DVxy1zw>
ze53)IU1sO5cm}c^*pR&gQl#lP4`O0^i10(f6%^-jOO1u)bG|P|0ZsszHA58=uU-`n
z>u^8l;1`xQ?G#9^Z;H%Zn=f@$ZD5dUWyVyyY~}&Iq%v}fQzLW_u1OOWDu2;>yf-+!
zoyby$s*BJ(UP)<*w)WP|n<c&HxQtW+y=nVILyz9;*1db~!-tC(EgCr0<w{71?9u&S
zOhlGXzK-f7D)eGRr|9ux@K{7=N>bt#!NJ``g_neFYw3s#i4yDng9oT9Lt%uHvzV0^
zG$k`<(+orA=ouJ<*Ul7))P(OZl!yJa+mE17z>;|Vz4zM|zi4LL7X6>-6tLkx|FTe#
zVm2%+EJ>ylUw;VE8W$BE{gV#2_R}Xp4Eo{)wa@7~NG3A-o|%O}ovgB}4Z%}g-&R*g
z4gbD~yWr&1SKJeo%BxqLI+B_lZ@6N`GAVxm*|&mfNrP_Y{3Hq~c_pRQXqI4Q;*dR&
z-Kj_lRe`E3QAW^O+cBxb{7&vZGk9v+N@2Rj$ew2SoT}AvR{Y<hSXLNiiPh%GytmAt
z<64CQz*lG09p%*2o<4kN1EkIt(~nYx6`L|;8@(AM1{F62I3@~1W$B2oUcbH_Rcg?x
z-%VA)VAv*THxT_1^hjIZ*`=rx`~{4rflgoG+sLLK#}GoH{R+{2$`vttL42&K>D+V3
z3&z60vj{+beo|T}O8(Y^G`u@HLosEz2cpg$E-qr8TAYuBdf&$U5!YQt__gfEd{9?e
z##<EqeX`9c93o!i<<$b>>P()&`8G$6<df;%cYB4#t}>hdokv+orlCqk@C|WE&_LLs
z1Rst3-9r-c3OIVr^{rN@mbj0qI<((?w17hwEnW<Y5d9)LIywi2xU5V=LBWdMz?nHt
z{m`z?%-WjBp>eVvoO5#vT<O-WH^9lmeGiNS(ktSA2iWea%9o*Hg+_0x<~e}awqf+B
z5H>CuL!I(Z27nXMddR*<E=hP^MN)v}N=;Q)xqjx%0E?Kkw5b6RfaC<VuCm+>_xicq
zjl$uqkezG^gw8YETc*~Zyw}{?<qG3_C7<TVOHFR<6}S<3nYo1p6DNmVP4x8MQ2d;D
zkikH^AQFSC`}izjv~2j*tNI!07BN9VgTc(?n4=WAblVyp{uT9F?q7pk0)r?;nEV28
zVx~vd<3RRXfUB#)Cr_O^nEh5x6YxA0xJpOoFx$_^n&6B0i{T$z@0r7%qDH16K#Meg
z=uVDP8q@U7Pth1nXU&JL;WLndiApr?PJ++#B+MpVz53XBSYZxQM1(p_^ydplvS}}*
zwmmo1Ro~P!H;u4p%^w3kjb>C2K!bX8pBo@=h}I-d;^Px6TUNB`G8l@5g$2(VD+N8N
z?9~G!!@_3kNjU}`Pw-D_qt>6R=oF1x1%0;LIV62(%{7OLMbJ_NNlFJ;isY<4rG9~d
znr=V7VtaztWJ0ExrI}gX_srH+!+n2Ywj#{^5W)3HzJmwTJCiUkUD^Z&dFc|zNA>ZZ
z16Ep_L-t|RAASH)LXYm<W22(fQC6;AJ;bp}*@k^f#f5a3u{TMvjzqD-Cr?f-7)cHz
z7f^?-ckigj@MT%qc8b-hLkdbt{O`R}NDP?j>R@E_l#IW>#~^2vfB>T?C#*OB#qBg+
z**s1E^nWEUx8@ftNNyO{;^b;aT9=wDgR>1ulz!wToGqn44@yjynOu-CU`<x!;i#x;
z62H{;gP=5r5C3L95#j6IqeELM{1F2!4>_`D&n=-78aNP)0F;y9^P!?*l3kf9E+BLn
zYzU!=vaO)1`RnVOtktVm>qi-+`U5+#CRktqs<~D5$Pde0lDPab=?mFKtN#$P+LiaD
zb2eOs{u*nX7zuD08mc8bH7LBp?nW=rW>LBFm)mQ$YijHiq{m>n6y(TuRu~vq;#D9N
zdIuU$2(&Goz(#Z7^;mV4iAhYT!<;!D5pNm#UW^b8QB`sn3w~MIQgJ#l!9^f)r8>b*
zXCG-x$$L(3DXH*Ud6B5xk9VWGRWiM%n>WIfhcvKTchO84a%`DIJ94Gv3<cFGQ|N3a
z>3s>%g4^XXQ-7I0*At1-qMW~-Q2p-|hyjl#Z_TA@X)Y2UfIM@;1gs3k6KANt`Tn}4
zx5+S~-N}W!>c=4^fpsC>634oEYOPwe%5J_Oq5oQHow-mpiy%m$0b<Av6ZjElHU3Uy
zf3fkLl=8o4LO#qAnGp&b7-F~46y9NX%Ch;3+VJ@EhyN`h{;kbCAUD);e$iHtGhRD)
zPOE<lQj3C%(gXyv#0U<+{s^a?g@WV+7hH~sIq_hFs!oyW;i?JkX5PDy8cs&PRZuWq
zU47;H5p)Scu|x%j<dO#l)TtaLd-UGy)nXzUzj-Hab0}Uw#H7i?MKhmoaddosW!-GT
zFhWn_Fklk_A2jk9bKzYsq}qrR?IsCx@FpLjQ8sLNk7}GXXhgTQdUXry0>rw~;A(PM
z2a)CEyiuM|Y6Ay#qZ>i=Ot3x5SP-)i6mInB-CboxTTKT}+Zh`l580Fj3<y|3oeh`8
z<eRN}{)i4U_lG^Yaa8z?yYHfsLi0TwdMGEynpVwLy$-s>NGKE16e?Zb%xG;|swF0T
z?K~6;U(BYCIVz*+l_n|DP!cMRxP5uu6nq9wH0#(9aPHg?dJD@|;l~pT34Szymvq&@
z1HWW6)50<AVlaRH{(`D{m#IAZ_pm_u6doc=Z+JMw&F`2j$r(x`gzS79%>}ZWVUmc+
zCic8j<aUg4%h@zXg}nvlz-Os~53Qgt;yhmL0H~b1?YTn(@_xHax(K!F6H4lT@$#ib
zUcd$OF;NB@Yj2A7%*4XtMZ}w^D6DcqBaz-Ee|Yia$rKHZ>*Ka>%H?LZi4&54nq1uY
zT<@c5X0l8^T`ek>NzbnQUgmD^{_~p^s10QXOK4aAKvCI@aib}KPD`3uTPsQ*)X~u?
zv2D2Q{`+Bh`ScMZ-eDiI{lp{A=9;TVII@52ZEiWrpdn?+!{iZ<iqkX-y-GuCYOH-i
zIcT+_8^%;bAcMs1b??1N;0~K!ZkSzSV5^+3W_axKE5#jqf9_~TEpVnw5PM_9h>p7(
zmo_g9A!Y;M9n8*M5vRf4o($(s;%KVslDHeC3Goa}{8f0LyuwA1HTGvu+RYD*a&<c2
z<K?Aalt3Iiim1sZR?EfZ8d7^iMuE?-EVN5}V0^)(;d>*n0W}A>-(Wd`i)>yfTOXH`
zagD6Df9NiGDe<_tIH7Mcef#OtFAyzu_uZCzYgVk7!Wai4KJXa?vP8XOPb^$8GqAR|
zA1@`oZ{I!`1YY<g8K4d{av>GByx!N7E{xif0hFf#8uN}lM7Ou|=hidYcMV#Y+Zrq*
z<EizA^$c9A9vE|=mdVf0*tZaqyUK#zqFT`kf#+<X1ND%cTzt3vHK&g!kpj;ghGLh&
zRm)GY@{ZviXC08PK|cF+u(bUs=yBB(Vz+B%G|9b=jU9ZkPMot*l}wTk)!ySsPQ({=
zVe*&9$%ez-JbAK0UaGOC#D>Z-XwY2sG~_@J?%tg@R@(mA)ln)c%ZB?3ld3d4(Nhv{
zC%=n*_O!Fz*d={^BP}n`E&OYJ*jtOm=OrPN6YF0W-CGNsj}Hac5qV|0?d*z;1`=M5
zSL*`DB55a&4)?vEl?9eCdwM?RN%y}Oq@J#8z*Q~VIi_Vzik2wHz2D&|oQf<h*D7nV
zDGS>b29Q(x<iD}Dwzd>#EE`Kp7rG>JFsLOoh#QIf=FOS;y{8Aa(#83mJXu;&qOi@#
z#N-C!+9(u=wg{yd9+)e4qA$)`T7cIe#=MAPus$@93&bdyq%Cd|K}k%sr)ikb(UhJ$
zS59a>vr7orh{e|5lL*mud4028#1)S26#Uh|(2%Alg5u;?Dw?ft87DkswiFSJwE@wI
zly<$9)c}r(^vW49lcEe!6can7EnG-eM|7<U|1T~}yxslr2Y;1@Sp8Ej6P@xd(7t_s
zj`$XbOJ5120MKWafTZ^1Gk<tA!dWUmDeix(ZtlMAzI3?nV4T#LjD$L59nhG<G0M!<
zW1XR3UH5!T>H8Pw72g{4^7dIS?mHm{V>nnXV?)EaMc+mTyIsXYD<DFBh5xF<G^Prl
z>}_XzZhYUJr}{|_g!ey%(!+*UQP96{t}@kb`U%pu@w#E_WfOH#MP|1p9>*xs99VMw
zI2@S<JT`Vi!ferp1C;mwlnOuIr7u68VO(mX+!+f%`_Y>B4v1*tSmXMtz`=hB=cg)}
z4)Xv94sN;*7(BgRk3BzUxZYVQVFnve<M-oWRV)1k3&e_+u3IO&?8BEYL#3tfN^$Dn
zL{BOzx~q4#mxd=($XAAOvBCsxa`H*nkB~+|Qi>hHZ3>x|@stZXq3<howO!=uljeHv
zeTqv<Gu+}bGR`GjWetsSYi-%-6M9-hsLYNYJ^JgA+7oA1CHgSiT<oMIdh{^te^4b2
zoTN~7)#}wt#1`u4Y_#^tev3de%BY>E-My739QQ>ZST=X0qOrmp)XwOMoNEUzGlGNM
zuwm=>&#T&Q`vrKcDF#OK^4F@3ez@r>b=A}7&mUe~R<}j*Tif<|wyC7`<8q0aIv&Ru
ze_|3L;^M^-sExa!HV!$tbm$mP&n2|B-?Q6wv7Vp9!V_ojZ@7xg#n{M*9zbv}^EifX
zyK=;kFYZ+z-@gZK55FEvw+xt;?A<n-G`&9Hw^LVi>vX&FcbEvv#79C{@|4!O2miDx
zq`|)N3LTGu!fZGp7vC-|RoZqhJ?4Scn(i%WJ~_7BGuw?DD^O)JNUn9C=h*l2(kj#E
z$ZgnQn=a$`cO@~=VBOgKucvp-8Q$yYz4h*UFA1GUQqq4d)Sw#^KXN=XNIYD)hh#}i
zbZE$JWrxmT+rRV>6T1d(HfOkCGKXx>LMGY0@54(oe`juTYEN;gnRxjX#A3kjfK9RC
z3x&zd!-o-g3J^Eb)!Ao0q9Gy0O&V~>O(GgG;F<8!Cr<|T@4tESiqVs&2VV{g`|P~V
zD>63Lw)FD(M|N(m%eqaz#oQgA<Mb0s^W0gN?<%Scd_I%@Re*<SC0rnUDR3T6d1Lw<
zkpnmurgO=2hDma-??2I#Ip@|t*TxAsxlVqM=p{ipzN#sGKT<!|rSyz3GA!v47^Fp+
z?311Xa;zW4(s=pc!2|GK#HVh$y1MKAOIA92{d9ks(@r}`Ek1rzJCR0Wqf_`5WH4xQ
zxqrDP0TKR-13rz^)O^khNqne$qmpDN<VIX^bTf)u^j+pV?&svx6kR;3kw6dT6BahY
z!qLerAvrleFK^?kXqAoNS!^07GZjHfer1aDm2S_k8(-;)31v-70G($|&Y`=L3$d19
zg=F9o0M_8yEK++?`cD#V?}fp;YrYyMw^y`w*re<9)*xcn7*IE#P>|X)Da`buko|N~
zak=3htt`2Hdg<Re#q>W1%fz?jyff9#|5?-OG^WdWv(I2C#?6bw8RcEEY?;c&96v^h
znO(M}49pp&<BSFg07#Gu)V*Km`I8-)d;k6cZ|`U5-dRJ2-}`WMw4UBXri3Ap*g&M>
zH4QyWKI3qT?t#z65ID#24zY0T8y^pM^|?G<&;d|nVVk%wUB=Lpp)g!ygyA1y)EMZW
zl5t=Rc}LKj<8t|g4~86Du#pM;WV%{g`_PdiOK6m9tmBfp8m!o4+rjBe`A*slE?_WP
zSFJwzNis8bG2nt~1nA>oZmua~3)IuaD-WNH+pRH4eTwD7w+5O1Jib3lYp@|fR0prc
zSnt(fhfCG~6g>UevpY27bulM%Aue5iv;evx>rUK?EZ;#Q{*M_sizYRGVZc9cuIXsL
zY4~sf-wm1uNzxx-wBFf4I+g(^7hRy>A^?DD)K?W$jn&&3wh-wQ=?!4`XJhRR@}<^&
z#stnRzK`tZ%r114i(|IT2XF8KktQU8N0ULTpY%(H9aHHG?=9rdh(hokWK<*o?W&+W
z!#j5y7Z!c{4<UA>TbQ?&NL2?fmRF^v$<%Ses4SK_urn{8hBN<fM{i<lJD7F>30S%1
z?Zzmxm6L6sp5LBrY}04+^5v`LEBcz-mZz;;vnDe(R@-%6j?Lo#CGEaA^`wK#r;Bx(
z;mkt0xut0g3V7xmG^u*tWXls<6z7L78RI-&gJass`Sdegun95G?eDpAOst|#QSQ-s
z@w>PvG^Y=y7_6RG@h66}EI4|bT6bdLq14(_hfgfr{H$e=iFR@eLhYy1X60pW$`?tw
zG5`A|{rfpB*;|L@ME0k)y_wg?r?mL8#k8G2i*s|e*Jmk^MB@_^$0{i$!@DjL1#Gal
z&%}rb)vdMWvDUDafv?Y&t=4(`t8>F2PR#MLm-)b}WmV-d0e{rlQWECNq_ThA&6qQM
z-LAR%!z3deV+M;7m;R>+`@+tbmXF7x)7ZLYi=NUNAhCpV-Y<-QTdvr;Rn;-|Ih>b3
zn7x0`0qIjJtYvKUzbJe5sDVI>4}m{GtHadk<#;dSpihBVE(k?i;QL!5QSF>AOT@ur
zTS&o;MMs^_&Tv21lx_wP36`2yUfwe9bny-Cb^DaJiCKBUqOH$-|9D=HB(-N#P9cz%
zk}8h9s7Z&mR7Op~RvNbmyR)gKhk&+iG(F^0ZTh4&Jdase>%K2JRASmQ=Ekt>&=DYj
z#J!D9-zN$kxn(E%JYI#)0#36;&j72C8#iv$tZC;r+J6yG6IQ(Z>pAZ>IW~yY`))(0
zZD-^X`kekE`)RL|HSEVhkM8<`RRKZ=K963>8P&Z94*Xf!<4K&!6YLLA2bepBR+it7
z%|fkCp|W=E`8xZuBp2!0l?S&O2>Mf6uiTPn|Cp0B$Xnj}^GW8X+FC~F7;=wEKB%MU
zuP^2A>-)%gw!E(UB;({wJXXKJ@Ffd~EQhD9IE*7gAK>kZ7X}&YmMqC<czG8yrmVEd
zW3-&@KXGV!gE5nQ78Qu}K<|ef?boZ<qZcbxPu)$9@Yz#lIlmLY#`)jjx}c5-RI<$)
z>|ZgDHn6_K+MuQVEXVy*{dPlEDl&86IFl4Pt6e!d*2>{CT7M;+Kfe|$%fp6ZJ$t5H
zxpIxkqZ%)Y1;NCMndyK*vNxvC(ls*b=5g%flglw`*7A~KU{~%yxaN7Gom7)28Fnw8
zr>V%p=~T<zn9=u>Ak%dF@do3-!m_de*VTKqyb}`Y=^GKl4ANA)74+f7b*Gs0^mJYM
z?h+E0qNB|u%&!#u>e1$D+^+s7^sD36ty1EiP&Ah>T{3Tm76?$a>RmMQUz(A9GT&gG
zkUlfd!@{xu)RY|bPPvz0R4w@BOn1BHQ}Pt8Q<e8B&j8~fhkw!Bw@qPM|4X~(Umv@5
z)vA}MsTf}~!@}h4+uKt&9dVS_@d6c8#XQnna8iw*t)`)|iP=8M-U9}#T(xQ%u9cqs
zpL*p!XLj3nLGg>P@4w%TjU5}&1+kY<R(&jlMQWQ3I#j3X-*4r*es6<r{Ccd=x^l~=
zYs+8F%ekS-Z8I@mA`Tb>Rv;#efC@uVg)w6Wscl{hU_+QqVf`a5P&^eL5mDFlOECNf
zzsk#tix-B~6G4Co)sT$a>2ws$ejo(zH`Yj!=_0^pL5`Su8&wCcL^QOHz^FKN#V>6^
z30Dnp&qD7vbf`cvROau57bP=7Q?6bg1C{@mi`(=yO$uT;laiDx{x|LqYKO8B)gNn_
z@mkxls~YR-$|&urQoXtl=skFFZi`4~eS+m!I`EP1?(SOmfmpC&xFc0rRfVHS$4;H1
zj5;REhF!lN@Zfzw-*Z0cdf6JxWm2<K6He91pKER$f8$t9>X_DEQ6CbVQhHS#!RDjZ
z@9vPui}?vhxzYbJahNk|>#~CB=0nzQr^c_u%Y^QNf=kw8s(VY2!r*D!Rhx5PQ2|Fx
z7(P6dR`Ap870>z!PQEEAr`$Iw6w#m`bN%?I>lkpzXA8RT)3@b@-g+_8PDkimg&yH7
z6w-b#FKC~?ha$B@jvie~J!ofF`|t_H&@(wfG5pvUDZFF8)?7NFC&k712QX!GDx#XN
z61Zb)aM**27_r8YxrN;INBjpVqjHm0GL5`)MaOG?>#Ov?K%zV(BTVw0)~*&NNmr~$
zNlP<T?_Xi%pmg=N(jE0}&eeXc2h^Hv!|cB04|i#tc=LJ1DwoDB%|90oj52^9Qj`=s
zogy_?;Z)?az6>lZ!#Tn1h@q-iZ2})XXi|rNm!svM{0Pi7o{0^N5JJq?j&0nq(dN-F
zzrW`k)14`DsK);E3{7F1JdXWekMOS=xYJep;+NjGw3QB$MTwKo@GgCwq*+`4kU#k9
zG<2~wJN8rzQntsAI^)ONZk2Z3ZZEr=D$$){5uFo#yGqsPihX+L<f?|N{J!${v)|JA
zY~FJ;ks3aY{!$Fhw(KY}TIg8PR`AECM@3Q$*b|*i%b6*RG8i~`up0vdtot#qjLJ4d
zM{j?z{9?QUa4u|yMW!HCrG2bxa+8tC9$mp$R^?+Gg2t;hn&lG;C;F=xLCdIq@U9la
z1s=a-ZqO7UIl4|E&ulSlSe)70x*h`g%t$Pxz}1vRiNmID4ElJpj6bpdNf)zc?{k}w
zQ}o_+LxqH4?y9Dv2k;dun@8TzOT7G#BL7pxa+ElyR8tr_)W%S&(klAXs(#`twoYUS
z_^lwnR66m1J`3|1>`FAOiz8`Lqi0;#c$chkSO>c7&tRk9v`VllM&8Z_20koZH+dz?
z_2nAIqQP7dSU1+!hsj6BACx$=GE!pUo9j0zH5g>xNz8z5ing~oX5W9vkPPY_jMDl_
zNlh3vPHgFbDvc|QeJ7CoR%f`KDX4nbrEN<tAF?F-h5z4c59C{B?*Frhw{}jV#QRs<
zhZJC9uvLL20BsapLy7VUlki&J!q5dI5xM@stHxVChYsP#uo1Ie_!gnIZO~LxylXhW
ztpu0YvCPvtAh-@B&UNZ)Iw^1u1R!K7Fexry=(H%}N%>n*Eak3>5g*xmp|Nopy&Sb_
z)D@k+<{`twnMY%o`e9Mgi8z61WVtY@w1t0c*Zs2u*9ut&ZWw{5In(Xv7E;uvGQp}d
zL^d4#<E2YWvNf>0U?iT3^jUWHT-iSxwC=b={@IXU^C@WKt{(P#Cp0bx4(PVjZsO@r
zKfEeEGG9<&Exz!0U6vQP9An|2B#tK|9mBk_peWkFgVAoHct<sekOZLua|_RIDA6}E
zvqQ+cU2Kr?QLq|>VD9Zb2bCet=lDiwXT5!E7Ewizf>TJ3cNsY7l-;Gb^G@^_G+DJ#
zPxFk!f6qY9|3{I2CK)NFUuM=mJ#rf!$Q?TD<I&Si?UQsslAgaZQp^fRLgvQxKHw9W
zhgu5E%(iQNx3RG_wPzF7F=7Vt^!UYB%hdEOg78fq*^XlA8(0PEkX#$jwSE^Lq}~?~
z+~@eYuGznCXs;?Sn+Ch^YZo7X6V8@k7E9q&=1#Fqs_k5Eq;;DTpqm(>v~9<q`I^pN
zWB#RVw)_}h=AE)WC-1ChaPTXdm(x3j1$ZXBVY-}(KG4sv*!WG<X4H5{c`9w44qAlt
zwa*YES24}1r*{A6a+sDTLr3p9jGB#*KG>=Ko}Vc>?Pl)4?(J`(n!UZf-Mz=l%brxf
zGj|30n4(17*l};4Yd<h!c!kx!A9f9}{lIiuQ{BdrDN-pu+z^y8n(FFNVwHA=Mn*qa
zpGS_j>mW+A8JMnl_4h~gi=<dTL80+<{x-{L{VhizE%`J)JaG|@9D+}J!<Sdggex${
zf4IZ@WcG@1I07RRFu{s@T}`mGCuhESBu5S`V(_Rx6E2&7_J2KYpCCko#ac4+&rDF+
z5^<*Y6nyX#aM-pDXO!jZOa90$N@8O}pR>^$K0L~L@+4(aRiS=vIC%Bw-rm9*TeE4I
zdw}p(adRIoly!WNN=w1`&ZJ4WytO%iL@rzTd()ZQps|!hzp*XjBGY#^PoAp>Ioaj;
zNJboX_TFUkjOmaD<Ml^>;UNZbi}n-*PjPSCIGsQfvcuX&DWwl)|0z*Fjj%Lau{_fx
z;wyC>_OTiJ_RapdG_02}@Jd$bDvLb7r-a0&*npYC`g8gUlA+TnHB0+&sppfR4L8&c
zshn$QSc2s1^t}e^i+@!<j9DS)@yGX~a#`P(%ATxS(1o*+=w+GImhJ65b?Vg9StlVQ
z2!~oBSLjBOUCVm3P0Rd?5+mrhKn9IK8HsAnVTsS9KLuWlm>@PeuVdA;O(^9~2X|YI
z`_|EWJAVC`xNNndVFkIqx?1qe5!@Tbj@3?8mSs@uuO_#OHLkjs77EO_xw1+Lv-<t}
z^l|+9dRDxVa3sd<+gft9fea*}8VlF223caXC@E=@>;{T8{NejgSi4)}L`9I)?D_LA
zCMPeS`&D>yc8i*4td6^QalY82M@=()F-k2|l^Hs;Abbm|hpJdC8+b*Vrx4e!CMDS^
zpQF5FIv7?-Ppahdni*OP2s7l5Q{znLi7^u@qwcT)o_WQZopZ$)W;pb-Dr``oRFR#P
zRkc6{jW`%&13pJ9R#v?y@=t-_B=IS#8jJ=R8NPpWPyA=Ku|$k>5b{8-f=#!z6&Cst
zR|BfT1}MsHw6N$0X@i&(TB@OqShXBi`^`uyxWGR9-3H3v3KlC6{WBAz)48!2g~Tnx
zaAI)q$N!gIQr^^4hh!zi*a-oHylNKKmZyWHnT+g>QmDS^SEaKA*Zx(mtlC$LDGq!Q
z8fynlA3T2QR5v(HW`h{MU%LqDEBe|Um?R|UlLXKZiOK%Ai$FL_7LUuQD1{w@ocdbH
z=mu;rG2{PEX1Xud4z){tnU#M3|4dNarJxcsGc$(tkTM&7$L1vkTDLprRe*VGduL?q
zTCm_g6A$3>J88VI;DD(wnBIIy=tP8N1%`<-2wOolO-;s5&fR;*QpQOE%3k1FN}>&G
zazm4o8`(%6$51mvsP#R8rw<Ad(6j_bl^kY(ow7wgT{c0`AxgaN93TbKJW@^$fWQr~
z*=_o(tgL+r0orm<IlA>~X0Uo>@1>1)+S<7sRg#QW9RUTR2uC76^!Z2+7gtw?qg-8F
zelSwx>Y9gb=l`C`w77$qC%v`x>5cE#<SwPTzqU9ol9lw>tanVatjkNky@iHjQl$It
zxoXq*g4U{`<8J6T*BSR6Z!#;s>~UO4vcsc>tGBnWky6mTuC&KTEb_GC(|+>Odwe?m
zwf99I<;)r8fosl<96o$x$LU`(l}D>oxfOWaU237MlG!><_I=Wm)tbx_j6d<S;?x>u
zWT{n(8&CN8ZT<BF-n>4eyWlEV*t2-?xihsl&;bEf9PV+^n(aYj2liUJyj{8)pdv!R
z3X2qfrk7)lldKs<7<frs^z(3NB-TsYwryk7>%#|H=WC{yYJMk(X0AY*MFaGMF0{GX
z=Elie%5#oNNp!~apC-RjdUuDIkdSqUG{B%gJgh`eHf`F=ygZ%S8<f1%0|+4p79M9k
ziCT`zZg2Q&?P>Zy1A}5>A1i_9+xdzGi<xHQyZv*tQ0c8L&6hJ<uD>nG^Pw>1IGQ1L
z!j|1<-SI5r^M(BpTJ$$3k?=LqypA4!Lo1k0j18BMPEK~t@l&8rD%><N{lkv4*Of<{
zoq%BwSc=UJ@kuDj;KQAiP7N9|<kHX26w<gG>}*c{<yp4m>qUOeY@d^}WgUNe09wx+
zHi4;!f4ogti^BNv7v-a`T{CKk%g<lp6N(75GUjobU<HAn!nJDx0RQ{*2A9?-^cDG!
z>Pqgx$TKHdP}QyD-VnDvcCS7b`wwV13dCn^9sR4<;}NAuZO|*e`TV&>`E2(uGcaZ<
zR4<#MfB%=`{j|u-moLf-XMf~oZ)el7IKe22i?_01bLHq}0TQNQhw1FRWZ}Yf18FW%
z=KgSNp?o>>&S=rN-rjeBI3GVge(xQN`u@;~f(bDhz#;VoDjjCgl}C>;+^-vbLb5Jz
z%B#p}Dv{SCtnI-=frQ<*ZJQ$0j4u$fbI8}3W=bo(WPlzK9BOK4h{>{DsoEHn-MnSX
z!o`bsl)4$tU#BsZdWFY|LC6K8@EQ~A@6k2+OlBK_RZ}<{+DM9fdPrg<<r9jx-^)|m
zizSR#u2e_<i^v3ADQWa-|GOI{Rx6L{rA56fK)GUqCXA*Bi6syZVW&9x+ZX!>3=2|k
zmY0`H&HWAgu|o5DZ&ZCkHQtX^h+|0PPvK#n*GY_E(069-W)Kc4*pbK4JrGW`4(Q5*
z0)GPuy=E$yJu?sdgXpIxWw>(XvyzeuCeDBwkfih5&zwFjB`tkU!zt(XZB9CBW%J-;
zk9|b+xR)<qg4(mD`W(!L4nV7eqcFb;Q#zs((3CJI^9Ru_ll7~?oq#xGJDJk#d3wPD
zJA0aMRJK2Hk+2GAY-qssNgX`*1!B^+<9`Z606=gZPrq;>`}S=!ycrm6S?}O*l^APf
z6;<=8_{i<8_dQYte;jfDa{U{rWoL^D3ug*U^GWL-xhBJXBhhnFUl+v9uRRZ=%l7Kg
zvuDA>hYaBLSBW&Mh<;aoZOcB%Iv8GaPwuraIfZ(1Ak7GqNqk7SY9wyfi!)nK!fo6!
zPspT<0z;(Zj5?z9YH?jZ_vYuX&|=<;btL0R>@O-V4*xm76B+|-sWgze0#s0^q^GZv
zJ7IN0Ui4vx?*hyhsNfP;-5>UNm%PE9_g-xT=F7*AwZtA26j+q^Zqvr8IlRA*4b1zG
z!f{<#yRh&X3^M$6+tALJunzt=T=qTG2Ukg{%(KWfLApZ`Z@vG+m+)$f25L2Prm2n{
zTWewQ{af|2rWf4)hp}h{$4H6O(4mm1@LorbLX;PsuuN0D=ne3cVT}Iv#kG~z+m1}F
zh%CK1_(>Wh)6kE4H}cs9w5@)f4P#B6Op`(;sH-y_b~P+)pB0ZidffQ>6z<P>(`#R2
z9~sWZ`T+hrH^1q}yQBD(8_baEZ!Rg`&g+b?r1<`~<E)t75tBtcg@ea4+lWWZ*8>To
zcN;7HFnGi^oS(SKki<;Zgy>#F89;fZb-?<dw%l`aAWD*i1eN;x*XWjUsAKP#tEnf=
z{<cG@pk^En1cX2U(52eis#Lg_3(S6h??Zx!;m2ZQw>mnWn6ll)g~lK{|I(=dNbdye
z6PXvB9g{TYFG=#s$o-kRk5v(NYF4l&W=pQA7cY)J^>CxKf{(sk_4il$GYB3(fBX>q
zx+ERAP=<F~8py*FT)e)m|19;Tr63L728zvRsmD8qR6Ylqht^+JGk~Z-Q4XSK6GmsF
zF2u!+qjvz6M-5?XW3xVV;f@_QSSydu^8~+3ZLiL|d2_eq@K*Hzx<+Oh7(ITwWUcgQ
zoq%vv&7`oz<m3!(Uz&~Rw(Dk{m1`PA&#%>BK(J!-_U1qXnNz7{`&u%W=7d-op9>Ez
zdHf~wLffxayxy~*8tV2ICb8^Py%j6I-<#3$SL#PThUHV;srpY35+v!avj94F?Y_rw
zx!j4=Yu7mX0Ur%_CcAk>kNYF#o-pB9s648hZ|3&sbSv{Rx=*~)sgIU$=+W}!($uoQ
zL`$5q5U_an8O;;~5@y$1)bvEe6=z>AE{*;B#&?$3KU>ewK(TgXX@N}fty>{1hKwWD
zPxWO4an~GK6O~h6um>K)kLKD$3@tgit96`0X_)iYB+xfF$pktwa0J{ZE#f*8`^ITV
zi-WG-G>a#eio@_NT9nN76Va&HXq3Z3L*D`&kx76GqsP%mFjEK-2O}>pf1sL?G*?8T
zN4&iS$9%xo?+koTwGk^>grAc7;3f1#GsI!p-!OyG+L)5bDN|r>4$yUV4a7B5Q&S-h
z`}rj@3(5*%hjKm{GfmTY<Y-CB(7I<=4Yk=7GQ8yTVD*xLYJ-pL+m{8$0}O|1F4*K~
z*({)hU3d#(t8czx!<_l^ACB++W#bFrAY&5~8n}B%uxY+_nVVxL_;TB;+L{_cq|3Jh
zMN_bZm+`<yWp6J&a_J=F{-hBmD7Jj2aPX2p{Cj)+mwo}z@DmT#1=km;)-uG3#ct6z
zLIA2CN-JIn%yvNzKs_?!ft|upj>#Yr5#poAojrS&r89NN7ylKj(fAINeGe)SYW0&3
z2htB=i6Su*ZXV*dSR%x@2GUeVh|Hyqqc4>`r*A}9dwLtJ)l$7;lw@a8yL9P-;R5tG
z_2tAd#K;}4uGQ7mtTdVFZl|Bkv2wPauUB>^{Zo~N&Pu1M`<H`sO|p36h;3{(Y+z`u
zOvtF)Yl;<kgb~lDl)KEX*6Ne=j!Pj9lg47#WKLIA{l+9qs4#H+D=wwn%(*hb_~-YO
z@NcK0G_Kcp%H;+i5Jd67Oh~G`%7pHcrk3p|q#g3;rX!CH>HdL|v_jCG0|#9iN<|=?
z3FO}57I$bhn5KmVv<{_QjDP#>7hj%LnacPHNklNGDO2jGx~HwYtW@pf_|8!2RLqY)
z>qLd)C@CraF{UM4lwI0*rF(TZ9o4lYNNigtPMnCJJI;ISK}(az4Ai>f*tt;P!-LdM
zFm7Bc6n@2nszbg)4&<JVpEh+W9<Hqup7aoP(6kU;z#^8@A!r8p<uo(tzC*;phm%&_
zc7Ik@CXwX$akfQO_YSN>qj)pV<QU$}MNa0%pR%%Z2Q68?AR2}=lh>a=Nd74`hl!!%
z+~<*PrkDB1d7Ma8a4}W)z~#B3{(5SICH80e&Yx|E+w0fCZQpjArB4vcdh_~uPtn%B
zm77*`tW?)fS<#{XJQl+L!;0bk+V5UcXel4dyf}I-xE=7lfWSZ~P5SoOxH#%M)#aT<
zH*Yej#pwBWau6>(Sode)*Mt36N_>1Tv5r%RkOq#bd&kx;YA4zrmZ~e?8amPgF#qrX
z71TQOhx=l|{F%l2$Ov<e4hQeOd+@huiNt>H@Xe}va3$2F`1SM=Pg*4>y6I^7Z9xcs
zl)VGkO@e|Lqn2O+u)eiIbk}bbiMo&Vo&&PEzRmoka;@yChkz$o{)u@W@HQRs4=sS`
z{20}N;>h8-=u;0TO`Pbv=mMVw2vA1F{1A-h-5imqzY+Ci-DTybX_mx-a{H&Ylk;Ud
z+$`kw-gjHfnTIfPXSC-Psn++gtsHsq&yUdPF;Liod&!K-W3nB*C54-;g;#Q@{NzAx
zwN-$e2PnuEwZTxQthxuvB2njK<e0L{${S{}00;K)bf{}RaksXm-OML~d5Kq-Uw_O?
zNY=u$4`HZ|DZu|;0<5V&-?IDfRWggiuz2m&6-$p1YWL`jjMW|1Lwi{fG75|b%c{<>
z(b;u}MCm6hRWmZmAZO~bgL&pAD_6o!#3m*AyN($(DmyRl@WTqq;&E8h^0c*^31@^M
zbc8f~<!<$Pf(?nE2D17Bne>E&6QT0)MzP<1jslCoo`0&%UvvFWomwVkXlfe!v-IH;
zQ+<79wE4t!jL~ST0<3tOZ;g$W4ym*&5AWaquu*5;;>8EieLj|Of3)(uy;6rCQFtj{
z2{~&qG;8;QB}*E=eM`fogezdwf)0Y?Mt(4mXj_(8P3MrtgQT8)<?`+@>JSio^kIUr
z_@AQ;z}tS4S%J$(MFfMvb@kM$6bT2ZEUy&i;S3B7(>cS{x?l4x{Kh6taw6q+FnHbi
z9WW9Onf8eDyAh?RW4eQdmAt$qEju+&E62xVG=IK<%TaW+A`_A&lh8tTl_e&-|Hv8&
z!VWj|ep=?QSf1g}qoqUsujVw`cjWkjksim~Tbp0yz9p5&`zVedZ;|kf7OSp=p%b%B
zn=-(;i;E409DPz$G{XHOdYZZ?gec;Xbr<yLBRqmI!(gbhqQ1$!>ERl@P04n}E#r1l
zJbN4ih7-JE-#Da_Ho#>sT5U&-NdANT70jr&R`;gJpO`?E@}LWoR%;O3)(l@ZbNlw|
z*rTmoJ4~ktp*@wXsnU}+boI>2Ol);2>40Amv{1vN1w_4itY?V9ZnNJ4$!fhndY_{7
zFEX^G7I@#8kc&Ej(t`$>EMGoP3`}(0K!zfMj~zSjtP>D%LBAR(o=pd(?kIF!nzNkd
zSyx?BJB8^P*9&MsJH~0HsIUSeU>RnKxndAmR0~)#<L8GF*>R_r>Qs;TTzj;q!Rwgr
zYe)9)+Ir#Lx4$;ue6yLNHlwv=2Tn<3w1>}8ym4O6R*sayUF^saiR>azEG%nwv;yKW
z2m2BYJ|li$zx>XwvVXc2RLUna5gf^RVDz<(ass}VsDw;F1KkeL9?uN=8Jovtm^+KD
z6AlCm43%$^q!`GRRZTibL_bYGL2q~c#tr1`6<@vxRT*-B@?Q&imremV5@Rk-UI$EC
zAKy~2Cds;;Ps8|?SLY<nzA(#Q{M>|fd*kE(Ld!u91D_16JKEj76<=MvdS1W2Y5S2=
zAAkRJO0wy#g-HP(1}TK@3%|z(CzTC|I(y@-DWYE@4g`)XOP|RYPIC{4DA{#>kxA69
zJ3CvS0}-t2aPg?qAe|z!cr_)ZO;Fy#<Sx&J9`&s_)gk3OBB$=%x&=;ky$Wv-XrCdR
zZ}RH*=WRQOj^Z>y3@F<QaDYvrEAx<Cwrm-9vU00R{dFRP<Z)aS?d_KeD?ptCu)*XQ
z76e#l7J!_5Mgq(<!bN>9j~YHlpa+u<dK?o9D#p$|j!~vVLA4^!ALW4|oN#CutsxrV
z>d&8<hn=AE9rR?3bSq<k3Vm-DKPZk(&Vp`Kl!!LC!mtmAFf$4Sy<vk>G#wPTk4Nye
z$*t);9RZ==`U%R4k5C3dCr*S(t?p~Flgg!Jz*)5|T1mwi1Zhq0r*$8OMoTOeB9n_p
z=bSaT&R`?p$+swlop%@lD`*bmM!xAhU);%vofDWxtU^76YsL0b>)gI0nKc@#py2v3
zE(Kcv4oEqP>h}8{l=Ek>@RjE2RPWsATKcCoLd(F7>Lu<;Yr9cGH|i(nyP=LjH&~+7
zTkE}ROj~nyv?&kdAuu2Sh?X+d|M3;mFP$Q5b**$qL4RReAna(ia(eo2R&suj=JM{Y
z`cdCj+6c4y6e^Hkrb^ogy_E3+ITgTyY0y`kEq8)~`x#M!IeZj;9>*FRos*X7HfRk+
zLezb+nto&!3g)!*bb7cmj<?9b+(O!-iQ3%7#pf<D9iYmQAwVFbMvkP+-w3K#Ag*5!
z>T>&gDq0&>Gsp~3g%CQi=Ge)3u6$fU`}H^g1)tBU7mDK)L0Kup;Es={Y)*ZFe$+KW
z?}G8}x9cV($>fZ$SpJb_jlnifW|#E<C;idfES$qaOoqVozs$rgR=dTQgu{=MlP8-e
zF=)oeWaM<7RVnC0w2Hn-^jmR|zNJf+OlKa21;R+A)a=@X{1GwRLyo$*pr!*6dF%`l
z7J!YMMlOB{B_)O}A8*nN6BQu+?yqn`*@d!~D8*#N>GdlP;fPEvb4I%~bBp?5iMe{(
z`+Y7mm+FU5RqucFZ8nW9`?Tibu7SYA3!v}U?lTm<JTXC>Vi-p#m=sfc<$HBXVxs)#
z>xBPpPEP44q(F&|1z%zykz*P%qMdaZoPF}j$k-T2jc*#0XIy)z_++$Nzj&ih=ra2E
zU!dpbW?EVBj=#(`15&GQSk^(E5k&?JCuHvJB<kN4D4-|vel$ve-AqMXzyp`mC!90r
z?Y$7JnjM&)mPU|Vym;}_vl@L#b<)!2Yu6TL?)le-i6=0^eU+f@#>@*yZVN~mwrR9?
zMA_?P3?e3&`*K4=ys-OdwRLb3^#yiFDX9r+YHRbhUP_GIz@cGdrJ;OcIlmx0d;@8V
zKpKQ7)p5-^Aud3u=1$6Vi0&j``h}t9vXGi<KApOB>hv3eoOFh^bPooH;CZ+i*j!GR
zlM)x)LqbDCS(YWGrPxHotXfu^=4T$~+?H|rVg8HMl|~DOj_xxe=702d5sydTce6fE
z;{AvLl~%|EdHE0YoMlQ~L~9FWr6k4#yVX5_@9}2@68w=HN#BGsqTVpcIrHYVF!uV2
z=Zr!1^dGPH5xiL!rv?benA2NP2!dq#T<$8%!3vD`%k|0T3>N}7K9VS!21-f_&TNc|
zY8}9c=kpHmshk|)`}WtrTB9sKP7&o1$%)F8<Jd^q7*Ft)Sd<VcHx7S75T`4Vs=rj$
z{{5s=r%uH<M`~O$y9M6>$Ic<6jKyQ{Qcd3|IPCg_a==K*ix<Bt1ML|zdyB-G6>t5-
zKy&<sl`&_1%TmYWQyz|EVsQ9yGiVYTOzjn8r9U#!!!Ks06bM9&k$~SF*L=+yiY$G*
zhNdPx55ia>=c%YP?;1WtG_y+A_}38}%Q<THYkmFt&qeL7<5X3ipHFd-kIwar$wYOp
z|BtaZ0jF|p+s9Y)QW7OJnJXDGq>P~zA`vnVNlJ#O%v4B*LS-yN#*{*2PR0_-5E3#E
zg^)QZ<NtiL-*3O~e!uU3{2cq(dn?v@*7Mx=bzj$co#%Pw2~h0Q|1R<7U1wsQ;f~CB
zL74jKV!=mnAKKfArV~nF-{Oig?QJCr0-G0=Dgr5WPmrL2VfC)oo}2Gy2XaHyxJG(<
zuYgY=1wtutBh`-fSyZ-4t=UTp91c(!W2_}g8i&#L+f`XB&V<!32EGCQ^1~*S^eq4=
z9--(U;#r}VNeP~pAfq#+H<%aUm-pUJWryp5k78JTBYlQ=a1l@NQ9)TpEq1SBM`y(*
z(izU3`#wQ_MP5yG1+*{{jbD+A-rLJ-<Cq&a{??N+(v^4_lXQ`lwx+HmbuT%^ad>S{
zUQaqRZnl(PU0J!lICh<TT)%Ey9dIBcBR7mh#MUseUiE&bblpXJ6jLYXP$tOim0X@+
z+_M7T#EQ_%O*j=GGL=<S5T~=#W>yllHc=D~0r10$!GVZQ6SSX1xhU|Gs3kt((SmyM
z`A?TC$8rU!Zn?j45GIj8?y?NQpX~3xjfT1fE8WTxg`29N8KF4Ai{cpk^NnmUV?>>B
z2a+lzuc61o84;STkk$buwYF{|N<V(^@_pk`UPad2hkbOo{}c0wCs!DclIjd2HhAI6
zpbtcUbvwovpBcw7062nhw8o9k&yT$A&C9SM4`o(}{83}bnw1;={2W?lK!D;<tpcpV
znTbps4+12EcV48}N5V6alxG@AgvxSlBr*sz4Iy*XMHdLk6_{Gf_-)O@<4q2@oBSti
z<6fX(H8Fu6*IkthdxdCP0kvXA-Z9>D^eY9I`nPJctxW=Jo0IeH@~aqj-ko|!inSGX
znNBY+Ux|JZln|(SP$nYuBFH#P*szhlF`$@te^9oQf4-DuQHFd37{RW`dANlF{?1pg
z#z;8Q5Fe5eWnW22zyS6p;?&bFn2vGKuPmwaA%5@-y{$3yKR%_#m<-1NIo~Gyinl27
z!mhsH*(oZjSvlI;f|OK?OaU{CA5=9qH(y}BmG~RadX|P*CDMT8CNb+kYPbV$fRm9x
zm~aPC%tO}@oV|kdV-=<6vX+hxVdaFNg-nf5@-N{C$}&_lnl7~Ii2Bm~TB@F!@JZA*
zgE<DC^rcI1+pWgr;<ejI-a<8p>sJfIs*si#9khDo4IFtnRn9A}r(KKf|J>4|s1~Bb
zJL<Rz{ZQA@QepxGG?NOC)!TzNki4Zl-}IbVmX(4409S+6YYgjWD(xNb!hP%9t#6?2
zjgDd!5u=O0ttNgpnktMDcrU%&Vb}REXJWED=s}(VaBqf3o>Yu9Omo2cp(ud;@W=2L
zD<!-OuBgqY=<Si!gVRNf9MzSCvjZ6Xw{O3PJOZ=5WZ8l2gNXih!U@Vn5F&~QyF)<u
zYgQfsv<athRW9L!2Rm}CcAUCBboqGb77E;3cKF6)5@W~QPAWDmxNt!eZ%~iW`9?9z
za)FN?BP#G>^m6F4=VxWv0W3m|g`pa_g$vQ|@W!Z{x;i?P$>{xw2nfKK!}Jvrycnnt
z(ei|Uz_DZN*ktYN7O#sZ&8^OY2{sZ?f!nlrw05ND`;aiyeZ5?QyA*G(#~z642=(os
zZcG33zq&0rW-?y9cvo8slLHs<Dp9*?Yd;7MK6UNdJi$tgl7LAyTyk`@wT}@5hYm<U
zFexDOTW>G=BY`kl13?1asige;t013a<DN}-0-+FL6I)yN6c;^AW?gVgk#_dJy$$b<
zc`QgS-=vfj4T*>9eULYF<Ugn}1#dHdMhsb*8A2gaYixI{6Wp!q5A7lEV8dW2WSj>N
z9YUj>*QjV7=BXI?1=SKiAKyrqEVicE`Sa5_%RUN^;LN=C+a}^kcq%%)|7>N+{kdIN
zHwoXPoy4#r&}|JcdJ*R)dPLDQD`Xg95Q@|@P$6N2vX+k0LykYh3~Rp{<be}0$;70r
za3Q&(mvC|epdgq|$e>SfWa=0i*6_k{9IBwxMT&naP&{;q1DgtL2WVjaz{lqq0L7W<
z!9U{%vP-A0-UZ_pHwy8pI{w6-;V&uSCidu-KQf2$$NTzvHReRnTmhlAjNMLn{1}ZR
z*lA+NKpde_Gy{dsznV#nG_A!a*Lkm`D1a6LwIvjR6t)rpfz1>)6_$H;NDgr8;3tc%
z0OJeK0Q79qbtL;m;0I-GVR2Tgf9khyTjf{=?mNM;4?mFuPf6H_0JDKx9UY~$tu1^j
zmQPrXF7N$$Yb#Vxh^~dy&6}{*s%v_}$}Sjwe<p4z2jl<|fVatQX&BfD^kd&=WTBQ#
zJQ1D&-#{E+KvREnO)jFvh%=>;W>zQ$l#-GSulda7cg`*?=Aed9{AasH0~B2p(ckLW
zev2FI&xO?MfmHbSY*b~CzWxDZ(UDTNl2<!nUTul{>S*Kn#N0Vm-9p<yBg$S!C#<*9
z*Z$+sDCZ<)i=co2tLHnn=BKcOXWFqNd6%7x6g*Yji%J6D(4AZEbVLYfOT*d_0u2CT
z;2yxx28i|rRHc}{g`Rvc%U!sr4=OGFNB^a%B5C&ULp_X8Jg%#|?Z80_S-Ii*!-GDh
zaa@?8wwVIB8ojn_>;JS~#%5&yr$Mt+e+=x)9}53!(j@J&BS{n2)X7GFmlfG_c1{kI
zu=kJ@f;zZ>mJsC~ae~2VNKK6xm;nq5MKr|5FLY9ngCUZm+k<Pz6qHQ<g$-VB@F)LD
za$}{m8Y_DKr-w3DSO^>o4F#BP7J(dtsDK}y6}6=C0Rl#F0)eWbbx;Tw6Qq3Ll@YZQ
zOudjY&58uV3kKBN$xCR$!uJ<LyF@O2W;G%--mvCDQ3LP<c|RuEYV5L$m5PEO84`0K
z&jYDcBoYS$HrJc8=`?89XlP_%Fb7~7oRgGWP)9pB`~;N%#A^Ts5OBT!GGSwDd)0*q
zQGg>+PejjsT`LbR`I$3kknTe@hCF{(N0Y?|RuI*4OohZuH^NE^hgvZ(K4QQchC#7h
zP$suP_=*xaEp3c2XbcUt2SkGQJ!nEe6i}4sxoyz}-a||sWM>!Mi8)wTF}2!AL*s1<
zVRjCK5utQ`QPHs4fn*wS)fg32Iw-M#OUL9RHS*W_WV;l)i|b#F3Ys(TlG4(0Gcysi
zGqbZBt8bw_k3wA!j)bP(t0-hSH58fXfl=ZD@^W`Ss4BxCV>@jCevo0r#KaUA7w1@R
z;}umW3si%KC35JHQ1ean2_-iWTO56CwAaSXK<)ds%UW?&tT_z(BIb9=;m&lq^)BD#
zyZ_!rV5O(Igcv|Chk{5YT<9^sV{1byAO*-M3&#!uA;!7if27<uy6vg{9QZtEN>Jlm
zsLo!4PCUfbSbS}LKNPzxwe&Jk(?jQ9M5vRU{t{Na8oTrAWg4=<wX{eZ_Rx|MG=5zx
zf^B!G-^sbtnI9w2+rfu-8HjR3MTN#RO!~T<2cn8ZhI)(8>|l~1dzFSub_wt=yW0KZ
zu=DxnDSWF1(pVsy-n9cLPeFpw$=(gy3fG8f^y3z~mKKcqr(+g>B!VOpKnuk;F}~)H
z2^8i`Qpl%D@GuGJ!m^2%q5$GOmK?eO$U$*Cp6eZ8`wGwtgKeC1AGFX>I$egJqu&Ml
z5NJyf7t>q57l|bOM6**M9=G)ZvQ5M$&j2K>fS-i!ps?tGmk4kZFtecyBD3L;0VD*c
zQux&xIXQ_cBiV_8KN*q@7>Lxvqz^YmQy(x3W>}se!+;s*DWPPyjSR&;L<NJ;FN{eu
z$P{4109N_}G4?3s1X(xzY#9L3<`iA{q|%{o?CuVTiYm135XY>l98)kyO*1uF*2HD?
z<HW}6KURNMT)cz~1Jdpq?09^T4sAR)4)VX!hS(&SuG88;qHQXO8D3oUm0ebUSPz+R
zK(RzPLsm3z*mxhzfc+2PArA|QuV20#z#L+1`JCL`%$D!q2Sd!V%+xOvRt7aeKu9QP
zUpH}Le)+>@07e>K24g;eIj*%Tdx94b=Y*BvqGa#j03t2i?tc`fcYRs;RE~Tba#9R{
z20Vc9aOslveC;}t-CYGvSnWfh*}DH6ZI43Ftx}K;jw0;^*#L930QBY{aydAdMte4O
zb}~Z*d+HQSv2n=i>*y$u)vTN$T%}?|U?&WraU<}B1N80L2|!Jt{BZN|;H>&;0uB=h
z3qomdq@U^q-2@<Mbt5xT%3xL#aqJ35)<B@hbinjP*N$}wSQDfUFI7<+Mb6DIO+#G4
z2|~<|h8z^E>uP<1EXmIgE>bZ>$Vk@p^dc<$usq;S0|Ws@Gx`bmf(`}!Xgn_}HYgvW
z$2IlNy=b{ebD=xt*%Yof$)RmV9tTArRovyTu=@*#Bb^TK&zYG`)YJ(CXPbrXe<coh
z5;lX#jR=M)NPSZ?GgwKp$nAmK%agCbC(f^IlBNoRlzS{`8tzC~<>b7s1vYgDcj1G{
zP*Hkr*`g9cIESS=5-37;@E@lPt7+8#+T~w<V+i&LO)>48J{t(zFy6Allju{TeEN?T
zeUhUm&4vwg@I4^}yyye&+QnBquB&+VEW1xBNWjc*qvBP7HKF-|`C{G`YrtMx@A-yq
z0IM2|j&qdL@DcgP0TE`8<K&;<N+Sb>9K7^ZO$fY$s=lJ1t(Km&QZX_AeK6=g+YD1#
zWE_ZvLLy$_$a-5n&I@g`eO<{q5^w>quQ&)-0A&8UnByi(O@~B8u+qBe;}}qUwY7lV
z)rkJDMLxqWY|$4MjY+t7mie@Giu7`F$Bu!61EVEu7?e7FHkxj_8%VD}`Xa38Yinz}
zx{TVgsTpANs0tO>tMv51yq!A`qB&)_R;wQ6+>E%sOm`Qs>2}@8aSQwwm981M5r)h&
z-Y53<ihrC0%gyD#+lKfN(rT0rX98a6@D7Qzrmi7%{}yIkKaou)ajf?#?YS&EY4&u)
zhD3^9Mf{j5GE>Z+xGcK!+T05CklSmLTP_|tBD~t2uC%@VVeNozo&ixSQ=!R;kBw-E
zBM?H^(^%ffg5Y|Fa0!OypH?dV8h=Mvf!?{Z5jJm^MbXDas(=6wTZam8!UqNS24)-X
zBgtICMfDLQF)%g(s&t$&3Y<ZJItoEg+0L_ybmq*2lOz~1*FxdN)^iz6jO8;(09zFU
zW+-tvRdC3sxx>6qSV)N76TUZ?@B+{bX-z_2Ud#LUz-KH{Fr4DX?mz`FdaIXTXD9Dh
zn>=`;y?aL{$}2DVqj5KGtiXlZ<N;I%#*XVpUJOwE3g)3L_qb7{9a+@eQ@n1YPig(!
z#>krTJQEVrEUq5oFc|zEgV?k@4#U->=Ha=&+TyhXur{kKt_+*6*eP@lFbi(10T-vI
zDm@}NZm)8KCoRq=8lOjLX|;Ve2X)tyN=P5!bu*{w%}XY|l6w@Vs<P<z@nwfJ>6`eq
z&=n=)?p;#I7yd;f_^)p9zaBgO`+v8Y&p5%+7jE*P<hVAi$FW7!YkQQ2@&T<P(>&3p
zS)xFo5~QOcXd$Wlx22n4rswzT$>>?Z+sV&wPD=H{g}riWXVYIwYtnc^r4<lBYjuaF
z1Z$V%&c+RQM5CqI2WORBTxQ`};L=t3KONbdx~(z<;}|AHID+}C7*}%a0x&|NRzqJ6
z)JLqX>Rv3Kw9|#+mpUbH%l3Zx0!JF8j8G~d&F__YsSeY#KfVB3D7JtOLY*y0_z>Da
zIRM);BAkbx&u$Y!CN3$-<=cuB@!t^w2=GFZ&fb+3TG&ECzO_sZ#U$G7^mN!b!@lGE
z-BU?FF+3Jrn!huOCqDR;5HErg8Q|=Q8wP+A?*$__TtjU{%FyK`J`z8%<4E35!E6B4
z9!63J{IJpi(W1%A&i1ysc?N_Ypu>|>QyVsIN;KEAp8_iD?oNXHAYLAP9<&~w7}~cj
z6Z8}~;UT1lG4QaV#5f+fQ0Acp4i-K}>rLc6Mky|i!SX<M0oVepMifQj>8d6DchfSg
z46oYVea2b)pXtjdh7|FKU}8E-`0MPnV#IP8KT*ByE3Saf%eDe&FMx2W<@p9^Ja=L2
z8#Xvjw2wJJGvIOg<jK(BARUDO#HB6a8p}hug$58hbr_a}vz8EpZzg<;I*|<`#HvId
zdOjnL`QUreQbbPb8-E&8PbjxqUD5wnAQPl8m^GJN{0z7i-8sS;u~XC3^hsgiVK%6L
z`_ab0;jhJ~WB(E`=VJzUMlZs%SHKQUmNYPBF~A084IhLK7+y!5lK<WRYP3T4xo2?j
zJtrk^z#49r81!2)-w)Ub#$mP30r}yL<hkgP+T9l${j4Mn5pYotQq40sUBO_#WSqV@
zcQP|FQs2tzd8>z}&nc@FPHF^NDqyD^E>wmEe)#YLnow95)p`GwB-FOvuQ9b1t=#)I
zI{&!__w>vR<5EB1Y=WI+s66ONjCnyr4V36Ks2{(435G3Hg)7p;X#0+IS#~06(|<v%
zvD#KXQY~m9*qqyK*ZwB9+59V$f9n#>Kk!I`Qz%-BU;R$_pUUU^pQ07xo-Tt{3w-nU
z5h*l(%B+vw*)B&8G&1{0z*0z1fmRVi7iw!`4qQNb_Q7_}m}?<cRZUUxJ&4VXf7XoA
zPd+d~E%H6t{;c*aNaD6KFhF=zg;~B_yj)y3|KX@hwSK)zlQ&QZa08~$WPvpR8rgk}
z+mo%UdM@J<VPC4QrPYsT@?W$<l`?CBiDqTBFj2t*Pqkw3_<<mK2K+CH2znLY3Rx%$
z|I>eZ{@Ljt`Ajlaj%efk2d#q~-e}FiSMIVQ4RP#|yt9bC3M*9>=|#ulxm^vL;g*a;
zgpMv9$2s&S7p%-IEg_Yv2i*CmOaN=;XT}H)2!P^f5@4<zj=+B}W|5U_%|D;6L)Z;-
zbL+i0a|0X0%#4c&03sO3f+&Ud4t5i0-asG=XO8~W33~ETY!sw<0OY|`&d}XjY|z@J
zlKpt;>NU>6p&@v7fND;?e*G(CnK@PULdQqW&qoBJ_)t~t9vB!H8%uk>okTjlxu`O>
zD=e$RK#D?!HQC?As<ko4IytpTMoDHu?g<1G9-KJ^hSr?(5AG7%iKJK8+3AWZ`?QMN
z%{}$P9ZgL?;ioGvD~p!>!WWjM00qw0{l^=YnMzqW#j|sB59BI%#yx^J2kr;r&WrT)
z7N8EG^Jf_b_ILL;qMs3)o-PRE<~B|D4=^q|Z=JERwUJ<F!>I}1+XL*Fm_RlHl)BA+
z<9-71UNH_78@)!&Hce8A%-K;92n~@)^CK;VsL@JWc)7u`wgiy|5L7lg83kdTOGYY2
zMi?;lJCJfm^D$qkn>QT6&zwJBCV68c$?jbyB@Pe<0tL7nFdr^&Pkop-tCQJizMVLI
zNF{Cn<Ny(0!cZ=DcFN%EmQv>Bzwo!KEj-zy@TVcd!5CSCVYNuHVW2fLIr-5+tksj)
zizJQ^n0)}cKs97&V31|#_mhn%)Jw>k`ucuzK2<$LqlF|uVWZ=w{GoQ?gW`)gF!8m#
zq5mXo`0oEcxltZ0ANi8n@Zye)-0`3auD8SyfyNh^4bw>DpCVo#7^dI46%8Zsj-G3+
zuX9`O=@ho0bBWtHP#qo|8JUlh1h^7-onO%X_8o>9(A+(@c@qPJb`T4)HTRY%^_u15
zTHNE35rARI3<k-3mC@pxEI=y|Te*QtizRfT3c^oR{=fwRC#4l0UvZjYIWd)NfSbi1
zX8l=bOapw6Q5nFWD|j93?Fl_pY3UbmwmzxfA+1{8h~42h?0~>SMM%E`NI3)(yZWc`
zun>@Q+?HH@<FnLQOWc<eTqom6GE_xoXU@=W+488vg>;(P^%NO)^~g2>NucpITlxO|
zGsJWDKrUw90w@?@4K?M0mh<M@Pz9a?jSe*Z)@Pf~uy!l3k=(sCw6#IldE41}y3MO(
z17>nSX##&+_kuovLD<JIM+?n`02OU1W1vQGwErYeT=_9HU)FYjRR=LGRGk{!p~Mzh
zciR2YBNKGoak~MCWAY)!TD$<g6+!p$R2gm?abgdAz~lzZr%BIATH~}0kPu1W7F2Lx
z^5U>B29O7m6DP&+2PP^Lv{xh&D1^XY%R^ZSMidB^z2eY+;QWWk0vOsyttb*dMzQ0H
zFuV};p6~73gf*d+)nmBEZ+)%w8%B@lTd#U7kA(Brd+?sSirtJd?N?BvZ;1pM-V?yD
z0SDyZKTS<qL@%*!xywlG;VV$&K{tdiVP)vLW{O;4`~c~ApC4MZAaNX#Xswqz*9Jw8
zlO*%DPO}lZ+p;L=&|L952oGD%{^ak3C1)IeCo(p!oD<+c4{jVWJ2qE$k#W6OsZ<v6
zBuYq308c^XnRQJ-Fp|QtcZH7lAysP}!mOo)XZ%3zAEIxyy>n|4+}d~VyB<2-C*q|y
z-@C?raT`_Knp}9sGby0rKrnrtoGbx$2=G6+%QD~IKoTc9s%N@Ebi_kJRsn<SxnI9f
z{iN&sDq7>tw$TW4`fk2!Ys*J}5Bz)xPLb#N*4Bb!p-zOpwNbDMhIuCVNsw(H1_DLg
zsMxg#7w+CbL}6a|0+Q4=MAWA@5FBFFh&8!?1xaS(f9&}`-z+nL|9|M8M08j_XP3jm
zH&5h?7@W}sL>7l^RaJ6qth;&IKUkQL)lj|uzl4WRuVY}M?T%RGLE{9kG4O@Ka|UDr
zt`fnvMEfA(36x8gFt3hTn!f-}2NGTsdKNoEUE2QN<H<o$co>nM_aLIU59|P84j-Ym
z096`hA@lI_V-O)uT@Z%=rlRcxSt7EHy-!ZYq_(~U=;f>p><DIL&LHd=Elx5%0W0Zk
zOUrKrC4}J%dT19h!MYTJP;|XE*3#o{>SF+b-3cY74Q%kNgG=y+)hoe>f6`G^H4Mp>
z#g45aOAv4a9fYom_Y%mMx>;uRIJm;fkiG#HgoOGU#*RgVZ9)vML+}^x$C2a!LAikO
z8$`U{*NO@{z+%qJ)3tik+mGwRb3xYZdj~X)Vzh{+h%Om`skUM_X*so<Vt5_*xHWOK
zc8d5ZB+1w~;c^VaOG_(Yg>ZU%j1uz-)Dd7cgKV=l)&O^_BTlJ!ABYTpC`_>j;US4R
zh3^rMP}GpwR^A}ow<jGj9v)rTR{1g&q}vFgpl9{Iegg`Fn7Fu58l)DOy9JmX>_dia
z+r*w8AYfT>yDtiGdYDEYga@5%NH$Z(pi7Cd0s;p@*p4)JM!><yOL!|)@WNvd-x+DP
zJ^hS<WeT7ep;!8q4{BR<&@V&KRX}iQL9WDZD?~2X{eeK5-!TmxTaR3JGXzqbZzrff
zlVz`W5R2V~2aR#W2*AN8Ep>SJc=~TYI0V=VgT^pRqz8?MA`l$V$p^_1kE~I?EET5$
zY<%DY;tI+-;6-dl#HjGFFs>+mnAh_o?FY382?E0ZL2-TDJ1eGF#}G>Y5li0$eg}=t
z+R~CxJyl%7$W&!DV8n^w#}mLQ$~1WJfh4A8^+^5F|3w5E<UJ5sBL$%)${I8&ghfu`
z{YJLg99xe`SlH-j1|uoN98Tqi)>LxV7(jKcxd+`CH3JW#B4O_T2*RSi$ee&D&S~;v
zeT;5{ZU#6HA0IxR75)Qy9>Gk)-CSMo%7wLHQ0#ggT^L10D&+>EXP2^*kumYvE6|b?
zpd73CVxGSqM1;o+s=u&W3AM|0184ARZt78!O8hpj_d+th%t|?LE=^C^3*tb$E~!p*
z&eGrDMUb8!ZQG4noHXJ?fp!EO-jBIm^u0d>Nz@1b1l>QszA;Y!BO)fB;j1hZok+vL
zf9sz5?evQm7wc|H9jE&4Ou7#Gy*MZ_asKDT1jGgE*FvChz^i-5Mdktpg|`XnV32Ch
zV-5XE&?EkiN$02ty$}pWQ279Ro<M*FC}ozv?8x3@{?v!!?dMm8%>%DItXup>$#}w!
zxBz2JD;n8Myn^>$!}UZiOA=66&Qt$Iy8rWyyV<0mqp<P}P$u9^kJbCjfPN6FctEz1
zkp~H7MAah@TK*9J;W=<(&m$08%q4xONOlkUDaPP9pE&~y{^)Y~)g&g#i-)da;iKIK
zq6Da{rtxfkWt3(5N4+XW2Oew4`tx&O*h4Cu4YmqK34;a<E)~#0%sL3%utMgT`KX8&
zeC-L23iTmyn290>-9A(w2({>)V;z7kBNm!6GKBm-Z22<oE%Q-GajIc~fmguy#g2!^
z5PEe!1W6`e*kx8{ne*bEo9hUKQ$Ya;B3>oGVAnw43Yh`3A44X0?yMoj3U+pOBJ$!{
z;TXp>fk}t2K>7HHl#$<0?DQ`m>G>P99tLER_;Fj};AFy(GbzW>odoY?Ia$BKR*MD{
zgg20|G&djPTJ0XU2|pMcLx`O~UE6mMbGT+RYo!3<8|GZx_P<eF7Qr3M2WX8JUcxK}
zLo_4GAx|ysv&l0c1|LqzNY*e?k?I_Y%UYN~O*k{TUrr5ELRgj=E{~ifqft+luU|#_
z#!}N!pr;L$tvWq&ZwZ)d!hzN-{~_bkW2>NMcmN}cVT1i5usJw$mDwVHS9jk*s9pdf
z<mM`YrvhVf@Kh-00aMbRg&2&MjKVKV{peqK*DtRjwfufCDFNHz_yAu7xHPO~{1{YW
znX9I8<%%HNS5W6Mo`rA!ej;rYDKhi9&d)59h;C1aa|uSo%CRrsBUOmP>lzxq5TnD~
z6}exj-y4d67#P_RHJMD<nZfMc6cuoD@#3`Hh8LNcO3KQ+;I_&36-|dfT}C{$$?_F~
zpByAgs-W-rL!S{nfrqssPBmOI<ed@PNEhG)gpi4|73bW4D!FgT#$T|<Fu?ynx+n@*
z%fP8{7y*qZCebu%?C^pP<}GXx;-7*u!PPhgv4$$WJ<y9zo+Y4pivWDEWDl^hy{@R(
zD<CiqsX3Ux?4A&1D91>3Ak}JV5!=06E?c8)C8&9M;4dS|$9j~8H)LBINcWiKDE#xv
z5|_hE46JQjso^N$o*I1oG4AsTc3D(OyJRdY(e4r!Yp?n@4vge~b4(Bz|0$$)8{~OL
zXe}T%1%u}>p7;N*f^IGM_FhZ5wG6xwgA!AGo(!V0%4qox1Cg22NI)=Y*7(>lpCNI;
zBgo^y0}=zP6}@qIqpCmiT{90GKF<JRGrIh^RbxshSAZ{7&z>+b`g!lH4;s>Hd@|2|
z-Iy0$k#*z0C@TxPM)aiEEpRG;;!%O~qXXMba@@FBP;f9#gTDIX6PAT>aXpY7cm@Do
zPwKd@sDcQ4j^SVW;|qWE#}+%5b@fO;u7+3Q--ORY<IjJPUG{}0>5zg4P-e?Dpx;$=
zxyR$I3Cj#F(qe;Cc=$@{Bc1^$vcSp!80krIHzwGP?LqxwfT{3MKtam{C;7ylIW+l}
zChoaOA{qGpIh`Pz|2*x2)1cZ9Ce1+U8HS4!zawYCfnx!sd8?>u8Bp=0Ls}Xdm<0pK
zU%(Hc32?{p$3G3Ff1c!DgXry^!%8o;PPt+7ZTV+do7vb*V$Z><mSDBdu*yNa%ds&`
zF8j_Z^}I)qz93+tg@V=qecN&`RC?+QW$lA1kmyIcxE4N3TWt8&^^G_aR4>Q9xBW}_
zigi-WPADdb5lYbAig7p1r2a+h2*&w?7?f=F^|C0voZ{n;51vT^Aw<KE5E@;Cybh|4
zH>dy*9Lnd*!G$qzD`KpxSa|f=*a+zliL~)3*R{KjUDtEr0FRR&T`w#Y169?4|3t`!
zu4<za#pg#K{T0$zd{6*Vm@yWY6Ij{<Qw@xmNC4w7De3sL7`zRQ50ok$bC;2B?tnQg
zz;#T<2?4VpGIDM}8Y3gzW*gwIufq$LpANz~kUO9q*m2LYtj5;-Fv0$Ugzb0xN-`Tt
z2-Ig_Hq^E}C+-a`?fRHf*eRp_C&n*9=dcK!H82;PLnS38;F6-Fhr)HbkmrAIs9ABa
zokQaXg(_k(j;-Sh#3b`KAp>_`!a^JiiO@-b4+_8zLkeDlsa*MAL=a$Snz<v7-4{n#
zoPEF@y1tKf-@ZZMzi1xSMiCfFfn*YY%UKx=OF=8n?4oF${ofRfoDD0!!4M)$qVV4u
zZ|jB_OG&ZL|5S%|Q-W6@EOqzv#I+I=p;x%ckCR~l)&c(-vwC(kCU8&GK?NZFF%+@P
z_cfOLyDdlBezS}IjVgea(1?hn5pG<W{9mHZzc3w7isrv@GtOf)LF@j+v}Gm)I3#0T
z{nulrtG=_`*$Q3<iGO{Z>NeXeHvw|WEL(**h%Gh#MW<v=Se%oxe0*@9JrbiVeNN&g
za2Z@r`8O)1fK96F$XrTj6X*z=8;UNr2tnwNe^YJ&UvTgP#<UEXSAM;5)0r($0X9dV
z_c%*NL#e00c~%R<Gyh?X@sGIe)gtf@YKD~`cbuvMd18D#mdgT99nbsUO*~HN5x$YY
z5uh1R*I#8zGXtCgY%+A$P$r<6e>`)KCz5V3n?XX%pIJE2CxX92e-L_fy^Zw5Jz3@5
z6atE&na#@w&~0GP%d%r_A<gQ{GCzeBOotbf&G5dDPwXK8TBM=Sc*A=d05{|un)(O{
zsEGikkKq(VpvHJnw0qFt(bdrb6AWgM1k;|6PdQu8N)d;-CoQ~8@%8z$nXz#?jF{je
zDkvrfi^XE32Lypa9c;?Lz}Ev)@G%R!4MT^N!GAC(kDE9B2MKb4<I<0*Dd1m${5e@!
zX0ZzHY<{$xL1}*Y&;UD>;MsP<=P=8Vp7bN;-{}u*^glKKjd-Z6qJrQ5{_WeD&LF}c
z0{%teLg#(2O#zce%kCly22`%TONXB3JZ-G6KeFu1uiSuA0g+--BMay4yLSqE<Omk%
zr%%E>JbunfRvW7$&~7_na{2N&s$wJ4T7eKsPaW@O853m7%jObSW`BvD6KVmfiC9XI
zYZFre`XY-0-i_SM6gKD@`e-$PViDH$Q0n?CSU~;hr2JZH&7XS7T{*p?drV@kx<zz@
zL<SctJNK<8X7Sp>>Y2O~_x1Z~T*EsmBl$$EGHX)%o{#cnR}Uqb`zcwRALSa|;IV=A
z)($ck>s-r){+Wtzx4YeAdE;wmARM2mE|{vm`ax3aLetZya9y~9^+%4I<!c5X_!$UZ
zo8LCp?%%VgAH`keFv4k<eX}7>KaEAZ9XBT#N(Cx61iy!G@|CGojdV8&{MCH}y;n0a
z6_U7{x*0^v39IS&Bi^c1o5VPV#0If*?*g(cVbZ;TWasB-#~k7F0zC@S?R6WsXJM`2
z-8U-UKkuL3CQT4A5bcn53U59d)oJ0_=pil}fVUxCz7anzj*JQ(u|Z*Bw*>EVDw<Po
z+H_J`IlFD7GA4t!`4Z^tZ8&+RT?#E(!nBe@IiF#_K*J-Cli}#5!&&Hz&+=K9#&WGU
z`EDmpM}cMnExFV)pu%AFhcw@ln*DZltdMZXg_VnEKpT^u)zig<qpOJ>MPlSypT@z>
zZ2?RNbs>S^+@j+MDL=;S47U-qvHI|dVD`Zxcvg1dJ}zU+>Oi<IAUZ%RRWMP$1OFEV
z6cRioH?Wp)PtRSr0D?pFr7Jtu%BkVJ!NnrqfkDzG;0rKG0GyNqaxHdJ`p>9`Mov9m
zP<!BoC3e!}3JPB-gQ<j!T8MgXhdU6ToFf4s_z@=$cJU=%1>%Zd%BVT*!k&fv^C6C0
zyyO#1)f0Acc7`P&qVL9C;siqK@9Ue?#ZG<$oI_S^=Rpe%3grzH&#<4v7m<Ylm;-PP
zW)dKPB3GrOfe`xawQNecjTwj4)$^E5hDqtoU~mD!;5%LL644>`J=x<|*U};g)Cb@l
zuzbC{71j4|$xFY|U?yxu`xQrJF(j&w>YYrE;J6@_tmztGnyt~))3Xo?Z@qY>TZNXM
zUKlI_ViMiRE;7m9*q>0-0_p({vUBG}0VdJAH#1FEe0zx;k4PqQFk&E6mLu=;HPL1^
zmiu^l{ej|kErJUzH9uZz#Zvp6S44!cRjb_HvwVLPRp~qRaBTYd`nF2=-Ze(w47+}r
zL`aI2D-rXGeG~y175ueZF;<sE>OQnWj_7z`)yFT((Md9DI$dbr2$ln4`UXgNM1Q!$
zB7%9KCPmHFRjOPRK1KZ=h5JzGUY+T1Y!h^+`Fej>GT;&zVLkXFn%k^|4`b{PZODjA
zPfqaN3|MT*tXm^zY*^{F!KJYCjKH_)*`G9tN0jenehB#-C3Sr^ORb&n0!~DnPLj1d
zsJ&s;fyCU<JhyEG9D4jt&*iM{-V`mKa#6q_cLoX%OHNfEz*;BP2hgZXFPGoO*G>-9
z+CN-?zut1~%^Oe5@5q}7Fj@EU=tnYNh}t(}2;BVu$bx;-0Jqw-ZshvoAuC5qieW@5
zSO;jsLB)A}B)d5zH^;i8G9#s75JE`HxwTXVNLrKHv(n-&{1lcu)^Z4w+HQKpzu4cr
zBvQGd@7Ev@w2-!1SLh!xK<JjQ@8tNn6Bb*jE~ZLhyk7a#HEft-xcxq!K*fZU0P6-x
z7d}N=7f3N{H*WtrIJl2YL9YNiC1e{YV&Gwk-o@tBmyvO|5q`1AKJ@lB?JQ{a?aVI8
z2hJ~9X6ZdgzBeh(&Apz@4tW&n=5*dRIPU@hYaSfHg3V1#MEmw`n^VXQJy^*?H=C_D
za_Z#aK9}+IHzTu$gqwkS;eDK<@7=lcyjY&_J;$f-M}Gz+0}RdCy=TvUSO$PEsn%%-
z_z!&p(X(%Ff!)-+bS-o@(UJif9_}}nj#?TPt8I%93uE%1ARJH?e5ThW{w%<TEn~tl
z!IQan_wGXY^w^7=o9VQ>Hf(1}o;51K+WEAJ#AXMH1|sN`Bnv(Lk4m1jmsWY{X)a*B
zgRKF|=N-XCC{x<^7v9B+sfJE!`T|C@A-f%N8(0CSKF+-7(BEbC^;&z^m<FG3>A8F>
z9-xa4Et(;)qHEm1Ur=(z0KWomzybz?Z7_kg<i5xnhRvHNKS+#$plOPphTd}r93QYg
z2G#gD=+J=nkW~Y1JY8I7oeN=@C8}J6Scr=Y!06yqJQT?Xyb}a+=!gjB0tPDmz{|Zf
zl#LQSuS@u_D+Uo`A--6CwLmXmoF}cIcQzA3)N?|Iq2ECUgG1&lQ$JkSD~AS_$BC*u
zs^2MkS!VFLt7K&eEXs8u<ikbROw9uk(U4f1J3Q>L9~8{7v8D0SO`x-0hbW_x_0y;Y
z5P8X3ect=CmP40C{pG(P{=tOASa|y`nqyH^A-lO7f8vkYQ?uL3i88JZs|@@dOa50X
zKGwv8LXl1(gXq666KI12o`=2o6$xJJt3{(ajZ3|-Z!2&mf!@{G*@>WnWUT##aVd_*
z;oSCd?LwFaa=s@l175!Tg+H8rkm?UY`Q70%)FkvM@lM#nOK_Pmv}1NpR|G8u;J!Y9
zb_5&DJcpwOr{c&idQx}!2nLtHK&Ca_<k;19AAMuF3TXO@2XN55%P`Q@y-kbfqSYzH
zM2!=-6of!*pRtI=^a|!kER42G#k=6TG`HkF%eNm1H=fE7a+I{2D|*JLLmcuAoq5>U
zdZHXVujJo~G|Cp2Bc#)yV;U|sWB!OUdJUCB5PEc?BZ+&i*=e)mo)GMpQ$G@(VGoR4
zTSjaw)6&}ViXdtSdr$nPYQ7JW4j`Hztp?CQ`Z+%SqHP2rkh=6D%+WuruG|c&!**TE
z+&i$>WwS$SS}tKHA(}m4uOHkv_;%#Q%aPx&Of;AL1`fF+;lT8hSH6adK|{Ii)!I><
z#5_*#`=^V!FwnS^iHGAS^so?e9UnD|<yzf+$aXKi*X3U?70n{#$>ze_Jy;cjG`5HK
zegR;EMJm+{6GqqyIzjt@$b&P%1+fWx^$snLN5zjYYXA#h+;KETGP&mBp%_VLA+*?Z
zANsY)W&IK-ls~A1R$rOsp@SPMHcQ_$UU%%(a4G`yX%S{`;}FI@!OwtuJ1ki@H;)(q
z!%34S+mB0*<y?n$0hss`bG_uoJ)E4lj>?g9+wVLH%(gzqwY_&}+*FEJd#|r}X>ZQJ
z@LkOX{%C#hqHf)}(<iF(dy9!dai4ebkO(U)>lrx1!<&wSVg`)@B1J*ED-J8+U6TE&
z&KA<Or=3Ua#C@o@^@_)BWP5w%p^r}mQU}7o16c>up>EKtgOHolfQ%>;sRz=qcH7#+
zXwe)$a^_H^;bZsZ51aHp!{F+O#S$?}n;3G8!w4X@8CNu5wARAL(c?rqI6JKGBgCi}
zMBn&X<N%8Cy?ZN6Gt+tX^9_R%(2#<OmlJ-kG6wK2@ojQ}Wv`xy5Pfsw+f7RM`}R28
z+P?6lCj3C+MEVdYZBhKuHqVYlk<RI+9ymU&Z~ZG-3JRGWIt$2$hzmzZ0YiL~<amjF
zB2fR!!DmkP)C~Qd4{q}Pzw$vm`J>*{(0IRP%173MVc759nN_muU6X_80r{puAW~YW
zRQIJ}jBY&<x6yzBwN+&2y|!t49*Cgvm{X;P8EIjuk@V~t;WK9`f|C15LIOy)z#upQ
zK%p;zND0{B&RB{~ev|c%eZFs)B%(f)Yd4H^e~Q*lY+&;=(AN7r^0QpxV!>Yzxs3#?
zVR%UxzQ$f&e#Y5f%x8!0!9EC88CpTx;o8GWR^GWA4_SoT_f6zM*Lf!oR*(~bS~z23
zG&l+-#LxCuJ7YKp5Hx29S-@)pI5o=$(F}S&2B<Q@<38rk6!!y+vX=n$i$Nd7=5!r=
z`~Ze`jdkop$1)&F@r@68HL{i%I)!o607j855fSO0^rFt(VhMl2IOXES?|>T+KDT^%
zRys2K3fg}=;Oj^m3CTJln62T15lncPuXS6r#a|#wLA!>Mv?2JU)Njn>O2yd&Ainam
zyqw%dCV^PDrNxcAj#!_2-f>8s9v<yk@QX#2iBI4yz8n@{gE4{p1Kf2YQQaHubQY;r
z^R8F&E`Ophj8dC7bq5|}hSnFRFHq$Z<r+S$+F$qcO1@n#Vn1?sD0WB{caf!7A#KiF
zedIIxY+Sy0sK*r)KIc1LLg5c7Ab39v5JZ8q$-)9|R&Dd8aB+JJbXU<OH?0m6gy{Zp
zF7)Hib<%r*(nJUtQ?M}MAX1fK&8Q~5SurTYlEeC<obdJ<!dw;S5ph7{ZUgATiE3M@
zMEjNymZJJbFI7Y^TD(0qjqp<hLkI+lQj>d!<%7-vTwXBmygt)`7-$7AJVC)L@L~YJ
z07V8=7gkYU{0X`O4&d$Ew&YrN)T#cRvP)wQ^3h#~ghf-G;SV>DCL7KaNBlZ`ArWu?
z?dH*~R+A<{5QM0Tumzu9Vg@=^&GP;`Ey0|tbm<+=E*K-A_1N^54Qc%41LGT;Y5&gR
zbA5n)A#<EV4q<t9-AWmWFj%_0KR1gN(9n6Ko$Q}(Q#^_pt9|<ucUBx+_^LrFdA>(X
z%o!0Fh&8j&IfbhgAN2q@>3_%{D@tzHoh6D8s2b7iy?Si5j06`Ck3K#z8t-^{63KBr
z*ZNChFcGSZN=N4tjEpA_!#0&fnIg2oQX{+87<;8I3CCm~jFX-f9wo&t9G+>n&E_ZO
z#nrWTQwVc#eElQQXXOHYf%x+HEAwCegV<2o)i=`2$8=B|%(kX-d1jGGFCVGW%c+GV
z3tt?&j6W8~(L-|A0>Z6x|1sD43>H%CQM3F=?O@K^vBIlK?SlUDkK`Zqh|&yENHRWk
zPvndN^`II=T*SZ8PC&j1b6!*_V7IjLQo|Tg7ab#fK^cXw)kjq60o>wMklDUIgX?)>
z-p6Wl^%x44JLdWEb)j5z(8FSm`Z0PrpHe!gRGFDOO>rA!sy44a62!SX)YyNY?^#`~
zNA*n9Yai7=C8$s@3QKX-!)6VKy|_cyv%Sqo0o>JS@f=SI^R%g`Zu|OLWD3CD@Vwa0
zyP!4`FA^H%wX=fCBUb$x@saK5t@P+Kc$H{ZS6tD1-ZW?j_j}|CrRZ^pioUFQgBt2S
z?C!rEKc9NF4tLDxXb|U4iM6D5;y!9*a2}zBQEU)rRff&_9Gig0e}3U{y_r+A<71)6
zi>Dm6amTXbZOB&I^z5Dj<(!H^ocpSP+C4G%jc4-i5l!VQ#d|Qk74UD<SewmCiZwBB
zh_5S~R@!bovxx*oOy~-d^`^_C2bLe}-vu4f86}Zu>CrADz7Eb%w&>nJughQ=NW4Yg
z^Zxz$NJuXp0*?h4-66-*jD6MCeMOtj@m>BXLUO!yzeY(UR!+TTqx<)D;;$UKoFX3=
z=KSb?6<+NgDK%QTci^%pFN0-&-edz~at%ZNBpr8*rR|s0WuW?_nXumToV=-5XZ+3A
z&+T|e%c4T-bcEI^dO(!MnrTBxRBYMQ$Bkxz8V;*i=Wfu9Xnp?s)$9D@Rf9O;CE)gK
zaw=wO^7u|ZI%g%J^*`0>&${QTq%{xQi65b5@@7-aDExvsTJidl{Mj4dxyEvM+{w-E
zkTGTLg05@N&rv&ZON(ljh0CK&^W(fUlNSR!A`8E}l!Q!@w*JbaF0uN~P^)CMDud<Q
ztutS&tV9B~MO;yVHY|Lg@>1WXw2yJ(uCvq>1?Mbxb-L2p^CWANT-VbUI|3GDd{*ta
zw8PBW)U3R*BAzR{NT*|^V9t{b4@N-ih6qR`vPLCwia~N8>=uCf{P~@Vl{+rAnQ57t
zomSJ)G$|e&*V7JdQG+;JSJymU=b=iXO_9abb!$jwe7o5Hd>oS-cXF+Sc@79a;tJt>
zzt5MC&X^~oWd#13&<$AUmR`aoUHz{gPUF%TWwzt76_0`)Lw0`v!-|)M_O}W?9m0LS
zyXH`5PJK#sUBTXn_E}x|AkM@F-MO`4B=@$q=P?gj*PfHE>nSO3TN@F&EkcdnAtWYx
z@*uhBGO2x3{P>@bu?`<2(%i-LWk>XNYB4&}<qIC)*O8v4>4x_>@cfA^B^zIE^n24P
z2cMyKG1j>iq#;ZE{6;^@@-nP5Q2nD`bnlm(`?Z!SyV``qgO1X6*FZ(u@buhs#hKME
zgL$)=*YXxmWS0&8?1<-S+N!@lOYa4)GKMGjUB*RQ1x6)aiF*tWw7b4HXd5|+?qtg{
zK6ymN_2#{i$&Z=Bav>U@FFL$5q9)aRX|<746KZ?wv3WS~dq%u^a+~=%U54Fx@vVUo
zhOYA`<QgP=vg&;0;&^Xge-n1&us@kizptz&a+8yj&jAk_lQ+i6qjc5YYqt;A9$c!5
z;o&`}ac1B}_p33}sC`NM_`45AuU5=G{TY|0WB2sX+momA&sWQ&xw#gIrTND>^Oe^~
zIkDfSQPP|!VZK6+tC6@TnsTfE6S+tF<Zg+SgPD8e9VY7wf7GXK(>|y5xcJ8T6_+b~
zsb<JO)f%nCg@nu&njS4JERvId#)*cO>UD5ng7>$Rp`{CsbJz1tyDF`I7nBDlgt_e4
zLm`We+>d6v_CUqE^^VC}mzsz9{giDrmXeAQ_7Wx>=X7m!l0#+(a{2O;tG;_Q<+~2D
z-@e-t9KW*Q;DM#-sfm>v(x#s<rRG&x=swq>_l>_U6OuUTA`_F^Ulo(-5#9eOj8isW
z)25Y<(zWoSU%`c@Y@ED>Y#h;(7IONEg6Fpv?4DYSFGt@^99S*K;i=%8{+?Sgp?jwV
zsbpjDc`CLaBN;54p7i~4ihOe7T5ND}?S|mF#jdtuOY^%4V!HP^>-XJu&<zsULk?nB
z*uI66lEHa9=v#oC+Wp=Bf)w(W1YRW?%jst6i(7Wxf7tF9|NZ3q3|_I_^=wM)6teM3
zlZ(&yZH;p9R4se_FiCy8$%%Ask63(U<=a%gtou#`WMr`Z9*SP&Pvwz76=c!1#78o7
z?BZQml(F!RF_Jm^#@#htZ4>oaO~c2BauV6mY&4eH-?G>|iwqYV7E8lD^bXtTw7+1x
z63p^)IDdNGPT`YJe^i?4`+Un%jNirfqb7reX6Jj57h;4a7F8Cd_?N8e5*|DVqOVfh
z;~$6*(!i#q;z_$lVK?8I69!dGG<H@u<(N!Pi0^7TZ#mOaeICpUmG}DhWw&j?XXe}+
zbly{Nk3zk5pzL1C(*l9alsaG9Ug14KXX(l_zJ=fqh2Dg*n&Sg<E(K}^Y+fT5U{|$R
zaIq|2wc^oeT&Gqt-%@W`-TtU`KSv+B#L4#c91F<uKez2YIqp%#$x9Lj35V?1%^BEa
z)i*!d7+{ggWpCu7)tUNb>%&%0Jb>FhR4P`i@0t#O-AH;la=xE|Syc0mZOXugBE!k|
z(noJDFlp=-9|=p)xwxynjpJRLhVFSO`=2()Ti3{+Kj#$1TeZDhJS#0RH=2iwn?sSk
zt}E;OQuq&p0~Cd1wP!kaN}cHf73{)Hj(WXg-K7-g_n^{|SxnomOltadboAPT6tl{g
zY<-O?L3C0E5yz+W?%Gk`o2Hp)(2BHbVXT~q;$<^y%>2S`{wD9@NRewj+v^qO2lWq3
zrP4lZC9hK~*)=NL)MEH-O~i&D{8zO%juwuUibNM&P>7k<r`cJ{^Jew!bKBTL!h?&Y
zlRdVMr+>FE^?n=3`OJ8ysgLIU-80h-*~vC1&qXUM^3Z?idBc;;=sJEv=Yfn~%H_{V
z+m7s2V&AR3$!~)CXM={eK76@bY<q=jb|^$N+Ne{cZzkR?(y{a6yc`=dF>|<OFt2g7
zqWPx+#bXk(o>c0aqiFOsV+1s3XgMl^yvjoNJ^MYg@t%MSnH;ybyz7*f@$PMn?U#N|
zZ9kb^LOn9F_4}iwl$>)h{4G(Z6|RVT)@6QqB^Xk0t>d+8p~umclFcLH!AA0@QtCYH
zjV-t8WbjT8_umlgj3}5nC*Q=wFBuh9cd0h9SnT^jdY+eiI20o^2iH7jJd&yHwsA{B
zhu$;#Db6w*i!Eu>vSF;`pm^sX)1I&mr0zX}59LjI_eI#o3Oz16o643=<5oET;gsWW
zc7bK(VIP&E$$I{RqEoT~iwgtZ78-8i&0+^fJRc7UmA^IWWxwMxax(H`GGC7No*&z3
zJKi6xIfb^{Qd|Cli@!RRB!z1<)yy-1OEIlx>6yOMyNWcabK|P{dpg~O2O3Z2()cq!
zVfeg4@W{?8R?nQV_87yyGfuncy}D_ReN3sO?e5ueB&a&B{S9CKU7CCMoX_ZdU%cnm
zqoI9o>8!7*ri;q?TSMRP(I!1j;pR>K^xNcG;jR(-nrA;&h}V8lnY8dLGbj@sQOPgs
zI{I*KUf|~Fy)Vsk>X}A!*R;<$)wN&v(zsGTKjx+njW$Ef7Q3Q}>qj>-5A`MIYKA{|
zs0wX4b#~n}mA&#$w@p<+oWYzoXt&q#Gq7<U|Hw18#Q!dG$<86Ds43$o^M`AFUB&Nj
zZT}>p_PlrPPZ~9$qm^;~nQ~e|J>oKITw)`uu6nV0x^@)s%uoh-_+vePEvC6;eKdY%
zcin~@w{&$rF1?Q-=qznHQ%{QR<F1SEf@Bjj631^-aWJR6I1_|mcjCK**2_VK-8+x2
zAhmNU+K7)Z=-T+d;@{2|5@=sO`c}uGVAhO()5e+Ky<?7}hs}hxUnm@ZTLQ-#x$mEC
zCFep#Vj7;l<S^gsrjx0d+#n@5;cCRfpP%=}`Wd^qR!d`dR^%g(RqJFOaVK3bbb2IN
zSQ->}ZYke$w*Ju6bFY}%g{$r{Gv9L;Lj$jdpNi!4`5iSd+BmEcbNzS6=z{s$O*JXu
zOU=@IQrzB3^@-9e(iUHAk9K?ZeZFk7|HfwB-K0?x(-zLMkN&>>2UjbONS_vvlzO7A
z5tjWbBth)4jgwt_;mn>-<dt0#NlNE6r&Amm+0|9=zCYBN$LSYeI+Ufow{w>tt$292
z38SJvRbuvh_TI62ORrkSG=&z&PqED(TzcNW?CiNhw=PlnuI7e|7B2mjn#DtslF?zm
z+|%wQ))-hnFN)uJT87+Wb&!T<OGBfrYD}GPWzvk)Y(_?TQ}LxVDw8p1tI^zAX|eLI
z=BdW!E{SOS=mwYI)h>?Z3Y(sf|LzUV|H&-4UDC8rz+NWC`U>5?NQVpDi6H@;6T|(6
zUJrPt)>qLA8RUMpy5GdTzR~}4W^!7iMO&bar^a0W!}ptpchWZVh#oGMt@|BsIk3io
zifTyRa=%~M#pnA2&u?Sf#`Z}}G}iXHqiwB`&F32WWSgr5FH*QZA)SiDTX*F`A^zE^
zGT`Iabb0%!G=WFOxv2?R)!$z4?T~)R`n0mr;;T<Q$I8k|o>kX2hH5t6JAA;WX>H(-
z(8cTgzh<3qbSlO3Dju&4;;dJyW%sPCtP+{e**Yb)E|a@>?qJ776RSh{rEKh;lfK-w
zMsd#Tb};Us`!=SjZc|qEHSkBt;S64F4UN^m=6(zfCC?j8ehXd_b&4-3O-ydBQ|vQV
z|B$+t#OjYDEF$fxAcv>_+QJ5Fwf!10WI1_H`B!^npE}mw%9_$u-nZk4f3e$-TM+@Q
zODe9>G>KCSC-1KpX9+UB>Pe2ec4zlv?GtN9KCkoU@Z{#^Sv7zC$;snCrUW%K8&8DI
zZhk#SW|mqt%Q!ph#O`@c*Dh*H%0u>xAJxfm85zFH5;Thb6K70+S9aZP)+rlQp<=UJ
zJZo+pcxvy4o9pa1{g~q2$9G_;QE?M>McC7)DeK2)1{-VKI?4@?M?3e9r6oplH-u3>
zxwxH9F0xK<<9)74-??@0$eHh##Th@ig(f)Pi8w~?IFL}gxJLis&kw0eatyA&N1{u0
zsS{tXRtyMfc}+{tBQ{c5R3fKT)b=1kxqc@lEFq8EC!(bDIlTa>`vWV7=POu1T51F(
z?5iyZKUKYLKHrY2j@|Qw`~t@p=BI~m%JbQce7{L69^|k&eUFLECVwj5ep<?O!xa~;
zI8MdaH&*PWS-gK`=zH9c1D3fvGZlnuX>YO8QG^q<1{+hl>$5ZWQoy{KpN><@zN(s>
z8hyt0@yF4gUDnj!UO&6TSwpw_Hi^`H#$W8NJXupy`;p$g;a{~LX^zaI?`@KzJ3N*q
zekAPO(-C8Iu_M?}*>?MhLk?jFGxWnIDM1N}Ckrn3delfHuqX;fEgU4X1=o*{f1a~A
zIW{nSn^yeVkC%q=*RQ>4^i~n(VfAb``0aj0uU}3r$m8b9yWe%91F!egrDqNYXQq%%
zJY>mg)coIcLVb*6AE+q2rzk$Mbc|I?Hq<l?4gEOh*vxd(Osk`J;8V7in&^wfO%#Pk
zS_`|SJ~WD6eCICGzjP*7BTt1#GFbcCq{k^MjbM5|s-Uy0k0c6d)9)LL=I5&AP7uAr
z%pn^f%;9vI`{4II04fqrN*e{aNM7wJ?%KS1agomLckQMM1z%&Xm26pj&NIWd{mIme
z!ilfRN<lh?Cfh_@Xem!$l~+%SdpEyVkPnlYRyp@NjEmQ{Ncd7muwpu0+>OFlKGQ?Y
z_k}G=UJk~568&u15Ky`1CbbvJ8pl!R3yZlAD`jYr#I9D<kNVnuqmYh5Uy~jZt+}ne
z<I7rii6~C-(v{QXxQFc<IBNpwA7vR87&xbT_GHgK+%@p#=!}$IS3uF>m5vFICt8Qw
zYe$1?8CVphr^^z@$SbA$i>_ucT;kY9!*(K=i7o4}^GqAd^|EItILqE;a8-Sq@Y%w`
zd?4#p`3b?598LlSG)4=3S~K%<9tnQQw+Fg(CaWKnzVh<<;s3q;K*rSPz=b`9FJ#3o
z`wAWj;5_n?T6y^_p6Z{Anb70+r3>IS@pvIl*0NHaB-JE|HI<Bu2ci5vkab+`Dc#d=
zWNEdKa%d=J*V89bf_|ilBsxycj3CxcsZ*Ua=;%47{xEi`p6RAyL@5);30B=bWOZGo
z2u;hw(;gqzZCS0pf8|~Ug}Ws8NOwBQnzF`cVvT7_!^6LAqkj*F8Rs!3=dkb;8w}l`
zUB78qUFYo2Zl{9-H>rF}R8+=zpS|GloWEAUS<mK+N+Lw#^wOdZr*h(emh|k$T#L$&
z9PM*=!td?a$m}>XshfXT>31A|Rs7d1rT8iJD{ClRl37a6!at5j)AK3B2Z!vwyEnC8
z6fsPY^DxQa9H)}Xdvn{?YDwLNlDZY-xQ)eQXEj}X`_oRxAD{B@xz}2EJ5{SH3`?2Q
zLHuI2b${<^SL4Ar|K8kw{+OBB;4c*&jzibp=RDf|u-q;$M3(I3<HevIxc$RB0X^OO
zFU)uf&dQO0|90UKxxYE;kgmEzzhPmq?}qZQo=<}p_)j{y-te~nK|K>bRh#I)cESC0
zXHXDBKuSB+u#Nd{;?ix^!cSFLIF)ZeW+Hn;DgC})hw<huvX<w(weo^yQmxkpajG|*
zWEQ_NaWR~`xSS`gJZtQmuBU3R(P)OoX@}OD%3H=?Lw0UeQA%$x`2IAHS5IlA>A0dD
zSLtn(OiV$hioUz|-DmCIyoDsQAyzE=gT%E<@{N<4k#rRP!}e}3UKh=LGgk`{|2<c<
z)NjjuS0>{VNBd0iCC)oa{!*?(9=uhBSLJB@e?CZ>dbCnimeI&Fz@|7|dN#E03RRD7
zbddz_I}Ky`xd#6Jtp@UBv0YmA#(a6|w`tc8el>r_yIvqR<mTR}c&6^LsdE2g8j^Pe
zeTRB~cQpr>cQ#}imalf#kKt<N(=78G`RHtQb3cj1@J3Pgh(<~3+r0;ToXj*6YYlYr
z2LocK;yx!o7(O1~p?7MJ-tl#^+vKSWH?Y}>F3>9qG8ql5rVi@;R9<pjw|}fTk=65b
zq~N}{Utef#9g}d8r!OP9#pIf*s86hxx6xpPafgd2x1@~XhNEBD)2G!FVwjjO%98ix
zGN;JhmlfQ{_G4ii2S@46<dN#pPX`93*3(hqJDwzXy`Xiow7*^K6K2y5GnW;MMPo&?
z2@xEE_wyYmX2&c|Savpb*nd2iY!Q0c>x!B@I<*}>!sRlXx>7xwj@^IzqdlpZ-LBSX
zZNXeiEsg#ip}uyJCAABkKGC`cBQFf+;!b3J-xdO_kd|E`;?$sGt7Fe5pI43>eFy99
zNBuS({#hwvl=4~X`s9lV#Yg3P@7RdT`Lfed-sk^}k-B<C|M<|0U!QBGex0hc@m28`
zEdMn$rs==?z2FPScO{(-d<;93PtnUU81DalSS<9Eqj-SB&(v?JX*CaLhom|ERnx9U
z&;6)kxgd2|YOv_F;><<|zWwLjUQH&4v2yVqUAek@(^RMHL}{}AP72xZ9sjkVGUoy|
zWI(qZ{L}>smRb*xjeA>ZW=!^GHd{$Qn;vfLR=%5N@1q!G+UViar9CW^?=?H)`(1Kr
zx>)()L`xsfugpt_B&F@EU(PKFjV>0?r#~B2D$NKH;F|TjXOz|vQ)-;n$nz#FV0U7J
z^|nvBW3ffXsnwSUZ3dePb=RI;Dk^+)+U@tCF8^_I+&5hNSWwJ``L54CECmBS>&C9|
zSvGfaI1D#l=ri_^eSUwNUJ;kZ6^+^tsKpi^UC@{%Y1N&g-dklO-?`Q2)F+F^RcATw
zMdgavStQixc~NcNLQlCB@9e?a!wE3F>NT0omrg<6bWI_rS9Nr;!|#d)W%-VFMi!UF
zh3Nr)hI{!UPxN(Yt3Kvkn93OupRZ~v^=O(~;Lp+0Xlg$odjH9@Pd|dCI-h)aeWOp)
z)Z-kNxAsT+nxq^S(b`kJhKE<KTvfoQWm#F2_1n)i$l2}rzH>-q-kV(L?KV5oovC7U
zMs%d|&Nk;Y8}>+wzP#G}fmdlDx~3~#<hse^#IfMbv=rgA-Mb{)!?%(cJy<yvlTrm^
z4ja8VU$MA#*df@$ZBxu;mGfEgJe5T<9;~#KLy?EadLJ7d8vAWsdPIeVqMlN!bt>&)
zNf;|<ecVI#6PXqfWz@;{&0IeWv=zD3HZ&wGjW^z|EzJEn*L9$Fz=(ONq$9A0O<Sb#
z@G+55@jO#~htQS?ffwtP)t(J*E9!g_(5-U5FO>6r0DUs=-Ja|a!|d~2=J&HUecQ$G
z>3zl7?9tAc#h6PXiVtgN53h+XzgfCgo-7#|ex2E*H{a-9pHb4aUqy?7J+F^5v_=Qb
zR^@1TH*;(9mnA9e?Z|M9|7{{0vH0mFI--|c#j^Pm6|WdnA4ebk#1ZZ&ennd{TVjWS
z?zNm(yfN`&M}|jUL?$2qAeN#@&P(ks6;A%hbW`Vbsk(iO>3&AZdAsPSNc$lBn%{hE
zLvPTF1WOuD8#iB<T-g~CN@`Dy2z@|Hp|P|#R#~4m-Q?n6DthNzR(RD09;I3_tAh_)
zPmPbiCP(t{>nHn$E>XC&$}A;yLyInXrn8Ry2s}DxnN<1e*lM@pukhVvk{aEu))3lb
zfAIWo2c^fySy;^qN1Bo%GOp<>hjX<m`u2Q^<}PGO6uPC7pBMjP_IOc))=^uFP$~ER
zPY$+ud6PjM>id*7mtB5X`7Y^4(6<*_Mr>SqCe-wHMal&i4g&d27k2zo7?NMyJ87<a
zpDKub-~FEKhpn973bwtz$!hNNI4S9ef#!SX{Ot86Cur&4kEe9^42~?lJ$hZX{>t>T
zD{dZ}qFy?2Wy;#=@M`YnEVDTA+T+6xlQ&wYv@~5h)t$o=bdL-u*>3mAu2gq^Z@T}1
z>|RB|l;gFQ1-<dB{QM@tE77-q{Pb#b>{g=%rQPF>U2|ba$<yOBwx5$~w#v~zQs1#s
z;D{bKe>e}ngcY(*@8<R5Mn{H~RsCxWw65>2)id;^>(4%2(4@3E>V8sH&Jd4^PbjNG
zMDyhKEk}eLl)S#ZKoXP9=H4%?JYV)1Fu0yJ%kaW0V^1@cqXzk`w-R)+<F+IoVm+Zs
z&!fnmCa9=#Y-CE1D(H#sLB(|Hv@LQHWn|9MQfE(ed?+7N(ogaG_M2&WQ3WN4y)M1i
zFC5<>uS#8$MD{qVxi(Qy)mcMOQINhyG017D?%m68f#kz`6*FwkSxnD9Kd;r=P=Vyh
zw_mPaC6n8i&P=6dy?A0N_iYuA1TOhlrX$WrKJq3`ggkU0zL&%QAEIJ*jW1=d5;}sd
zzlEMdN#*pwO}Zyy2fZcg5%DPs16wOC3+aMF2Vw&0m4qY}Gb^_~6;5nox+#{excUEU
z>)hj^%=<n*wW`^@DP?MhSmcnAy3t4ojng)0GRiT@A)1_$93qiItq_y($T5`;EK`&7
zA#Fkql|zV8lvGG7mfe)xpG*5Zuh-tM$6xZ&%ynIJUB7F__x*W)WOk%#Fji5F+cU36
zMY?dxVrSK=tOaj(Nb;v%YB`HAJ2M?CbVvmq5|k?)pB182($`BS_N0kqo$qu_R!Wvr
z;l3erE9d|He0G`|+cs2GJkj~2_J3^MQ3hc<;j&}}%Xb|)&dnxGPLg$Ha-u5To|EV%
zg3l`riuLN54I{Uj1t#s)0ms)k4~+!cE4D{zDAN+%jz!;kSKP$CaMeEUP}9%Cu5L$D
zdHxppXs`V;r@!aEd0HHxdPA_wrY$$@GmZb^&Y9IIjg<Sj#Cs6j-g?4ZEmaItG?Z0h
z6=-Ikg7S+ubiM3a6TPwle<@DB@G1MJUvtW`b8jB~F|K>=u6J*xv2M->QT`Qb_GKN(
zCcE8hm=ct_hl2P69y0}@q6+CYZ2JDHtgF<xmmUsAf_RN6^#*E-0Bc!vo9xtL|3-J4
zFtauqf8W}31r2gL;#LOI`A51|H`6^l8>1tO3RP=d3M$qyBP&HjB(CneOnZE8IH);M
z+pgUxiC*V@h?P*3w<KDec{Ki4<DQOFin`~sE8pL|aza0dzB9YZ>W`_zO%`_tMqjSY
zb^7ZR_MQIDaifVfy*@vsO5AB|%Bw8$K)m<3V!fuIG}xKzanWtb@T<~py~S;grn$oX
zWmJihKWDYF-^;CDOmh5=@wDkUb$^vucS)_rZ0GlSnoNzgGfqww5w&^w_JMt5F787w
z_}B4%i0a(r6Zs+6&%(IHdi1XD$nyR38il0(BkBydrw<d4YG<r6+M)c;E2H`GU(9Fz
z<Ea{ve>}9t8LncxZ~ptr=@5&qksP_3`)4Q-^DXj6L!+KM#vH)58N2-2Tz7u;wxZy(
zV?l#OrH9OyS2&VO13Wo}#LU_6$FxgS)(}%ewS=}~O;(y5E&aN^%{fCB#?}ILWffaf
z&G0#e3wG<v!}PuH6l{$DK7F@$Jfpf{>inIZ)F`*VW|cgDUf@@q&P+P#aor>xLdGY=
zj=0Y!lSqB`V_9)#N%Tj_L65hLv>8%ziK+E9&P3Y^(qLlOM8!Ip4&SuF2`z%eB^A>i
zMvzX<re{m~)%`sVr}vE8Qo1*tdHGfopVJrht{_?MzoTiqInHRfbu{CLLa~RM2h2zx
zq-7MoP3ep=rAwf%-%LNeOa94=$>VF3Hkh&%nX5!{w~;U&J3dAVz3IDs<~tcNpK9M+
zor}4WIm;O05wm;ermjdUskLZ|8nY>x{$lrh`NpsFO7Vn&YPUX?CU|<pzF8e3Z;;8p
zH4qqGSnqs<wbK@`7Xv56zzfDAl4JWnM|K&+$PS}p@|PPNwna~WVCKdr&PNhe{;Ef|
zl|%O`am;>8i(5xttf@dMyZzrYQ%=L90x(V@^7r;?S2lif*Qp4tPgFhE`5_6TNkt}E
zz9Q=2!{VRfZ>#Ct;wZ_~dkLDWE`+$aTtfQZng656qKFOO`3tL-Oj!#T#>INUL%ufJ
z7bVl}D3jYTvK<fBGkUo9_|4+t>iqm>&pSF<EQeIy6TYv3X^$zL>K=F5-j?4kB9&k!
zD=P~-l*jO)^w>Lv7+yZN{&oP%&gl8$F*kCF#|)6Z-Z>&}BwF__uo4L~c+|>-rfi?a
z%SnpNSXU87n^#F#jWfT;yTmbZXa_fXpqbSF!tds{F{rRkru<`R{+cGy@{ziYEdrG|
z)U4t7sI9@{z@ijfCAi+xwQKL1nC5?-l2eIuqsG1sWr&L~2Dh?kXXH07_CH>gH@UE*
zek(!-8-)3eio}%Ggp9wfF}ag8T|Qfit(Ud?thlu;w=xzSL&UZuiACiS{a%0XOO)Qx
z|2saaDJxp14}bnJSXfiL$H8^SSyF%0e{E_;lc=^erLx~ENAiF%z!F%DFst=nTfSNQ
zg>6@VtN-r5DUWjfd;0%cn6r}pckUneZSH!KU>S%n@;`sD-50bCbqKUnS%_TWFuMFk
z2Wky5d8(Fn&*bsCUaWks`t85o%Q`z$4wfgw^4iSu*S3t3kZ(^kesZXs2)Wf<DUZ3A
zO+4GBLU4d%ox2QeoX<;cMxe(w6aeukOvV|ZWg`|0G6<+`f3z8^@>CHMMVg|t*Qbcc
z3azD5Z`c;(gpJbdKEo9QXTjD)^gIEqy3p~=YCVEcU}@fj!chBFHhdx~;K3F{Ls|E5
zF!LT#J<0vCv+P8VNHA1LxO97!D44~osHj+7s|Cdedih2>2U-=v`Py(=2g2h^jMK-m
z3C9W~0lbF3Gv`;x=+Xn<S(P|$B;N-|1ssoWc>$VAG;U6XLpxxIzK^qK$<bD9_R5B1
zaFi`Q?TQvHu}4KB^FWnjqNB;DCLSuBhv>}>%o_I2z<}t7N{ILJ_3NRdnE?`T7xgsD
zYiJC|_H8-wi`YVsbz7-(*ht>8pN?%$^<Z*Emwso;297IGLr3H|T7+vZhGg8OIHZ1_
z9@7Sy3>*?oR@%C{vlVZ%FL(ezq{>sIr2$%11KdQM4Niy_LHPS;8a(r9q%?B$j|YQM
z1BQt(R4xn60xm9ta5@o|CkW3`qX2rmNsviU)4C|NT7{mXh#SS)KUvOyokPVcsy-nF
z;JIY74uS&&t^}bUa3o9RP6CWQrVh}uxwRF_bq%CyjNqI}c~ydI+(o@LQ)jcbb_gB?
zLD)1TmDE~n3$(yZ1Gj}}621koCsUxjcpeV44d8imGBd+*++scLPQg1tw9Y^o+jzvl
zzyO3YgjeP{1}6yHoVI5ECcmDiZnsec_6g7@x`&@(g9xHk)M9t)Gx7rBbh5NGXw0_8
z`QLHa;4lt{gC=%h&<7kobmX-FSqt0z`<4?l_}aHUL9w65D`b2-=)QM)Q|=R0DCVCL
zuy#l-aV!Le-|1C?A+117=u-;W+}^_OSY5VqaF_P3Z68gBOkIb5^LciQaR~G#A*bMt
z97?|nA#lf6M8JP_su1L|2n$1BeK)#?M=3E#PZA|b&;9I_aXzj1P&u~AA=QrWT-Y<_
z?d6p+LsWd0oV%~(-K{cCoLaR<hRpJ65UemCQEr(8upYZyMzuvCWEalKSMKXXs)k)?
zOJMd$qWUQ^1;_`|EPO;VAw$9qt^}}|(DM$sZZ#z(4^Xw2RiK&IgPaj3CU{YK=49-E
z@2oXS$FKq-)64tC!y$O9G|nU~sRXio5BoW|zGptAKpaJ74Ty3+Brp&n2j&~`>X-HQ
zsgF=QBV@vQ0WG_Eo^>D2Qlb~YZ0Xh9h!hvtcT<8H;_tEitDrMbPVQbyi^ZY&vHkOL
z;%H$`7P8Pd>9wpA8cGPw`z-#PnTdFF@!(ywBf-vqWGyaubbHIl2O?LD^cq7vr3tA8
zv|PMOFF?>J;YkshOtx~qr8XA!NIgD)BOJfco%m=xoiK=COLemzuTE2mL+2^N#XbAn
z6uzxxeNrs~f|doeiPs%I1{1c^Z8y{H+qZ{@S6iRzZ>`$t6xTU|G%*nZ8FwH$h-_@~
zS__H+seNgh`T}iV2*kfgPU8|fG1Gex0RitD5)5$@c3?>xy|DTowI{n{B(Tz%zAD~3
zI66tK1)o@4M+3WdtPfIlr(R=OK*RxvAJwpC2~t6zT4i+t4uCFguC(CpIoQ6bsNIhf
z9HV*C&rVkUb?_b#XWl>Wjog&#;jOJ2Rk5`Cqtceeo9G0~*T(?138){(NuPt4`1Dd4
zc&l)6N@}=0cvLHVkQX@Kr)6lEGgOY%0bjuIu#Q)GU3&lCXSg2Z@e&4j;eNCuqJ#ly
zg+U^u+uPf#%JV`mjaU%0Iv2CD_BlHj1#(kUuT@+9AVA^3@RQ6;>0#5M-=3oT48jIG
zN5}jxI+0($AW3#Lmj%)i0T`lmRAfjHHtogaT3cJA$z2OXJz@xXt)n>f@H?XSR9O#N
zJE4nIdJU~VaWtr>7}<HO^+m4zFy}D2FdXc3;+&Q;tOPVjI@z7X<JGIj<BiAU^|CVU
zhOL`7PrVtKL&=dX+NGb<Oxf?d3VLuD@DU&UH?jaao~_hReHZ;9?co;{Z9<q>SoS;7
zC)E;QZvMm0PV6KMetT=ewCdC$$@IM;!Q?{b)fg{%fybN1eXL>=Jz0?k_!~SX43Efv
z)2X87$A^9^xAny;3hdNwcI0{0pSa7U@pvWfjmsg7<lmjm&t>^+*^7k-Av>_N({q0g
z6m*U1zNJJUL?zvb6KD)lL?lzRS_IA3(#wBF3KMtWd`ktgk%>uk_;}`h9Al;YSWmvh
z7w8lKlNMBG19ryuYo)sSWG@S~g0@QItbtI;5)FAs<ro<oqtN>41DqZUclt{w(4Gm@
zniZOrl0u<Sp04{HXns60d9>YlC_kXGpei|Z12hsKt7Y!`5$ivJOS`CVLsX^6LIstJ
zNOCl*TXHz>5O$IpF-aYUVQ#&$GL}T7<$wqG1@S)OlE4-2kcyO^6MTmSHOVfcKgI~u
zi2Kijvn!<=mxzdjPyDtlVHw<W8A(a^ros_<LK<O=5(8ci>9+2%Y27S8l)b@!@p>z(
z!dg#XzXl;Z(Ygl>4G3P=U{wmJxqK_PH^csNh0M48hf?DY1Q?HH!^MXtEu2p`4V@ls
z{NZ;0YyC`|FCfYXaZHIY(AT-oLcOFn2-Ja%hsMb2E0I24A-#11x5=`@dkU95rY*cl
z@~`tN8$f~*ugo+g+K`D8WqXKSmV{Upl8X$M5)bRIfLj?vaKBeiJ%&OQ#vdZ|Svxm=
zcwA=BhEsKo#4nLZ%Vif_y`=w_yCr_%A0RIA1EY8Ii@2YT&7XOvtV8^pY05GwGIBZf
EA6LK9@c;k-

literal 0
HcmV?d00001

diff --git a/docs/images/flows/02 - AEF API Provider registration.png b/docs/images/flows/02 - AEF API Provider registration.png
new file mode 100644
index 0000000000000000000000000000000000000000..3b42e21185ae36c97f3c6504624757a80e282ef6
GIT binary patch
literal 49215
zcmcG$1yq#Z`{?^3A|oIm4Be6{ph&lZv~+j3bT=x33?)cN%OD{&G}0(iA|;(8(%oHW
z^ZovR>)x~O|DJW$y656r!kT&KoxPv^<bI#e4p&i<xr0NA13}OoIoaoG5QO;zf-ojv
zH^3_z=(Ps$>z0{<%ya1K`roI<yblmW56L}$rs18oK5gx<p*aC<FHH$~`LZ->(}%o!
z`aYLU?emw?8%S7rqM@PTGefwPm#S%7c{K@HzqZQLXDe*<q`opMSxkhm+c$|M;*u>^
zIkv)5Bj+q&axjY<eOE~Y-26uwdsD(oX+DlLNH!e$5JCx9)}l187X)Lt{u>&6^3O~3
zuWTtKz)LDBEtPoJ@366%=!Jp{7~t^79Fo@;<KTQu{O2=RSTDM--wAnrBiHhu+dRYg
zuiJbI{@=LG3peawLc4JsTwK-{A0a44>~z`CYkJ`fm1N|*GW10qda9}+D=T}nIla|<
z6&O8-Pb0+Rv8u84(yGE|@mDeiZnMU1#d;h9k!=VPIht}atoJOwKp)NcIf0LucSO?&
zIGYTPL=Z{@zC*J0&|pgBW1anZLy!@4=>w5JvFO}g=nl9V&XNqfI6FF1l9QFyY4r6_
zRaI>cyl5b1WMu417bYv+R!HbCF|23N$AEy8*!3!Hj<;v4u7ur}`$-;Z`EP&2?h`wE
zNvwq+l&G4OdlAx4qTAqIc51dUQI(L8P-X4C+r>)8uCu+E>Le{AlPMP9yT3dzUFR`b
z@3p1KKYbH=)VTlqQS-T)7fF?Z&4lJh0hhl&!ifh52UDwcLI~~HM8d-f?HVeq`yA0t
zhJ+!<$H!@DX+R)Gq72IqA3jt_A1l_cnQ8Rfnyf)JG&D$t;p-KXLT2XXkNlPkJ#W8#
z`}PB?a!El!3b^q^l|2ESm`LFHaZwRF#Kz8k{x{;0tDBpogv4g!(G0i?W-yanjOgLV
z!IiYfrV>lN>BDB$zdn|^%(XWKoFyh*|Jd_TIz=%vGjm(_{_5^lkd+m1TZ}Xov9z>w
zTl^*Hz5QwY<>plFUS}*LMX1kuS;vj`H-r)gVL&1BcM>@b3)p^sdiG|b#!1{~cb-`x
zaY(7VfryA`h)h#cGpew+CIq~up`lS^Q2Tq<8EOI7mY0{0pp1jI8jpMlCIa>cWR%4(
z_V-r?ZBwepUn(SV@+QBq(_`u0jlZvsKp@&9DJuL=cK4S0#Lw0%Y;A3!?KM>MjNewH
zl#~>P`B-z%70@zG1B3PSCtjOVnuS_ek$EnK;e>Uj*XyS;_r?0LOeDF>)x{BJ%j$69
zhNoYPAhX=*@mvfBJv%!)FK^Xd4=na)@HW%d(8lAx5kUOalN&$_pITZjyl0S1WY>LS
z`4b*JCw4MVe1NFoGH-`k;+PdgXbGT~GYz%*`D`L04MA6zfmI@>%h_O5y1KeRnEqgb
zf9K{JuSld^fQ|tPuhx#f#U*25VYvifj`rVE-0-F>i-u)UQPTob<W+NV*;(vK#d=0A
z;$3Ql>ihLe1ZZUnuYKqpszu?+FuK66&a>Zvw!D6Q1M&uUC(kuyRHk8O*ROuL{pZ{2
znp6ZS2^m?(j~_s--&u~IZPueIEB9Lo#M8iV`m-dl?@(Hl>BuW61f8zrJ$rNOOZd<m
z0<mSXUj*Xk&f9;Uz4^Ai*C(FZV+D;>+J4Y`1fA~>DtE-t#k_mR_TWK^uooxvv1jr8
z{9G}WZ#Wv8A%qeq2DlDN+m+ur<?I#g!v4qG7?`)>6B1ta(LhGy<KxZey9&>qJ$v!u
z*ZOz`UEuL-sFsGz?Xt46rV5OwKpS-vHS^rJW@sRMIx#$mx+98OkO(5>G+>ka4J7<&
zkuc@aL3`ikbbX;<a%Q97(T%4-MoGLwC&gO!8{UKx`B~dGKo4Vwezn_G0ka+vb{Q_v
z<V=cK^4W^NP0WHv@q`I1j>p=_YBn2XK?d{JX-8<g(bbsn=9W7|F6z4<Nx`jEq*G?q
zlk)fP-)e_R-$z$RL{fL57cA;657Lxaq5UoN6%gTmx+4$eXp!#VJ5As<jjvrMWp-ty
zdu!+&9z~R1)z8!r(cMnQJf(EKde04Dd~4|yKuk5$o|6efnten=R5x5*T^rP+X@qY<
zE-o&sleD6~pL26FfEg!SXS{kE_Os!w!K$F0ovKU>t)ha$UdF|~w+LTqF~dXPwqO0D
z%jWFHO$P8bFww&;bhGxI1Ht2}K64`~%v*S$*zC|v0hvLUwM=p{(bOkfL07oYn_G8w
zd$Yy%)`9m8c^^jWoA1dmUGK#j@)F&20TcpqK0n^cmWlDb5_bOcG}Lr=Z!gn-x2wGT
ziIi%!<Fs!FjaNPi1Mq?0LGTzNx7%De@_W8Ixz%*m>o@cG)5c^?US3|IwxwdaP?dFG
zh9Z%gn%ZyNM<61`h+lrChfz>aU}0eagQDekO!K1M%C_11I)}eC$LC*VJGj_%wn;2i
zrk<zN)zt;A(ITk*0_?>&=)wa!KHux(AjR$5yO!VK#$+l}U<lzqgD_cGSXj+I!Nw#1
zBi!h<HACHzkd$-<F85$J($w@=ALBX@DhAGCX>pNH)5NLqU?k}33=I~RNaA~IE1lnZ
zSx+iI72d5aJm5-J10ak(lL8QY_L7><rSb+7;^X%>rzf{|%s;Rwg4m$immxZA2AsFC
z_v~BgsgB_5sNiIF?>e?(VTt_z6-oaO1?2zt+q|;vpF$wn5cf{rTk0lS9vEx0e($Ca
zfgmYWxYU3cjA6BzPyz$X)T=4$&)9IeNzk(cFXqO24BO<1d!n>4t+OJo1?R`f^7XC7
ze2P_#Mg#IZqzoaJvPEx|qJP^|z1Auux%n)6pp?DP@wHVrP8K~`+Vn~2YjbVf*B4m4
zoeBG!p*fbcF?rh!2Ok!&u*gKJT5Y`N6{Ro;C9BA=z25)5r^vv-!16(^aF|HKCdIKS
zpAg6B*;Kj{n}BB(-k7mUD{r~iAgb|DPt=}Js;uDWWu}u7mR)>L-)xq0hMUZ8TL@vO
zsZOFLc_@-?YUO!;HT_mEKb*S$HQgcEkU-S(^c?{`7P;TC>I>hd*otYVzs>nTEiP%&
z*|P#lqN$TpE(~z@*UiFc73XyvSMYt=yp>-3f0SOx#YJa+dHI?gl{?tB3DgY4&&dr>
zRrpT4xCBPkyG?(|Z)FcZng%`7Mm}q-H?>VJ{u$6VYiP(<pI2EqWLG6bjjswHUgJs?
zW(#?(6tVp8pePQ>+?gqd>Z#r*c9pZstEoTtCaIlr1fIBNa@vu9)8(G~eGcTmqp=z@
z?oY5$*>cp;%N5IJ{uqv2cCBr&kCvqR?*^cJLU0)?k!Yz351`u*BgA1luHU<Z)lotp
z2G&9EjjtEx@AAZQ%)B9JT^432p|JArfJniB-maqSQ8nlvKV0rG3=z$az3o3Jc-DC4
ztMG4<sF%O?m}5^-;jTn}PD>eX)|%#p-;u|Esa)0b|LES^TjwlRj3Jb@WtbnJKS^lB
z5#6Jsi_ztJqI(iNRb(gbmPR>}c*kfrvUKAs_tOHb2*QGhXWjdqc#6>@13dRR-8RIH
zV%1Id(zC=a3{~Uh!@P?=xlVq=MSf;_ZWnfh*z46=fLj-LzEOxINTR_Q%CXQ*u6oip
zTM&4>G#DhmAb1)voX0s47$jdGnq6<Dqt~`lMLD6zya=BN6xLdF?S=>+f38#DEOZy=
z6By4okD1pWT^Cp~td_B|sqxJ6%sU?UVr8aKR-9qu9G*yRKrYEt-wNKU&gkLTzcS7D
zbBd6Q7<L-dZ(z+6=||qlE{T<izp7aesbQ|bI~dATvqiv@1edP7F#~vILbll@4fCD9
zFiL-@N7yE_N2IIq)Xczfpz6IavYsoJ2gPAxOwmZ)nnn?Bh8#^bn~fZ!%tM!){2p%$
zjZ}@RD=WJ0M;sz1c*>SO94*X20W=Ill@?uY3OE$}1=&VNeg*qaGmitpT(3_1P#jzv
zH_b!lU1s8qrqLT@uA@a0<ca;Sh+mYmYb9p%z6-biaOf99+fTB&Me$^I!?KclaU|98
zP^no(&(pQ<iJ|Pv`maAm?q4#tWM%s-DZi}wG4sQ2zsgKw3V%&8+(6Ha4SI<_zKFYn
zmF2SW>OH4}@JiKrWsP{LYFX|(9$nH&>4-;HIZ16Vw{=D8%75-GvOcV~OzPNSXkti6
z)a|1|C!Tm8cvl6?6);obO3Y1Q2G`6-IL^&{ESC$S8mcN@Ia@$aB;Sk@i@*CwOzha|
z!?Ux+4%|m@Es9ok8@`rkwz^CAmkvsZ-#%#kWgJFFZqYrIprzSIF`g{Bre>xAL!X`f
zVtx<o-~{xQicjo73i5tR@g=Gwne;Z0dEIQ1W*z}8K~%G@eI(Nma}ZU%5~8r+*I7WL
z*~)kH?tM24d;0lArqjdJR_M=mS%dmnGlBBDJ62UC9^zj8#=;}<VMYcPi>bA}=tNhc
zy{**7F9to8FZQQA-QrK{wEH-B=VQ{VabGjMMp8({lIY$FMm6bHFPYG?lCvSOZt(O(
zREBpVkeyJe$-vLXFlFwdr!Xm-b_SO;6J*JnGEEk}yL$QILPrIR!SBfWkx{J@i$UI@
zLnz+YDoLw{VO3-1a(_G+XtjqobRC9HoVEs3eS*p+O)YtEslesj3q?=6QHkqaVkBh5
z2iu((1F>1C%VPAP6T8px+dY)nc#VhMIW}G2sp+1n5t$@cgRklOD4G-Pw#`(?rNW~K
z(_BD$8?t3#MnWJ?lz$$%0mZ~n)S0y5;;X}1$)Bl0EgO~cMN;mQ>i6Pp`=(nT@5iP!
zFrytx>*s%b-F_BO*VZAO`y+*KL)5P*xb~{6#yH4PXOho0)4$qeZpJKh)aTJqfd8-e
zZ_$nOrP5yta}$dQTPHSHw>CY>119H}=r)eN`xQ#nm``DDDBjxm)>^9&I7XG>uJ9pd
znys@Zxqf>Tv*W`Db=sz&r!O>)srm@0_RjNo@?vuc^Bt9Npe*u4D{uPeq|<R7Ih{m=
z5*6oL#8UhWAy!x^rWj9mzcLLlhdb)-`<HoV&wHkcSu<<ggupy6yXPw9%&4JvB@bdM
z)MBN;%E=`@Phzhl(Pe=va#8m<gC#@iCyE5U3maA$+NyoEK3LI?SMS!^ZHyE8Sc2<l
zW<W7LUzRpzkR_aRz(Lyrd>jid!Im;>o5%|1h;Zzhi(fzoH6oC@DGS3&3<}73m!EMm
zvCI+!@Sc7=WiD!lcx2~rx4hXwTu6SK8c%j-d0i8N$u|!(nB9jdrclUAiUGuEc0!~q
zl3gJLIozXf*fhVBh|*HD$*sG270e4Ex{b0NOMXURC6MW+nCeEwTKS+kJl~d>=~?}L
zu<;w2rldWaTw(jA%geocDnb9HGb>lxpLA<u&zaB*vYuE|b`+)rObR!Vr_I-BI$7YO
zo7LLgBu=I@B*pbSDy2EvoW1k$vg|_%kGtRVg}l!kaqzMG8^++Wagcay$g0da>FoM<
zuCZ#-CS{nd{N<mv!<E}gd4=1*k}HSeH))8DGMe(aLQbN!1W$6B7h};%3Dmvm+)LTF
z9rT%TiVVE(P7z@Q$3<u^JzRbl&m@&N#MyM^e3|=(B=?<j3NaLH<=rUtiK1yUSW2}r
z<YO4Ydc(^>TS*(FR~@^8qf8rj_URM6M!&vq%}QxmxK7yv`konIkB28vbkrYLc2yeq
zLVky&HLB!fWPG(Dek5=}*%(Wh8Heqz*Ho+G6n^ALpEAo6`i`J^>O9DaWqKxCJ<qaP
zL!di!zdO$IB<iU7Nl4zdQ1?Lq9Ans1pvGh}YZr4#UKw8ek?SDVbLETgh>=H`^Lgi?
z2(DX`A-Yk$aOg+A<(ezb&*jGz{e=oP@oj3Vrqh*cV_71Fy+j@M`+bqJdGMoA^adxJ
zbyY5#%BQ}b)5y>HhS<AJXA2ERsaXWWwQVBw^a`}ET#nYv!eOR;X_^xIaHv!5K>6aG
zBR1|~APsx?0BLIRYG=5cK7QJg``wV1ud&JO%t2)~l1EC#YQ)(|s6J79H#a?Q2C<}!
z(X`-=AqH*^X#s5)&TP$>(uHFwLBuNX0nG$LlvC1Y0{&DU%IbNug+5`W#Q583CZ}iH
zd^}$huS$z0CqH*OyUncZJshF=R28eI4$oSShcSz4!FVZnsnuNvsy*$MTm(_PQe0{D
zb?cODbVJNS4>XK*++UgIe?DH$^jfqg6QVHcP>mL&`E@&%frO+wo3+<*%1y)k9a7MA
z>SBZZuWrTVX!J&0&n-jG&E(<KiVt&)r|1Fc*0_x`rOOoa!LT1s8kF3}ZFkJjMV<3w
zD*8E$tXF@lC6~y*@i<zrNKSPJja~Y+tPu=I2(+%z*5-M9ZM&{Y#+rXEB6T)|jW<Wa
zew4l5A<$pPF(|Hl5t~!u&=d0Bn9ot%fBzVFj*e~!wbU+(E2>0=;=P)sRh80$>n1WI
zkhim7QddomIBbX_wzzx5pP*nU3-&DySOY7sG##BS6#V7tWQcs2g@;o;n*cLdK4ve6
z!jGMc0x$1_WtrdEV~NhbwHn&4E<aO$`Q}Ms$JE+yf8;(Nqp>Mc7O>ugBFBIKyy1Ze
zHJ@rJG|WKSgbtRcY3&O%M6g}^;X0~2kV?#E^PfpebLlAWzp-~CMqaqP>NyFPGqt}R
za8NUYOeTVw`JPvC%Tyx;pT$~s%^B1VvUJCpAdnQ%3mzdzU_Lsb*0w2{URc9%SEoy}
z5rN+0vwqTXD%7Y)Meh?!#<~2RkCHNcO26yL!IGP84pt)EbtH=Fh+`bt;61KF6(i)T
zn<_C<7=6J#TCOrl8gG=A$7>U$TQOVOH?VISdD}}E7l*1_`z<Sb{krfx2s3`k6T)1s
zF_Av~gcF{5VKU<xN&<VO`o{4#E|-7(%Y??iQ{XKLj&_vx%fix0{kBw=t14@qPP*Q$
z?s6D{-N#@+`bdB7O!rswl~;E!=GDjQkNqi=!f5;c+coIldQsNhC5$Iz4|Jnm^<T=h
zCpri_t_?W+Diyvu`L_ElXcGg{ui2`r@*|^vu4+-!dN}pbPo4N)<KC5zH)>SepxiWQ
z)`8}1xyrv;pS$5|70qqFUy;d%_<p<Hg<vX!`sj=VH;C3{NgSPCbJBl5Y9@{xXG@XV
zuHQbOb<B&cL)X@x<eSo&ABu2ri#3AZ34Jy-gjK}1e^~U)H{DsgFLh|;XvU-a;tft5
z@f;fhYAJm-J#)VGy{dW9em{$gWv4M*(jR3#cDNQBzE!+B?()efZ^g@AcxxX+bW(JG
z-TfQ&Xw`*-P&x#O)>&c%Gj*ea8uT8AR3Lt9bVQVBfjVYW-$@B0SX11wOIUs9yZ5r2
zjMr+<cuB#NZ^vgHhx3_Xcj`yw2iO_lgs$^HPR1XWTk5KP*z1tKL#d`EH-HBbA|}df
z{&b*!@|-@N+Iqg6A{RY?@$~JmmUGjS5(ggEk3;GN@E%}ssun76>xH+I!g-i21Z!Rk
z>0i7t{`6*m)ZON7hvtIcvxH?&t%Rfj9?{b#e8{=%mv70h9D?GNUb~+QAG|LPX0w9o
zCglg&LHS&@Qqw@^NoKD&z|%T>cY8IH5B*#4VWY>-?N>GI28}2yW#d?8<uz|&NJC>R
znoLW&CY&C=QLQa&b}){UGCTBvrV7Cn$V{+?K1t<0i%&6!g+N&pQDXZMTjggniOC-c
zu_0zM&cG*5>0EV;qwe(s`B<^cF@sumOCIKDUKqg<mJ8Mh2g)~EqHp8|_Y3IwNfO35
z<Au@b?wMMx#TS;{zqdy7YHTl#IzmPLuRawEA8v?w`W~D%dU+~r1z9K6Sh0J7Q8^J)
zkeabI>NNRuU>MPrR6mt-m#00eAn=6Y4$uj>@2|Dl<FV{963oyLlPCqVA=qmjuFls)
z8Ca$}Di$5a%f#8)_ZO_`YK!g9Xp`3hr(AEsDIl9rql>v*B(A0unIVrk{+QX)Bb`76
zt-NO!PFLu4sSBs(+OP9}e-5t=RpP-IZuXLBua5_<kBVYDBqRhlZMmaGFE07&jtcJ3
z6%_g(%l7Ki_3U(>W2<M{P72k^oOMpuTC=4HYMWg+Tn$V&Z=i~b*1h~j`s>d`_Ljb(
zV@_(8BafE~V<`3~M9&C<>dn$sQ5Spp_2$TX&tnwawVO_Lv@2B4c8Yvbz1E{(xIrtm
zGQOT$-jhAe=an4VqML4i{>0kS1&lx7IEhNikX4LESG)CHEwVc$W$f-&1O=My2TK*^
zA(YnEP$HCOzm>1{3pwiX^<LD;^@-19yG?FxR2NVkZpWt8T%EnuUljYe`@(nav;L%v
zLwD15-%(=2+3)SK<#*cX<G!+U97EY6lgLlHiUEh@Yb$m+mba7~(JT`y?ib}Q*x4~X
zJ;H+zn5$*-Dn(f%4zg~4w)&``C?~IY5^z7Sb)~3bS+qMjCGO*@`r?lIk|?Jz>cegD
zh@_tvNk$H_iMU0Z^5U@)W`2kZQ3+9rTOKJh>xg8^8>}*&6hq$b7Idleu#-qiH6tK3
zoWJ?O>#~gT6n|4YIgXHuhU6A>m0TM#Dx-p-EdKynh5g|co1Z7Cqak_Ch1?9b)%v)z
z;6-=gcTOBcD|R(W*U+&@qWff70DP-ov=wiNirnmD->11nMxhe<9DYid$CFr5oGrz&
zyv+9Y^0bG;NV=A#d~uKrRwyAe_crR5E}z_lto)mvBKOlqiZ*qSR6XX|S3DM_yu5-8
zLQn9Z%Zp30*Mf-)1u>iF3*-FwY3`KY<NQ42sy-epMJQbH&2qTCSRD8rG2qfH>g+XY
z>V+<|JzAPP$|x$;eETsfog2(Dt-i6f2P$>#kv1Z0x9_o2MHIO!5hyFd3X96ckH-{>
z1f}TYrzaYjSRSMyb#)VkKEM4Tqt6*{gjYizMzEp)Gc>JgYm>H|j^CY*nH-YH@b+B2
zROdAJE--=3-OTo_9E<5;C_XnGe8&(Vezn!?osoLfgY(@6BRF51-en?5{IpA5b4utN
zwJp~|MkjV~r!y||<nX1)W{&OB!>ZiQ5#ggHf)%of2ZEm6myJUA4-;0XrmB&Z0s)`f
z;!?F?Q0(2T@-s6lH8cMgUwgC;=0EGEajClN*IO)fJePu==JA=js4|ercYl|_Yu#Fr
z8F=xw>Ivtqa!2{I&5jMbO5!|!wU_*)ItpkA3MMnY`qA|RE-Y_!3s&`!Vmu`oo=Hfh
z>YBwPGQ@M9A%?h@q^&b&mMv`cqtMWAN?{POaZCOAMDImj=svEZLiBhgYI&&kL5<9<
z;O~D6xcT15QQ6}07ibsoYIfJ^%}FKUaZA0Efm=5mJyCSKMMD5#`g%?8UOtJbh?^~p
zk?TEg_L)4QUaGP}nBLARoT@azOZu^THYT3lXwq@{fgQyPml`y98)42%dhONq)H>*+
zEg7~^wfD=HS4TMGk?%U@PL6wa;5`)kH=zBE@j$TJ9=SI8f+oYc9tFPYEhljigG>I+
z3#HTKiRWh?51U|6%dfuXi85C0o|kMX9EJDNOjzch_*uex9H-K~?p+z!nGJ2%`{iq2
zK0w?E5iq2M`nMa9oe1_-pM}KKxCUHWahKnw9E&{d3JEU;*K?;?hvUNTY;HE@k~hR`
zC$`mZE`RD3F<TDas_6y0R;uuZ{lB;3XIK;iT$;Y_ztKfIP8r)FWQnIet6cQcEAN+A
zaWe7oa^XOSbVBlOzLGYtxkOHmb@`!6B}JlX%{YmRN@l;~7EVk*bot(elb?qJCiF09
zih-QbCRCfinGF$7M0Nve-stwcZ(!q%m?7#brG)6=#cXPNud$%-5*!4P<bSEMx-4>6
zRx$fXlqTQ<@^mRJ&fjyIEGV=pw(B<-L-(Vi!d?AD&_!bcpU~;hYK~?3yyt#1ug6qt
z5Fdp{lY**BKt0rLi)H?~mwE$!A9_r2fb3wXD?B}t^*haqWof1B)p)&ZlR%CS`Qg*%
zyk#@@1|^&l7dsSuFON9{<Ef5K=bIyfi&o0yo|)FYwDwO6ND3{+ZXBt*#bP0Uvtine
z#IhD%g+CrcFalf}!F5NpL}cjd-Qa~PJw83_XcylCOf9BZLcNV%o>n(KVia!e`f$k|
zkE-A0z@=gYKSQkrbQI5oU-%yR`%F+LHAWWHCOtrXVyaic567|greO#{>NdVDc_3WK
zH>EB$l15Z4#uTbyyxX^@2lmhJxpR;t2w~9QzaMRG0qR}_#{+7lZ&wn#&lJ9WUlBfJ
z@_2cxp|RfUo0yk->S>o<O?Pf*TuQ?ERt2hhz02+0`3a7cJ%UT>GgpI_`>D8V*P6y`
zTdOtLf??{peG}H>tfzi(VdFs`V#X8tC}}Iu{9Lq8L@+VyKBNK%+n*K83DEnG<b|e8
z0~^2Y=Tq}9q!yHOXNS%BE^QcE4lw$p&7}6;_{1jt_%w-Ko7I{&&%tE0)3ca3LP6d`
zFUuiyD64UBbW^m$77s74(IR<Sh&Ny{?apLHI^xj(?LG2)twchlY1QTHk#*hA2Jj^9
z*-|Via3BLteyIw0k1EevEDS1T&+dHE<J`RdlTNI(+pw`7WpJTj(-qoJ^q*dUcU(u$
z10A3Fc$>-hY=91d)iRFMVuUF#Phl3t=8>Bnjx+lmXpPU&Z*E%IV^Jq@lvpAdneM1-
zAFb8wU>lnKOp@Dx23ri)Gf!4`NG&q3k~_3D^3wfv>_Q>;V_o;W=Vd6d00IV!qnY)n
z$wNc%sIa(e?y6KEiw(g5-)MaBlvMP~z<IawK4ZxGjGImCNTcP#2>;ay4-|}i%!3hJ
z@PM_)_I~J*;d^r%NT=EMtoic7I6zhe#Y>F1At5-0U||1}E0lsHmtZ@<SC<$FL1tOy
zDXBj9s3<~zb(rYD<qdUCvBC)MFY3nh+Fw>tzoBT;u8+Ebb8hPY^+CP9HZupeO)~xp
zR~%DJ;JMFtO2Kasq|O>06%oE1JG^LOdb@jV$k0OKy5gY}E#!g-CEl?s%!n$0YTUQj
zB(lY?`>q|Q%x*Df%@4O<t*vK)Rj2PwVA$C=o-)NW1|=<9iZ9tvcrB&IG0O!Whlj_r
zgjo4>ZTP$WHs2{zO`mMDAWQJ^%IS?C!+pqc`u^+V4^O#7dP<wbiL~8<V&+8yrMZfv
zt?x$Oz4O8z*0ViX(XC7hXYJ6=+|jUj`*(~n@4-5Lo>qS(?S%Oy0jrIcd6hc;!=Qmh
zjQpk|MOBM~*MdMBRV+@9>^p<|@tQYO#_8m>n4~b|+-<`*P>g3#OT3qLdt18__0^I!
zEnW5Iqb;FA36Ejp2g|qOf^vCKA=N*s5O`JnMNhfYobKh^3wdzg>&8=gwT9*DdK#^o
zR!WC(j9{c2Gfyjb+TpRTvZ<=Af%|g2cE+vX9Q4IKaz?>#%jMeM-S;_*Zw7BWM=;ef
z$EfcM6daL0#kkQ%<^c5zapdF=S>DAHasZ`3>~zDYQcCNK(RV65tT5x^-fFE{(ku5L
z@Nq=R%E!144+Se~28+2wL**tBb*FIatOqK0e;jp|vHJ+sL}(`Y?vK|f#uo42&{ijN
zEBTBEAsHn_l?o?K555*OC>N=W=4;xys>*4;lQticQs+^=PiutQ##hUH8BTb5{?-+;
z8Gf)J!R#<3QyTd!_W8YV5!8_8jjW;Br-{s6bML3{uk=Y!W14~tV>!idbH6lV<8Sqf
zr5c;E?=r!Ch&*Y8Frhc6)2pSVehp_G<&);Z`X001mOHUO|1uu_o{L7fAv;dO_9(s2
z>9Q8*oaN9CVz(jUcG1)2fONy0@x#B8UAe#cX`5}QBn>&!W+rQ+!gE)^m(YnUh|Ikc
zTapu+iyUv_CxA{5*8dbW(EAjG1%@v0o~jr*neyH`c%KS<TQtr=)-%Mi%lJcsL)Wgk
zQ*+oIS`1j*<A%#ZP3(Z&`|vi|c*j{UVT?a39nz7s@1-@<-Q!7M@zWOhVmn!#aUGf~
z1$Fsi=5o6N28T}uERUjPLy$V(1g_37o0AGbp-=}NYxx@I8nLdA1(*!Z{7ulu*~9Gx
zIeBx;il(mb#9RTMe+j8!^YxybRg_rdU<!p2J>2lDK2l}B$)K=^ZDS($!uBcu+KKtC
zh4ucKVvIjYio!mPZ->bRzkT&w<AP-0#i+v<&N97lLY+egefA)Ufv`PJHbmTTmZ4c?
z7V`M3k{BJ`7i>tE=ysMDozO!$SA&;BYs9p<KOzoyx$n>J23-y;ZB7yyXx=%y1Ema8
z3o<tIZaF6tW!L-|6q9*Tu#OMCgAr7HthAyznOqKBb<ZhDM2*=e;@sg1As=IvKG=0^
zT%W2yAl<)yQA~2rUiw?+S>`HjfAEFJV)PsLDy5>&2`WCXsG#97uY}Lh$;=z4D7P{B
z)xlAlM069Ya{TA7AM=wgJ^5V{#=85M!sNCTm;JUjx;%co7<gf;%M5+~5jM`5hC^25
zxpvY`ZRzx>(6zG2&x#EyLhlxiz;h~o*!OVV>}(=VIKr43J{uXG(f{KzF_aK^7DaZR
zNOQjI=c(;cBF~0{Vv@`s54cbd^k-X{VDLEqkli7Ea^@}<m!3d&I+b`EO0A~r*Z+IK
zP*x<}XB+7koiG!`zrQiO&_hwk92%Cw%^yPOl&1w}=18IAFA1{vhyi6>oG~8V;Ry8o
zNn~WLYE2))5^sPmid3=VfGeuQ6)RF4!irDck`c{)2R>Q{VJi5oa(n4~{_7jB!>=n_
zF)_zyb3trR8St`_E7=a)v}wb`VHm;9qEGfS+!p5Yiq&LnCAi^jkMWu>-f=XSGI4QI
zLog`?q%gPKAZkew$<!zqpep<F7V6H4^JXZ4k&nspC*j1ahOHOFQlW!?Rj;UUvd9t0
z@T(uIZ*t*n!4h{R<R8wa@?z6cyYB_%Hf<-eJ;B3-eDZKei^j~}*>u?V@Z^nuU79j)
z#ek|erqnkrvfUY0&GicXNZQ~=?oLwy4cbXs_N09RK}|e-EUz`_PBm>pA9<B$22`wc
zsW#G*^KHK}#cWH_<8vHmt}AR9AbN}AO&CI0kb5r$sjFqKarEVR3?>^T1S1S3u0Hqt
zJ?mcO@S*PDY^5o}FB4McV&73&y~|ytlR{FxE_&gWR}X@_p?JV-J-iji`jLF|%bCHW
z!=f1Ud25%7oYv3v`MoybOQG_PH;kKs&OfGScqdA2>nBwM2xI$sV(+8p6OKhpB4#W3
zRL`0pX+`<1&zyzr*9OVbIWd637lr@PD*Q!ZnHKg7H@v)QkJ3+WXG1|v+dn=BbwbW(
z`2-ZwlHC64>Azo|ewN8IoyhwLnH+tSc*Fc^aCunLUuKtvR`m(xehu0eH_K*~=p^x;
z53Hvk=92}lbjtAiLbp>=1`TDLw#Lho880z?zdz0y)3b2q`$s=kl$SW^cos9cZaet7
z_udRPCded?jD@#i5~eIvC~F@b(biOE+b9L_h<8w(Z`RN2%DyYxrpATt&YH@FbH#N?
z!BoRsjqJ??(tV?vk)3hNuEGz}s&Vn{cjzu(GJ|cSt~nJay1``$-EaAULH>;_`o*%3
zrAiwzW^YE_KSfsrosFKMH;*@*-&U!?+uYi6&{tm<#)Ep!U#<i`qic85aP?>EbAt$J
zDdPx<L9e4?7pc}`6}%3+NaNy?`{U#cusSl@HC$+q?8^U}?NG8gZ)mAx-a=1(G}Q92
zFA^Hy=)U)f>NbkEj8Zg<!s)?NSlf_)wu>Hj&+aPbMf2&(FBv!fg><nzHWfXsou2Yc
zTH2!w!jX3J*zb1xJgrGuW!N$47{R=2M^vq9-rruR;<efhrM($U5&U*Oz(4*lXnf1P
zj)Qct+7KI`Rtz7aG<;_Q8(fx5auB@w>DL`3{9a#k0SYE&#l3R6^s=v6T>iyn=bbhp
z%Wcr&q>n%jJ6RZ6oBD`Kaj$ylfqgM{0tnt?*E68iwGX!b#ygaJME-txjl92gnK`+E
z0Y!=7!LXp$3~9uX@ScJ*R(8}NCF6ssy4zbt0%>j&b9a@~Ia78sS92<JZ470n^sj1M
zx(XEe^b-bGChF#D8a|vrCdIC04UXf9Zdd0v2N`cVhO^ySl}P>hoZ1LdW5DQEtp=7Q
zD3lc3Uf0#+4!kWNcEW&es>gpLYIb)Uh;ZsX^FR-*_P7=}AHJpwoXN;@B>qO&Zilyu
z6$G{H`Wn&wydAn#LmIGm5glQv6(b|!J`WE@irxGCMGybByS=7KPEL+nlX$ggjgg13
z$OjGu+Hd4p17W}Mu%CjQyE0*{cnKqTG=)UhbxeLrDRuYEMv7dE5o9DF1ufbaC{8mO
zNj4`p(!Vmd(mWAoUW*WNUw)sQoE#qy`q6kO@66nK`#$rQhc)z`Ii|zbO)F98p@LKm
z4XkZf$cRd!B5l%?cv`clJ)c|ZOH7?s->PN;S?&4)JIdTA9Yj%=abBT_5$cV-)L=x1
zrsX4XZOuR}_el(RD9KIpn|Ztuj`fp9&nhU3?;}Q2h8fi&4K7VGZ+6Y?U#P+%5B|iH
z1KFL;bs{<UyAnWV($*kdcG0o_-f!2#)xa4-C{JYQ7&dHM|ED@Bf)+cATq}FjM$+35
zmPMY_IAx?dU!Bxl{+yc{RRIfqEQL|ihzA>>Wb_GOV~C$LtxCEcC?0A7>jP7r!68n{
z0(ia?)hjU&*<tCW(<l6r8Qx~2s7fj6JsqRp3OYx4E1Naa`VPKs@J3~wvVB2z(uNH?
za*$4IrnR$?GY&iP9}LwFdVW*&dFC!`ld^D-HN$iZ0&7r8B3#r4m(s3rknl<4b5gZi
z+x=QVJ+cRkS(kM9kz&fQ4W21bL8NX>#cy5R)q)2k)A$ktX(sbkptu`GEB?J%VFDvK
zc6jKMhOb}N>iNpbJ6&+%3=;wymg@_L2)DT9zf}xrCh^acDt2E_nlgi@)tGGX*1gxa
zp(&+@4DqKIoVDrrYd!;We{K?^D!{YUTPzA@2i5mNh+pt@d%YM=e<)H08nz04?nY|4
z;EG?xDCIRCm3fIuAleC8d<=RE)bci7cW7ck?5G6~(ohl+@Cde0t#RjrN<5hHLcWPl
zBS`lpfTMEEOBf{Q33WzTO&#Kd75~`CSFs4U;%(?fmb@!0h(uBpb0LT$X|)qtweI<(
zHH;Jugxy8BY8krgL`Z3q^xW1n|13?{?wlgTSpynrn)JNPC|lLxQn?h-1+@{ctaLnD
zu)tGq5|zqaHr>R_?R7c?(k4+QQkt%ylSqn7Bb`5#KBVLh!b-3>d6?Xtp^Uegu0xFn
zGsFguRw@pr=tnmr32WOH0-F(>Ows|>$-Xp=6WIZ`9({M#Yh+fkM`)lH)G{xn1|sh%
zl;2MwM40J#_-k8)vu>JR2pc{4{-9$dz(=W(FmJO%d+QI5G-mf2vmA~7P<mh}iB0HI
z6~nN2s|-*-gz0^R7W}OhFJ+@t?DGRX95wZL6Ih{<Jpuz#di<N0nHZsEp=+H8lTyXg
zHpFFJmiP<of$b^Rl%*5B)F^Q}vr=Qs@1rjsAu2`fpR9eP5{IpuG>*s+i#HitZNbyq
z1AeaITk98_*%Vs#kweSut4>;K@H<cK$fUTa3kSO6u;Dq2f1>o@k}#<i9i_+e3}wR(
z8CGm5SW>ZfOaph0v&fYmOYhY6uU;;@>AfFJAy+D7b3L&6#73E(v)J+&LuJU#5~7zy
zo|a-s4Dj>}q_ykchw?Eago1jq?zLGyqWdj8H&Vm^eG;3$0co9=R!wnyl*EJg{Ko6p
z)+^?c7yT;9mh1bx;BrGjKHwa?XZ!X2pJ$1tysIc2RUQR4gejJhlPZ&(>ilZf8>FQ!
z5#HU9p_ig5rrsQE2t6!@=iSe3-Lnt|+@;4;#Xbw*Ny_3`YZC7}ucD&RR=5NQHUm8C
z%LJLMDqOw(5wXNT(PBA2omSuCnWXfClpOmWolTQXKdb7(f)_i&46?9RoF`=8ZHHtw
zRGK2ViU<WnLJI?q5rjm}LJ;H}l*aAcl~jCV8b)4y$WISJSvH|K$0$8?OwyUt2C^WC
z=A0;Ipw8l|af&&{qtXIl#@5RkLI2c`F6cle=p7>1c)qF|G!s}*H(QcP>$!8Ol15wZ
z;v%#!%FiY<T@Pk$XTl0kuvKVC=cwKo%LY0X^3T!LU?>hW?Wn-#juhr!tvTE~KDG@}
z!F|fjJ`jqa6*Wa(9xv0=hp-JB%X&N0WUXOju_>ABG_L)P%hdk5v4FTYSoCQ?A1`)g
z#;tzz;WZn;Au%0BOeg`iCMp_CBL7q|AWqdOhRIkTk6x6J{mTsC@XZ%wJjBx*^%)7j
zh6#q$3_z>+mw~BQ^dTykfBxwryKFoY`Y+T#54pwxy2xZ*@`%Bu|Go_x=P+z37(#F^
zze%V%yGt&Y>q-C9h)D9IwE5G+-|uIpOS3I+(Cy2NTClc0<^j2~l<G4&4vC&TEcYcU
zoM^*ucg}F_8bbFsZ&h+5kY*CE8x5ai;EMFQQFlDXGZKmD&#C->w(9A+#<OUwHT{L5
zNWI$bi#l+V<LMQT)L-_{z$L!@&wX=}exPseNlI>&o~bi-SErVtOPXSzp$kIjEWpCT
z!p0_lzy^Nvl_^M`!SMf^-b3#|PQ^jJVm{8_?tO|U*sjX(c<-0^0~@hYs_~W-kX_($
z<IHT`v|~-`oItewJnDo<0zNLu#JX{RV6eLLxHBXqBtJj@{d>Y<tq8v~n4$a!uO%y&
z1#?-qZ)Js+wPL5;n!jD^XEj~l{?mg<4+G7Vjx|)!y{IJxg>DDF)b0f$DX_U(WjNC8
zk-;JEcet*r@Zv?JVD6=9enSm6p#*v8><Qr;1_mA;o(B&e2np#K`XpNJ{L~G(VYj<E
z#a?28XUhp%F`tjh1l7vxnejKsr+oI}XXhBS;bHl38xn}-PJW?PIP6$cKkX<NM>)V*
zrB}?}4O(tNqi;zN`2%!9o^8sU0BGapp#-!7_=%Lxmd?(yr92Y2i<93~?^f|Oj_Y$R
z=sqPfq`O#nU>iQY{lGSEW;(bslJI+Zkyc?2o4ms({IJ#y&q5iO#-6gvjo))S@kvRn
ztgO~nRwLqgPLF5E;8I+8tuATwFuh_h96KJ$sp;qW_=+>>sci|73_YL|GI9BI`H{Aq
z!g{E-+=qYqQtcA+7K4S-mEckb#}0E!C1fNd$vule;GaK#zQwUjMFiz*_i^#+Bx+{j
zzphXHUyC1T@(_<A2p}n1sdEX`4ZP%duj$G0Zbh{H?zaq(e4Sz*x{5RRDO4qZ$HB{y
zRPjkD4;gj6UgFxPW&>u9Iw~V(?ceoOiHSaI*|wA=UpWd0w*LqyWe*t02{ygrl@o+b
z3#1eX^GC4INv7aN8*)fRY(CQN@)*2>iVHp5Z2xQ-RZ?{Lx2c)vEuoz>M;X;$^4BT2
ze1ebGLlto!u}l3Q1%NmNI3BXIGljrONsZpru_&hO52-5~u5OTkbg!SIW(qlABOOgW
zu3_oR>yWRl5Bk+XyZpqI>dmUegIA!Z+U`ARS|ZlGyU=Zhv%`%&zks(|C?iqt?LP{Q
z4j}-9xhvthK867ST*Tei_Y`!}8wH*$JiJqx7#g}tH8$+#U}w8>gYVD7mwp~EPeKpL
z&?h^XQm`x*7pdlOpEm$&d7-4Fv^CR++2oK0xEr6nMUdBGv;a&7z!*K(IMTDCprLmv
z0hsl^C5jxQnGc=(v~9cRumKFDh-{<dn5=ft2P2D;o+DNkVd!?XvSNYU*T-TB@4;Rl
z9faH_hB0IYp4$5Q*3rWlWun~$sG-Mziuw4F{LQ!iMn5kP<Dk?1m5}#y9Wj1|fKEC{
z_nP^VxOl|(=n=}eIq)?-6AOz{n!v!^&i?v1w}^;A;V_u7%f;z|id*?G$}X&x%j(z1
z-Q8U<*0Gn>laBR@qGNxw>7n(BszUqG5|O^V+}z$wakT!Qa?5TZk5wL%76|I>>RJIX
z5k2hw{reSGJq0vAj5qcsdoip_Xyi6*D$2`^0uD5t1VOVtX#Nj(;sB)8+Dv0TJq&Ox
zGd)IrQFf!6!VP`mS0eZCcbS#_0z?WxH$eJsRdEu<KLZ5|Rkysx!u3y8X%WPr=jX5S
zJKCg-%5|8mzUCadMikm~WtcqJ7s$e$%rCcF2?E6XeXCzhaGg2&G`DZ*r%xC+EMQNu
zH0>#;^7ZJi=jauoC$QE7U<~fr>M4Dv2W!TD8&wBuqx_CL*W`<=f<mgW*Cqf;u%79F
z7JXIKyHJsFbJOR~^YdLFW=3mkYoUHXHwglKDVe*&;t8M=JO+?brlzJ;d@lu@|Fj5i
zHE;)A`b()^6Fn)pF?8aa#Wu_RS%Z1XsEcZVQayR%3Wy!Rahz_}Z*A5t(bi0g+W!6w
zFcN?~I00s2c6PR$z0l=Uv$#DuHC10rOL}ns2pwb$_y;w$zuKRM?e5^>`Yk3~15QI6
z=w0-j=f*@1X?|e$HKelO%FN2Docx6O(IcmYp9#|0F5QV7fmwX_N`v($ovfN=Z%Ci@
z3U7S|Y{gq@QQ!F76}P2cAN#V&4M5HSy)vkAoCX31uteUAWFqIN^Hm&jBP*-Lzikl!
z0P%^E{tz3>1$=r9Ixv;cb$zT%sQRg$U4auZjzC`bg8YjY)Vy{>BgOh;oCe<G0&DL+
zN9Ua1+i~~>oaqr}u`(5myuzz{)bYG&_{&9`eqf7(T0LrEadBk8>|%t|WXnGPA+;o-
zgf@P?>7d<??RYpb>rf3qO?-FS$cD{L!0Kzl+m5P)+yVoeg!aIiaC38`z2~C#_uX|9
z*YevITvrZG0mL>EC=8Zpd)xWoOidMzb_K8(fKCcV$V=_e>tVSo0Mx){cLw~IoSa-7
z(-(E{*IvIQ!51uAF@K$O0RVeBPS^Pq(h7U7t1F9Y3h##ATJ)@U;C-%&Cs1L`gpu9T
z*T))?zjuCyzS<nji=hnF>(0vzq$DPu^Q<410+z^a`7=J)eqLL<Wg8e3T&hg37%DYw
zz2%`4(YD*ej~*(+I!^&wz0{XUM?+(H^{=c}ZGHvP*#t~HZTZ-!-{d)mn*NUh`$ZII
zx1AOn2Kb^aXOA!>dj1s=E0<ujx^c+cx0)InL!#VLnkXmWMU*qeu6-NeUo5Sxls-N-
z1xkQHHeP9~4x%AYqm7y{e43v>fBv@NS#5?fl(RSQ{(J~53Rp3KA+ezPY1-1&V2@$W
z?Xfa*pqEFSlV#=|;H@vHJGb7P-V+w~10GhDm-La50Z>XZJH{KSy!MG%?SL^``#4S|
z*J49VL{#UoR_(r`2I<tfe?d>@ViVB*`uWpLcf{*&&PZoXN$~8K1rV+NiC?TK*F1t@
z2kExG1jf>@-d;zQG>_+M9cmu@R?WGvBzsH@^TPt=xuZnmj*&fenTP}Z`qP^Lnc+`a
zTZ#*kkiD=z^cL}LYywjTQ#)NPL;)oPeCHNeX(xbD2D+61km{(NA6<h$dN&7ZWCk3L
z0~>C>JYB2btSc-i_<2^WRlgdnI?Sm8H0EH}uaHQpOdDkc^k_#(l^75bRCmYT-DMQ=
z+AM17?d((`I3H>xO+t9icg7lnV6i-qO+YR1_~qDRw3JPX75SAkxpUNmhYtgmz6gt;
z9}kTljNkD1Wm_}Zs4Mm6ZxM~0WYX@gJt8S;zG~E{kfuU=qg@<8ZVEjHnZ<bp$`P7*
zLjz}shzQ1e_c%4NBw&UedglXA#PM1QC7!G9`)ybQM+y9DIXm#nmutpX6F|EHj;3n>
zZZ_doV$|r{|LGY9`Wm$Yppj#Zen27HPvE+I4_1epgMtn^bz5M=1(=tGp08F`R<2_r
z={0AiRjhZyF$|cdH`oNBAtBxbiR4kz&0y*}Ap5MLw0o6g7@;8L2Z%>NiGlyo*DPt9
z*^VI-7Z;bX@Z_16YP`@$r}p&huvR9AN=Mr5+qc6A=nhjW#9T(Su5!*POO4eVUM62J
z=k)Q~@*|8Ixt5c)L9<6B!AHj6;%l@QSUo3+2$(Xeq_vWri^~N-qQK{Lb$9PI^>%e(
z1V3szHUpsq&{tO=Xzfh7^)-TZbZR=W^7K4(YQ9MP@F80a`4`|>bghq9wZDTKg3uK-
z=}`0K?O9{MpI6uhoTH2}BD(<hEHS8c{nPRa#2hMqM}so6HV}hu;ZrYDeKa1%c!M(h
zBS|2tp{skcUeQMjC}H6E(Sc_hUtQ+T6MX^Fdmlk5=6~ECMFo7u2`cEqexlMgFw4l)
z<RI-tZ2)k*N9*Hmz#jnUGZ=lZHH_ezWj)@R(=O84ng5_%P;-oBkX?saUj!U!z#=u5
z*^iyM4pyZ!fN_d9ZGXp2<#VuePdhOFS;K|Wt!Te?qW>klfI{^%h3QGAKj#OwWl1<K
zXOEJ)dBG@t{rdF^6C20_l{EbsM7j%`T>A-lPB`buBQ`b_G{|iZ!&x&_;Fc%53&80M
zr8~|v_{@y1@}mJji+4-%`STxVTg@o8pCByzuNBu&;@$etb)9b28gPQRc6n@`UrT<K
z9V14`WfoE+-3$zhTF5;g?7!G0UmbUdrztJvt7cc~IjoHo1C6=^0cKEjZog3I5A#(O
zt_Iu^tX#UVmz6G`px{Zwqo(}Ezu*pH{@!2}Kx&*fc(5{PJ(#Nqq84ZA1c+LT6R|_l
zTD<1%co|FG-QB}AO;vzGWfK(Cy?_Bkn(H4=t5IJfMEPcmMNv^Po!`lbM!yAh8!Js+
zH6Ew~_##0bp8cH;x~<<i-5^A(XA0QMsAcBZ@h|E-*0%j$kqP_dc_4^OmpRqpUYB0z
zfYGy8M%8Tv_GFKt1TXh{A<OP{sZLEkAhKdO;kVdF-L>-^yOXMgtJF>TdGpbMLhV{f
zy}ui7bB%V@>O+l86)Lz+MUhm$-C%Ci)^z&l)47QZls%nW_VA3~(Aq(Gc(}3u&fBAQ
zHIhI&`l0nwD!$^i4JIq%^2rV0whlAOcl@Y+>8a#%bOOpU=<;L<aO;XGJYT+k{R*Jq
z(V|u9pie#IZvBpVwEyV^7%V6%`qkG*2Xq;rv6Z%ioPK@0pe0h}`Rz(4Ux$}trKWT3
zQ8iPp*Xcrur=eEi0RVNqK_;^5rh4e1?lDaX*Xb{5<GoH}4&Ix(yYB~MU?P#o6k%ky
zeK;3p3$PiZjvx?r;5i_17WF%H7fQc-_paBJiww%Bu|(4ymL;yz{IiUTFJV!+`^l3h
zo6T33iwF#cAy+_{UtDYjb!=gVq}<K5R4hEn)XyDUVNuSQno^|?c`fxOI?=EqpHO0%
z(&n=AMd5JM;e>q;4VDC(j==*CZptX?4p9JPDvKV(cUinnnclajq5*C~swWdLvntd3
zz5zBi%V2zBc0>6J7in<t9`^N71X%Ya-f0yA@--FU*3(|-=}&YzlCZ2q7&wDKr9aCy
z#c~`tOvU6UZD(_Nz+|Rd0h9_i@XnwE*~~*!LtIMA#8er5NI&mez^1c(O%n?cx_1v*
zoBb4)WfiP^A_K!B`_%=a5&QqQV-Eg9w*7Nj0)PJZ?-CNSAh-OGBmz>zybRw}HK#WQ
z|8s4FOvJiANZ~YnaD^#keX^!+%i~QEm<*t{lYISjK`^`*0@AeXtOLHzsxLV?xMQ~{
zPhXvWG4JND>^kX<p<6!q=OhL@dF$RZK+CQGh_|KY;4U4VxYJBSWo2a{@gLseh10=z
z1VeqA6T8Q+jOeaKI^7R~#7I+sU-rQ94`Suc^0egS+YpVgCsPRQ^`8Jy)9*JWIzdX5
zl99m)`wj?y8hmW%MW$Ffq3ijvi_@z@ZB)}<ukf&C0NPh1BSX|LG%U=%Y65tt660oC
zJEhO3Bx}wBATLulGTJ1wYe^ms2T9D@(3e4=j*!V{i6O9s1s^e9UXRQ36X<<H!T|{S
zzTI7&oyWkh`r8Y7uIqrq9k8Bt{`|RHq5#S>AULdNvT}0CAXVXq&~*UuJ6XzPWoFi8
zPt>ij+L)>Z+2r6$zUG~FDoCY+RHxMB)m9#%vl7(V)3X7}7U^tTP^K9er1_Q~sJV>X
zm7`HOk@`DHD|Wsui6*E#9LYDdYWWyYa}E+yb2BsGOThrV*2iW+Au|7eFGOB$@DVz1
z*kSj#%)BYNk#hoSj7yLO=r;!jaJPelE^14h@$R#+LBT-&wID&y5Y;CPxkm6wNHAJJ
z)uJFTuaqIO5|EyniVK1KEE7QZX@YJqSO$TgAdxx&0<cLD3q1c?GX~DAP|6f*Jk<a1
z>kO`AlEU`)si{<tO`3s-SC1~h!4F{TL`P?gyHBJ7c$s8wYgg(TPyu?)_^^tK8gk5o
zOovA?Q`oClKVsT3CMt?X&~+Z<dZg?+gg|S+c?L<{32A8}z%7GACK4WMQ%1FO=vN;P
zlRRz!v8gSBOdQxSWfTh|qxs?b__cp#m<M^L$IDkkLmFshhCgYXNe@BPAIewNuW`I?
zH?o{7VvG|?+>Q8ABPu|Rk0uy$vcJjBZSre|quFKvSz20phl-CH)L)?JO%@Moa`LeI
zu$M^ZoI2!K0%|sl$)_z<g)~nYPwxgM@N@jL-KhEDvn2?#DrkI4p5-<&V~v<s8`JgL
zAoUwv{dID3vib{@5xu{D6&dDsFZ^CRU{%h*JJteOcBRLfR#jzin{RV9*hMQ2WkX<C
zYq9=YH<-6ae*VlP7dKP`{_<JQ3Io*pZH85mtIMP2v;CFq(5#W&mAuUMA3wlh0Uohp
z0jDpLpICzI2AuM-*DeAIa$w{?Q6M!2DEfVbS(P4!2{;8{HH|c40mPjz=D5cJI2cQ5
z;z5D#?(P@=N~IuM^f=&CpgyC?bz<On!aw892-Ydl@_+F5-tk=iZ~OSGNt=?8*+fS6
z$S9!_vdOBDk(rsTvLdM@d!+1@y;E6P**hc|5i*O6@A2yWnfLv<AK&lq@%TON{&~L(
zm)CV&&*ym_=W!h8`J7S8i-;^(_2{c~aI?(%$3yt6?%4J|C=|0HXliax_~YTBIx03w
zNSffvas9oNcqJx7v?4(+0+TkLK7D$tJox5vu)6L8fB(yuE>WMcXCrh^EfxDm{R`f|
zemaR08<!XjW<(GIa3dNhG*C)nh{sL>=5An#ys~WgX9b`KoCYu&cZ*H8wD8rdO5!d5
zr)uCg#paJ;QBnP|e=CnH_PNDm&UBJ$V4sz3-$(B<(VmPog>ejKJ=w=Uiww+7c00Lk
z&cEwnsvbjV=Bwr<POYJ!AZ1#N=^36KUtH;JQ%~0%aSn{0=_5{K0i45BfJNe%4^`EX
zwc_-b-Q-85ZKpq7b&Y!R<OTh&<TKl)6kXISfB%m-e`d2Hh4bPBpV3F!8Hxbu`Hk=W
zj%QUy21tI4HB=L_1AJrI?uXtB*eb!Y)AvT4b-FA?OGCuf@cvKx+4<BTrj`}7b2IVn
zDP@j3MiU;&=(kh*(6g%UPp5gvD>iKpoho&Y?E7Rw<$dGu_Eop_aL121s~>sBXx$=F
z`kR}lJJIzICHuT9?KIkM+y3n0v6Qqp)!Y05ukzAWc*O=Ok6y(FY714xm=84tg&&yQ
za7I*g?b^nQx{Hg8hK7bs@M4&#v`ydHwmegsw^(AeDt8vfpF~CJ*qlE*_O6GU;IT1e
zB}gGvJ7OKsMT0RD-n*$=b5}8T=D<n$_7$*80F}(gj(Ns0k6KJpmLM3-_=;cE)SNhQ
zzof)jS2sFk1EF3FGj}{6o3th9U}6q1AJrNAw6lx~mKcnoq@j`Ibh(X}sj{NtsJQrG
zb+xqJN}>s&xWZH>hPqj?t)~ZbP%geq5WCGE?|v%4{Os_&dDfM5u2kk=88AY8rk#-h
zAz+IH9p_#>l9Qi|G)^D<#2<TwkRtW*<44qQEFeQT?u;M1SWh6V`&0}8K2=s#>3}3d
zk(knj@hP5<vGQ*k8M)6l3V;C8&NkS=^c9Z-_ug<V69xRB`$qrZV9Ym};q;5g>KYnk
zFI^G>kOwc<PGa7hzPI>PQ>0K%e!l(emns2^PreTx2!WV<@3m_O)84&%H*MNPTxA$U
z!xxTPy&oF|tP!ehwD}vo`ErPy{GDFb`}gm;d3bEBtvl1M9-yP^PoQ37pyP?X(wMBA
z_&hi`T_fuVJ3Bi!_uQu<8}moX8)_4M6}3SpJH!=SSK4WE>W~+RV{CAlQ|cMdo;|zc
z=$O2(#>~2SOwx31H2-cw`1V-M_U>+~Lx)c8e{e!J)CvUvWg>;}&Q`qU^6p|gQ@r2n
z*RNYxWUQD<e2Bjsg0iM&l}rC)I3D%rz%7Z3w{A_K@=-aom2co<)ER+e#|)66{SR?Q
zpK-`o@s%s-IOlM4*Dn9|_I7Og<&_nSp6r`Q)hK(6DCLm+>qm%)jz*4_jt&IDBL;CX
z=Or`#h^eu$3#42;JZJ1Co=LnQ-Lq%U-o0<`%<AF8OpeWQ+BSHI@kK>O{uPl>@hR%)
zOifLh>*=-T3u<-9<n2k*DN$S7(ve797U5gBZ^!79_f1Wlf`WplPg~(pf6a`D5zFby
zee=lt?EOxH3dK&T^XDt@VDH_#ha`m$^3iOpxv2QZ<n~`H+X=ZoOo2=dhkBq-*tS#S
zeIizcJNJ!R^r;oq9L5Npm4Y*S&c^Ih5vZv7WGI*81;ABQSP1xaWwA<W`}#8nwn+9Z
zgmJ?D2VYm0=TlNI(^$SZFDWIphG`;5NO(am3*(9xFZ#aowwNdB_2P0!>+S8uoF@+L
z!q=c{TUuJ!-OQ<bz2i!zBfs|K7y+4Jb_*Q^MY}2&;q1>U+Vi?Dvr+-|qEYAADBYJw
zLM}gNYZ-eqCqI!Nq&F@NZm=nm+t$j8O5ClqtjtyYLVNZ!6%UgE_+I4EJ0jr;Wu>K?
zH*cn)q51y(`;WxZmyGONJf{7Gu)nztP{Zob?Rv{o*V(zmu<?roH$)*)u$xdUU}H0%
zXWC_NM?nykN&Wbonk~g>6PC~T0HQE9Q&)!~VS%|Z{^s-N&qe4hF}!CNCEM%l>?7{c
zx%_6fqSW|a0>Stk3I(U1(`9aJE7UxOygzM}n%#(-lW_KoUmUK4`Wwrvx_oWQGJPe0
z+jz^XoA_evgGNJ}qEE50u>pq#QruQ4gb)9@+^<~+4g}#kX<&F78`D$u9rJNB=%FYt
zbeM@oEK|QQ%l2M*eG`H3ne%aw-N8RsBS=F(!BssJ&uVVRf3H(Keva=TP;IMlJrI;&
z;wAAyf%&Vo(0p7%g7lFmzExjRQdsYMZ6b(zYp_*wZGHQL*f#0cXqeMu7ABjZ!fFzp
zU_!Gm!d$!}{^m}vBgc*%6BX^heiWnJ&KiBT62wrYf!6rTReD(}tT&(XQ2Ki{q($ux
ze;%Kh*v4!AnjF77mPa-mV<|X3c64;q)up_7^XA2ibF9I5T?U3z28GV`U#*MYRpWvl
zAKMBn2lt8nViXo$0X3VKm#3Fin2{mR8q9r&w?w$uqQS}}Oyb4qZVlW~b26T1=+mdx
z;K5p3TY+Rm9Ot%%UHwhHa3tYx*BhOgaR>R_+^lfn!UY6%RiO;S{IGN74@_QX;Sz5N
zt7~h@%E~9@!oPn1E&_0`D#V?Wf9}tdGp~u{abE0D-@){up|{rR&r@BvxW2xQLjSyB
z=U;C&woE0AT1xT23E9~7%Hi3^&%f>a^NqQ^K!|B+X}mi_*sf+nH$kuk(!DK6%OBB*
zo6_ds<`HH3^Ex|c7Z*hl&H-t2IfSjhUc7ThFs5m2ep!S*a5?Nm1xXK`;`WjQ<>2x<
zJ1GU$u>=;(D5R!<El~|gylC$1?ELg8vf`ZyV;R--?QB9+Vr=YZV85^P%V6Dg=q@{O
z1A;+~TUxN%Sa<b{n;tA5RAfpvb-&YZs_hZ|DkVjRjq>ub{YBc3NE#+^15|k^mr|z>
z_k&Wi=@9$%d5eR?Pi&|wV#}|Bj+hw3kig2x8Azt2pnwT=_V)HC13Flv$YssU(h?I-
z#xxb=<U|0wgKQIiJ-_t0ex#xLtzpj8_wNAH3R+ryqXWYB6QSL>A~vdu7jo_^<_T0)
z6OWm8%eqF87^jDa(~Q2@ur8t%3R{2t{H~%i7#oaf+riY8d9CaA38*)wNHRa?=9JtU
zY{za}Tl)nDG6-75ZmPbe=tDAJdosr5*N~58>1;KkAxb(>XFS$lKVXsAs%%Uh!p;f`
zBEmw1ba4J9jcc~mV;9?OB_uY_7nhc<)&-xU>lQjI(AwRN9C4GIT0S@r`Q-F15&EY0
z@9&Z6nV0}Ngk3fy*-QIlVFC3_q=03#Qu4ywTuO5C?9ZPVX7+V-6f?R$RaRCuHU<d2
ztIk~+@?ijC;dfiTGdhLR&{N{YSw`Q0fX3Qd@&}T5ix68FJwF&^dw6&NLx+ZiIXXKV
z85n>WJwnb@+1D2lmoz>;j+#zYUHyPW_+j~@7Z-zDeSOHled85tC@Z&Nm{?_XHFt-M
zj0~oZ{c?HZ<Ku&w4=O4YHugT$A!Pe0Df59TS5}-(P>GhXb8sxp&-3u{EzZueoI2GO
z`U5Dz1%wPSt)uplMr<Z0zm0f@Fb>{KyT&O>$j0!)W2S_J1dt;QMR5sjadv7E)oEu$
zydxqaGBam@1_UezTtFXx`JxvfAO2{1csR#t@s{eo^WM9Avh;m!O@tpV__mdQk46Pj
zet~&kb?E?Tc>I4@m$2G3eVM$@W1i2RKTpXg!KNMMHnkz2=q|O(ZS|FOjTkJpOYLmh
z94lm9r2RtSv=DV`wp#3-5s-`Cw0oT%f?nD$fiZz{ZMITU+nDg=af?u--ryePWMo#r
zK6aZeVbqoesL!vp2e1|~$?XR)26$c(dQJg>5R<Ca<4D*P^J>TT(}BLj&AW)X<CX_O
zLqiB)@nhxScrFu<WG8#&N>hEk78Es1HGC#Bf|^g76qR~XT3V^=Z+@m%xw$HAlmY^g
z(vK%hUy)zY*MFIsItlb)iNXkTx8N*5h`_rzc`^~n@LHi26ZFEK9!F4FsMS0li?9E>
z|IMiG84H8!0{H<A6O&}IewkxW*VlgIwPKJMR{Y!AS`&QxM3yT;6`<c!nfM7WVrjx{
z;M=*Vw-ZcBG3ZJx^{ZN1c%G(Fl<7Gs<Tn08wFcZ0AHKCEh7~|95}}_#o|}j=rgH@!
zF+Dvkn+o>dtI-hTy#k+|W=)6iU7Ae-0aM}|%U3qm*D&B~a$*7maK$G(hq<qp=u$Je
z;x$eA`T2_r3mZbYhJg`L7nyNM&_xtHQloj2WI4aMxHvT!GSqX9)DaZBKISuO7ZL-~
z1If6$rn3UCZeIT$o^TT-VnZB}D!=w7GQosD!gYPsF+2eTFbl=bgFCk=-vEw8Y%$OT
zYry5z(1%*Og_oVue+Lt8^Csnvt@kP`B|DnS*OvM)I*^nJ1a5j}=1EWO68iuaqxHy1
zstl9ItTeNL$^led5_z^L){)JBt^b~(qoWIR<~9xowC&_!Z|k2zXz0tlCa&69Wt&Rh
zcY(q6*!~B+V)sDv&Mmv7PgYS3lsE*k5XD7|hRc)p@4VXKTU7N!#UxBAxfGHFW&?_w
z_wokF=RR`#Ij!Rt7b*<md*|N0Y8$k9k5cV6^HtxX=>ziMxA^o6JWq9XHCT<P1d|i&
zZCNXg=ByKZ5F}<ke~xwc6y~?2OXoeJI5@gV(~FGTeSI}FG!)9~tDEWf{6m}9e%uim
z^-52lf+X8<2ty5>ot&~YHu_(em6iGX`-gQkR4E+f2&t#Y)?n+{VwaYl9<P+Fl&qb1
zEBNKhVUSOTm_|qX<l-^Sqb*#Kj~MyBu&}XVx@FEr+faoM#%%ig`5}09dY@bypXNtF
zQ&Zz}^{1Mm=uV|cr{w35*B9Ul&`gx7NlVe|<SB*K1^{??czAR)-)2mn_z0$vV)ZJ0
zzkW54xM*#iUG3`k*Rs+#S%jh$1@ci?*lFm!SBk{nRud(H73*IMh}|NW(A@KbmVCTA
zT#O%(WKklZfZhIm=|G;Tx~#0Mgv5J5tBHvT+todtMun7HkaRFck*KT&|5#py7M{A_
zKjHqww1PuHaSZ*}i3z8%k8}Vy(VGxzc6vz!gll$P<_L)h3p0tLbTtfaG@P8bdfDBr
z;qLBELP9dSW0>ZWjSYj$ojboETW?^P=|JIaeQZs3;(J_N{*nkp26_pDOuvkcC9<{~
zE!vs6?SCK{%#+9ZJ|V)vRBMw5(~ueU0yB1(qoZSrRtw<b3Phf~{2+jJ;6FSwzc>{g
zfCRs|uhxz}`^JWbp2WmhB5nxZy<uX49boyX@I^|+D?M4txZ;s(tik#DT89pWfKd&w
z=<xFP?(FKC>B+gEs-&Y+W;yugQqYNSIUFIJ*XW7Sz@$Yul}2-SAQQ#T{{H@m^@&|C
zi}u|FC`L}*z!=o(M|7viNHuBIC$~=U?C^X{^e=F6DV9mbbaefrUN!7H(q10iX--cN
zK1fW6O3Aqi3EpH!DE-5n(W{8;U~WDI?1m3Ye&B%3cr(-Du1ijM4p5>{86p8=tm<av
z4?|Yk+S;g-A?ayi1mfKaDM`uK8fl<y0F*JY6ZNm;g$q|OCNVDV3#fcSKp5yZO)hkq
zVDGR)VH^2|Ffrgb76o$%29V-MVKv}{gmV1&O^~N4mdnYcUhj!BY5@gIJJV`09u)F1
zNLv(~5UO72r(rJRG|($i<U{_1p!@fSbcLbOmHFRF+(l~QbD=&Dx)l?MJ1#F=b*1AY
z4zE;G%h#*&0|fZ+;R8s`JRylSEtCGyO|i<rcP}Xq9s1dNnUh>X_s-C^fVO>_S2Z*+
z#8S7|wzjLw0kIaI2}o^sOi2(`EG}OBfbp8ppVOS)ZelWk)CBJO?%lf$FWZH03G(pd
zKnP}`@M~^v{`~nf3e@e}w=Ye0S;C=%@59Y-1lAnpyG6m|S*1s$EbtzXrStRii<_>S
zOm()ja4|6rL8ZeiUEuo(^&S;|^WI$KhOb}0qA+pAa{@Yt$)Q=W?9~u5GM?<U978#X
z@SsNW;Fixxk&pSI`D*xl7`AIjz3Wt7*8=gu<TKHGi=}41OaR#UBgVJlK2lOs5q;!j
zWqT=aq-yg0c_u>wT$_sTBHwS{wk=uQaaZ(BYzF|JP=0ewb&}1obW(~9N8d;tA)hA|
z6^jXUrd+(Mg%YRuF7PWTEDcRfOaWbJd3gZ_Jsmo7f~^R#?CF2IJU<q8;k}cybBvHp
zLXo8i;cS6-?(W#bzrcl;2yY$N!>gK@AS1-K4Lx@U^e4RZ$lXmW0hs?3RfN+!|5R#(
zhnxQtU;pc0jwNyW^@B-D5krJmRAA6B!vx?&@0OH1y)4k5D=Uw&vo{j-sdM7uj+{D`
ziudAR$4DTg<0c;VV%lr6_|#x|`TTZPW@cdXGiOTXy_;E?nBLXY)PQ|vB$JI4<PsHy
zN&#}@^XKcAFJH#@U@kAMkhLU72v5*ky(~bH1lh1Tko*Z{SYyb2&JYBFE%aqxDJ7#8
z3kV31J)tiXn(;T>z6V6}Ma6cQ%U;o3yjkf>UabD2h>6)xFQ*430di^*(ouJG2hgg(
zlp_$-HDHud$N5{PrdsP%1j0i&LQmhqz)>{|3l65Q0AVOsq68je3AwnezP-EUjHPb^
z&?-0fE|xoX*cOt#;69)Ot-QNWl36<ES5~$LFo#4q{_Wc`WP6@P2oyjLrO5h-sX#XZ
zQz(+|!#NW0@S#fZDu@b96Sgi|9gA^S%e?e&h=1ZTs!z9XSD?walu<VBLHzpnDq)MW
z+RRsk3qwOgP3LGnQ#Ak~z!<y0&4lZc#^)VZe`PWG+@~J~O7wh;Sk%U=qo{a}6mzwy
zpd@>FRbd2kq5`vVI0q*u11RU1CI@?a-8U}Fe}E$k-Z0UAvkF01R$Vzkc6t0|pmF&6
zNXRwmhg9#z=6x{K_{*2<+r!eTL8IQxEG*Pesv)+5ki-W8os&fWN`-at=g)$?JU(Fh
zxjC6DR}xJ$I}#_noPvJ;oB_)K-$?4A^|^Y^+1Xj#MnmkwiHTdIwk<>)_!Q%Ul_-t}
z)$)$sLQPGywmH>8f5Ght*iE!UDDh#rQA`{IEh;J+hH1mkF{1h@nKj^Fz}<zGPh=_b
zduavVMz&4-h_<8P#sF@NPky!GOK4^yWkR(U_~1cpU0t#J#v92aimbspbSghRa&9)S
zxnQ>PlP6E0LHP#;UXhp2$jG1vv7VQ=2$2Y3|J|$G!tGsM$igLsg^_}{k8pD<C9C8M
zdaAIxjs&Z3-%a&6I{J-8zcA(H`bP(-sP4d+1_T^HFDfh|0u0%IgZ7O5!-^p`?Lvhz
zOl^LLfCwx~%)t@>HUarc$?YiWDu$8{b#`><6x*60t*4+Gj(+-duKKX0Y_!NS#3581
zdB*q(7<Cv__CGMdL&qXln2||VsoQvE=e9sC;Z-qYRisTH*rh0HIwfg3L==^kl&k?Y
z=(cPkQ0<eiS0y}@)zs_-;38#$gJiwQeO*~qHC}}kP-)pkjOiE@eE^KE78hKeR}TBv
zrbt`j1GcypZCq9sp4)U^L7+*tX%|PpiZ+J>90izDypKU1z!Faopjh@uYa~E%QE@Rh
zSL!Z!Pj>A(3@-=npaym@_$P=uRZ6@}{2X2^(c(i~l`XH+(qvBrIXXF|$Uxhs*jW|I
zr9Uw_NtAft4c<;d!s9PU`w^@kz%Gh*8d};<AO`}dR5HgJBT!GbebOAKx<@9_W~-|^
zfYMPHLx~M1gkKpg$|E1RVNs7d<>%x~wk0-UIeAIku=(>qUg7;GwbG#ugFr(`K>?F#
z(%fM*w+b{hHT|5Oy^+0D)CXhQZyB+K{@n}E-Y=P~g6y9N9JU5IE0p5GktgHw^`ykA
zRBjiGAJIJ9k*ZFd*-bPkUd=fHV2L`;^Dz+CD4PR3Keo2H(iJHwDPTZTNE}hD0xI2x
z6C~s?EiLRyHx?tmf!G4?+++d7Ra`4ew0B@o{r>shk00f0SaGipo|ADyzed`&zuq(v
zl_Y<hzbhvw=ztB$HiF0OdCl$pR6%!Jc+(eC;{2)?B{7%!_Ht$wlV(E}oQ($&TOL0?
zjf)o-3xiswbf(<t1#c~4EaH<~$X=vGcp6Y-eu6I*-W{SCD{;}x>^mwAfGCh!`nY0?
zCy?->5^FG6)bzA8gKUm?B@-i~0{xo3s@o9Zfr;>jtD2gwyiCRTa!}X#g*%IVKsq2y
zI9OR-=RP^gYT&bw*79IFTB|gCH{rU7l_j;UGt7y_PKznv^afHks15gT9yPR)AXToZ
zs)~R8T0!+fjCdbJ2uyAlX8k&XdBoeiJUtaC;(tG92?jVRE-nTRRw{dq82sv$<eFFt
ztUIj1G6`2+C<x;5!jVa|7!Kr{M@ai%H)15eN`M<M8y10Xku_YN#6QS$n5&He|7Ep^
z*3qG%Nmp_;ztKxDQxun!2$XSUtce!XWtOiapY(Zq6A0cuNQU7mtm(<gOrE|~dL0$1
zypZP0va)7T$sx?n0d_zjfLws3OG4s9oT3k0GgCUhciyVyzv4%1a&~Vn1U^jP2Z($X
zA1@^>4Mjly<-LE=N?th;gn=@Vh3;UEI_mTmRPunWi$vC8u~Q5C50DDc7W_Es>{DuK
zq`P)0i@zKl8~eG~b<G{a{BhH2GtD50;*vm_j8386y5=}?5KjQ**!~AFfD55)g4mEM
zKy)RirlyLu7#bO6qAvi<U711*lkm$iF#c?O!gHSy3e?op_EK}dQf1miumvf6y&W(+
z^sqMosMqMn$?l$>C~^07{1UvPIef@d`yZ(IYp_A){LP_TN<~h7!_@SQN$W8Q-<L1-
zQCERmL1hg>I70WmX<cnC3y>EJiwP7G@VNs612pRN@a!Glzn>fGFl2BX8lm2lhjP&m
zYLV-TEe^1N_X>z*W4Xy4dj5QTi0%rceCYt1MHJmvA_cR)1r-c{U4b)602c1GkS(a4
zN5;lNo;{N!ePObKIsSJ5G~2c0qDA0&Dl$K`Xg~eQ5s@4vXR3_wEnohHQiIy31it+b
zUKM=|q!r>eZe~1m=+N5mCc?PHvv(GyNhvAWd3jZ?^vzoeOG+%Uwf=|!z6r!x=c#Jx
zthl4uzU}EFNU(QizaY2SniWL#=19DN&o!LKNZ!bHFF{y=f)DngQO^PeW(v}+E@I_X
zGy0o|a-t}9!oP_iPgaJh9@c;hYiw);su;-X$I%huP7B6h8|eDX6PIL3dth%zE@?aY
z0PH-w%Yg%DIpLZeEOq3OQp970^}(bs>U&f`qajMVlY)ZXO-+{Y4$yU&OG`^@XoQ|+
z98cQ2r+FSkGY(vM8X9VBVKFciwS{22U%PTE*z`x9{-NgH{)n4||5+9Izla9^`(LJe
zSf!`vJ~5$Dd;p5Wuj}~m(d4u+S`Q^X&B@rC*!P#NLD%r<6S!5+ilNV$?x|M0`S(XO
zp1Amt_}!a;WAb0W{ye|@p+U1M*5s<A<1(mds9y9UcNFl*QF$sV4t@UI3~uL-^ihp3
z<7>pf)1D_3`>j}f(905}eN<HBh|=o!;^av(Qk11&?QK|cQjbp2?+$sMEXFF~i%pFR
zN8-ifS_5EHT3+MF?=X3Qz5+^WvdR~#&COoz4(I*ia4Fz4*u?P8`b!FmiiCom+u4Qo
zd!K814mbP(2{0I7WDe8NM2op<Lb0EiVBP;<H|2K10u^^yT5&N=4VeeWt2c+yJRW&^
zczzksZFF?>V!dX4tV!5|2Rr<$zRWK}oC2@~QUH~_w6p|e;Q9^1*}&O8%km+7lstTt
zjssjUn*6+C#(!A-^rBH=?!)Cs4K~V<dR5k7UO66tE!>I1d;a`da4*QFg5CsMrhxv(
zwQob)40nGuNY}%UkVz;~V9<I_53k$-2|N?Ln%O%pVuO$I+nU}E&sy!?G_Kh=<^7?$
zw;CVMk2RwDsK=(*M&iF)ckekvIsG0Q#{VxBSFF$Bze*+b3!9p`iHkK>%GGrZUP$mx
zh87mnlapX{YM&t%{QmuWet8vnDB;zsqzQ4i)$YN;YZsP~g+C7u>)*P?N=AxKlF;br
zfzfW@8)m<{`g&8FeT3>AL_x=R7JC^X4d#mPsF0BRka$*rE=<Csxo`T#$B)2JbmYhp
zoR~1vUvh!;Do)}7uZD0KF=>t}A6+D%{p3-0S$+1nf4>69s_ZG`C-kEPf|B)qU_cC<
zgoua;bX}O15m=E@0Z_4Iz{nGu55O8nMMWJra9{`1WLKu8u`v}Oa%YCy+F}==4v1Y#
zI7Jv48KGUn7!BU5%zZ;lN)hCC1sv4XfecrO%`7mwq$MYR1NsCy-@(Kk#>U7Pi{c3D
z2_Xj=&y(!QMM=`xrKJSsTVNmLw8$l3)?Qm(m6elob#Z~Yem9Q^Vak(OJ8Lo$S=Y^X
z!CakXB!m0l^axTN>Ja0sWn@~wMUcQ9L>joER0DP=oK6Gd3}65bNMWF$K!KYJ$U0IV
z0^<8F+5Z0q+`oa{l(>jshf`%xhJ@#*WM=N$yVw5qZK2y=Bn=Eum45Huv1$BRWX4{s
zr-%LO*IdCKkAO6L{@n1!jTfv1`T1`^KKeI;aL1mi8=KGLfL(I_#}7u&%9@&=Q+**t
zh2JJ7go&O9Pfx{{(x5{gkj?!Vs(`5jA1*yE?)}G)kEr`QJJn26QG16c0H*^dVrtZM
z|5VIY!j?bbsQB2)lYr_lV@EsI>#faj`@@Nya{z+OC}r|oDa;F{r6SJG&ZFjF#{fBk
zWkw)(t)OCsZ~7GoEl)DA-~-yGsjI6l3=9k>PHq{OhH(2f=L@KghO3m#gCID@8p3RF
z=!~VMrG)QU#-!wAMfQXKRd@ka@}3gl2Tec}BF;RzWnCn~%xsL%m9k$frW__WRLHnL
zP&`;!$uX&IEw`YU)9zh=d+z6b=Xyfy*eOm<xa}V0<k+Z_v^E;tyoprn2&&8dci&*>
zQ%I9U+g)7TJx3xZfWPK<Uokc|*3sz?x#pIvtD&o#q1gC$qf7Pr6@((JUJ$Ur3KUYw
z7UaW3w++|WL~gz{`Z3tpR2F61Y_-O4y3voOt%L;waFn_w_Q-7Bz~Hq8I&|_5aL@?i
zoF=3<(6ggEZUEMBmi_?tTEP)kVmJ_p!F_cW005+c=VNc;pY2`}Es%P3bj)wucxRZS
zs<Y!Czzio*;e3)?W@aKTzpT*zG|w&{?Ca|bUf9RW3pT!oO=D;{2oDYQm5c))j~D?y
zz2kffA~zgj+S;^eZ$UMZr9qPpqPz@P5^8SQ>Rdgrc*BPeR6K?cH=W!U8(@{co8XiH
zDh02NWZSki90!C_^FyuXB+g{9v$F%#m|Jf{?ab^4i4Fw_4UeI$p57P4B~J+^CIbjV
z&`@v=5X!mitgIsYsc>maG;D#P1Weq!W5)wu-#Y;RL>VSP7~2-KmJ&0?ix)56y?b|v
zQ+N07-I4#wBZ|QFqdI~X(i107l5F3O3X9i#WPCjI@nhmaHh`*-`NhS{<)hg>9-Xrr
zO7168gNBCOHH{hQi7)0%uOW+93JVV}2E_>mp{uj=7VQ@+u3fSELsuMY-b=|6#+ksn
z6A#xx7f_alHY&M}Ap#+n27zsS;Mo3JoG}LT5B?a3Lp3X&M5;ocgT!KIYpXSCGUf|H
zb$x2OSFb+c6m&RNJc-&YO{;+8=+T$E^a&o*{zBeF7ryERk&XgVY8+E$<aA!BPI187
zT1!i7m1X9vpw@Ome*_XW;=#I6JsUeaj5(?6lq1X+93$#c-tVxb{WQ0a&>vjQB^l#f
zU;M+Dr1|Kd5069XVtq~v2*kix5Bw$}aSy7Rm)ABaMIAZ{!r4<q>j=G9l^)TWo|H6>
zZ41K_((Xk05Gmn$gH`TkkLcRLL2(|Qd9>C6;0o~ZRb{Ge`BVH6M8h&OEpOer<>t0d
z^f>-@$j0-eB|ep9AQ$k?B?!`XL=vx<_=}9T(L3!RNbmh0%p3pjI1C}4$Q>df5(rJg
zsIR5508!#Rf;<bjf)9lrOl4i1{xvfLmjO@<JQQ&$8z?9tb<p)(!E*=<3`|Z=KFf%s
z*z}y7oFep1|0eloHi{zBQqi|^8^0u$Eh;K5OFc$JRo&j6n2Ml-%Cs#Y(BnP8Id%Z-
zGd=ys)ty7o>!Gf3>XvqETjKC7c$L+xtgJwUVByo!(xPkC{B0gS@wn5)`q+T)Q&VlN
zt;nTYwrl}<)&=3Npzt^Zqd_$aL9r9#^rym>o*p4Ct|w&Ku-jnsKRJ5g*3<+lDj4AG
zVDEp<t_33yxCbEa9MFMSy~-4eIG1WSN^7ir&&RNVB29&dhwr62&B)LHoa{(YEq(-|
zras`+)D)bO=SZQ<V+xg}rC%I+j(T$sGQBD+1QKt8aiFFq5lsoFgJ83XMIIj~=w*eH
z9U&v#xpU{%&3FC%cPRsYID<f?i~!sBuLM+sKcq={cx15wl#*@nX%H&01c}|Us8j#w
zmSFvf+O6%kRxmde6%{7oAM5Ilcw&F3sHuGn<4H70U0GQHmka#|1`0`OY1ZJnM^R(|
z{`{Y9?Fh{WT%ZW+>gv+d(<3zi&!t$Knoa^v<aVz@>jlf^B6e-EH8+=c-@bhk7vY>l
zybtq_z!yNO$b+;5?0{jGlnLc|B!mLkD1f0s{)V<7jpgOzFL5TqVq($gjhC>W8R%cX
zgvDWe5^GKuas+B#)H6l{P$AE3I~7vD_`R~dJ-0|IMI`g}>(iW^O#=hbj@ZR#kj&$i
zmSG@vgDeae&$q#HaVE(lPm%<>dRhNc8f$Bb30~4crXK8nW#qO^!?(c}fSRNQYKJj`
z_}H=6RER#Lvy8@B2VN*ZDd_F)HrCUNdl|0Hv2W*2_|P&_Je$U5dh<?!V_{;t@u~1O
zLh{7egl(>7xtpj@TNJ+=fpCY?Hqf~q=nv_3`1|)y9e3Ye``=55SW6XDzjxfP58=$z
zDd9hQ^gKjcgY1mGB<qQ<UlW5iI3bFiUJVD{Bg+s)r6(5`-jOi4fMJ7OU>LOz_RS6^
zm<{n~r&k<OLve90_{~Pc)Z+a+y@**eMKu*Id~iL%H+ctry8t$$T9K^St-zN1cJ0Cr
zrH*O3A}7bk#f1$303mnj5<q^6Puy)mS}eH2LP2=9hleZlvUoKcfj1#5_*1ew!Lf%I
z7=~tA!v?A?@@U`jpsaSzXFGMu6pS(!IT#mZS65MMZhafzT<}CVeb8~kr1t4?3Mm*?
zQJe)(^PJ$~ng#ujvWhGlwC>@<5m<CM8m_0i8!Eos%K~UYKr}$#KAxVEl9I&Z9Ah?C
z6Q$|?qeAxIES)KHSpT5*5nXoe+!>y4ZEGuwLmY7xgo+-s{Fs<)Cz~i?aH~(^D0Q(x
z06{%>;-}I<>@e(mkU`)+%k%Tqj*4iTZ6+K<k|dly_T8JV-j_oU6f&e3clg_3^8&Y(
zT7j@eIGvPnrT+gd8^*kwtE-c7IdhocMDh20I1Sb>-A`?iU0fQpaM*ytBkO14rX#pK
zKzjX$53!qK{ZG52Im!N6hPW0AA9`x)<c%I~I81<MQp%-}GuO?YtE;K)M|oQ5Yq8ul
zHjvHnkdp9l&otlmKV{i-a#6;LPoG@SHU}0NycGfmq6USOot*;i04KIeno!^WPw6m=
z6kl#urnameo|%b(Z3#~dtWiXG_!sqf+<mMO&p__OA=F|BwlOh8@qA*P&J;i7VbR##
z#tr9CAGjX`>9UNyU@i!;Ikthh5ATji6J3V;I-~wbavt=%|A*vQu?EVt4Jh%2!iN#-
zQ7JjO063=ntFW53@7h9e+MT8GP@mLe2q(4ut#aiKLw(LIo)a)QYV!Zx*f?BJjk_u?
z0cTuQRRyA5^Xk=(t}X#y-iz@{^npG^2c&~#7{=ZHWmI%rS(^HdJqkhl8jeQA!eOKA
z>gc!>uQYnkQ2jzz05u1@GBd^Y!@F?r!W~%p%1TO)=tVU(HCIq<BE2&5n2O)mt>pdd
zdOdJ0q6MFxhGqhOu#u5?)|!q6ex7jwu08x%wgf7V@^W{0nqOTCij0cF(Xz3u7YsZ3
z{|KD1Q#hO^^UVq?6ReVF@QaC#QhLCc4fqLRbo`rrF@%-pCG)NKo;%uO?ua1Wul?m!
zR4cI_@dK8Y9s-2rw;a&c)qP{!as=#*Va`<|k0523fcTHk&@7Bvkl4P1xn-SF=#|{D
zZy!93E@Ck?!(8HR2EQ0fj@Dgw_@b_=+SA+nr5c*7M>H5v^jYkt7tvs*fa5GYBEm*c
zaL=nl6{7N#1Y2}G#W7C+@gJ3bh<fsdx{tmwnzsY|{94`j?-tQ%`jxn)c{^UZUY5p@
zCs+w0*VWu{(+}^R#n7Ja?rzepn-3p8ymlBUSb-uqDvCX%KJ2g=HauD}Fdcx%Bhv<^
z2yld$8X5iUHO+*FwV+7gkNBcmKmf$OW=gkq@<mlRA}fUyDos9}SK(Z1_bulWxBO^;
z@$Uxx3c6LF1QAW39*Sh7TTunVo54tS`jSU9ObwVn0KD~~GyqCiZEX+y@_0+2XZk-T
z>FMcZ=MZs9<Jdf;hTmYU^NUgo2Aod8lSXEZat&?&>2?b-p8Qu1nQ-f`7&loFni9}f
zkgUQQRBM%zriyxzYFo#k^Qf2XiCv_m<7nWA>7t;(L0Wn{(^r_rD5P9*UFhv#c2G3|
z7vc|bzC}ic;mU1zpcfb6!dZbV1PWD2TU%DK9qu^ve!s?UJ|F@ACD>&PR4b#S)scCq
zhpv`6<*`0xI`55Eyz?Cqfq_k_nQu@;QPI(rfkj2-Z#?Dsz#N1Gwk9JPoQb1fzxqlZ
z0S<u=l1$=`NHp*^Q)O%GQzC}=FHA$Y{AQ-FP|y;X{jR3y7n3p}4^4Gt#()$-gtoWO
zzj*A3=N)HfWr{qA#EX{{8mSJ<15b*Gih@jmES0Fjx`PR#ikq7o=qX?*7$8_#Q@&Xd
zVk5LU)R`${<-K#$4*p%a-7;=ZbNH}H`14u=#1htEv`}+H=|q<WtoE)e3((#W7(L10
z`a_ll&(>8}2Mja;rTi$-uvqtZL)`$7<sFd$R9&P@vKF@|+F7zR%uG#x!~dxZoN?lW
zcg--SL!gVGs=q(VWU-#J{B_TFJlk6f)mshq^<hl4PmemC1xf&{Kc`Odv!=0q)ZAY|
z*7yCPhY@vn<-imNky-y<G7nEUzW)-^0&WntJap@S{`xf+DsjN2SQ96#B{TjKh<iV6
zkzcXZkgS(LCLzW5l)H=bu!Ho$hQ?Ex2#O8oI$?<36Hqzul6-7$=Vf6@&dO@3s=5ib
zAGQ#|J3p@5+}-4{*YhznN^ySvB``d2sD+?IXLYwNG_ULJ=prxJb%=vZVtSyg{uMb^
z^i9fi^f4UU&nH(8lO)(GjNDiTzrrO4LM`+J5Gn9XN~PXk#=cVLpXkSyjY7WPMnclY
z+t17X(xeyh366cAPWjNg7-1pRmaD;b!V?WL&yyL+NcSH&@U1-ICK}ky(TDR&iA5Q7
zd1$R$uOYH9mit7_8cdcFACL--!#hK_2IQudmPWF~;2>F4r++!@nicPE5&_ozhfXb_
z*~wbyyW{#pd}iP!S~@zMpn4j89THf;Hz>2<tux2!0Na<?avGgNjfTH}{VFUfLce7Y
zi$MncpXH2iP!+`z1^;;F%$Yzct|LN1VPsDuBR_o#xVC$=UA;{{w5y@x(ym>*DE;G|
zWS_uhp~BiRe)2Ean>^?S_y+GIKp05GdW^Qvyui1E1|fO=JxE@t_Sg(`R8)kssVE{(
zOT$bA)rF`)fttbX=5{`*HGnI$mHA;n06Qxy(EtmxaQMJBJi?Wnd{s*<8f<oJEN9FK
zK--?wq!mD8QqqTtikC(5?a3j=uEhcojni+(sIX<zVq+OaL{{<CPzpD?wkZpokjE;O
zX(teNBRhL=0X73t?cA{gL)44*l_ewSAv_r41xvs}o>1=l-pauNrdegXJDAuo7VZ3q
zj2oOAV5d7~p&*)@Pd^7!QgAuG6?)vLunC-uM0;C@R<WzY)>HqzHR_m8#S3N`j*x=<
zQ$|K(Xy{(rx`oheNDTW>&;Gro=@2f=dFIS-)Z;y{79fRbc1&SfhN-D3s1p}dYCx4}
z{^r_u!OqHxl$7)r)N+)$8M@`5?*s&Xq7nl}hF1Y@F@)DEHc{gzf@Mr^-6CZ|&N&f;
zm(l<4O;ERb+XV();0nNlv2%EXQWXp`Ty8($FvosGc}BYzqUv$DltBsOUsmMFm|*f^
zKXpngOHT?2z`)=uK5MR8{l|~G=z3FC4PF=BLdYd0K5ZN@{ZGpnk?L8L3gOV95wM^Q
z@`d9kOSNC~Kf28XbBs~tYIFQVcdl|K)Ib+-K=5}Yrlg?rP#Kn-=hO1GzW)Bs-{M0^
znLxWq5bLOamjgix=jKCtZgALT>p&0o_DkgsTn0{^w{PEq9V3@O#T*_PNlQibL4;Ed
z#twOaN@$=wh7Cy>8Bi$rxwuR;%^@BlQGACk^4E=(KiJW14uCyaTbm5}wWTEstuJc-
zRPAWamXw_NyBA=DgM$M;IE$$s84shaQi^{y1;B3Dkh6Q)<xOXw?71y&!W8I`!P0<@
z1}v!~DiO%#5Uh<=m^nG!7skow_gp0)sDae}%!!E_O(NU6`ucujWyqC_<86~uQhL{{
zZ8_^x0lo_y#l=G39>c;B2K@iO*~cDAsHss(DH8V*oH=5Fn<jgycGISF$?he1Y$EQ@
zoegWlp!YW4eOq0fAgZJD#zhFa9-3D$83v|lprmg<s5H}hnw!y9fwj>l1sQ-s3LSit
z)T*hQ(R$VSC&}ME`*y^dosDhl=5x+(zWjv2NnO{mYG7c!hQS?D(!#>RDwI`N@|Pqh
zzka1a`!WuzUW>48{|ay@1bilaF4*ccC;C9H{CkQACkYoQ7PRp7w;nLRCaA)59uvb5
z)ASSY!`AkppC3F$Au{nO?m<vM@a+L*0qVepNU<;0oyrUaS6Enx^T8#KZkPA~Iz~<r
zV@ATJjd%QC(zji5W@Zd%Av-(1oJarKRzW|1CPGe~n6(L_`=hnCU#CEBMFPf|;x4n>
z{Hrh%09MJN_g;AS#2^x{^bHnA6z@5}3y{UJ|CEpIC!SLe$5<U^c&smGx})P6jLCip
zGjsFF$;tV-Ie43^7tC(njL%ypy0+0Pf-VejO>20NNG$2nyFJM${i~pYyQS;A9EE&d
zzC0R%^t@~9Juvyn2oR@E)xUekgo^#xepuc%FuX=7-CtUrXjBFLHDbMtD*Xo@Q7Pv5
z;D$`D6K@EmjsCmgSyCq2j~h#M|4znWOphEXD2gZ%M{5Z2aGJbQ`UaUEnj4b=XilP^
z<uSq}K1?8Z5v(AhD20z76B^o`TZ9GyrR0Z!fq>nfkKxKl;9^7X|GRtJ*rlE4N9DlO
zzI}VvFV1@}oeU{@dKf)5@K3$H+?lGAP(aQvx?y3$Ty>UI2$l`^_4yds(-Tg`+gTF`
zPV}pTJFb_qv9X07LeK-(zvM0qW*zQD=q`bQ`-0viDNxwKh=l|Ii2x={_oamecv<{A
zN3o{G#KdIft9i|ABL8cCE90OEb@3<D16*48rks9i8{x-8NG#2JK8(ykXet#4SRtZV
zqO-cqm<lc#L{c7ZZbT=XHLrZ_+F-7bTpOL;IV))V_)WmM&=&TRl6J%Maaj1qoCF=N
z**uJTW_&vYH?*>wo0+K?m4dN^zy{j_@2%(0o}qf^=mVBS#Sg2YfVr4)b1WKuW#W|*
z44vJm<dRj2i;B{(=8S?dAa)s{N)w{pE2TK`Wc<>k%qD`!QEXJ(EyxyZl$h|xhDJvW
zS!@jFLkr}82=Am!|IsJ%n`n~BU550Cx`jBO2dogNL^IT7ay4rxqXlW@9UY6Ne{{mZ
z-D4DU5Mu<3tmDynUSIG3FAc$YFyU<QbrdUs5+=p=@An7`>p^1_`bDAQSXupmP6;yP
zKlY+>qctr=*Xdi(6)|cMg79FA-~LjG*pS|chAu?Q4X9<rR}A~cO?s0T=TMJO_)%VY
zwe7$6t9m~EhZ6CJM^DgHPf@kO>u^<^Dza{2MePPkWBcK~pRW#2PrtcQ;SHDwj+`#}
zLI%azzzd4)FrcBs6Xf9E9T=j6r=09R_l*+zHQ-XlAS=8_Y=#x2YHW^-M@d^2J_K(j
zG?TP)dsuwOkE2B>fw}Il@D52yhfa}X{0Wvs>^|ay>Bdtj7WRD9byR&P;Vi>{2=WN}
z|Jft#vA0?;D@okWj;;T}P%F2~X?$lBDbcuKrBZuU-KWhQDF9XOUeGfrqTUZ#{pc!J
z-ThPWDu0CB<47<HB3sZsO4P2#=AVS+`JHRaM%N&6Bj|h>*JGg;0huEuzI*oq&9r~0
zjfeO$@oV@yQL8_=*#Edn4;&qeIbw{Q?7G58hDI`2+eVc@HS~&7fogD7@g%dcv4I}x
zCBYO_i#AF@_+|cT0!78Blw8TRHFj6>j5mc8E(OgQ@bvE4<`M@>{L~5d$%)e?d+tZG
z^9Tr>^aNr;*Z}n*;<}QH7R8PZ)nogq*>)4gxeU0kBA7p7BIsOn6?nz$Cv>BFY`zgb
zipIt#&-0$2YvabH5mU$JQLZ68qUSIjj^U{(5IKKr6vL>jD)3QE@ljGv>RAcWPRDec
z@n>A0XhJ*Yyik?~8%Ibgu|?I;V!MI79nGI#i`@pX`Zml45;P@DL3g<l8>t|`RpCc4
zxSJXMmxehe;U_#{)Wpjfo<)-!Qw7L}yEVgqY!cypd!7X31>oZyROJu20EIV#`0pdH
z58JbS@*=@o{bx_@AFAV@<{IOE_6=USHr{lFmnzV?kLM)i>HAmdJ&;6u1ZJ^m_NjRl
z)jVFN<j~q<A-=UaUEg7hqlKyFamGD;^`EU<mO|uP(;X`0TcgV&THT%X@-Jc}?6pCw
zd3n2@%)F;gEIB6JeWs?vcxLeTf}4ZPnr@y7J4VR)#Y3-krr--nfO?1W-bIWd@b#AF
z7Zv~V8w6T;{^d8693*xrnVFfDZj{`qY4P)`$$sQpdUTOL$lHm9_O~X;Ry4_BIn3S>
z;g9I=xV?$$=+VKb7#2Z$YVq%!&HU!wB|Tst+j1O=v~|@_E|*uHsV-9NtnV&hkog@h
zqO|sX%lymDzY-6`vi#Sd)4FYmHr_(V#NJQ=nXCqp^6!*Po{pbR2L*kJk@rY==<eW_
z@VWcu*VpA|Bl7HLEUE;!4(^n~GoT~WH!A*laRpIGU0wZ8%j){WYjY&V@&(<0eKa0?
zH2U=360MNu9qpI;=yb<Yo_xU0snome>RP7FVKiOyeIl0d@W21S6L=S8iX>Xd$?fB$
ziCrydj|QK&TC<}$(jx1OxU$uEZo}?tv7(xJ4h0<S`q3?V4d~K==6<X3w(*wc6s_+c
zn<!{Y9#StIG7eOm>Q8sBE1zXxc_tGNvcbKXfna=dwPc=WTMfripS5khX{yc+r&_b8
z=l0RAoxDf4BbK`V=3n=ni~BzFt=!>f?qFr*?LCCzqqHRirxaWg#0JqiGoIjdT{9v2
z`DTLcAwm013o0u!{i3J;`qCpL9()Uxm)hzH!@~>tUmK$tk9kHG&5b)<&0C2Rs1fSx
z`4PdtywsiE>r~Vkzb}UOSmc{7lXsgvI4BJxpTrGh>>V}ZUmOptp1gVGGAkxUjpvlZ
z%C5!9nUPc$x}lK~8}&QfYnxC?N(bKuePxR$hL85K({Bn@lQ~Z3{9Vm;*qvd0`JI8l
z0ea`b2WPI_TL1aXUMx`5#rLyNjjo|fexbasb@`~wEJJ|OaVAOAi^b0CFV$A$lTzb_
zevazQ)_(U%$v-Mpc0puNtCexkZZ%)x!R4SPztQ}qy$r@CzZfMx%<kGJGh@1bx;=G$
zZTr%U-BRz%)Z-n!;rV-Wq`8acA{gpawYWnnG*9;gG{(`dwY(OeqF!k;Gtz%Q@|s@U
z+~5%vUB-bn?r^m?zi8dtn+H4}OV6&w$VV3BGc?R}MCfIWC_P9#HQ1Q!(5ALgz_V;}
z^upKgOOXmT-#AD1nWjvKU0u9sBP+~lMre*zsk^ZI%Z7gMu2Dk~)uDy!iK}1y_K9Df
zI&SqPOp}E|$&x9gXYgj;zNY9?*{=^;-!bG(H%m%x?|xac@8r<S-)W!Rsy!(m(yZJ|
zDV+!mzffQ!*RbupPW0jNILEDpSC>A2n~5*mDsN`dwlQv8lsnMY(cXCJENN{?xbw03
zH&T{H5=len(;DR*`y7sUTug6B`yMRg_2B`XkaJ-`aG0izkMO184IC-|;`6>o0Rc`I
zucS=!i?c1+(pA!C&Si|Ai20ot@-~cY&Zx;Jx;>oY)3Xb2=uUsC5Eea}qsj4k&N)os
zslx_NUG?9na!8C(Q;oQ~bTg}HYK1B`;s?C}d#-?b8J&2fXJCH7r>9CRTw_|@*+L=`
zN%nhRsMH<4l`6ew@u+8H-LEU>(?3-<gzK&S?8*$@*%RxgUH+mBz5s^767v?V4?H<>
zN&LFBL42Jl>$)*wHv9!DhKA->6xqtpCEVrg2A5(fnpEoC(b}0O`qK75Zd#VbNCT7n
zlG>Av5KWbMUakT~Ip+)CDsyF7LRR+V-P8?Su*-B_INsFYS6}e?hwQ;@X)kRV(q)G)
z`$Fd3hJG}#Q2LYkRg9>MCaW}yc$GdOduqizQWwC@UxPzS8%H}%$vxXiDR*kei@x%!
zTRfsgbe!2^rsNcl%~Us@ztBb@b1O8Y=IeuV=Sj|}in9%chUPdX%y}0pMmKRSu6c`g
zX}G?v)P6fUXA&Q$IH$s7%7__eF}BN2VL3q+gGW#F{QOqtvUHijV&z6>c5BD{`R)5`
z2Ua=?PB!U=v@TKjzf|DeFR_2W`>&?O{Txlt6wLgpo?pDWQ%I^!bNzh0i6)b&3hUQ~
zzOc-|hvKEt6?`M1I7vO#o%6|SokAD?yL%(|?5egB{C-Ww;&}Y3_9+tz;WMk|k>$$n
z&WQsmWxsw-O1aC19X^<6R_ycpZD#qJLv=7o_I712?Iok8mrD#+n?~n^wA;j;Invda
zM3-^|4eq!%F>M)$5&j-zZiFQ^7$#hqeW*M(iEX|4lGY2$F?X5k+Dp}R4Q2Li9UY4^
z<e9xc$zA3wKKC)q6uj{MA)Ah=*{8=MnJN7n^=x)Xu^hCHmyj{WK@L@;NeAng{i?oL
zU1j5E@?=r`5Z_uXzH~e)_%gcq3cmWi5$S!}yphgnnHF?;atBkMyNd5A%X#({tK~9M
zsZ$5J<CWx%!xbp}8*gR_^1d+f(oR-cJx;&(3VTW1!Pf1gGki?P%p#fDPd%yNiP!kv
ztav|6!cjl!m!eR42z!L71nG<5o#6>Ae({>SG?Nur4RU++Raht^szzUT(@OX%B`eh3
z%vF+a<AreKU!iBiOc@cU;o00k(<0NsdF_vwG>@A~*eH3{EMwTp%<psLnNlr9YYHWW
zzZ|(=LU69q^2St@gNv%v(%YtIeb?MM%brS*e3Lr+_((R#PSWQcF&G_tP+L9UuUw}u
zqtH*w)+@$Ny))m>@ADDT*7G6sNBGDtl76docAOeGQ!Z{XNBX$(^_TqyZy3Z}EJg>Q
zfWL7bjSdsyIYf3uMMU|{M_D?8o)k~p=><~W9ZeTPud@>LhgNPW2NKT8eOoV<At&2!
zaQMXgZ3`F5&lfZ#OB8(fRA6?&;G@XzX)o5!ScqyH+9d8jxA}S}&uiDNu4`tj*1x!u
zlVGHfs|};x(V-dm;p6Ii)iZUfMn~RL=qo?oRyED^b+auWDv`tINT-X$4l!xG;hq`r
ziOH`TGyeFB&$*zi+@NdYW9UVxgPZgcZiFn-M=70u@nd%QB$|M?FJA0%E7fcjA$?Ju
zK|w()R&?XqRQ0{L)A!07-IoiZY?O}2F`VK#BD}?;b#7uf*hxZ-Rif~PYqyPY)$;@P
zmM6$bB_8@comkLg&5vctk!i8(AGVjH?H_JitWj0ZKJG^?eBSAp%J0u|M_G<*z3FxB
zy0Vc}$bGCM&#>v8fLO2n*sD`Vg^%3Z95-B<T&EyO;^Ei(gQc9=lq0q3&$Z-<*DBp#
z^`x1xhxhc0>`~|SyqoUs>u+w{cUscT&EVHQ<7RNB&7gd3crxXbsv4(DNO;@F9%U<o
z#ry+W`*Jb^*X9?;7$$nN?)#Z;>8KJfEAqKG6thcUPwA1I^C>eysy>fYJ(`XOj?Y}4
z^X0R<Yj=%qz@|_>>-W}6VQ%^-?=AckAGAxOy%bJDkp5|J+h}Xn<7(UDcdO)tshC!~
z;5{<Kgcq$JLN~p+6Qbaf{mJ|!;rax5TXUERjg#bwC*);iVGlH;#5EK&-nbcYscI8W
z4<}?Cxe>5Z$*yhl>yGL(8O?^K>j5*Sgz^5I%l2_r+0!Z^-zzzKF6~Kv7$&U}*zWLy
zx}Td)tl-$?+_)6C<<YoSVOHPX`vRjonTvnb(}@blS31*q)zlwK7b4u#!kZk9lx!7h
z9JTR%da*8b^EEROCC&TC8_y>hNLJA7ct{`mY+TXra_WwE)GTjCwEUK6=MS8Fa>+oF
z!NKXCl9u|$;uB?42igNF0w=yaWYO7b#->#;=JzpKJ|fcnS9@#eef*f|cDu)0b4?st
zIy0}ZED0XD=uMxHuo3=dHmvsc`dQ<Rtcg<55y{-f&{nCpE7UtPMYpzJO5$BCrj4oD
zOHfYK)|u*hkR&GH?(@a>Wt`Isk(`-2cKrt0?v4PmG>x*`O#`dfM6EXp74LUV{}SAf
zLqm?{OH+`aQ_}G}8tupWeyhIU4!*c^^|MD*p7CYs1zzyflO+v)5X-o_Mt^j~s`pS&
zZGQXK!vqno-<J7>-wPK8{CLPWZGFEU#+hb);;XM;P*`;=y{>2TT=3-5bl*nmg=q%S
zv@vh>&c079awloG)sFhsS9_{;#JpBIw#h52ae`N$wJzmC>nCYmv&GWW<i{Fc3V!ir
zJnFe4xVLqw?DzVG4Vyl>pP#sHzss(vkU0N#i+%%doQZC4*7+j@k+t`OQ?pSzm!h`S
zR?8lxS#r-^q98Coy2Hw>mbQ(caPA4;6B!ytiXfMt8?qX&zt<-4JSA0Dw4=*><WhKN
zO0MhL;(Uy3Qu;1N&(ZSo!XMA5yO;v%@@Ia3-8*LH%V;u9VdNsOlY1jc^=wOVc<T+<
zR`YO?S633)9uQtT4O<8)E<<BDSTyvYc)56e#-((wsz4y+qa?Y}9)`zSw^P1y&X`q6
zo+T9Mwlz(5imiT~U+HZnzhC0i|L7;BW%3?Ro-fUoGxXo>OyulN@1YAdp?P8uGTX2~
zE_ZTzK7aamM`ROWSA|occ}i0+`?AkvD)L~Pm~OjCf!%c6zw&of(7S(|pPWX!>7;-e
zJ@*{~<Mjrd^h;ly=b)yk{e7h`gW<>Tkd3liW3^1`+BcQspWL_BPn6zQ_hz!oy`aX9
z;@H$X7IpiJvz7AwZWV7&Zp_X0mK~4#((v$nlNfhr28&!rch=bT57+v#&VOm!x7+TF
ze2ixK%^A-1Ups<z&N~O@C(k9lqf1|y%<!&#d6~O)KbJJ&^bOfe@sGc4zjYpXIw5~M
z$H<+(dN{kv)9jPm=a%ves#a4Ko1Giyv#a)uizz7IBv6UO9wJaBELUE>EZHMpm2i%H
z&<{(NCt&<>^bW$0p4JYMombW-$f@{TPP^H=9n(k`l;1ED4-<B*^CZ03fBhlhAT5jg
zaGR?)d7e|5!{B<wgO0^cW@ZUN%drPd1uFVqBz*&)-xl0BE_}?CprAa-$(nv?y8W`<
z@g3Q8gd{T_K2H4;?*(bnN>VHj5q|xgE4_cA-ffZeAyw~8a{1aBnq*7i!kgjJytJ{;
z23*z{2}x-wEG+xFT`s8!>}E1sY?N(3t#3UOb-=Qe>1>ig9%1s0aK3>}k!-1N?&uen
zd|SH>H`g-`b<w;DT_p8O{2xDhm`K{ReaA;pc8E>lFH+`IyuF!6&QR}&uit?iM|^3H
zY`t-dkDHW9()jxtMUcpC*`|HZM{158-Rdcm!ZWlOSP)1(aONmGHKDHV)V0;$Mvp3W
zvq#_kD$&udGVwWGy<5~wa!XM4!gi0kl!>@6JF8eUZ3aC*H$Bhb5L308Q>luqnN~2k
z(G%jxz_A*qT=U&$x@_daflS?k+clkQQvT(uw|;qiYN^P$V?U6X-Po0*AK8_zs?w3B
zU2>__rIT=hSIJVkDrVqQ#bm4fjOdRg5`W%C{;8!MwU=fI4>$2Fe%5c>UPxOvsO#z=
zH^84+vp9a#;aX2-eJqFR^Yl}K=}p;uRq=c^GOXltyjm{{29{sDmx~Qo?{*wXm(usP
z7gyCSvYMS^x=%v5e%3e4>9$En=ah54S^w3s%#zWGyFu00Y-SqO-SVxY`7rU@>iSZQ
z?k?$B{~Y%LmXqe!4|R3kKdGW_U7H-9-uKgDAiIAiv&69S?StV98(;Iu{b$zwM;F#c
z1;n#W>(tN85B@ez?oW^}ah0%Ek~pTF=ws@}vnU**<F=glQ!R7w`=S$rt3mJM_5SS+
zIz@WJOorTq?mVMGhSAa|5ka%<Y2WC$pU&}Hx-Tzo(-F1{UHp)1BCu!UdhM?8oaut{
zHyu;$>q`@7Oa;swO1|e94xCAHn2wc?@Ce(pb7Of?Ve4Anxf^5NWr>EO8}H`J(UeOo
zJ~?YNzc0k(qrs66hwRx_OK!25J?(j^ug6TgY~4tiR?Q&jA|i0gPGROd-GzGd>Gtkt
z=Jq}haU8KtM;FPxy!fQ7!{NbU&pRYX-yN-Lv5I2s)3kghMEh}DWr6}h&@E2#v02=g
zV=CF7C_GP79=@l;+cMt4CrYt1bD)sq!StHXBfAFqnL&2PE0=;9qoyAWa5=XBGQAgO
z^5DTNJ>kw${Ligb`g?+-_G}@1n0_4Hf6RR2h5pdl;8(@59o>#cQaH<ITP`=Pe~CVG
zvUGmduR6=oFx*=wo}i%OqNGBrqLOo<sxPyVJHYo~d$yZ%OKW=Y^S0$ZPiI1Ze7tb#
zV>k7FCRP)s3Ag#On}MGkjuIMNr_ApQ9(2ZtZVJIc_k@128(;Qqxf+(-*|y$plj#>8
zD6{9~)i(Obyu8@=)Agl>-3Kia)tpkkyzz-?FAY2M=$u6BO5e#nF;-J=`LssI%#ZTr
zZ7Qg5Nwj%CFdTnAb9^r$X5INXxjC0&L;G+0rJM1NTkd|AQ)W14T{<C4V}0|IwUWsD
zXJOR`dotQ39UP^CyUZh8DyTfI<ji$$$>?Q%Opf8WYD(Rg`z_G?RFZY2-RmOdgFa<F
z?{wVDvVIJvT7(PQ4@AaXjyt{4@AdE^!Gny^lPlOw)adrBj9mSMleJ?)RzH{tmA^m5
z3P>Jr3|;;;%lh4S^7W0ryAOs-draQs^*Pk%7hZMOp-<zelgl}|TuQQ+fyBd8Fi`PY
zZ=SQY=F@@<j?+^{P5ONAnvdRJp}Qn6b3LKwOjktsXSU3=CBcrvnGE;2(vuexPn@60
z_~!q7^lH`Gs{1wO4Dv_M7@T(!2!>+(C*O)l1z#}SbVpP^PTlVEW%<iX!Rjj2j{m2!
zGmnR=jsN~3YLqm#Lb8*6$&eI9$k>;$C;PtVMnp=J5Lt?>WgYu2%h*DeY}sXB5=E3`
zOL)HS`}cc2ujkLlUzx@^*PQb`*LBS~*ZciRdEr(aELKh+NJ?;*+GQ(rRoHd=|5b=E
z-?m+FnYivSIr|+mljx#&E6hRRGBRt3?I~4h!kT((GRF>`k~02nT4QspwpvWS-~OMq
zQ;{_M6E2XIe&6e`u2J}T@P295OHZ@iy+1<t$y-Ck<l;we@lh{)y0%p}y6E<4OM+U@
z=^&ja&z$Cre@=MIt_V$NBEoi(jy)V5EI#f;_Ks5KQbp2e*><DMRa)A93tbZPp}sYf
z>B$1A`7{s1TwT|j7YlylTHlzNmiXOza<xXBN2oQdY0_ZExRKi|YL!e^?Ma@We9rcH
z6GXms*o5i=zhG~#+G|W@;LVFsB%)_26_Fd!TmlCMv=I$c8b6+R%=Y!0Pw|bHom0%I
zw(Xib{$aF@tG%sTl;@xC!>9ZAb$JfV*V`I5YP!1OdM}*+Lzk7!|N3y^FTF`vGDS^k
z-)17)7MD-C@1SSd0AjxMnpDuS7vxPM8+{*mk$<{7L&%&?2fr$ulK4Vw8oe`RxAE-F
zbB3s6$Q%ELJ6`W~vE_n~5^VLuXpzdbPqZUgdHGwlmrbKE$UFR{!49k^$-|E;4K}}a
z2u$Ovm7hox$JsVB|9N{~oP11!EO%@vE@Zj()aW$E!&wEoI;Mc743VOGTP}FqETA$w
zo|a-a>G5XpL7M`<WrSyS+0^2u^k>f&0)kN05}qFO!$@s)em~(_-{WxIil#4o$R?YJ
z%;uZ!g$RwM3`x-Bwd$*pihB-BA+sCRt_gSd$0QtovvLi8L4OWqOX6u^aPVe5JCHkB
z9r2i@L&J*{np)#9;HCcL6Vs9!`Iu`qMG=0oq(8MJ?H2a4A4;y$!8N<*g_5E`W!_Y+
zjlmW?oUT=`{gc;J`o7=bOu}Y+VDO5Qb)iN0@4o&4(_8Y-tGT+i;W>EC+o;B7X_I^D
zjz1_erOzizYI}8#Z$H=<dOFy^n~Ng3VQZTxXvxXsSjH8WKxk6Cd1mkF<~IriqGI0n
zk(7pWKHWTQnat{UN8%mc8V2q)1{RFt(5Q?TvD(8a^D4_+xvnxyjszST;$EHO>|^n1
zO*K6|98JxoURm4dkwk$nNv)o~T{8DA;j-+#A1-)vpeYpM>E7g#KMW72QzR8<66P)N
z|5<hT)8Im*=dX_FmJ=({H!usAH4T0;e~3Ssx6(uItNAhc@2pHh^b;loVXek0$l<Ps
zVJp{yStt%>I~QCph{NJ6oZi|1-~EBFYi7>Hbo3`!MQbU2*T0PF7ffgupW>#s7-RXN
zS}R}X`}l3vNQ=6nI*m;FcQpA)WX>IrDr1{aY_(vcK*$~?D!tV5*lpv~EjoV<MoE|@
zY*c@T4o1ekV&GM@L*W>#Sq-K>_K-+?$Tr5+BgFr_%|YTl11$=9_bPw%aO;dn?v@n4
z!#f6fsZ6U6i>0t}9`WKFB8uMlmne$<R3v%js&rqK-CFjWLKIUT?*xLN<CQQMjb3lQ
zlfw7G$Zk*sjEwj4*u_99q?9~9L`x2ro0;BrCE(_nB`$%+2D{AIm9DoY0{MBihievy
zXasL7B|^Gsf!z!Vdz_&3eN_Zah6ore$!sk!w?^~wd*@f34STq(Y~L3bLYI$M85uck
z7?qQwrR^vv&7oyI6_@=wP`A=oj3=Bi9!0IoESq@-G3U@J(80Dwc)kozab-p~$D`s;
zzG^$p=pDPY{L(&tF>=kX<9#~Y*u$ps#`|nS+#c>fzRR@I<8TEB;?!KN)NUKLs1f2B
zJc(g-17WTy7V}gSuJXd*PsaV7Q<tcg8b35-yqybS5B(j;6Y1wRMlzg$>Ntj|Mcx({
zT^|(L{=hX^b)R4nU$wtuk;+8P#mV$wE%fPt&Wk_Z>fP6kXjh`o#g1Ia*OxH3d;3H!
z??i4UyBZsfGjFI^TQ_0POiQlx{@`tj8k|m=*v|JP69k`|v#^?b&A$L6Ad{wD`6#z!
z+g&d}G?V|=Ds7R!-I%sQOn#nvphSKS#W6(GoInyzBI-mLE@s|soo&^DrXQ}8(X&&Q
zRBwAXl#z%g+Wm4z?)h&$<NJV(?5%VAWBS>^<^C0#f4c0xOTDWR<h^$1L5YG7_ZKc}
zU-DLAWl6kNPSNBqU$hbfsyVZOAB7ktI1s2M(%CtgG}dcKQWvZl+g_r6HO;$gd-xic
z{qSi_K8~;k5N}tuWAg-<r0Wwr9TYDh?^}Ht#1kCigISVlPmpEvFC(c|8u|`4@A;(Z
z_*kfenzSz9PD<W0AK5#{KGd0WrddH}YU7-1er|rC&$|9Ce{aFwslJwdA`d$rrgHw<
zoFX~B3KUO1_EP1Ph8$PB`D0XqguTLVKdzR=e_&C)DpyDCP0YYaL|Nr$qSE`mmSC3P
zwzjm2^s~ra&$6&CQVssG1u`{-AhlK@UR%YR^k{i^qLhF>M*k|l?*shZ*Z3Ev+L|t5
zuXG|3j+12OamBR{>=xV~aJPdy7TUUzmTDs3?Z<oubSS^hvy-{a)VK}yHn-U5XtNdZ
z&Q4T+Mj^MaI=Yu^;V{f4MGEHf6}_mql}(%ecYK_N)ValC5g~dWcu@iewY5CAJa;&s
z+qhKn;iaaMQu`hYB>u{NZ!WFh%G;+I5>ILx{#+z@B|XqB?xelH=T$)+RQ02K#-rqq
zec{TzfWQ65qkjs?5m7(;k6NZR)Gqd^<R5IeZ9fHEz!}7(N)<4kmC<pFc$YvZdU~wC
zWCp`zD}!!}$2gFT*Ihxk1*H-f1BpU$%?vH^49dPsFT4=<LsMF}T1f**fq2F(;&+y+
zjP*;pk;gOAq`R(SB9x(f+jJKsvRd)y6z!f$QjvVb7_GHhPfN7VtMlmUrB6C}-T1(3
zu9PN8Jz#dR>Cv*K3{5z8_BM|e+?T*onGt%D2%r3ehPpW{@#_YA`D$%MuMY|Ttft=h
zB6hhj-rY+WDKIS8*7~0Ad`@q4;4OqpyoTn%m(b&_EF#Lr&fOI3W!tlSZH6;<rld2g
zkLg`ZmRC0px_}f=6Vz*;GX_T|#{B;6wl-`Xj$V09dpK`(8E%gC41M%|ZG4QKKX>=y
zC*5L~A`H!HL%88J8u1?KMpk4#V0vd~=RMiX&F#sZh+hoie-99t$6bR|u22dO@duNl
ze4(hR4KHe|0)t2mND)*!TxVgFADzUkED%iFDO=Rkv42~Bunf?Vz9TO2)a`uA#AXne
z`z6Pic;u%m_lXvn1g?XvITMK|Y-CfO^Jf0e^O^lqCbcKx^>M=_H}w7d1JtqUG7MBW
zM!yA8rX8P4#*)>w=Mep(se&5a+o2aEH2IP5Qgrd8?mfc>vg=EMt&@MpBCp@opQbp|
zz47#Mwt?-sP^VP#v!02rle&}6?laE^f4si5zc%<S*kMGE84{^_;6_J__pRG;S98nR
zCNk29F68u8NH{TXMtnmy^7Jn&c`^EedS;S`V&WH#64(2_k`*6EuHT<6!qRp=_|t6{
zG+Cm8u=~rFW}Y^+z>78GPpV8$k2k05COE7k<}TxWc|}#PSiVLrUyvx+-uF59d2sb(
zhnpxK-HSaNxc+q&>miI(ANH<)R$XB^_`Ib5;{1y`*+w27Mt0|~{VWNcIRdp`gVz_{
z9DKum<8gX@ZhGf$ainJb!8rS=#!1ighTuD2zZfTbQ#JqozD6c5_K}j^a@EuL+pQnM
z2g{Y~0f##aoWvqs6_QzZi~j593i|v_6<X!EUA`E!`pi%wQB@vJdNN#D_d-(H@aL7D
zp!kYV#pAy>haXD^ZXK9uyv|d@hLtOY7U;DN%U%1CBEtIjjo4*Pru!S2r9@XP6~tV9
zx>C7=Rrj3S#-eQmqul3;luTdi`;Y|58OAiS!lu?boYZjeO=eCwrEFB>&q~5}T4`rI
zTQGvg2z$0E+%Dhjdz_~HN@Fak@m_|5Fo$w`7pGalv|mriLEwY=X+k#T3qA7L;qB3b
zg<CCd_3J09rgt72M(7t#&`{x8I~93?1}`&n;w>NBDc~HNVVPLK-|{^kO_uBazjo%t
z*jFT1Ewi~Xf89?Hx4%3&KuCGA@3(kOa${}gZ?^(spc&Bmd{B&97&mnIgw=n*dR)AV
z0y$sFTIQ<*H$4^gqAG&Ym2sDusV1UGWC~1!lX_TkiyyVI#)O?DaBO!&VV!E3cUxNA
zpUaB${(eP^mGWCK%%MvU_u7M;2-oH#G?^!>1Q6$OFEzLw6P6MdmLv5ml01XBRx)vX
ztM@GrYg3uMeA0M>vY}s$Dh)Xj@@&JFz@ro-QOZWc?|_RspR^e)Bmh;ZT(a05_|{L#
zoJl+1h|cCjEKZ(V+pEW{Zi-)7X9}l7j@3=c)$BIiPqLeyEV1!XFEkt7e38w6HlV@w
zPqA72p6lxzDKckULYry~3Xv_oD)hlc;btFtVI?(2i41!*t^^G8j&Wn>IeqSsBX0GL
znS!ZO{ueMloog9?mQUA`%#LnHUgjhj96D5OJewWBrkwbeb?KWg29N!GUOfuq^y4Cj
z^2V#Py}kk8(wZ&XQq%Jm_aoz`{bpXIa}Lg}u<=rHbkLJn7&M6?JHMaxc)JB>5)0Q(
zW5QzSmflQHudfdXZ8nv(uXaq-Ir)G!5UrrDV_MczWp2|ia`^M3(A6z+QaQx?YsWf#
zy{Wd})z|hg-1?NN>B**s=0MC>dlkvBQ8+oBQZ{N1Qlt%6y64ET{QEG#MYAc*9w%~5
z|L^;9PtNF^*scLxoGA_`M$peWOHF6AfqRnqMrOZvx;PTE@aOZPQH^zyrYHB|gSD75
z*Z0ecgwZFTY)HCZ^<UschW<PbvNkFCv*Y%9&wb^2@p&iQ@6PM8cYe3>$W@wLz8!Tz
zAqxBXxJ=MI8}9k)Xomfrq>KBH>7TM5Ow|dQtwv16jZPnYpUL+&X^hS!hUS>7X+Lf*
zgA+4$@L@UQ$AdCLSsoA5u+I;Hp%#*nyEm2t5oxOkpL|$ER9CaJa{9#h0#_`{bmr3)
zm)E%ASV3ieWPnpH&?dU^7eh0yv^_!Ty_peRQ89_Fq~xG7TCe8?ztgmPfQ^(E_k{oR
z>Vl0w-TJd%&s}ilhIQpfG!CpcY5yE;lkmf{Z7#XhH$mKrz*2PPPuFt3s{FxS85((%
zHa1q`Ol*ZcFZ%RwSYFp!*Grc>;e1xMQd)W@-ck$2QJAV6sg_5b$|d?<JktINLGvYo
z<KsbPMRg^Wb)qx{7Tt6<PoW(X{?S^dIYnwwm|79t%61DibxwZy{lbjF(=z{P<UbMR
zG1*Yv@TLns7K^e-x~T5O&5pl$5H?=c!X8+YQ_Z|?q%Y;pWq7_oM$gQIDYy92Z<Ktz
zN}}@y|JFS@otDjEFZx@L-)5`b%uY|2rj;-#b6`p%UP4NI#c_5V^1KTo#WG$}bUA4H
z?0IF;-!KQEYa3cqH!%Hx4~sTeck#6d=)v;m!AQKU;<#_sP`B#%G5J+Ja$~H&IK9aj
zn(W2XcGh2X5Jk?vAFCMshiPoF)OSE}I23&;eNHR&l9tysLleTSWifi2o{SpZ^V`pF
z^}E+MmUWmJ;l<wWUBcPX@L+D6U7*dX(G{bXKM1=qysniR!${oJ&x(P^c8*2Xcx;E6
zw%MS0BLl6R2d_74TFj;kW^Aq8ci_F!gmV~6?zRE*hQXWEp!txlm{nOPR@uRj<13wi
z>2GZ+m#|L?G3OKuKPPi4NaJpcXLAUXp+e*jRPdowNx~EU{mSp4Fi!8<^b|_XpO&G?
z;iuZ|QoGrXCq0G_oe!a<H<)?;d_MiyM3u{_9Veof+Wo^Hfg_mBr#|5STI@)?Op|vS
zckYCf=C`?rdPc2lv|RTw-y_MK6j~iN2v!QD!x!ZbPHKCNP4XeUTBgiYxUf7`Pi~Ut
zG-BBeFD%B;De*YH^@qi17g^miC-%SKL%hv`Gkr7Cj00`7F}I69ea0BjSQRuZTBj~o
zv*ez$uI+h2sL`?ad@&@}+eK{5kB#rGc7DMal&P)l@Ttr!3S&@~BmGE>qvM_07>nI<
zG=aK-K{r28(7|<(mK{g4v-XL(xAi!?8n<2sU)l0=rDb(a$AGlQCojpr4+*AhDbueV
zKBI)9D4Sw@Q&^)bN{ynn?y*XgrhiFb^^$`JC~tiSxO-fdwUHYNXoXl*Ste2M7HQkd
zPNp`phY1AX*;%}{sfkY6NTY@7BlXffcz!!jaD^P}S*v`JGx1R<TZgw(>%+{N+|0aQ
zG8r071aC8gZs^IA)Yf=3HJx1L`E?6(o@RW=NqRb@WF+!b*=gD^bPOg^0E<aySL02K
zabSY;XT{$k=@dvJS9$ewnINl1l=I)KUtZBejXEggT00R_E;SqCnBi9o1&UZQY`OgR
zP&Rm=CO6>x8Z#Kep>Xt-Fd`r+CM>Kch2O!IEN7kMraI)Hx8iB|Rq}Kr$r#0vx!@@f
zZZlPI25~vK9?gjbX!%Xt>{_WM)$2oL?QZ5|5@QsHhu^alE~BxYv>b`usW^@x!HK%C
z9=m`6BHXH^&A)6Jz=T&}qPAA!-O|q2;^#-$_%&o=n&KIqm_@0>?SBSq%LM;UK_MeN
z=a8T4u=tByv1&p|@d+x1cf#d0M!+vttN)K-cJ3`onV?WMWhORjPR20tXmpct>ch}f
zVhoB}=$1;9a~Nk+NHBxA7<Eo6TJBOr&b;ys)Ty!vEeeb8Y#icV9341Zp_oSNns_*G
z8!igN(fR7#Wijra)9xcUX+n(S{_)cpgs@}1jQQp1*aG^xK5L%%mbu#s1-s|ea@Zyc
zV?$9<HfbYE@A?_Ls?lkrJi?C>Mr=r}C>f+ZFPufp<rRndc((|(ffAH&-nf!5kzVa|
z%D6naty5CejN!E7yBH=J6_6hDsc*{7*%w7$x@g;7aYtKB8>fYeRcQSX?_kO-pd3XJ
zJLI`pDj5_;;lR&`Ce060S7}l})18QQ=|hh;*S>m1oxbeo|M26drARGm+PMO|^N7*Z
zak(-h&3+@sqz0Lf_eej|DUvbjYU7f#N2xAT+bGtAitQ;fu)k+;x;Or@Z;2Ak6Xbk#
zW!J4w1@@NMP!P&ya#JWfBhqq_GD4VyCq7L5R0QAIuGV<Qlkq0o%&I?mKZM@VPJN=7
z^(?L^(C5RQ`|=m%2GBex6wgbQ@ozNL@+h%VhlttkTCycN_1v6fp+_G^WIyQ#@VOeR
zQzC`~IXP|Jht0;@K40P_&QCI((!RED=fojgp}|bGG+~h-Dt)zdOrIhpdfGCC*O7g1
zObAA2+|(SKh2*GFG&72Q$}j)Jmgn&-<CimrugXpG&YI?w3;gV%Uzq-6(`6)5E8d&B
z7?Ec5*-_72Jbj#lEG62Ke4{EV?d?F)XqwBSziW}_kgYQMt>Vh_#=UQC?x_Qb7BEV|
z$7p4lv8F6zJa*k6OaH+68Gg~#tLyY=Rd8T#1e|(OHnp4_8aY{?koq}Nyp>Y}SdX|P
z-qzPGtDL3Jrq>7yy`dNzrZRE4vqoXgmGNmy4QBSSCUftXW6cUtL!Pz_jfX;rPZvnJ
zV4ZNq&4!kmX78@;lFFRuXN4$uDfvX*>b!eHam5s|@#)duLv#~!Z&t^4kC4-H)Gv*T
zutnUg%eki;0blA0_O4ArXrk+31i4k6*Jt;JXw{Zv5rKOX!_Vions@b+BfZ|t*e7tj
z-RqYSSK#Bun}>^;34NTa=;k)>eMJug){Oi8xxY(C?`!uA7Sr&q+FpuL>f*-IC`Rja
zKDN7(99PZNy;~MkWxC4fDw6Eh;%l_MTVr#9#-^BQcTrV@COT36d~W%~YF=L3a$srf
zy!$xk>db#_=sjvf<Q20O*)vt)==8i!uX@U-=$#S2JNGywo>brS0P)D^ir10+TuVhv
zcJI7DGu4Ul`YUGoKP&V1TUMWJyjf>8-1c?8sEX3olaOe-($L;-dV-2RR&gcBkIQkH
z=$gobl$@0f`!)3lZD~u#$W9|v9!<no-~ot%P=Kn5!aV*T9(SdL`l)*U{SdFtPTrAn
zSu!y``Ve91)l+NAT%-ua^MSCiWpER?OBJk0TXp*hA70h8bG~v676kEQU2A2gRyIK(
z!2=14vFFGh-Riw7)iY4^-(h*hakRy`Aj6|AmI+=>(Lm6O{onopB^$WeZ*fq!hzh5h
zD50nowe|GiY<ky1+Fr|CluZJ<`F=99MtOyRXG6iP%V-v=>YRp2HQPwU_yL1h8)Zv~
zQU)aVFi^r~PCRZ>=CX{KZ(I0#dFs*%Vx`7M51ld{ET7klwHdps>^s;thf%G)wA6KS
z+S@b?PHM%IQ<hUpbFefNRtBiAd>cAnN;AjN8b|U_4?7;hh8kI8t26!VZk$%1uwg^)
zRx5m^y54=fqpD(U!?R1U;Dp%LVe5rD7in92z4*(H%o-C828;eiO%p|`)KCYNKV1s;
zu6uM@R#e$VSJ^Z72CCf`|8M7ak9Hot@pjGa3p`-{x6Ivz>HJSi{#VKxwGV4;{(Dtw
zm2~ZY-%@d^+NABM)Ty2h3eWy;-T&V=SBL;lM=cMF-|Iew`5RmVqb(RqNgsmD7_TKK
z*VH<aQ~wTbD*n5Zb0>`A0KNFKu`6830cEs<yYfHR5xGL#zaB12r~c=&8UMDUhPh@w
zOyJ<xt470iNcH&&!cDI_fM&qi<K|hpnuXl(@K^`19;2?Rsd@NCB#@Ensg>`Mc>}`Q
zlX|=%C8Tu#*yGW(o3L95(0dD6;R2=H?4Y{<4R3WiFElh!=6<Dw8+e>N@LIsjc&R(f
zmU3Si312?%Ru>%``vnq0BhDM#zU^!pIR8ErEcfH9M~Zf!yXw4bw$`SuLL9fEHh?>z
z&bQ>2OnHAKi3P8{i)2z>9za=F{C?+nse^e)&%iW`R|Tv*Ag!9J@w7vve1CDt+XI%*
z5@`phpO8(}%Rr!MuKx2iHE&s{YO)MepGUxEqW7?#L5h?|dTj0ZOIs&n91i3A%Q~|C
z$UWE{Pkr*q_#Mk<qW>OW;p-39pP5a%x10_a8^p-4oXM)Ftc(-edhzD(QH<KmqVt5R
zMfhoEsh{9do&+=%z&1!eVDbCP-Ucho84+t+TSzfKGLnJZ69T0XD`$Y45(xniL<30N
zQLgEf>-OHh5Cz5Y$B^pnGvzf3;-1BiZ;BnpL6*R11?n8ceW8O|wFQXMUKKaf1d!bV
zs}1nz_VRF-j?(BR;M$Sk768}~6s$jY{ecBjS?QbvrUp*TQOuK~cE!m;u!K&wgON9~
zT^z6%KtaJXR0^;lAUihUfF*>7hflcH3SGZ`*mHRXN0$Y!hl_QUp2yht0V52KoFN@=
z)m`ARUd6_O1;i}w3&j6`UJR5yN1lFwE(<4z8G1%A43xGuHv2!HUY`U?H;i5Y9J2)z
z193DakN&$HYM6~0{A(swB`K|-$#7ht?YD{l@L350zgi9qsifV+ole*%*wu=QtAu;I
zx@gJRnW;>Qw*cAiQ#k}nH#ZijTR^e@kzxiAD!kNPst%%mw0MVN&@1!tPsM<{9hoW{
zi8ZRQkB*fER|ByBhNGu~w2X}%vl<Tpd~4WqRh5^8+*QI_FL0qB?{+~x>n=b^vNWNF
z=ehwUfA^3iyp;UZS?D@%u$gCpO0YiHWUK!ctI@Zk+A=G%4vn1#t!9_6Ww^}xds;C6
zT8B&AH%K}N=^6PAiH)y7OH))-Ndqxi@~GURB3ISW!gp5x4v3ytE`i7yS`8c@93@a9
zcZ-I5t&9LV4?%dK#HGeZ9qvGN`9e4p2nHa*)=SJvkSPM};qO;ANpCp2mI4<u=MILO
z7Pu;amez!W3Fy8Is9u09!p2lUNQUhbIyyQCYjRAq%>sDd9c%@KlTmRChMnMAGW?d8
zr^G>xbbvw`v?7s_RReCsZ#+mmIK#^20Uk@@A8ZUfgsde()<rI^Ydf=#i|e<>K{*3*
z!79l80$QEq9b{4yy<tqu^BMzIvk_24!y}3QNVy3_K^UKi;c9&j<;P=~RG+Wz<y1+4
zoGoi;X^MuOnple{;5ktV3A+*8m8Ad86g;nRU<Uwof>isruzd*U?iCF`%CVJ@*v!i>
zDocI{T~$QZSK@2%qWkauA{YV52bQ*iI{lMbLw|I&UxNDgF2HC|9LYfcs*2QC0BaS8
z&&hLSP!d!`ldT}^L%&r_N3Bj2^3rxuA>m>$jI9f57ox7LT+*idr~)oY&@=@qDYbcx
zn)-nG%MILBz+mc6sSjSu|H@EWJEh}&YUQ}3NdRKMRRk9I(%j0W#Tc$!hjdtn8(ekA
zQs8G);86#1n-C7g4O&5fN&d55w;ZKXfIs3Wl47siMeyh{183wbn=2QOezJ)~KX3(z
zi5wZ&N1EWu*3(nh)P$glo;L@-vyaeBNSHse)nQg4l+zxo4BZJ({$?Nsq&P~T@-nYc
z0DxxX4Pd4vRK^C2w?S<I<R8c!3a%eX7Q2M1D!4MCP+%j)g@rPz2@GI*7ghIM9e*1s
z`{(PK2R|Rj#L#s0e;X;B03b7{Db))=*oj0vLe_Vew6WSh5fZDA$qxTzSp}aW0v`n&
zq~zIgj>3;H|A0|#BOnW`nRKl%Em`@9$CKgv;Jpp|V*sme07$prCUCl?8U`Z3QY(Rq
z2VqMd^vp0InMY7-LoKiG?Sp>=e0YK1OWPT&;0mE9vj8O)^n}n-w4#`ZNHI4%!2wu$
zAD{){`Umz@PH<rca|B=kt@vZIW&`qX0q)WFTj_kCCkd7Ts3oJj&_{^_;0NF=m=}4t
zxauI;5_;aJEpU>OA!i(r-hGJc0c%RRW!E$)7mVVLz)Q%}g6>^8#yXZJLJ4TcAJw0!
zR+#kk!0yn^WYq;VZ0<0uvsM0*^^$c5WH4J@xW3UX4v}CE--;ynsgnvFFib~>45CNj
zs)8+opUD$OrmE8S`u{Tl5H^D#(QLH@%M0L`y28o%IVkx85Qz|x`YBET5H%=~Vu!@h
zm3p`!3ea~~h7TZI2mIY1KCc5B%Xzk27NWm_N7tqU@BsYuoBDXsHqh)yL-Y$a2I41t
zz(3Zme;bteuONjxmdgRE_UK9xtf#l>_3C1<g3$<KGm{0oz>Wu^L|4-U7$PE=BviCt
z!i}(xi4rS<RcfP~Kqt+tdS6ZH1t%T!1O{<7PQ%Oa4=6WC#{kP3>%G}W(0P`5PL{=$
zRrO;XxBfc@-+(o3k2s&rs{#QSfS*5Znysl?@t?Z%e*9Wz`@i#{C7Le)(;oh8IRm2A
zd!_VOt^>0TN9<Mvlg<8a?aaO_Bmx`>Hd=?5Yah4&&xFb$8<0sS=$Vf4Wc_}B1@*xq
zGzhY+pA`=Ipv*!){JZh&l$hw~^$`;{nav?x7>RE{GLJ~$ZWpLG+RvHf{y@wA&l`_s
mWiR6Y|L1M)|L-L4fYppywbA9<coGmx2v$);p-A35=>Gtg-NFa}

literal 0
HcmV?d00001

diff --git a/docs/images/flows/03 - AEF Publish.png b/docs/images/flows/03 - AEF Publish.png
new file mode 100644
index 0000000000000000000000000000000000000000..dfe3a3e09ff3183fa93eab95e1df107a2dfa9638
GIT binary patch
literal 43268
zcmb@uby!s2+dhgYGNQ;J4H5&=(kUS_5=wVBNOwu2I3SHkw{$m1cY~C4cXv0O#pnBZ
z-}k!C@0>q==ln*m%W<yRv)5khS<iFd&%W>NCnF__jz)-vgoK3t@q>^Y64FCnB%}wG
z5M=Pl&Z#9e_~)^nxTp})-Tj|mb(vvENMuMKg#;Cx;<sm<-(e}=BJH28b|?I>p3B6=
zp%JSqPf@|iH`|gO{%w|DlRv4co<C_fqEus9(J(nVnmTErIioeJ7EqnrmP?|5i6XrJ
z4qI685%O~UpQ{^|*!EXsWX6qqYlRYrtG#D+G0qo;1v>D5MuUVz66iAU01OBT=}XO*
zK=k`JjYER%kMG~iZ;<IfynnNA|D*VyFFEmaj^BTP#7Ask{?D7l=d7InypcvFAi96^
zCG*?=&d(hE0%s_bY-?*{GwKt9)SWK|e0z*;d%fPvHCO9&kh1k!Jc@B-!`@OLC^-0b
z{u@U8Y*|zqjacr;>Gs4?j8WnO_ijP4WGs93@872_7y{2QFh1YdA1-%AL_|EreeLV#
zN5Jd&8g6`fyfIVr*~-=%3CVho8MZ9gfrMoI?d`>K7y+9h8A2owzu5W6up{IJ7M658
z_X1DPN>9{#IDFb8Hay(^cwIJ=OH<s(+dDlo^Yi9#_U(9WZEa3YPB5uJVs!NSrOCT@
zjVD`U7{olosiGKxEO6tQYKK(O5X=9ZZyuir>6dVxc7v8%vE5o<Y%F2A+=hbAVyj<>
zz-{FcFHb^2fwa4u+osyUa#z^Z$(FK;%K61wl6JNIM%7v(ugA3$8#@vVF+gNh`xWXR
z6l76=_5kUZ$^G)MH{>c8lJMAnpbGQ$@xjH$HlO+}$yc|YrCg}RRJ#w?<QTroPEAXD
zReVUo@A3?vnT(fr$^(9S)Gu&$av}`LS1DeM()J*DW4p}O&!?Ys&>cZP_1l8?^R9-0
z!E!jQ{Pp#<27O`P{VQB7eeo5{U?@ZK>U1YJJKN9SpODQ^qQ-G&+gn^*9FI}M39QO<
zVjhVY);5lhC`ezZ?t@|An$vRn1B8Ib-WU#Vp02XvG9RChE#{~xDq=nmwy@X%v)~K8
z>=3wx8Jfq$#0cD;>q|%k>bG;com*dhf@!;-C@LvMs*De=_Qn-zH{4E|6}GjuLg9%X
zmm3V~zsCjK&t^U!9UhW6FJs!+ju+|j^#>H*9VOkp<aG?x)d@sFV#lad#s&jvl~2)c
z55#0kJ3hAm)-<oMni}#}%#qpkblc^vX04OWjd<CFd6MVt8+d0&2Q?2*HB8X7d{SB4
z-Qo870xVNyrPE-F@JZBMx!G7GgL;|Tjz11Pr};Ru#Uy+1Ql3(7-4`M9m^XH-UMNqo
z(b~GgsKK=k{9r~x`URUmBSrcZ6A>A?JJ+C16^2g4DUq$v-qyCVx@tLB?>?L*8{CHW
z&ucsElr02Ad_X|1nN1S7NDP5%85tSti^ETdfeup7=|&3mjg5^(;$KZoO-%LYi`5QW
zxQrSq(ibTy<cJ?qnM7=cfl*OoouL$SE?W#tOiZp{Ev9}`Qd3hPq>|p=%zT~$C(TGt
z=Xmu338|9)epC0FFSQ4GkrlnBpVd~CmHi4;Yw)O(Z$AZdjZVTh{&vG&<nP9iOJb}I
zh=2J^DHy`b%M16l%05`O;;%MhuU;Go%gMcfuOF`Tc#+8{Bp8ugo@|K@9bX)+-CSSu
zeBO=!`IGfiH+F~6P-5N1)m7>gIx5l^!v`R3{EG22dU)b;)0e=zV|9Cd)Nfcik@yOR
z;BnYwH|YFPO_zNqFADO*OBOvuVWAZWzP9f+?2%3qeR{>iNyT6-b~BSaT(<Hnq~f_l
zK?KFbROz+($H&JvHonXJd7=O^ujIoPG^Af|BBG-9CQ83&Y!LH08cgG2V#;c2?nF0o
zq>7R_r%5Nh4dFZV)vu<?@WBm8hjA>gtiTY>&CQzv31X0sl9IiBef730-C#N9x3<)^
zv@AV+pMdm5^UnmD9If{9^?%-*b>E+FI=y-<Codn`f;B0`*B`e#9H{HdMe2(&!*93x
zr|BE2X3z5KYHaT+*j&y>t1v{O%VzfF*7bf1hG-zZ&Gq@guV23wTE2@43&RkxjtUq^
zNQ6&8qJ3xgVu+PRxD<=p^Kyf_<C~UzhD7L0c4cK{RWmech12A38rXgIo5LUZ{8yJj
z28j|&FD@>ws;Uwc6x^%7+SSYjiODRAQ4?%s5FnuxqF@#0XOWQ_Z~j?`2?Zsk-Pt-K
z*s}eT$uAEcatG(;<xPVLzVR~vDRi&)C|D|!o{o-?S?65{3BN`UNGOd{Q|iewf%q(o
zjb9%YVCdT&PTTeOCi3&bU|*r+Q9Ys|Bz0DE^)-DcAj*($!9E19#-S#b|6hgU|4{w;
z|MW8wsbW}g2#gceiwxpL<}u8QIg8Sc4-=Bb7M3l07+8FciImv&@GRpy+B4!`7T+-2
z*=Bk=hkOGiHO`cBM~vB5H1qgAr?=~r`4WAt{4_035sRk(hm~7JRP^zO726mM#;7g>
zx$N*ys>M%9J}4j!_p|-`Tj=1o^zVPGGO*XQ99MgcX~ON|5IxrnKPaTO3W{*Dy6DyQ
z`wjIB`sX~hRWJ1=hK|1lpnc(S-k&{|`I`K&Op>|T={Hp{-*K(;5n<({#5FTB^t-bq
z;m^5uO>Al#&1SfsA8Fg8b@3xV5%?t2pn1?g#8_T%9eR)A^L*g65wdg<%Y4Ybh#%K$
z*i)mj(Uq%hrMMhl^98!dEkze$`;t15#ACqb!Tg`2e+M1(6*EK8cpFTBtFQ&<R24l(
zFH~Q=TEVo+<HqIFr}QSBd1sQo(TDxRbf^EBG6rx&x$*G*W#(6p+V(G$=b3&hudUT6
z93u)6NnC5oeNAdFgT!ry^Y5@C8zDn#?54{mLhV!#WUEpRQ3OM$d9i}BGSRcg0d2?v
z;a@vU|CcXov{Sw9ZVNl$v*L`~Vfe0#=aivT%*C&uvyNo(B#=2@I8`LE{bud!T8N$(
z**@RidDc55zOc1DNemo(o_9nKDI{_SvO+U43DnIlW<FZJFX}>;9#Q-E8hXEAX5g5d
zcMgq$h;P?GdWY2rfL7%lA;)1^`F{}7uN{+b1abQ904btBdXI`Ue`^N5|CsHcees3!
z@qZz!G2c5J3qmUnE*J+gtn5l<!_O|_^el-8do?qnI#Rp%1RfOn`D&v)E@SWZb2jBS
zlt#PkWr;%Wz0P+il1qQlj{NKtQKE8*pAMH7!oJT0LFM$9kC?_@{;6u3`VigVW^e0T
zr;_h?XWN6K(6Q@0Ml2IA4(*ImXTtBTNSwXs9vXZRtQFyLV0f}8trKNye->Qr2otLc
zA00bHX&dP{r2m8a0JhATc4=0SRV+b>o2^vjEPT21y>Mb}2WM?2HLRkkweUK7fU2=d
z3TZmm%&l@OaPe)Wp^>a=`ozgll&BDG+MmxgjGFXZFoa=RxhUl3cx$Az&EeKv=?14-
zj(*(3@9n}ZTCOBbVac*~L0_HBNbML0`>XA%3=}p_^6|it^g4>Px}`8EJfmBjz*Rc?
zCIw%~kYlX%yB*8IY=Pa4#jWUL!J&<|Cp)R}0{jjc`<E9jT3?IfC4yL95<kKSEs$Mj
z(qD==oGZ;LrcLg!JEX3=2$Eh;MYCXry<!R6B;E^x=Fsw&IxIcE%i5Jo=Yn@;G40^L
zxb<y$&XLATIMlIq;=M&+VX${Dy0aHGQ|Wx#d8YLsq}5yacYyWm1G~dM&9199uG**6
zXSP8Dh8&baA5vRtG2y6=RvMm_157zY^s@F_zht{9kMLgSC3`tE*+7<p1%FRqxo*{l
zKet029VWze`+Z>TVNuE2$dYy#r#RL}9C&9J$gOc*?K)IV;q4(iqatNlSS7aq22<^5
zRb1MB@7F}FW5mZ7`2&x|WqOl*_;X~t@Z3sP)snS{#=kBYoRy#<8Rzm;ocTj!#;L#C
zi|St*-}0=*q0NeJ5VwmhLv+Wg@>VBziEFWKcauonH4G2`qI_Ol)~aZT^~+ve)!$ik
z(CTK2WMs-cNFn&Rcb*7I&YyA|o;FyHedljTY(^o(tQh66HK0lx#i&-B_w!M%TdJ{7
zF1=xsVbGIzc2o{Zw0q|kG4)#muHv6Jyp{~;v?WF^qBhZO=)e2z`9UWuP3%@UL{_k5
zr9YerJ~cG=YK$|rJl&g>j^7^2$5N~BF=Y80h=3r&km2i7q+G=OvSgtq#y;=y<=M^j
z%bw}BNjIq1P|{cYh@hjD(2wO*G4_Lt4!&-;{7r&1nIo#tZY8n)g{6<j#`Gpq6Y=vE
zKjGE)raImZ0lmCx%Y*En**7S0<<e`$#cmC6L!R8J=(8w@Eo()mpnMheLWdpq#+FZH
zGJW@Xd}H(H*Ds``21(-U?kggydd1t(BvLC<oRamS^bObGp5cXO)YQm=5cjL4c75u8
z@ntRSUNVH4gqOsQ=m?9>8?852hfnqEXSmyBaB}w1aOYTv=$xgDmU?%PCr~_zJDKgZ
zZZFUUKH<Nn;cK-r7CRfzxyyp~)-Nd^1uQRRx}R1k`#3ngx;$FBn+<bF2s7E?XgF?O
zx8k}3KbSG_$bU~IP!T!xVlGs?g@nmJ1U>2EZy4KM6$*^c#N11Svj0s)!|58uElV9u
zbz46*(m;-T>E-uS>V9Dnk(+}UnBar@y?*?Y>p&cKY8-R5K!8EmDFpGS@(hWrGH52-
z)gj~%SU~b$gZZElu17@DEH8V-Xksaw^93|YVoe{#c`YpGj_#GJK8q^YU|IPNEjhrA
z8+kRJ=L?k>#O~c!VgrX8a4JNb%PD0Ts?Z7t;IK-mQUv8$NpEM%iAk>}Ug$1K35nNG
zJGj`&Fr~vySvD<{!pO#%G0kfy3_0f19<>ZU6NO+p1?ZHLBU)|5^PuwVy<)~9UM#rg
zwY{d`e6xCLbqC4;vYy##KT{quw<924y{4tHkBCAb$;Li<l<d8jLXT$kmKa*wDFRJI
z7CE<Fhkp_fS;^W&wpQYYbt$-|zoOzPQK!CJiZWA)nbcZ!>YLE^sL6RcXv0dGVH`;7
zZG{?;EN8ylRh#1e#w93;saK4p9lMv-!8SI6-3kwBzKdBT%tu%+@b0YVHY$VZ`1w}K
zY0&k~-<960`Xr9xq`$o33(F8#d3cBwsX1#*KtN$@tI)~r3y14N^eW|F=h-w3`<GUD
zi0xcOBeaIA&C~`*w^wrT82=uW+#on4Vs=<N{~e4t#YBo~S9hXn?aUx*%j=rJ4;es{
zz;02gQcFfd>(--MsZ96PF0Hsz+>)Pj7-^WVRC>$hlQue-?N<k}!nE!bi1DfAuRdwz
zU3!d7mI)S9u~Etz7b|?u?>1d{0?*R0s?$}XXZKhPDO2ab*eW)e6OO#P`GJ&y@7H`)
zx)<#BhUs;c^jMl?jcNW$3+gL~7xP+6A;;|w*xdjqXU%PtMq#WfCDtl=)Eo4apkVQ~
ziO{RQm%K>lqJD)bsB*Z(@^nd3*51~O6~?18H`x5G3TH8JR;z?sjz?5fSc4&d^1306
zBRr~^{sVOPTv<M_SdB7D92@r*SrFN(K+0d%9y0b3-}b^(wLR2}h~rrX0RjU5K>7Y*
zwXl#d0$Y=IuKJ8U74jp;jX-I0e?)rHyR*!+iVUK!<rFj|WcH1Rq~6-Gr#|I*C{H>g
zV$}fI%J9Pumfz$)Qht5)=^yVcRH;a@@Os2A<)K9tHI;Hp>3+r?J#yqp(Z`8Q)weU!
zF;SKSViwG8*0g?`!3(#dCH)pXG)kR%Zgp;Xe1hz_k7f;XbS-cm)|?AJ+AuYhG(ziP
z?bk?6SF1u0MrS>JI-sPenDoZe!D^HshDs&lG*#7vE%AkUwrn7@$+Y0(?n^J0+440R
zkP=i2Z%y9yk5iy@d@`Nm6(fiHzVrP8$)Jf%F}A;g62cx~euW@on){|;!twRF8y}O<
z4GMPaXcNGVXPf&+Zg=Y5FRjGB3#6?ZIbJ<nnuR^d6Z#6>m=z3QnT<Fw(`xcoEfhf~
z8Q7UO;&pDo?~wn>-trL#%}-8QR{eE7g{}!!i{ILF8h_n4ZzyDCf-_%$)4zK})Q;U;
z347mvX2!)Y;PEG1fWKmQ&7?fy?IJV~O6~>S?D-w?>>Y$b<v57vR~Ta!1%)Cx+<f#)
zz9`5P!UazZ(&<Ju=ox)e2&Bl%*L*8X6OXs6kH?-V^0@Zm!(t<}vQs$k&el6&nsXi}
z7j*9E?M^2c>P$0f*W@kueK#h=NMDGBOXHix3r=&{{X3GNq7?29s$%`3P<TMYZC7(K
zdy5F_#k1|1gX;^pyhW9Yd2jb!sV9@biO}EZsJ8=0hJF%9t|LN4s**R={EPXD?iCmB
zK9zg)r4`iG2#pKe^*l8=M>wauh)t)Dxm`&6RB@o8@46m%b1CWiCl7mIpSZT`6^}#V
z*uodabvc;5MXcHI&vlX2k@|z@Z8{PtISfxT`4^l{+P+dyYu|OaNPHyOyF`tEpE`}5
z%4G{()9_5+iA;=y)KB(Wvr6R<3Z&&$L@j=Ih%=)vpgQwC8O>2HywZ;7(qY+rU-##Z
zYs;j3^Gv%rrsHY-`EFz8Ud9G{!(HIC=lXe|_ZDO$ZQ$`x;Bul;;J3)`@kenZ8tQL;
ziCQ5B?oN|B1(f-=6px+yMe#h!`wdwp#&*N;k_b3b{0+GeuI7&?eim{jrDdu6or-(9
znJ$O9_#3tr`nz|aeI{Xu$bLw&?Pq|ro7qW*0?!iDcHb}+HqPvLWt-r1gGw*U93KdM
zKw-`?cDytF92Q=GHIQ!Bt_n%#n_aTHJNwp_wYJ<4633Z4A*0x*Zkp)M^BiVhnzE_p
z{SnW$gX{}2Yg`m{Fu@5bf15SFKH{MMPw5m}A)N#4gw*iLd9A)6gtF~-2;q@IVL7kV
ztW+)((|qT>0wlSc&b=wUdq8T2MoEujWFPk-ra1)j$|S00l+VSuzns_Z#|^T6AWH_N
zZQ;mNKl=IvjPLa$n1Y(p?FH9H><`Nq-nfjeDDwqiq7*bOf6!1p+x3A~tI9f;=c%Ra
zV+xeVq9cBz;bRenKo_0E8t1B`vP#4nJcdql)V7imJ?WSmKW~R=D(CTn++Lq*+eEcn
zR67z5C7!Gi7mBDiy#1auhVQL46V@Iqq5DRvD5kX;H{jDs1J@W~zC1NQ))ZrksOa8O
zlo+KglYgq!-Ep&UdIk{=$6K|P(;)4eTD!YJ`6yeaWg--BiIw+kreC@0uhtCmMGh{a
z%slwr{!WRWjhbOy*-NhzM-|)MnFu{XKzj!^?q)p875bkVACi7g&p6iD@2Y6uEUBc)
zuZT*yHXKQOC>l|1ZS!a;pK4aGXf(3V)hJwzvj1(&*$Kv!qS#8bz;TpVG)f_VwqlRK
zoo(-JOUI3y+g$wHVypf>_eHknYubwjgknvcW6)teP%}eW+S3rHRAJ6{p?qN@k)EfE
z6g%W30ViFw*@l)$gTBH3zQLF7jHyjJ!%<>5)l*46ydEy6%{T$YYB{w_P+}yDIJtH*
zgnxiIzEbxG>|moa<_zWx2qyN+JL3+Su&!F8J6R<xk5jl!P1X;R5TCWk@Gg$q(?g~}
zA|AeSPC7pBfjLyz@xt0%54#|{ywN2N77pf8(L>yL238`=?mFbHhS(^*Dgc&FH&BN%
zBnYo|s)-jlvLP_IIo-w1Z)?`r2%(G8{^$P1szE|UFo~V3ooUYy%~I{lRewXu3NxuI
z#~Z0kR4F-jeRwwq5yrK{A`~(3lj*KkUM&0X)CRH<(iioxL|2zqW_NpoXzsUeMaB^l
zSi?WA91;`QZ`}M8iN>3JPp@~FT9RJ=tUcEj=u&WSlgC=zV-STXDk$BQ-Qc~(c<a)4
zyySU=jvJu>!y76VsJ~vFF#E8JGoJjuuPD4=P`6(6kZIB>z{x#a1zoxlh2AsaNX{xD
z%658v*d{f!mukC{`+DJ!SR}@?;(UJK-AvG7Ts_Z87Un~ijGW^USknW|#nj)s*NS-y
zD;uQoH0-%<<SLN_XJvw0=^Kgo?uU9GlMu6zWQL6fYuf~&4R?CsSFMH|{F8%RopUwS
z8IIjG^ePVQ^tu>sm3D5X9Z?+^m9ic~qPc|p*H8QnbB;M+f;6;mUHXe}YDYRTgEEcG
zYug5>VLwueMocx?tzL+z@cEB7bWn&k^cIu8()ewA(v)hHCPv)*fmwJg`iBPAmuz+C
z<EXpK(}4rK_&)(DCjNSK&)7e2ksBkC;Ns?ff$F`9B=ee{`OP?fzDrz=-L91D&?R6b
zn<te1gADQbOuYM=wdEkn()<elpzY-EVgGIUMWe|#<#(>J`A5DtB@ww8MhOu#4%oeV
z{)}T!<-E@{KfgnhCx|g((x@iESru5t2$}01_x-}msp^FIp+JYp<RBw9sBfctO7Ik|
zZ&XPm-|m+vME*E&u5T{K*@?8+&~;V>0z*h|45`LT5Zx?~-iVu56fiwTnik%sXb8bb
za;tLO^Ro@o4s27<ywiZdyeP#I8rlUe#V7-yXwQ$aoG7eV#tYReAGS|ij6D+cg*@%+
zo%W#Hn+{z<iMx%nD8BUw%Ij*+a%%~n)TtAE2Qe8IBeKE`*_jx8rtb7DiFs|UFH}RW
zqp{;f%D0E^-_f@zm)0BlE|kx|KoCDdDlE67F@x<)h6!Wq9fAwGh0Ly}XdRM;iax!3
zb2r?0PK|oPbJ%YcR#W~SVj(pLfS?WQ$xf<Et6{0oV>2jRmAap-PkM)_OH8r0?VSyp
zjp|aO^JefTXOp-ya?W8}g19z?nFi4p@DJ&7RA(E8o(<ZCtr!in{pwaTZq^HbPr|%K
z_MpVnV=~x5v?5F5fX^imGu7H2NjynCJ<3$26^S<FjuCrKK;)Da9v%mUhhiqn;i?9@
z9DJt&JvZ`kC&78=(qw5pYQzt*^zFIADEIcSH?I9x_MoC<uB)TAMY>(=Jyi7;(Q?W6
zkIMa4CP>VkEtbWbS!JEge#Tn(^i=;9S|GH|*4F!Y_j?|*aOok3z^8uqPy5=`4UGfX
z@DF615`)TC_)s|JLb6<BMXV_r<CgZ-Rr{nr{nFh)s^?q*=WMfjkPvh;J9c$B*RwnE
ztb4veDv@kdqBH+#ymNq!wQ^GM4!pa&d&SnIWBimN>BG2lo(lPqUV3-+)*~b`!~kAT
z!-U;>xL;?XGG<Ko9QEtag=Kiv4U4~nz)D~WjR>4g4qgm_MSilG@iYx)sdpSY9L?mV
z;*S`AOGm@<mXqb}X^g<D5GUP&rY!8WChXpU7qOw^q=(WF*yqRZAWhNmys_ed$d(K5
zjJuaa2TtQ#o+NMQ4|el*^!-(!@P=)E?z_|o+d?v>lvaESe@@j$RaEaJnvG-i@d<jx
zpfJ~9ZBJ93>t7G*Dl+a;hI0B6nRx6Lsy*#r(aUl({`^FP_|avMtV-KvjomBrjCw%@
zA=5tl-tP7`MvjOs)K%9X9?d#s93jo!)1}^&fGRinH~)x&GmiOy>4-VE6<=LqgtRZ_
z1>wu_70e_oVU7wVfed`9cCm>2jts*rPk<#?NXi>OIKBK8%WJ+5Px#Uf{f`ZE$#i4z
z+Mlb}okTa&LtzM7wfWv})t8pD5vf1qG<m$I%$w~zJrY7)*j`lWlzQy9KZP~jYA&_(
zg-3j})Hbxfa5?!@2f7IhTa<WvjUCbCwZhW`ZA4!n#W35g+K0m6Fr|z`GxPRuCaXG@
zZEcH(zCYCQnxJt(KL?B$H_=5(HK<~kbM9hyj0pTRv|D1#Rw6h!5kI&KX3&;S*Iz?8
zg*^HfnA=`<=U1w@QIIc>CUcYT`$C%x6~*$xL{0=Db!Q8Ii;9XShNx;eows-KX1SEE
zhT?}0Vm~2$$xWeO!Rt2G{J`sJMcmtM?1N>l<ZsBJl&DWYh*dfwgw?b`C4+#zc+_P2
zJJ#%5nJHo*B6sYGAx*4<YYhhMk$!lDwvBb)V;r+h{A~BFLjBtESP#uq&TYPhQ+6+>
zZz)Tn2*|=)c1p-ZX5ruX_y`&TDUa>#eCp}$mFe=owg{Q4=&YY{xcL(KKTvfgbeqUS
zF_ld1a}rWw?3B&?3l$NMjMo~Dlo12fl2hq)q}lNAG_EDyEN$U4dBTwL05lGw&uW1#
z<l~@aWR{K$&(f4w9{Ed{ppc{VNUjV)u9WRnJfSk3r~IjG7^SN21+qzOUmpXvT~NL0
zbJ}7b?VQuMKb#3+!=N7EF6C#wkVmYU6%uv#kA<&-zaz8U>gqP$6~jDA-V0Pr`%t!6
zi;eGMP<Ux(!}XfcWwhlozPMc~JJ(#?u+8MTWjbC6|EQGIkiw|n^meIYo5-D++p?nF
z`a+m6B)RFPhVVF@Gxy`mO=F)hy1H~RE2)eOf+y|aWcx~CT15vCnBaV`kC=R~WZa0o
z=%b*yJLYzF`YVq$f-7DG1foyUGiuonhuoa37$uR8K2S``uTy>1#$lS?suf&;FTt?_
zKm)>DDXi-Ev}wW3&2Jfr!T9SM;$RLexNn=n&6+@&a(DW7*3vTr%^An6vaCvlbOnhx
zW`q*g=6`7cK4?46nhuYBMt~1yV;RnV(z$b2;k9%z3+wx5sBWy}eu5-B>Z-X<IHTLK
z!8oyD%h3YD-%+D;#TCvkOS6k1$;36M;@CWW3oKfn$zEAlcT_Q*Ku$6WqGtG<YKzWI
z3E;lq?#2GDk&XO!=x)C|yL)3AHN`MI`Bv?@QQf76>1%k_vYLsB_eI5YE@vFWD{h_H
zt^UDl$@eP}AG8<lw4|L&tfD7mR^&)C-fR@KtYN}+lbaAf@_A2tMsD*IybpGA9a%C6
zc2#CM;>ZB=4kUV+%hZ)$70H{DNoDcDt1|DxszE}P-jqHd^`=vl?eViM9OFDjtn<e=
z&hH<V5AXHe&P-7tJosHive6ZdztO~|8*{R)bysG}-p%@vdYlAsfAQeH3&PloXK`qT
ze>+ej1!4Pa>9y1NP0^KHQB=7)y!BXFEBdy3Z*R)nE4$kKU4JknnZLo1wyp(x66!bI
z)2<$zG!h~u{O$7WQm0E=sdQm<M-hAH7!iEhRH7_Gb>&JAg%?V@nhXz7%CF@sI)6`9
zUm=i~AdD?pP)DKlZ^C{*xSc#SBCOog@(uKJ*<0kWTdWVu8?Z$mB}nZK+DwY;XV%$^
zq97aMOW|U*_PXdw{3^tQuQPeN7`B%CZ`@7Odhiagf1`~}nP_q5Xc&_yMT{>}e4?%6
z+2@?PmL6UA;-R&NX}f)1Po1C;c`iLsc~tRplT|6lOC5@og_?oypK?IFH;^Y3Q%`+X
zh=nW=e<XG=^0#we$G;f@>j+&A2w9sns#0>%zwrD!@|H!;TdH=CNd8$fdwWH2osK`b
z*8nwbwe(;5$Ekk$sy@kuQM2cJUth*_E600hsMr)$JFIbM6u0O%K;ihhaES22f%F;a
zoxSJPl^0p<-Jn>xba?2g`aw%QZT~4LFP+17mO|nhfsY_$hku{QipAHPHnypvpL&43
zg6XRLsWebAG_{D*o7%`^B{|hED(OlL<&|~6Rxdw|`lyfE7tQK8Db9%|kL_J5g=;?H
z>@=As5J-Boe9j`x^Lop-O@{WZaYa=yZ~2Gzj32C;q@eBfDWM7`yWT3gR3f*Mog$YT
zp`437gQdU8Q)*Tk%aV?p1fdKy!|w~6?{nL?Ua~O0<$BX~u$Ht=fP;nEX=A?7Mo)km
zoG&ea{eocZs2Ie@oRp@b6ADWnHcV(xVwSQlq9S{wdv<0~T7zBRUl3v=$I(mP@ij!>
zT4g@JA^z~_B$;N?kONZ>%TpCJhx3N5uMW(YN9`K(4dL-j94**E5KOD3pE+)?6n*tn
zVneTsO6P<8_%Y$Ol4QEW*extCE}A`)rtP=|P7cP$qh-7`T$T(+tU9FctnU2g`V>0r
znqR%d!d#?Q+S*D@H5MsSWdV1EUx|@QQN49dxbhIajbl1}VI~sp(vIlBgqw}-zUFdu
z{*DmCo}BJkx$>l6pDMqJC+L?<Y>?z@7_!}hd>NG@A1jhW8w$MfkO-tz%9wQA&(S#S
z+5ejG?c4S98%H^+F#C_bE3d?qGG3GxeT$*yDGLezP^pb!bf@2?CPt8b5R!r4mH$9+
zqZbYBfbbdOhfqN;w_2Xk?I;H$4SQ#YF)J~*+u~5+Zyn)Ekrmh6!0x!>?$%tO*~k-u
zg_;?6+~6&_Q+LzT-|`ljedus(A`JR#z)s2=dbZIW6lJBSX&tYyQhG5~(lf>xL^w{%
zNu@xp+mDB9bnSB8(11%*i`>@89ph8-p_NL<zh3tJN+N@w8Q%F3QwPT_3%ETaY!`mM
z&H^UM>UnND+DyeAL$$5@P4sX_3Wb*>?$IFD#nxxTq}S{kV^+i*MN1TeO)rA^wVf`a
z9;))5u6<PWV5iSt^Ais8-m2ysP;_>_;F>zbNU#_vIpIR<Eys~duaKa;)qg;FU+dx?
z-#C1&uw~_F9@lUkdTsctLP|v^b|FoS)DKR*j~h_zzhGc1`K3iWVn)+q@Qyr!($CM&
z#>NH{6O$(a+%j!`|M_dC$?z<qm0Bj&Op;?IBbGHc+lQ>#7R?XdBNnbCUp}GIW^L=O
z{Nubr0Ro#fWmkyAKS_T^9Y#~8Bp=kK($>X}W&xp=pTLNla4JnMNy|tXH_d^yim<%^
z+c@JC(0aRGNeMPI$uB}1lCsY*&GTduILX#emxgw~(5@P5Z4|Su@L5rLNoJgeWnUZn
ztT5bzT@iQMUNM|Wvh2U#QwW;c)dOARd(lBjoRte;Hl!5u)1X&$8Om!l%_+#P)GMf?
zT~&$yBVO?2mvOs--TR^g+wul*cVjSc#GF|{3&$)n$IUm0YcyQnU(OggolZM;0g%D0
z1|@Y>FG#2>N;k)Y6M>Ew;2v`%yCWjI+GEs|rIX`<oOj<r1v(70>RCsonU&_|86F4H
z3IWz6lpK-c=BLB9Db66mPmX+X)2*y6RRHtS$zx<2nf^uKC$aOL<x>vr8bf)W0!RRu
zFvIuW*{2!3dTIDl<oDIo*oTdP?oT<+Gx`WKWCFiwy)5>1aZJoKI_+%u+IfhmP|*SI
zx9s1|3U)1~Ik@IZv7y$sOg0<r6ks%O`^NJ`Kuwom2sL971~b!SxUj6n8bR99)%vI<
zF$LO0CF`3V0LU`I@fZl0XY^sNC?zkvbxLDRtq4!jmE<|d5fRy+=(MFWU_#79bP^+6
zd8=v&D1E4S#9I)+^s=LOXBk0+&T5-^S)kFKahPfxnL=>2)I*6zOs|Ng2hs{=WbVUl
zPkyRqe0@+EA7he3zT(Sc51EG~KKymkjNRL%5Gcer_Q)4?lQtI9^EaB9m3L4Fw&dLH
z88YYzeZZd7iJ6qH-4n|>ru0G|VwbcFHhM!F8{vxbF=BS{h=E1e504p2-l^cRnDoTI
zV;q9X?L+!zUAAHYhA<6uEoH)A))HLw6OYx!Y-R_c@V$%U>!KprV#Bs9`0plnj9M}}
z3^{~_vX6ZBu@u`2r5q|wde|dfiNR;WcKG^!8sfe>g@^@%(^%SAn9z^x8{$YWV;`^<
zlxS8$kBVg(s=bhmN3g4*<l|?BbGi~N@fy20uM{s|kZVy0LIoEEzLFze*%r=uHtR~r
z20Cf@Lj?<-{GfBdAHr@SN8tO#Ly(2pu-nK2-&Bbtql4hS7Pqm%NPiO}vGSePKjRIe
zSSVRPoenXubI`QVN+Vn<httya$y8gf6q8&>!teV^Yy5+uaG~T+>2%(l2nZ+W84~y#
zV#4Gi`ga7_Zupyi87rk68>X8cn9MFN8Y|IJvFUwSe2peTuIPdl2V$1iN6!-dXPyGB
zA;$;4HVL-;RZn4XW9cvemp3Tx1S9!GARX(=cZ>`gpGADcZlyzPhVhu@6aDU)x9h+0
z*G{E{;#b?EbJ%54wbd<h>K88GLH!pXTWwv)D%pPzsFh}PxkDZ|C@Y>_F^0~mmL5qs
zFd`$(r`@8mPLnuKyDM}suJZimo+%76>2}b{OqjHY;iUt2x_(w|UpchPc>XEqwdeI3
zDIaig$*yW7-U9;A7VNeUBe=PbvfYb%9KcNjlh}0CCoeI9ObZwJUZw?O7G?=Y2nL6Q
zKLRq!hDHp%dnpgn|42X0z7Y`B?+BtIBN<Bq6$R3?CpxL~q|Sfjqyz0h_|VIu>^;|w
z^yRTv@<Sx+JC1)e8$K)<e4b<!k3_WQFVs5z)v3Uko687;2%HH&2TD>Moa@_q`RU@v
zX3+Yl(1e8G^0lfp{rg1*@Wto%Un~}(^+)^ba*5lhV)fzGi{K@EpRWPF|If+~TmrI_
zNcG(}&5?T9)mdq|igXbgj1?7kf~Y88h!PwARe?MMDiFB7XrhRLIlE-fN{Ox?Cx^Og
zzYV8=_=xc4Ca0&Tr<Ijexf(-Q7yi9g23){bJ~u0uETHw6B*E9^)5a1>6uB11ksPwE
z;%n7r<Evj^o;Zr?$r}-w)x&X0#C!ArCIm6DZ^aF0(_7#UUYfqfJJHk)^wVkM#Ij(J
z|2uM<e5<Rg`{2O?wR|PUs1}S*^Tld<RxV__Hh3N~_evG@I0D_5<$nj;2l<2ff_lac
zSYwoO%T-=OV4f!@hlkypo2I1`e~$QILet2E<-{8KwJs-{ikdPqKa^!!*5DO;nNaCV
z)@Kx<#)>)2R#tmozI*|yx#EM@J<T|+jcnzuv&Zk)o&R$(jBlK5&D^FAsX?iRV8Ww{
zKc>qCiF~`4{-h4BpSXN$(kWIk=Tsm1jZ~$<2!TsTNC2@O(ObOg(gToRUQ$Q(jF^@K
zZIWrZX}KC*#9wxFAk8r{^{d<XYJA9e{R_++$zuycgw61#2$5(n>mfV2ehYr-Yx<}j
zTK^YZD5-<S#VW0-d8asYSqzQfr<9aLL_~mylEaO0dH>G~aAR8bS&Q{c>aeb5TQCHm
zf7_=ga4Lx$k0bG=+H1xDimZ9v0Yedd(R|A?o8i|K(o3wIEDx}U-h0EFj%uCU%DdLu
z#Kpvbz84u8nVg)Qke8`?24ykA<&VYd9{&)|ui9OW`u|MI^wNI@Jo)>dNl6Ej;`-8=
zFtj*%is*r`EW2a?{VfSbL5>1lj6{Z9wmpv~mZ9ip5)*8qXAc>Tabn%?SJC~yR&fd+
ztl}(K#k#=zRow1LH6i5aP{SjA*K8B7Kv&n11HCSOX6zkn0}hM*{O@6kW~AV-puu)o
z5TzLg=8{^`Q-m+?WS@Tdu0%hBqJ#JNm!k1QSDHXh>#q#=d-Z=)p8fwWk27l{P`9yR
zX$RWF^S7_Jb}Hr)c^phN!_H{9xGK!X3goic85r`bHp|RrWr&)0T&f&*2;0wr_%|qF
zurC`HfXDP44ULf7S|?S{Oh*~xCAW2x7Yb1Rri!H#zIAhQc6PpLx*sq@K8}&OWsC$>
zppB#B@1ZT%@WjNo=Ho@xRB>cnTzL9!=li;d0s6w)7eqv^=lcs4vo2d&4;==_Wr!b|
zJ&`P!D~7#!^X6XrxC;c}JCh?>V%wTKTU%y#6=8SRYXX)}Gt<+7SX>sH!)mtH#mfYj
zVP@ydQxKdwR$0AgT&+2RUKyxzA3wvNcPuf1zkffLr;3Gz^$p77aeWTt+TcBS#lbXC
zB_Sg$MUew#mkETnKmuwBq?YRg$;ILopHEVR16bMEFyYiv@mXt5aSC+AT$a;?4Yz92
z%)Ke;H8;0R5G15`N2VtPQ$QVx_2R{_=}8Y$!)pj!L*pep3y8+?^<yLqJ%M~wBJcoc
zj`j5QKe4K+sl^T&3qg7lc)4h3K*RN9dqSRXf4>b+n>(RFTv~c>uAxCCZfM#2DPE$}
z;*%H&ToRJob|Nd4{Ly;%tINyF?v+Czx-~K|_%%g+6_0DdP6))$7oc(3+S<Cgx%t-p
z(pU6tJe?5alcAyG-mE5hsF0{=fateYG%kzD;dJpR*n1x`#QpR<e@PS8m6DQDe|;!E
z))@zlmKUgDcui7Nj0a@r$A4nj+Qw==@9mBkr%F%}aaqQ98I+7IsWh0a)fC87<o+rt
zkxQ5JD<qm_?<nZ&?tWn=lRNUdha7QubOglNv|(L8fBt+qRv#6mEG+D;ugv{;Y4XvS
z!$Mg-_<Yv=Ow-i@2zoV24E*#fDlH#6<ZIVt<ZD;l0O2f1VV8kB37=<UILt;D+XBGy
zmD((|KSX^_hG1o71=ou9^yy9^wRB=2RIS9IE6%FE%6y_Ef%h|`TAA_9<q0q#+}vL6
zVUX}~+b(w=t@TqNX#7)52=&dig<M=N2a?}wQq$AZyPj;WtgMs+r7NX)<Uhh;63^=c
zAe{x`{4DJT4-*p;1k{ExQ+Ud3s?-QWatNsG!C?V_3*;14SGxe&Itb7^u#pV=6ZwIX
zch2KVGTvsg%p_GLD3(Rvr%jK5)!>7z?cv5yCLWU(pX;gl6$`ARlZYr<9i8d=po6qO
z{*B$m;R>(g_WALUwC2;w9k(%@O-Gz)2`ZLeQ-z_IHJ8O5BzDi*joCBO(h%RjXJ%&h
z$8z)}(gM8XQ>^kj*n6j`k~2BcL04N_zax02NcY>hp@)ZupkUMbVCqgpjitiL@J3eg
zRz<-rDlmv7cRq{=4P^lvConLO>W}L`0(BtxZtF^Z|Gh7fU!Bj^@%r2b?z?1GY%MDr
zs^YXeT?MGmUc;S-xp^KL<m7dmIVXKYcXKm*tP5B!Kui(_i5yULxQK~~wHA&5J$pp}
zBQ32UB!S;G5(*zWzP-7cQK|$B<m(HG>!qqc0&;PItL;)f?@Z|=+&PUp7Y86r-VR7)
z)@=qtbxjH@a~+`NzT`|?o5Aht>JkLE*A#rMf(bb`PsX(I#I>sJKf2k?);b>?9Gsf&
zFlq44?VveK{V+;$cO1=Al``8bkhI%2h5JV928<M_6qD1?bm|rRlBTDn{Yetgc5~mI
zeiQlW#HDWQ@%-eYimhf7cN`oX-N3dkjJM}xl$65Hw6<}_EE+8mq|7p(Y*oOBJl{|E
zFg^pCPt;V&T!Hp>oA~qQj*d)VC%J9LcF3)J^5h8+XcGcgL0bUc(&D0FUpy^Iyxo0d
zfz~m&?6I!t>1p8T$X1~9K(OFGS^&Wf4gzkBSY};hc&83?rDoaGrz)lBq@<)DKXj5R
zK>oP6xL7p1GHC+R{ZB?lsMEhaZZ1noSTkkfpyR;*kzH+ZcYA|w<<0MOAnfK=JN47S
zp?(X^K@)|5fPks)_$Rk>h&y9<SJy`|F<U-MBRpbaevo>B)4_Mmk@%a91zd9r`AuFS
z7$Mm2zTYuGep|Q4N!a3?|1FhSK7^1m?rgu`jdsi!JYNi#oJfuefL%f^d;4#?xTWQ8
z1&DT#@Z3Ncn~ml<?^dnFi`_c`f<L41NWFk>YkyAxd6-eV{<>zbo`~I8#=;{1Mtss?
z&@$CF{|9t&oH6qwX8%!FSJ#}|QP2(X!PP9wFx4YY!$0^}*)74uyqhPN)o5W;)brDe
z&RUF7HT8Rw7vS5$DBBDU=AFRjQh&LbtL<^o=CO0le_G|6Vd9f*r+t1pWfc|{2GC)b
zf$g*Q@+X#K!jh6f^4?%K-`$=yB)RTZg;7g`XzD(o_-B=Yb-`wbJsE3r?i^TRZmzF4
zH=&@GoN0rlUPb8Q2eR}ZNfjo%d}Esic9<6#$fx}=Y(`+qQ-}sn*Spu4byYL!y@!D1
zeoIf^;}MDld&SGk`{s=^C@G5voE4b<0ghLpX5K*8KQS?Jnp09zGFfi6#;*MRIkBy+
zZJApB4RfGcz9U-sldr&LaaJjrH&9+Ak}3$9*yFRVo)y2hGga(Zd{_&3NyPejcN&LY
ziSO?E2n7X2(lR!8e}5l@$OLtQ?Es#ZQ?mQjDR5J;OY(w*i>My;4l_!0UTyWm3czIm
z#rv03rrmX?1Ch0Q=Fp@GoO*cf4uDnQNFmpl1{Si!RCGi0g@py+Py#u<+Iqq3ru-bG
z!E_|2<vRwGX0`o9$)}-AY0tg7v)lX01b&b4Vtp`>#TJf8M$K;Kz;n%e<IUDs;n~KJ
zXx_Am?e=)FVW~54P61cJy_Lb#)Ko)bdbZBB0;B{m*x_M?j>dT09Zsh)v?TY_iP+fK
zF)h~}P^WvMn6!aYsmx?3ewC2R@};mWFlfz!ngmP`tAAojtry^#GJ7mV)o7^T_4x7a
zj+G}Up-Jo}f29R(445uJx*!D>CXisoBVWgWglwj0$vYPz{~iEEDyjJK2G6_xw^!R*
zu~b^9KG45gC*WT6@%o^*w|60kE#MZSl1_X*Yew7M+dBia_a&ctfGK7hJJ1Yky5Q-U
z2+HHfr#n+;0ZjGyypDN8q6Jg$-fx=!GpFE+Pc}zD-ptO<2G{LSV+tZ_S{Y*#nP;$W
z&iURKWMkWmc*4|h%?dLBHWXkBLi5(^jpaBUTa20p6$%7!QqmkiArKgtgUy+m3bFLR
z#_V9FIpTT|Kl%mkUe450>l`e$0ee(2)1b*u=+C$~UY$my;=VC$&lv;OAW{LaZ7Qth
zZnp{>L?EEl`PuL=OztG07T~;qKPP>AJ+2>8{F;b>pvrWFZp;S@4xB~_v9UQaG}vgu
zVq)C@aKytc)N~5!b`+waB_Jhrc77;V;|Jv(I9;ap_&$96D4RP{UtcdZGO1nZSU-ic
zIk|@Tf$|iW?_^j$$Rbu>xlp6(Z~aqHz<r=40A7I~V2ReMa{+-3;zrciIBN>Map!cY
zno(m64`u+O>xEw$Ko;@#+m2v!mP=(mH)+0fAgWEMvtw>Y^IjYjB?Up0J2izpucmYF
zfk~C5?;9s<+o@R9L?>kbAn|ir>i2rep6q+Lg@O)78ctfU&wYvl>u~aCByiAjvMgJ(
z#_{CQQt@s&mWJmfZA3TNK#I9a6MI=WP55X?l>$0tCT2#$aiL8*AVL~$UWN^&QJV=T
zj}{jAyn6M@z|e5i^UA1n-q{2AuRs<*d35w6D?6K(jxLtdLQO_ypxOKBo{Ki{1bkWb
z{#eI#SzdNOWncwC1t25)C5)Fgwj}_3i~tqX)V-+9XRP)JLi;nMRt!LRUfyd!Q4e%+
zrD7>3LD2waxksp|A^0rt+>zP$MHuaM_RX$)b;|vjFG1%Rcpm{<<24@m1-9qe)>!|B
zk~VNjYUwraGly`JgcdWXm33|`U?P1{(gi^VvJb}5KbJ_Rf8@JX97M!bkRAezqJ#wt
z9pl>=SHSNxkiti<PXqwT`#9Ez^Itc+$A?WhI&9bs|3vdR<eanDgKL={>jY3jcLfu)
z7#dq>Bg6m+J)3p40xl@ayS}FY7YBF&!-NcVV6g^ch@W4Kfah(P^xKK7J1^iJ9SFR4
zK~@S5vG<gKd=B7Q#oc#WFk7f7z(4VY%}<CG;PlV4&cMxgDcEuE!G+!1wF($DtC!c-
z&VHqWPxg7w`yYZYe;B)WCcXPVXMc5K_74bP0sOSBSL<lXs)65Oa~Loe+;M;lncLU;
z63n&((OInL8$pz_J2FZSjeFF8W+=;uCoFL~SOg}puMbf<>3)NyE6}U~TehsM%*Ed?
z_ZFA{6|xoXvnUf&p#c6q^S#e<UQmJxtDPJ8J2xCs(=szLh&b~Kx?IEK;sRLS0xPAR
zqSGEB&R>x4T+Vj$WoQ6ee|vXrchC!5XaMPdNdFrh9SuT+{dZbc@y+yK{)y#FVxpg6
zVMn_)d%zXuI#!?=l(QV6tmPLJ1gd{gVIfofj=<eT$W$|^ho3%u!WQn0<0?$liEVSA
z`oeE5ZL)K}IAyfT1sb$8H2BOqU#7ZT@dyd44SQq3xmI)bXF2%N00akc@!pF|Nl8hs
zT;R48#PxS*=m`t}U%A{7kfKSrEH%{BCIR0d)RN1qdh*ZU{uiDl@ZW?Ck3lUwCdLoS
zW3wp4-!YXYw^3=c<Z*K{cF*t5EFPXV@~4;IPuV^hF`pAN3?`Vb)Np+WjEk*pZNPW<
zc{h+HvdiFf444jE@e2X!<K$GL3QJE<CkPS&;tg%L1$(sD{QPyEcejhR!C{Mj%$bC(
zEl7Yz>MabWiUJ@m?^fq}whMqqw?PS@8-T#N-iV|g08bvCQ4H^AOVEE2OW&L*&Ad_Z
zk`I8wLDd74B)rQ&R#q0kkaU&T0s;*H7O=*=rlsxLq2<dRnXItV2CpiO*($rWz`$qr
zSN4hW^qUx6#Q~u3Th7*AWD4AT%vZ`xOS9kjOUcH@#>;yJFmO*K!`4jA+4aRyOLMaa
zNMAlt_M2-N-aG3L3TVf6GXLRT9F9S+sHl{bl|iLN)sK&epd9_Bl&cz<Z#3fS><ln7
zx1+Z{bAhDwOhKy-=YNyGSCo`>SGzT*lRS>wl?GieIxMTK7n-r8`CwsP%`Gi+PD?@6
zzegg+UkhU0Z!4!Cv(9S?s-=buTD4A~J^?1kXFZPur=g%o1qS1yqJdi%VBUr#0}fSt
zu^I=4J_Rlo6s~(U?I3#)%Wvgq&;YPsAE>6%G|TD%8-Wj4Dgkxa8!uiOk`{1aC<4e9
zM2g4V%^4~N2>@ElfRW7n2B`fR0qd(bZ!V5EhCurv5u_f#z)jf+<>lnSP=|(wjCx}~
zN#n)y-JUOj<jHTpF4N#~^Y`yx2<)Vy+2TX6=5X?R)O5KE01AnM+9xL`L6>NGd3kzT
zBS8v}goIJ)5Y)f~KIf7JO3kaPV%-{tyRmSy_fR-h*hh&{!jb#TJ-}WEthfNQb&$CJ
zVTpE8;%{LF&A;Lze*7`2N-()q8Ip0Fro&l{+4l{Q|2!7}c+>*{zishBUyK7l9>fa3
zF29wvR8=Q(mG4skKt2qrC9lA{L>^*}9>XWGUVJhDxq~#_)7j}%qzk$kt6Gi=00dDW
z`jP~gr0#v9z^uI(TDsH`f(3u69pD|{@88-C>N4;h+vN}aH!u5G!2vFk3_(Xn*UBXt
zM0j$!RTw}C;M=SEH-Pz_pP&Ey`2sO8QEIfqH0ybHGd`{&2;H<A+#JbuJzm#kV$*F#
z0LSqEa3?E3J^^={(<@e(Yd@-Wj|9gb1e9iFbz0DGKIs|(jT)2K(}M%QkdV8pxjQMy
z1z@u+EiF4J84@u+V`C??eoD>Eju#~m-u@a5pYq`Y^sm&g*LJg|hBN42j@ZTp{NPZy
zUb&@m-T5VGJH77NJaMu4%ku9m>i~4ZP_L?>00<Pd!1?^Q@NjGvr(*R;Chc9&9AYPI
zYxW|m%s;v{k3@g)<l#$@#`r$G?C@i9b8`bsZIektw!$Y5fp~O<qYw;m8y+q$FcU90
zmcTg1Cqky$Iy!0?-heh02sDuWdqF<nV_*L*oGF#i-PiZL(gO4qK)wW>sgEB&2BTU*
z;rDxf^Y_iw*;B9mKHfb90wE+UEE&!G0A|39ziB0`37Z%h9jym`Y<i`<@k$$g6_s&O
zQupwPh!qtW+;{ClBtq!(sU23cqp8!4w<gC}EPVHO5}@T#S}q^s&EZ2DRhlO$>+9<P
zYyrX{%2%<4e-Aw^mG$^fhbjSV2W=WC2C3zA<=_Tg^?xx;(>;+2huQDFFW8~?y}*!p
zC&Pb<o4xzpT9T(@ZE>GTNdaN!&Jd5~0UuLTkLKLoKa|cABy5lh0ixJ)A^J5=p11~x
zRH+qsu)s9vUm3?5;<smCN3-ZZpBV+a^<Q$QeRru09td!-)Uh||?}Io7PW6qGOOS7i
z0s93F6Y&opoWQ<z;L&t&D6b3DDjeIeM`!Ze-Cm<Y><sU_pjE8L+M3?eIXO8wkMjl8
ztMVgB<5>EN+}Yjx@@u~ivTn(Qc`#^mH0?O9sOf@H`k)i}`}<2J^1U$~rs)WQz=AKh
za`e?LHhN1yy-nOj4!*BqPEa3R=Jv%VqK+}C;FoXy0>C+Tw$<R<TmJaI1zw`vziW>Z
zx(@mzmQj=txV`-`=*EB@#s->3J5v=knlk@G&<4EK@}Fa12smtp*9AuVp8rGB@|BE?
zjHs!pL8A#@Ut`SMQtHNf?8mW7oxbAEWI0=0FX&JJRt=Rlhao^+!6hY~+yA-V=V1vS
zmqP!ne*QL(Hq+-1=v%e<;{ZVK1}xuUajV@sITfx8-guyRB*nyh94h-KiPvaWG46t=
zXS}glYz4{nzI&H3<_Lz_-`!nu_6pW&k-$)=3LbcI|3D6F8};}1$$OvdSqo?y6>8P-
z(9>@LTngAl#cGaXE<pdapyGV$iIhxwOAITs-;ndsZCwD&?P#n}dv7Q+L?vP<tuxza
zety2Ov9aN1#|k{YAdE`#aw9Woo3i2da_jx~=M38QZe2eq0XDQoKdC#Ly#jmR13YX1
z&}1BJY*3u4Ee1gur|~BQkqXdA$jdjZMt$+1w;4>rUtLtRKccKX16UQ{dTm6z@t~6L
zfQH(A1*x!-mXyrT#5wuCJT45dI~deG=LDf18X8&*hy;i?fy?z&z_1Ey54%AJ7IY(a
zK;I7(e2&^Qc>yk%dByG>h^!CbK_7tqUY+gTO&BH3h!3@HHA3Mob+e}Bqotd6c6MAK
zBLXH0nyS1gpha0R6=9Z&{O}>z1y`Ue3zGQgMryHs2eAJ8VNruliT&1SJ{S>tc4-x-
zIB)61{mmKBQXd`$4-yHf*5sIvM0Lg_*7yK<NB?>6Gl@pMn`(SKXl;RBi3DV#*4fV5
zx(J@EQfe3ksC6$3C|MC=D{E^N#)ITGj0ar>06|b9UV~!$Cz|E-GJ&eCt!lLB|IWP%
zjimpJd+B`~+nTs<lY@t)M2Mvi8fQo)m~zH#nGOPeAulhFgXRrS225?D!ip4T0LT-V
z!NuA-my;504@)D~nD!7-kORPs-vPQzfjB%ooc^7X_#?jB7kW?60cQd51z=eaD}Gk1
zD=UE41}s%(Wo3cKVX)`?JJm$(H`?-2=$H&DMf2I2iKga5zAXu;02!8fE)=MiW+W;$
zfS?!{kf~5FoZ{H3)_hYgUS>YQ>L(<ps!A)x<LC-HO5o`Qt)1GQHz)tWA3NI#-&mAr
zutVNnu8-!c&&*~ZJ$VRH+Lw$PtD2&zLUL;G+!?iUQ$@`%^z5c1XC3<Z%ZYpu@0(wf
z>%U>7p4Y`r0_K{rER&!*1MpsusKYl}XYaN3^;NnY0SQSxAiY<_<>Vjm=ksWgelalP
zKLbHh@qbbGmSI)4(bnklwNO%8x*J3qDP026NOuU*-7ShpN~nZ@fOMBgmx>5TcXvy7
z!<ox>@3X)2efvA-T-W(^_~8#>J?n}4nRCoB#+-L@rbGNS_VkWDCq0-2B-PU1o_~4J
zW%_;h>{l2m(ENXHEmAANZB<p}u^Igecpp~t<UZj};7x}8NzcAsh##deQ34PR4DS&8
z26IH@X*YfVOa?)ay_%{{|FV@aSuR<0VtrxYFzbe5w~S6tcCko77*zQHt9K3$i6~8H
z(zQ}MfOPm`B5QBI6?BId#+Ha&J2f1aWvqolYv22~0~vHV-$%t*xCsw{*K7R5iF)JB
zA2<-{e>H!nU*y|ef<TOZ>A38gOuQ+sw&8>D?c@^T{#M*lZ-%U-N>2?UX2`aPBYZZr
z7IO$=S~4rzHCX8jY$tU_GC#&;2E?1r#%HDm*D%~RuSBn;qvGUj<aAp6bQqC_r$NY1
z958cwoE29pyyS+J*u444Wuh8}cN~xrllZV;Ain9z$jjTT7+WKzBR4LH6ZW4qtP|pr
zB80P-lDrBhF8*A9d9z2;sLz}SR5n15K)0YuODN1ozH*(u{)rl9bnpX;!;TJic6J*W
zw1QdRnKywng7WdDx};K+at;PMdIHD;fLk3Diwdk5BT-|HJ`Zq$EGmVIiworn0Ulo8
z=)&+lI#hSQIXPFHH5>=XD{M?mn|19qayTED1QHHJwxVL!U}37wHzA-q5uaVC3MWMV
zehA?e`1e!{H~$_T@gJXgSy#GJm+D8Q$p$bGw7#R1+}z)WoXgJDK+o!^|AXj2X7xQI
zy77__iJC8g(a4Em%$MK+((xl4|AS+1y#xln(5ClMQD2>w6m&RH(=|q!g2mq_B~2C?
zh$Sk(OZjtLvd>uv!=_xp8qzQRweK<LP@BIjUxp~s{`+@4jAel`Au%x#=(M+zX|2!S
z%Vex`ejVW{aUe5mYq|m@c*5fPdL2Yc#$<2QfE|p+W#<QV`if{4fhirCZWM6xIviN2
zudasZ)!yFjvO1Uu<S?vqNLk&h`+$IJ^9#!IO38JS3Cb2`;ZMI^fe>v22WyF>28{t?
zNhy|{#*<NNpQ3DbB9Ipl;nW-)wlHl7k^?3h8ZnP~q>KCMEgLD+=&9}-K~GSbTk_vi
z2u6*rny!aJyTG8K-Y0<X-{-`gpAwdu{pj@#r3#S8{{G)fb$bvY2J$q9C`CbKfp`Gm
z=~-hy30oT{hI}7x@XuF|N&i00;WQXf#K@RM`Qj+$d&&L#_aSbs_oM}atlYMsoTKWU
z932+=_3q!J7C(XY1wZm~50&~MK74|^nV1L>RF$Pn%ck6{k8$}Qf%3IA>yT8Cn?Nh#
z1ynr9k)<R*G_p5*<?4<0B#|-oXwhsaDFD`~a-gJ;@?bGc7?=R-03IVJu|T-fn%N(k
zk}Eu<1?sYB4lXXBqZbwyx``R<>r+T5-NYiB76?yef(ix7qM$UGy0pBo05s#K7yDZG
z(e|8>%OB_IZ?90Y=T9Z|+lW7aWN{5%eRKG9wVBuN=Z)^Sz#fa!01F3ZgLV<O)~P99
zAkhFD&T0TQx&Q2IWaet^W?Av$=5TU&u(}nt6BJ%+_XD+<5!rd=<%8fo=rC;-{U!-3
zJpLUoW)Nk&sT0gL5)l@Tk}*+Lh3PVc)ajL#A5*iT^r{B>@%9@Udisn^)Q>5Ur68Rc
z3BgbsX+_0*%*;7s?sx@2Ix&H`nK!@z*<kwnYe+a892}6olLY1<C*8y#{``~)iA2II
zqNfcC$QBSYq?P)i8X+aqdHNKGlr#^Rj<mEUi=VIk2K}CdlO2NqI$rWoNC5{Aj~nJT
zt+G537jIAC-z*OspLR93=dE#Bg$7&#BBCcs{qPNTI?M=r46<e|Hp2Ubg04oiewZ-C
zY1BO!!KbdH!;0oNVqLDu#_+)cq&j%L+FM)W1RPQW18;WiN=QifM*`7=O2ELac6N4_
znswEC?z2$OgCc5L8i#`-w1F8_NPM7%;}1Cy3R`%s8MH&+zSV`A2C&S6qldWoPn13a
zY^4&u8VrKc(IF)x69%0G*e;ldrJvUG+{|oBJ&OtrMr9E+azfHCXdt}t`uorjKRvw(
z&`eM>Y#kmZ^IECf+Hz2*!zh(cFMbByxjY$a*wAbzXFS^Uy(A?hWGIhINND?FEiK(@
zqf_~Py?fd+CN`EE10|S3kybk5J;rkN<y9*GvpLF3&0@pv0K-B<Losi>=B*Z_pyPW<
z=mrTLh!0#OTs2*03}C3>G$8x#+`X$MR$?<%uUDWR8y&5Mr-N6JDCVn=119MwXd`7-
zu>#;)(JQkYfZ74x4wFPT04ylpT!a9HBu<ZxK*Zd(GBPsi3oZyY+A#emBo#m~1KJOv
z&06l~EjW*G<QP;2*k@f>_A4G6=e2Ue3+1(8;dA9PCN((E`8h;HM1UEa!6WSq`R6Ns
z(h|sp8%s+>xVT)P5g~)V8{$0a+3V0Nf>Q>{et$_`P7buGHq>A#{sL(_Tx5`TL8is%
z2^$R&5z&X%DA3kEe3)}-i|4hn6&mq;0z;O1dU|GQHYD+y#vT3v_6DA7NSD4gJVuZx
z716Yc4PTwa00qEPNlxL-dj+vZmehQsTNx&I0i}@yI;#Ej!#e#U^}JO@i13M@K9PL#
z`Std0m+)>oOt$krEEw<^t~iRDtAyeZq(Pm)wuK!pZS;U=n&mU$Nb{Zd?@pS=JFWqo
z1h}%Dt&|2;O_KMHG_nOIyMaf6HasjS$lP8?_{j1f#IPVdt{5QqK14=FMn#FE&3M#*
zx4?qh<IbI)>1-6QLPIkPC*E*6_y-*u+n~xZBQGxx7{<Wy^V(E^@j&(IG=wk%4;+W1
ztfWLO%G~IAw)S0Qx1GDF?f_nfKA397oS`g@wgL(S6hHZR|8?c4hY;1$(gFzG%+%Bt
zqD=SaM=no*#F&REQb1cI0Lz;${ei^l8Qg+EY|46LD|sn-`3wus`IdJ;35vRJO@kD8
zIul4am~0LDEn8cXkXzwJHqe{;mG;j-A_CzGICZ?uj=lZ;{ey!SONnlLc9TH!-Lo4m
zp5a)nq6Mo8T&OpSS7GisAsNSVtBOY;Y>044AIieqKx<{?Ubv0=03rdi50aMw-3Np$
z3{Lae`hN5EO>EozH|go=pg>HNlrb<x|1Qv}&}NGPPXtse8)FssL`CZ_p2ILYx2J=Y
zfXZW`+JH=R-}o0N1|BJ?ELw_%CsaI89LUPcySTZ5ytJ%0=)@m@MgC`HMbPlu%Nxyn
zmE;?auvkVpa#vWD;x)9i;%aJY*kjQQ?SNW7KR*Z72KZa;8bTpnC|}*&+*Vf%5ifr|
z#itjg7vkbl_U=y8<*?iOp>^}+>M-J4cvNicCGaT#5G~h{2*esXJc^g(TIJSpFj@^{
zNSzwcD^DRC7^*;4_M@7PGB;+B`$$!f22}i?zn}?G?DjVYBMz|s=G||T)PLtg4h#L?
z1D(ex#P#2Pm?sO?G~7qt^ShA7_2F<ljNx+v;Z`Ty02JzsbZQWY!1sxXKFwWlgu~m-
zf5%Y%p9t!If8b$lef>!o^2ZX}29$tyP0XUh`Y3NmDwq?-*a|R#k_L#4JuC%QCJ7}J
zO|Pt6YF?aPGva($$I<bH{>nE6DmWQ1g&YS|n}GHgCeH^nGsJ6h0sHC8i_J^zY}~XS
zDJ4|}1uSYH;3879fye#Y{beKPV~nBR_ft)1lyij2(!~X&wppC;xt|SGjhyhpLv*ur
zaoN|qFi9|B*G_dn*dyF2NFSDZK($`&x;_d8AW(CGfr0#dBe48LfusTeHj>HW>w5|1
z69lOdQ-|_HD%MJ$Q&%ttaT1q<W^CR~wYs&pw+BoQD%b1}>Oi$H1+?76nF*zT<7FIT
z`pOJ3e9b$V49l{3oYWq3I^1A)E-PRSK#}b+=YbOVcGoUS7t76sC5DHcO$H8@f2n95
z9#vs?+Rl9x(YiS)A}FYJR&Cys`uQ_efqISMcRzS1z>fzQ5LH<C<CKn!180qmjSV#t
z0Rgb%5@^A1-_oI|EhYSYcy&>gdupm5PVexnE$f#JnF)1l>UrR2uin4_-H@7^8fJJ_
z+R*k>>QsCL9+*$S3s?<sjv!NToO*3+P$VYkp0i6(2y8%ojW5=)^#dL5T2W5U9gVH>
z>vxdA%?%BE2BT<iV7{<Pc$VRf&leKr;o)ImScK`Cr^{&(@Y^S)Bf5w8bbL>}K_*Ci
z;G)cg&&<rs%gZ}^h1($k4=MRCa0p6vTN?)Fe#%oOnC}-RnN~)=s*Qt$6gM+Bm!_U)
zY;0WcWa3Xzn~$|L!o2YsDGNJ$**5MK>oq{w{*mZJ9B6(|RaM2&Zee1=?OuVr4){d9
zNMBE1zmu~a@G_VWftZ-t*g%cBBo})jEFz-E5{;Vh`Khg|%MO;SPK7N&1KegPg-xN{
z0cR;hYGAj{;Yyf7SeTeN<KzG}195JqpwJ0)1;8)&qy`l1pkrmtOHZE%?#4e7v<)aS
zei6FqymJ{^F88#wvU>gcHE`f4$sMMdTJgjKUUhH)j>W<#UsDeF%JW+oH(o=S067;J
z4vl=xnaxcxz#-MVXF%3$4CKX9p+ObX*q8?KUbqXW%of@RZy@XjGlulK!RCNQ4PY{?
z0R9Yo5*-~jz<vNrZEI_5TB=1Rg?79UYw*(o?go3bj68$NM1%GDdLOWZknQg2*A9=2
zc);aDqV<p5*>QA;ze6i|wrX&Ro3%DxwF@*>44c;M?CcJ#t4Z}U_%=Au`o=~*RO@(*
z3IMpw;QgI_TTvkUI^iT-2lv}|93<TESa=r`6ZLd;tvQK*c7CTu1)r>w;B_F4XS0C|
zQjFu0z_}Li48EEc?FVpLul@X>Rue#3qQEWZ;ZO(;kdUiQMN3`DP?Tl$-9f_JOCR2A
zS(c|>@P*?9MT8%2(EICFJLhC(2B0wCeTPco>+zbp=QIVjd1foU8Ak57VRyL~fx;@|
zNc~>o5^7=Z2M~F*xw-i{SMXKH-ga$wL2-4g8n@;{+4`VXhg%750A6AYj7HsB_nzv#
zYV_(k&s%=QHe-B$F^Vd%A<;6R*>m(uTMKtxf^GrxEn7;vM7_og$}bM8oLAl-xj=pe
zOf64W4z;VpG~6ZtvASX<z`%LIdysotr0{yx(HC{QzUKW5C{0DM%d$j=P>xSbfPHN>
z9M;=%Zw9*j)Hr5ZYARR(e|F6Z3b1a=eL~@-_-DippFi@sCnbyeR3|4J00#n`FB<iY
z*D2p+;0EAHOsXqFo>5Q;A7Y1<1n*pl!r<QUFNT(m4jB1cziw@;2Q?ZKH61_yArQ_K
zJfKfMdR=Zk0@$Swa0MWdUyE?v=SOo9u<D|v=t#mC?%#I+b!kuu*maCXu-F6!1c2(%
z5G)atuT%Cf!jqSiR*E`Gftn6eK@g^l!V-gbs($+ysf)oAud(X!shDdo%hBB^5W_+H
z$(F33X<*f^uacAA5xb{b$q8_hmev@mDbKo#@@%)F&>G__WX<$+bb$4TABc0r>J&9w
z+OLtDDay(kk7S<E<fxM1;W>dr6+l8}R+a%6)nG+IDFeAdUSsU1=eBSI#CPyBg0#1t
zmzA{yV`u5Z^@<H2>FR!}sHi9{-PPkjKL3jhe|Gs%@!Y3xb^tc}VhaS5rG*6_c+cR`
zoxy#GW!H&`jC|^=w_zvy&%?1dK%Eq1LbU~Y!yxOd@9BC)Acg0$J}DHez)DHU$fPp;
z9>s6_f-m7fHnbKBaIdSQ!v!dIiU~*v@(~3(a<B2O-MF#1w4_67!MTho+$XB{Vbm*-
zEb>xP0ze}}pgrANQE`jEF;smY911!4`NE!i<_dp*TwPtIrGxiBszdbx8psB3;T`0^
zSd+Tbyl(f~bFP8p9T-;&k##?CSD2E7<OHQTkCv?hLp%w@)ob+XP4-&|8+?FfrT63H
z)YR1caiA*psn@_u0?R6xRl%on4#5tXWwEoZ*ZbiuHAG-Wfj1B62vD^(lNG;zu{JcE
zh6)392Y|cbpPPjsZV^ub8X??6Al{GQTR}Dm{CmmH&d%qzAntq2{CERwt*NPLI4QqE
z?ZiGGJTiz}UXW96QA79zmICygeLS7>GTU~j2T;aOc$6?Z4So*b$S{l9Me*&ROLN28
zdwN+cG67DYi9wZAjOS?`8X6iKI|U0Lu(`WH$kaY-ys;XEBA~(Q2%=;I_|jmG@Q@v3
zlJ(cvqAgurVxD`;P?(Z>-Ijw$W?N2&_^Jeetiu!n32@_7{?6;8E(5u0ZlClE)a?L?
zgS8JuUo5t30Wt=Rx9O4s1ggA@3<+RH@bieeu4%4rL4pNlmQPgl0`PiAr9g&q6;#5Z
zO<eGHfFBs>TadM;9P-OP0!eX#cXWJg^87hyT+g6X!)W~Z>(`(`A#rE^J7;)79jj^~
z>{iID`xcPWq5S{{)!zIE#X;x_JlX<!gwI{~Pq^<0$X($4eu|+3xFPd@!NS=tzu}Sc
zf?^9Y5coe2p!#3sC!nNkfSI|&!^3b+AU?vA;j6rjY5S*U<UOKWQmI_nT3=m#abqL=
z>ONu`<-hnJLGnx2z|?H0W`l3GH3h1J{aHvqVoVYM5x~lqb^nPYE3wI78Yd{NGcwqS
z;wvci@4v^b@ZbLv=(T}fkAC(7J=wM|7Di4-1u!2NQU3D_Tichx@xjrBuT=jMQ+cW^
z(Q*vNT7xs(0rJV8fqHsmi=rb<XJIh2dftL#RbwEZ4r4ilCq1aVva^?AE;nRgkbZ$w
zn4Fvx6%{SdzlMl!0_Chww`z87?zJ8<LR)oWG9c3;#smys2?+@i5fSRB))w4gabf<^
z(dcq~APZLy=>4-*SwJ?1o)f+V@C1N%Z{8+@_^ibgEt9lVf`0X(EO?@x;x~QChoTzA
z1`T#}$b&ySxS*`f`cb*)FX(4Lqvnch2gGd715Fq)(b3m$-h3h{Ir;?`VNPgTT9umm
zPYoyH>(}Z!ObMmgXM9z<g{mxSECjeZ+{VO`3?F)U*kjvxNidro!0Zb6czb6Da>o}F
zdPFx{p?+NmT#WT+TRUT)PdD4Xyw@QPaF|v}{rM|ce!P-LUX~6wY3ceSoFYQ}2+M!J
z68cF}o<hIF%NSQ3JK6y5ZNr3?k~xwR2P0a4xDrm_P5r2FkaW1W+P(mH#}PYLiHmTz
zSI)tQ(;R+iTo=}Olb2P8k&o5tfh}VM%ME*};Wt;l@pX?0?C^TRLqvpM`Ttz(kadG9
z0ru{RQ8fe)DQYED0wP!h)PseIsg|P(FDaC^gn>l(_z+@S7k0o-+ukm>T1^*n@t<CR
zJrJc(DdSoih`Y<n=Ag$6Sc1`^7M99sVF!@l_|YFeI8Cu5zFMHFG<y|THcCo8Hz~b~
zp=^Nmo~$HKaE&VC_yc}2=ZObnK|0WH>FM}{gt&i^Ea*o7FMeq!pdeyT8i0=q@GKZL
z-3DhC0M@YptE<ybQ6%;>12_)gS73(z+1w0acnJtRXx)H311}G-Q=t8Ifn5(AlIjK8
z5@^!0vfLzLzz^9L=YSQV;rw6>$kiDTN>2{f6M({oS^}^h{HWmnSB(KI8O)vrj+6;M
z1jq`oO5q^?8(xu)i|aiOE&+jrQa?bq)h-D%@Eiq&g{d*&12F^jOIe5H)nZK4T{nNJ
zkVWfnUIqpZ;R1D1VqzvNFqWajP;xV{>Wj2}!DEoi7TN+NNhl`wk@FdFWdQQ{;^ZJ>
zf=LgW1<uw=yTFd{#cfj`Ddp{b1~b8nfgV74Ptw!T{2~(*<<VMy|7Kxk_E^b?{nMqU
zqVnP6M`B{)N(f&3Q{Eqzju$7W5Cx$&>)=WIM&YyFL<BV#q~57=n*{BGax6CohbmwV
z$<2TX@dlX>s(Aaga+@*ms@$SRd3w52Ub~m`2ne_Xr~nl0bF$|F5a1Ry*tEP3M$AyI
zc<|3FDk?gxY;0^`cDn4$OFzOv8ByO!p;3cRy5qIoHN@#Flqyl71B3vGrznv7B4b5N
zvBjRuEjA49_%BH<TEl-4T5N3WQ5m!<fD>7`t6{fOXbJ}J1H<p_<8upz=r-0cJ0a|l
zl9RLl;zcy0l$Ua+^AneCsawOP5Wj2pdSxM6y$uPWLEZe^T$WYMM1`yY%gtdaa5@4&
zhZ+RhTJSzNki|wu7Q1g7t>RSa)`O!6Dq2|XK)#@S+)s|;KeDp3hnZ|gkO;8pHpADT
zIDK$BFoPqq4E>c*OJ^qqSl%GnqWWGOq<{hiH#W-PQUs70p#3iS7<5wv=@+56kX0;U
za3$D$coP`7w76IeS2zJ>F?gy#`T;z~6!Jws{MQ#Yh+}u^Z!F!$z-aI4swihe`*992
z+si+h7Sa6$ECF2Lodw5b_#7-wtJtgZtzBJ;3JOVoZJd!u^W0`;sQe0$0Je=l3ERM+
zv$3(sNlR1v6GJ75YHfQfX$<`>+67>a7*&N^0!1V6l={lbTtEzi;RrOUPr@F`wJ<9i
zN>dQCfDE&%-44*@nEGn*L5=}v<4^aEB~48;L3a>c3o{u3cnk$pFAq66xqRQAjT2NE
zroW?@p&;^JD``f-=;-Ky247!NTj7^6D4^J_{H3%M_Mm_Vum$wrP=7yF;Yb4%uFLx;
z06Lyba9Q-yg`}cNR(173Fg=6Y6*iH8zK9?kE@)5E&=>*&r1tXS6r>5z32F+;fQ*Mu
zlS?4p0FMJb2@wosp0`Vo%uxlLH1Mx83otuK1z>XcU!loQR2r;twE^>uzP|o>6%by~
zx&s{&oWR`%JcDK^9e1lM!}tT$&0!#3mqCCjQM7B~f+WsUiM}h`V9}QejbVA9O;uN)
zlq=j=%0*0zQgNcRS{~9m{RWt#4&{zwR-c-NMun>&1pBKH>?!&o>4Ku~4GSI+%56VG
zuDJM*?%)<L&qYU&-BfU*ExGdTwRVZon<MYDns+fVgQ-o3myfk8Z1t>SyMIH7oPGr2
zh9ysYjqoo%<6jsF1UC>^X(fkdUnwCrZ+!;ZLU3Dqx~3`|(@f&ZwCLJsSzei}xruxA
zO*pY=nf>3aMfd~+fV04O0d12ZsoFJ62*i_@@M?9u&0K-{CrQ}D5%^L-XOKW#repwc
z9A24VLVS&as|9*>bF_>Vc$$=_(*zUnD@?d9ZFM=hcCeW_IyqhL#5VApE89a%!~oH2
z7-??43?W_z+(n~rK+u$i(=-%<3b{b<A5a1PQLzH?zbKghiJMUQ2DH}yJu4UvoaPna
zrEJ$(;19KL<LaD3VBCe30To)VYA%>U;gmxg(Qn^|N`BtaLsL@|7PHF<xbWa|82psr
z^>KFoicIOYEQ3daazgqHnevb@hd^&i)g~bvmFyPks9IWJ?%Ml)lM>t*^i)(RA3<(@
zKK?aSC?^Rsg@p+V5vtAEP%1MZZ~kATJV<vfk;9`XyWRh<QXV{70x9c<Xw(l9!*Nmv
zEWsG}RolkU@Uwt0FknzIxqb41@`bHU;Uj0t#<xJq7n*0_FhQXMxg_C{=UiYtV5Fmi
zxU&PyK>~=yp!(dRh8Gp;tVSqOP{HE;dm1#Pt1I7sGE5n<`nh5n^78Va*g(w%d_LqG
z`J|-;x7YB9h6&2c&=EDLMny2dunP-&gSQJdT6r)I+o3>@p4+E$;8~!H0m_K)CGa~)
zi;VtkI_3FL;m?lrf{zHuJZM`4s&MK2aEj4i7t$9va?T+ugX#gCSyKkk<op6dP&!?I
zqzUY{I1RNwq&$A?`a5t2YhWOVghGTvr`#F}qFIgji`^F1W(T*CAY_WUbrkPEQ0p$u
z&qE_>umR{E0I=G3&p>P1g<52y(xGu^C>F;EoOzv-)4KmkKSsI$;O*UQ*h=&oUg!y*
z{L^6qM~2?1UWg(<ji6CORtIhWfqGV-McJqjA1*$=GsKe7QSCUn!Jp6nFYLkpL^0HF
z+^J_+ltEDmd<VYw05JGiaSxS%*=qyt^ldaW^K~SdjH~Ox)=Xn8o7T=xJjI~LU}FZ?
zw6>}$-3zD+%^?SF4tGXUKi=~^2USbkZ5m!4+XOaYVPSs$p@D&cRl+by(1ZR%5K@ZT
zcjSpNfwt?2EnWc)Lqh-o^<^fHa5mijS{<&~Ofxls*aFn&yXfd9hfgEcw(E{$PXH=F
zk0Pi)u(QZd#$-VuA&AJlTwIRe=LZS`?wv6ZS28lUsehXDK(ikdAv`3or3f?zG;$7R
z!l%G;^Z>vNWL^kwgM)*>b1s4qI_s0E4(}{D&7o5Y<q@BEJcc0loJ$KfDtddD8yajg
zlyml<*|D|VxN!sY$EeH|z{l~Kb_rHcp@OO$2Rwywgh)BSU@#lQ${n+x19QW0lpdvV
zTW9A6_`+a=BJj@Xs;IoK9IWNgt^7Q+3JI9Pr46(wrVwo)Z6L5fIjvEkT?Sjs0P&4%
z0m@8IPY(*&Eoc+1sjjAgeuwfwfcc3@Nf%JjgGU;YKuk=`1(2lmHn92Ae^XaSkPGoK
zGh2YE1Zck#XlE(F>w?D%$qZgJfYkd-&<YD)UMRO4fk7h<01v*+OaZFLB0hUiB=IYh
z+o;f4(*7WF=@?8(bwK??c?Qq5LM>?50CAA^9crr2BPkUnMWv~pbuWMnMXBftS$Tzp
z@Z{j7K&<)c(Un6%iSm;FO?ebx7J1Iadw(0Q(MF93F@B}<$yLN~0Q?!WjRkd$H;}^f
zVAsY#jMstXqs$eu&pPTL(1#T!=@i>M49nwL=?~bfDy(i9fNp#&{1VuDh1$q1+d|_;
zEhWS$s#9f<12(kMD=y0N%2v(Q(D#6f7d+v#!os=*>MHmHqZ06(5a8yKv8IX71T7Ke
z5(feDaD7Z8LwUfbj~;&g(93v8nhD65L!ew-*JTtG!0+Y0&X4+}qHE%?IFwfjd^XU3
zb>3!h(YqJ=3w2O3Wl|~Y)b8$XAkfR9-YP>!{cmv@--luG|Hyk#mlu?k{7rq`SpOTT
z%lagS<q;0b!vk|16waQishMyRL(f0xb?mHHUYe%#trSCHjh+I%!%P9shy(5?z-~e4
zepG14Q*X-m@^}eNM$lV1TIH0*PIMd2z$QwZ25b<ULq*97S=@1QMz(1d)#L#vQUKNk
zV3D>ra6cdF>_PQtYGNWE$7KST5-bJ)3;|3&=aSCobtN9Pjvp2XFa2w{`7FPCaG(#K
z4d|W$Z!%}VGv^11`bCWXUmLqk`-HIJ<p1^E*Z>)>Yiha(+e&ppZ3ZGLKvfv;@S&AX
ze{gVgU?jYtD`eEs0nTz70eKn)#6W@v$s5p|R$xUQtxb8oMt@8wiZ*G+AtI^(`~~mw
zjceC1NO)Qv)SmnQhd<})Pg)yLUupk6g}-;$ehQ8_SY$9I`X4r&uXhK5*69b*H(MuN
znfb3Z=OL>AAa)?uSFuqIdf=G(xqAk0hGvWjG4LP3;<MjUP)G-sw34RgM_`JfKI@(y
z27CcQ?_jy-G0MZ^2pzQbUB7=xjH0j)1cEd$y2B3x!)K;H&{PRG6Mkeelv$!j^ZCX~
zSMZ##e6xl2SrvRW07%f*cngn#$Lkc-s*fUGu6?o=)@#r=yf`<<4LFA|7aASaEXzD$
z2*BXsNX6bDv~Ve_t7rDDVBEOc>=1q~rw7F-l|Rn^&dqbQm|&M5i?|0}uc9%%)5BoO
z25ja9*aZxhb}6~wafUW&^Y|oiT21udf>%5@SH}DLKg|wUWJ72uT^DRKurpVgcENyU
zQ>|m{+4(t8!(de(gc=-b5x5a^;0uBl&BKzY8_ghDqspT&-eESiJ4irZmX?3u`EO(@
zAc`r=%E}l%v|95C9bDn_gF1ogizMFm>k(_zhd`uM&VjNHEQd7y_<yT+Fm1q2dD1CQ
zK_CY=EBw6utMwsSqH_nJomw*OofMsaB!qkD7kGobLr(4kwdaW}Bxz8A@FjTpV*a`c
z_+-&6QgX$CCx@0pOxv)SsWXIqGAwCLHX~gW?rdg^mO)2HzeSzwz0>;FXo2b*fXe+~
zb7~6QF<|Vs(l`QPMIO`)P_{rlI|nL~#Hu(m6Lf<6oSgOmpF!Vc=-S2PcmsXE&wi5b
ztVYnIin99_!P==TciO%%e8?#&xPmxnCFv&<D!lWF;5veJn~ycd<Q6rLd;=6a{*e&H
zM4;q`u2a}Q?T&n(e<b*Mu3fu^gXGY!t%PmEz?oF_eGobfIM9ATsr|EdA2vDcH@Hnb
z4`=7IKcGRH{|E&Lrl$?JOT}s6veBpk1A%@EZ1?Q_s*`9KY>#Vev5wRx3op6y@alh~
zsyrg2XP`q$0jKu!suCuII?zxGz1-JC&!B4qQkO4uRM<RK1C$ROFO=_kX+1|&ywIa{
z4VI$$HxLGaa)$OPXexw^G&s!zI$djPP6;7#fXBD1s+UL2V$dcCjN@HGLeqrYdbn~R
zaiKB^ZQ7xVzKY;MSpdu*0_hKyEZ7fDLdoUcLGCIf6QK6P%5aE@p()+&+>>&N4Kl+v
ztP<$f2X?2gJm(LfL2yIOL7*TzDp>(87eejBt2DH<;DAkpE!`k(gOhK7yzF`Fdnhr%
zvIU#P9fOVh3l{%>DFS>6;PLvODEp$)dSG2j*t~!xI7tKc`T~qkus$wfy;MAc`EDLS
z=Y!+qg{o?Qoh=9AWlR9XB1~w+{eQH8lw-jzjTUebXw*=lf`bVfZ4F=~4OkOFSZm~z
zv$nQ=jXvu!X;i}FaE*hFZ4FctzU)8nFJu>%=sz13xQLe>Ps?lTQuFiMCnoAd#=Eaf
zNB)nzwRL&7qUiB+@QJ`B+pgq-f0-Y4(p$Z&i758Pmw@P82&)=IJP^nKjtL4?M0XSx
z00XaU0f=3YE-hzKu49LB2x>Lp)K8U#t*Go!rQHzBHQ{t!8-|Q2b}($r{xt~lI*@|!
zF|8@(>j*<Td-cDTQaaR<haVxo{}&}-w|Wnc{6z0)*;h6ooCBx8RD&>-1rD6es>7y0
zPXYa3?`=7R*4F1-F(%}q#>M5j#EqQSs!%aIJ{Y)b?Sh!L1uV)@>%?Kun%x$DM?=3N
zut(7G0_^}$6nl7ifh}zKFX4=$z#SJtA|kL|pCQbZT)ar*Gqqx%AO>j}m~yx&IjX2F
z3dhZ@G)9#nC+3gE;-o6)z*2y$H)4&2j=l<`N&d~$sw^H!%`l;Xy};J)u@cB)Tyb&*
z>Q-gi{QUgUGV~1PgB+#TM^1<nWHM;{Tb^?PU76OS2`?A88_CGX?%uWdOQwJ9SPTid
zz4imq-TUW&4__iUa0F%&0r#AvDrMdA_8D=UoMhiuU5+7h9<pZe0<;2JYinbL`4TbF
zh=-+>px4926u+vj3)^>~U~7}HeMbE2m0~b1DI=f5TrUs%J1NuvsYkWiPla>;{mSeC
z%QwhZC>>zbrY?-Q^XF?Dn&xmTpv|E#N(mpV!;NTu578j<!r=gh>e|l9Af~^=6el=M
z!>eKYd{~tI`EbYc^H(Ypg>#9&QG@dsG4{}Iu4QN$g^L7kp!ie7|KeqysGIOWZH9*y
z^T0i6$wQyag)$U+b8fr_Jsf-=6U}S$gX9>qiFI=1>&LU==6Epv$dUlN9=(FlnS6Sf
zEG;l6Z~cJJMMSFW@x-}-!r53t$6`FmTuvx~**y(XOS#$0YqOVk50$C`ujb}LTPR7`
zqNph&aQpPnm<`zR*61}@2;iDhp0+IP9BgrlnAgCZtpECoZ)BPO^%YLo!C_0sz^BcM
zIU5u}@xjagWTB%~-h!mJV|M8K2!Q615iM9U8PLe0UBmJ6#_;iEf8pm<AT=p|T}(Xb
zYHa@`xXYolB%n~lf95tIaeB5p^f3;7NRIsZP(e`v&Q#IMso#cyYu<L28r?20=N@4j
zUv8u=RRyjNvk|tzRUMoy4aKQdnRVeIf11&RIuJBOf5#fR{P$aKzNW~OuN+ERqSzpS
zQC@Hd_#cO{=WJE4z*ecyECJmGWX)wgrTf!cqd))s$P+(`%!10Sq@_t*o#@HEZwqDl
zEU&Bb^X0Po2KxJ9B9^|%2%zZkLisiM_1o20_H@h7Mnk;*cx+IYYzud3v2`dtL(k=n
z14}S?JX)Xsz&0t?v4J~?I(^zl*nR5bDqT)?!Sdcwp(1kvh2ZwBUR-wlE?O2`m!tP+
z=t}rC5jh<PMUk#L&~q=m?k6n?hUcATKSZ29zw}b6@hiMahT-{<Zzjnz$xF)GX2C7X
z9{u~}7sH~_-~V1g;46wu%&OC*=AKE`5K$t;#?@*pL~$LQA{qN%dzk>mO*v~9JXUB3
zKn`6&l)D{@L|kR~yBu%+>+(0;+?c6LJ#3bzCFce@^2^-v{+t<We&Zz<=eIsJeczL!
zq2!{%84@zD^?>_xu|Hzi2*16^iMHO9sxY)8XnZ=<W)+cKAgrgV=H~b7fLGbf4ewe?
zbpR_<?qsaaZ!Q0qSij%hdNJ6#Cu#d=(WAFz!=o8C%L`q4bA7dIsDIMibLnU%g^RiL
z`EC=bny=_9Jq{C3Nps2_C*|LF6O)AWbX~rFt{wb|ha_RkS&3=OlfQ?3YcQKGi({pn
ztkN{G!Yy5==*c*Sr0q-qIw8f<gDWJ1nwR#?cbk0dM+Rl-3Ci}H>vx_9$#j}p->X$O
zrSq3lSdl^-DL(uiH!Eq7JmCC#-$M2Mi;3~8LfP$v_4&Q3PgSGc>c4mtSyd){vB|uS
zmq4|ZNun2P?~>eU>yINVzcTq)LdNV~{5#F|UmV{<p8DFHS1o#1A<f>qVL?-bbB#^^
z=2D^Rg@feEEbTkyTNZl@2Z-=2vnR(#W)w=y>4Vf=^e0Of`bU5AT`Ui&s$^g;`vX<x
z4Xe!DHX&CErvq;(8aEpMkCrS#H)U2gp0<ie%ZMH3I90R;R|te==hyxjjjNN<NbY<@
z-uRF0)D^`<_Id|F#ko5_WTN+3=h+tvsdI6}h>$IIPYw!NtLJC$O3FSLq19Ep-8#Ov
z$tusmQa~xu6LG|C_jcn?Zq8Ux#iZd`S8C#^g1Yp?#HsU!CAmWy^0KGQkK;Rb=tNTq
z?di~SJ;wu#f<DJzVI&K!|LhdqFA-_fdvUx#M83(PQpNmnv_a%fhQs?yx0#ro)ddzJ
zgMjEseI5i3?m!QHi>%2x%K^4sXDi$N?0HMKfM~uW?7}yB1c%=}rV2TRT0eb#fgAT{
zFv@R4^W6MNSYGMu*xUVT$Gh^SJ`b94k>#f3eCkeI8R!z1U8kMbU-6UXc?Q&ENA+Hx
zGWiqMc{_|zo}WbN+GKA}VB*D4r)6~h#+Jbsr>RTR2JO{*O6E*|UUkxh+?8CT=C_;5
zE8^tWdyo0`IqX{YE4R0@ki4l#q~?YWhK}GH$=vQOLT<Ym5PFJER=VvN>A46xiv6Er
zfN;WoN0SlVjK=?YzP8)E`xRC-T$pDy_)VIPOz|36vO|zYuMbkKKJF%@(K3b1e-hYl
ztS%r^lyD0r78OWw%6hrO3P+1pEnM^{bX$7ra5CA0Jru<rBUDwwMK96wsnu}C@)mVy
zY{3J^S>4YKo1r<1?jDu$J|#m|l+Wu0_GiB~&^u%7U(S~vle&==(!;z{bi4a^ko5*-
z2Q4L2T2*)w_wgmv?q2U~M-LO8dsksE+!dVsM2x(FZcaW}HKW`8_CJbfRSpa3uQ1;W
zRk`h{q=&6`aJ6q{bzMeQ>Dh5!zwRz}zc`|yC^k8Un5FR3(M06VpJr}GQGyHm<)z)&
z=j6<M3A#-iemFa^S*ILYB}z0ZtpgNBZ3`L-cg?55v=*Da+}&<rlO*Hr4rVn7c<mS`
z-x?BVby7^a;4n@!Gq*;+3`UIBHpyyGJaA<Z5IAb;f2L0{dU>jIW{}0<mO+z#+YHM5
z_>8+TL0;8Oay>kDg|I?GShJjYE!A^z*vOish}C73c+7I|TtlZ8cRR1`S>|{r$gWkI
zkT;Ml>XlUL9C@4M6_I-<+ZG}68nOppBH^tXKWXg?ZM*Gfns;g6_3+4YzaN_=r}j^2
zx2uB^vQ=R|S^s#>G>Nk=RS26L|DG|MS_YAcjG1~SO_V*WHJX2_xg@eL|KYVs8je^T
zWRU%;7=A~wa)>EY$gBrE0Cd7m)ij-IzMAsPFVlzrC~VRAJq-G$BQW{nmhcnUBkz}X
zQl&}IH#}sIT%(EDXF@q^!oopm?XmrLH~@dVk7YE?TheAWnnU(*<33QK&AOhfALSHy
zbyYgMOQm){#h2i&{lVUDRPQ0Mr+HCD{-iK>;vaK$$sTc<XqH61yTNByUUNSrMJmlN
zP=CjlC^uX8St)blO(IX!Jug*U$e;9dJUL>d<6=bi_)!V8vA@IiAPp;%Xo{u0jUK#C
z5~<?-IOX6uo#P{%Akg_0l9(rbmEDfmVtq|#+zjN__ny8K=fv07h+~6E`4R6)o9N5x
z6aCU}hgB|5g<saMPt%)qajNIii5t@2E>mxldLA~&f`deBcF@*{z0*3ueMtC4`Heup
zlEABS`^9+Qx9(9UA0IzatljDwk+BK-(dyIHx*N*vBq?@mUeJmxRem*~%UqPptA$3L
zLBQ*)+SYGNF^m0Ghy97k2D=d*zvAc)A$JOMj`Hcs`-xCdjJKN;b*CpHH|iaw8qkuK
zrjkSqa`t0|szNV^5f6=bUNjV+E-%n7z4808t3*onpI(54&<i2zRO90Jy(_>o?jxh9
z&~^vsKMG(<^qto{aJ%KwDXJdjgJkSnUSuQvILyw&Gq0WV;=FJw?|QUu2Enzq4zsu0
zpQzCAC9FP0$?!*yIKHC6@49RJAh+@AClg%9W9{QYS|S<ec~ehXadz6PMz0_Ho!!$b
z82-BS&%5g1s)anXIV$<xJsLB)N?WyC?dX^3^ZFzakrRvuMUyc^BRx-YyPxt{&B!_a
zio#hSoX_Z08~RkQ8t-$)!s^E0Uwa@|8AT9dM)7Bam+9w}2wV3YQfVcZoslEv_U*Ep
z9mNrDZkX7r<f0A^jfJZUzj3gM6uEuhr`~-9ZeZ=ZJ&fWW*F0-h_sg!o;m1m3p~Wqe
zQ8?V(AnbmWlE;OwTUpPT^)%J-1G6595Yod}JC_LWS`zob-sT^9rT&Bby5lT`2Hs=J
zb1zZv;_1rqm9A2Dd>D95QZ@QG(;24nnreoaT465CY6iS(Q7yb(#>oCo3Emhk^-Sx7
z?%Rf4NS{yMBKZE1Zf3r->6klcYlV*68Rn99y_c&WCO9S&=UFt6{z-SVLsHAlOhQjb
zzxgkp@4Dtry#8~8Em$tc0sB3R9*b2`(Bt&C-=w2w9bUwvzQ>V~->ORrCU^gkNIAfd
z80dNHA3f=DQ@6x&eR(OF{BS6WS0`&wwd&%SRDJq<;$xtnFdDT5WrmQ4v-9pMn_49f
z%}1+!v32GJ4~3i+DwS&ON^J+`eDT7ktaOfL!wbRe4Lh@?R^<wLO4XV=nM^V?PSyE%
zgSI1Lj#8V<bICnwcY)}xrrAAnDb+9!+I!U%fe;Xuq*19ldEgbG76%^oTPD3~`m0m4
z{x~~L@7Wmwy5G|EkIj|nV<$G)=cpSnC>%`qMdX{+B`s6lxBNlmsq%84pMV;+Y3*`4
z_jGl1QY#vF*VHg^Up-E$t2x$bZg@{3HXD7ZUr_6@GVZoJWj2y<-u_ZQ#n)@;W{9U$
zrend_F|k#LKTdq+c-bh+Y^vk_2bM%xxfpW60g?#Afav4u9m=<g_AVE@e?onpDAet@
zn!YObsbLh%nfIx_*=E9D6ot0!c8|5{WZP{7gB5Nwb3}7x6_ZBML^@2_jHx@znivSs
zb}A6<mOna7rwjY=V{~l>Z)vIM!P&OX<5d`terSK8b2-7}?$6v$ahbqNDHTf3H))ic
zvo=*qL_NQhPuq~p?rp`jGRC@-*5t)*n&$Gww>E00eTzksCd)j4raxzQh^U|q4?6=F
zd2#SVMG>2uGd~KVqS8onh_9%sOx{=g*PTS8p@x(M)al9^E-Sw=Q5z9(Kz8JoP{NIq
z$#uTtj@}{V-r1j(hfV#w@7~B#DC;E6d`Z2Csdx3Db^iO`1B03Fp>Me3h}C!6@$UOa
zk}eQvz=1DtkxKqJkmEyAECxr9!%tUByD)~haqp&>hdlKP*B|%J_BW-IH^3?1Udn%B
zoGK(j_JB*!wBx`}rzB*nmcHHKF<MS`e<BClVMNfoobe#4pkuk*Zk!O@dyz+_H&Eb#
zq&%NJLMr6Kq1nQ!4KhtYv``iMh`Z%O-KB@Vlt@&^cozCl^^tg}SbV}t(Us}qYmbWU
z%Lq#^R+`h$sQG`h-Y$x19pFDq)b@EJkwW06i44jq56R;VN@HPh$s4lG&F8zYY3J5Y
zvhBj~o=+%i2B76Kw#aU}%@{M1zDYLQSCinIp&)iDw#(uYFj<%SBuomIt?bjvVuv)t
zhm}=&F*Q=l%j1gvz{lsF&dQgrCH~QQnkQYKoVVjszSfRT3|O>{+Lf;f*smR~GTxi)
zPRPK06A;aE%P#(+H;sd&NdsNuta>v$VbElBzNF6hhq2K5NW71X@ZoRHy-b@1{d)CI
zt(H7rpPlU&J*8qgN@*)wQpKSOp*xZu3kUfkGDKn})}7h>3Ha9XBSJ+OeFDsm3TGD`
zJ93PSYQMK$ajA1Td8dYIZx8UZ`c8O(``Ko6KK4}jM5-vr06U2zrbQLEs=DgM{c_bO
zrZaLfzlQ6aKK5wV9Jbs|8&S4joNdIuE+Mw&IvbJ{JwCpXLj5YmWsz$+Z!cOS-Lb4P
z4Eg%%pKuYM!pgy?)Jo>@_e=g67G%6Gi^g2<twy8vJBs72IQ7OEgtxtpv6`s2C03P1
zaC9r!Kj8pAm2I5u+r{zXc*vHipJFicBL2Y<bK?D$sj;@cXq=tz;~C1)Hye3K8f?cz
z&^vWG)uVr_X(Quhtlx@X3{+S(94&Wf=#y2=W^E5PBX8GA6d0mWH#KQwIF^ZT>_rys
z9KU)+*h%O5d89#a)HD6<Gg6UN*!HhNo1(;V!s_z$n{-Gt3&z_vH!D{~@8et0<B3kF
zLmbvSk`T>epN9L5yzVSED?ls-`_|6xPCt0q&dpNf7HsP}f|dknw*0<*NLYH{;ZQ;E
zpI(17x`IsnMVmfKr|4ze58GRb>3l8Ou#=#v_mu`F{=3ngP1%C%Y~2P2(tA!~?zyw4
zVS>D-@zImDr!&VT9~AX^S^JY_uqnyo`x#rBJuX{m2$p2&c63g;nr^-SdaPw}Db-z_
ztCB<#i41zPRB`FK))4B;EBp2S9f}wFg&8IbwuK6`$=;t*mu2*#lZ!Nl?5En<8$zzk
zE%?^&>O89Y!1s{hgNT^&=AYEy;JvPU7io%1N&b;839h}k8T+_*^ovo28Z~*Xh+baq
zzVGQ!v-nDf%$xivu3vA1d|aHBEwri<N*#X|H(SIP^sAj7M`qh!<~N>xf*=s5;<W#e
zJ!ZK5S0x9zc|4cX`1r`>XS58ZJT&TCB8}nCKYf)fJT|yD;xz5Ay3!8N&?wi6Sv@t~
zb|Un??@Vu9prXuz<@Rj-?KFSW2?y7!qXZw~82zQ7H&SU<t;9uA*&pZClBejbj7rpq
zb<$ySg=P*iO&u3`<JS}N3x=^)_U;G!jo5F3C@(7Y52R0i>ov=apVgdowT52uUar!Q
z1ny+Wn8lki$5$!I6Ay-suVhk&n7WaRdTsQUbw4c1y17qhRKc<3kNdWa0U4yrL5nZJ
z^jn(2Iby4<6I?lhkDCbMeq@xySOiSC9F14WYCOJLm#pwY)w;^oHtnvfp*R1w)9)5W
z{^wn3=8NIiuOg_^RhkpTx>2VyRTQ%>pgX^I_m@*<<`RuRT9n*6Mf!di+hFT0>iWr~
zPdUG>d-?f%I&)ZsyKde%nkS!h+&SD03{TcMl?^w1_vNklxQ3NraHs}jbY4U!80<(G
z>CL#d2%RPpu<i!0A*DN<><WXhRQ8r}yVG<kiz3XFkzeJI^6_;vR2MKJw<clLi8gRh
z@9Su5D+y2D+x)yuTFZilhb`ft)>9DkK7Y9Ou1f5{izf<ar!Q0Qc3Gh6iYGViZNE3%
z*FExXQ8$o_(K9`$JeHK1w=7iel1a4XSdDvjS;IEaF?1IvrRwB!jEuFZu^KW03jeYX
zxdxl&t6MMXs@t_3zx@ylHt5o?^<0yC6RL4D2l==Ml4RaQ)Z(b61F0SpO9v}Y-b6nJ
zYlgWxjhnK7g~LnC(daxANu-p0WCQZIeVJ#{Qhux>TCD_*d*}1z3EoJYRCS^Kh)t8k
z`y~cNhxM9vd>6;<<@XkSPglQB<yo!3hciMW5)9IRwCYiXiPkQ!HCZ)xt?E5EDptNO
z!JRLj;ylRbAg3U%gwLwxTd}d_g%^0SyXgyC0N~KzB&B|2r62H*{QS^2!(UU5H;V(d
zFQ2@99`>U_cw)2UNPkhgE=SU=ZszOvOs%++nq;ho!;|9e3T=jp6N4mf%s(r4FCq=3
zrQ?*DBbN8NgXXgh!lPTF3I|E45TEZGw4a(jaSea<L6<!*I!|Qcyymy6_Tz;CojKBV
zCfMge&HOowhU6ddpUJVpzPnf*o=hRSb<aNSOzr!6Jvf=+yexc2UL)yBb}T;LqH&SN
z|NG}%;$S%jw|C5XOec$Cheif&Ix25fsg*n^MGf91dW}~aF10k%PM(;_Ad@$o*UfnB
z==|5l>)d|bG+^OL%2$=X_A1pPEiOjTqUj~|JHb{H?VR3doM%HlR*KkkS1Cg$Ds3VL
zn^xMZWV1T;_Ay?l(v*tsiQ~8{{D3mAWROjzT85w#w+gROX5sdA>gP)vKAW|NCCE8?
zwd^K?;4(t>lx-tTEp7@^%bcGKW*s8cE?+f|dVG_S#DXd2PB#0DrBhpnyDO7QUT3`>
zd-A2qZ$=wiI}8e)%PvUD$8YcFtInij+OKTk(5m4enL;wnZ!`~o))RD**05SM!98eN
zx?yH5xH3=pPzgh#&#&q1D2-yZ^o2&N)FGO0=o`iJRV(~FBNLWMqxjtovGem<V;UcH
z8C$7&e(W_Oy@E>n$C<9^TNn=SS$Oi>gP+kuPIt-h`-U!#b1kWQp9No?#>sKtWy5~A
z%GRyssxn~s!-Z%ACYD<V4IT<H74}j7f*vV9o~q=jw&=TO`u-}HeJig2qS2_kWZ?lf
zwK$dk68r3&m;Zx9)<`ig%aC_12MZdyOw|-?n;xYm-;viIO$$c1pY^KL-J<3eI~yMw
zG8=8skK=R|ADj{^<aH0?U*~T&xccpx9vg><SG3bM)+){{gHkp<7h_23+W`{>ZpP?h
zHu*R<Q>4`EuEQBrt$pm#a*H~)=<GXQZtzk}55@;4$-~)8pQ7h`iH*Wjal)hWtG)cc
z51S1fn^X$@Q{kR61yt`l^RHrVR-ipfQV!T^_8lt4ee+Ykpxgbz^<WXtb^&+hciF0c
zWcV}cq2GdLaoW`T>BIpHgc$+R1LKyjQ-9V+r7o9hu!a^*Z0+`D%KN;*`C>Xj2#lRZ
z)j*YLY%0@9gfcnxd`dT>v$oNQuNR{&&hmmO1&x}#(XS|KIZ-R_L+#ZLsk<Q>7EwG!
z=CfQ8r`^gc(4ufN;F+VNZ`VB@BK0bQRgrt+PcJ;FVsYMgbGNIiFekNrzNN_KDcgZr
zn({Nh!8V6Ek5~1~!wNQM$@hQPa##IVF<1OMs=`NJDk@eZwU;c^^BqH%2RkkLx=mW8
z8$TXz1jPAbUM`hR{0?zSYn;b;eCaB@S)np?PwfE_=>vSVs?F2OgAEaZ5Eebek>Etu
z)NYF$!)7GWtr>blL~!U84z|#j=I+cf<9hE_tEucO277Z^)sNL(3E11}kSWLlU4Ivo
zcLdkxnW?bv_y<X27zR<_n!n=FSz6O|K1Vl)!$qz2@W#&h#pefEH83+ErQtXe8lBRz
zU>D81(Q~%>eE$?she+k}J{b5TGejnxO45Y)PC55<!rGk1lBBwbe%j{t#d9NC;%&eF
z2|OHQg-CWQQL#I0DN#n@eeY^*`(Q^jze~?)F-8;g6OYGkLhFQ2q6o?+XEOpe(A^Uv
zEol5PCN>ZGR;o99;|r`rPdAq0<zLg_Z`CX*wDzj5d>d*mCl}an-RR|BSjs1~`M%cE
z;bKxfHPK1{{t(#X?>$Mhp;Lxdsuwe1ELG0h{j{CmB>qobJ>S;Ub7?zZ{~1E3#*Y^>
z$)qPvLdPmuNeLc-9e>9TL%xKa3CC~H!^Sup6h~*ZwfRxYCxp9(kD5l{^N|!=EA_?v
z%3~Tv@i`?wl8GjH-5hgO^7nbwM(4kMvT&pF&+Syx7~r80cKyZqc0S!d_F_pXwB1<l
z=3cnZY21p6ugLVyX)UpnxN^n1STK%^v_g86?U8k?Q7D0$5SHjy|NG78fel5Ra@@4M
zE8lBwR^E&8yceTz9zAzabF;*zZfA`~e&$Z<)zaC?7p9~AB_opG9t%}jbo&ggl8k*6
z@}%`Y@X<4m*ffr4{Z>n5(fRoL0(Qqk;|;RC*hAM6#K{s-(%EhXD~uVd(5VGKi_zOV
z>E@rCbt>kvuH`Wv9<)nDh*U0@B)4JqSr@XCIyJvWOVK;6FKJ4DLcbTyo0W1Jo@nWf
zNZB@aG|)PT+pzPgLR*xwe=4K?K02N4BOm8r4vqiC*JT)-l}l8&b8jH2yIOc-k=|y!
zoUqxU*8OvFPJSvMZ|fV_Jte%cmP%{TM=3tWoKnbf>r4=OCv?A*OA96i)#0Tx`o>aj
zexdd!Y)`zu?>(0svtc;nH|PEqetR<{zO8dGouRoHDHAr<J5W-kRsBr(F!nGp_$phc
zzTLUaP(qjRM=^^%#<BVW>%uvSg<n|eSP%WJ!mz0uIye`D(rrdP)*6=RYIpY12$n4S
zJn8LqS3M}!s80^8x~{Pb8t9!i<nftz@<=;fTb20ONL<l$^LhM9%cs3}f)Sp=qK~Nj
zx0Z6P_&3iaBhxf-W&|jnZ7j(fVmay7VC7_5*pt1OP7<Q5T<VNOo}9g3h^NhYGa7q2
zb<pg~Kl3W5!Nc&6o%4iY<D0b+-=CW{wpK)xYlgq@EDkFMoHF6f(71^;#CumdxWq60
zc+4}}{^Q*Bs>#M8-J1QLK!%I$o*Z<_`<#mcSd`}*{Q+HvsQ<xMNZy;?lm2ewQ*{|s
zQKeAwOTScc`GJXbyj%eG?}unUD(?E_l|kta!YT1{r`!XtUfPygHr~t#^s;zWv_QkF
z+U@}R3|sggrOa_I&p2NdshHhbe)I<RZ|(XmMJSQ7C)d<jXHYbDWa6xgv{exE?}lxp
z;%TK-*J`PpYM&mdxIE;y=99HmaQ%K)Y*xTOk}8Mn)}%QYaNl+7Z@co5lg`ZwOfD71
z@-T)D`B~3MV9gDl2KVz|G%8}A?_kjrJ7roFo3k>zKKdbi=f2{gx9jZ6RKz2+R_(9M
zx$qU`M?_O1mBt3&MT`UYx)g>~s}7KjLr)Z8x5VY{U`s2xOerQ=n0<MlgR%L;%c%}a
zLX!llZL)htN?N<e!CAhSlxWn_PBf3s=hh6U{V&R0Ra{E(KO|A>=raE9+7#S7hyB5m
z^aYG3+Y;ny5ipcF5r-};h-Yt`q1_?XdaSZS^$y<@|1)u;TC2;Mxm>nIj19$Wf=9$F
z8aE>jHWQeoXX{^2!B*urRb_%gR@hre&}rWr(FU|{7hG+{ZT)g?m?Lp#vyxqqp840@
z{)UMC+P=xE9CN2-gjoV10jZtT$GH(f*=t%jWwM<HZyU}I&fdh!H&DFe;uIRNt#B8q
zw+knz-|igk-PM0$<U2soaM2dRZKg3LW}$g0YVn@#69@ZL)!}j``IC`{s12hnYB`GC
zg9Pgf<Ajuy?-wifHk4BoSM{3Yg)-tcdue^RHp22zU8&^UMn%cPWIx|)m#fd~_`JTc
zIYjj2Y^#EvD9=*tlc0lnLq2|a0l8QG@m?rxElz0BN;mSO>v2X7w8`f2o!d`8kKM^a
zCz$dg>0&Jx2&E0Kn{4a$**M9~tmf+LHwi^I9#=M4uqosXdpNe~E_Y3<teJI?SY&#e
zZ|K&0Q<sc3b&a9NHnJn-&awmG(S?bOA7f$`ogbKJ1!!o$lIklcy+!@A6V1&hBddgA
z+UgP79i^BubEUGI-nIs^iBwwF_wR<V$B4w^ZSnE;pA9>1=VuSA>3phKNX^R8F8MWV
z%uU~Mr`9p^R0OgE=0H{*J5hEHo>G~BmxWUB6@$>4l#sdWI&#&Piqr0|lvREt-TcLH
z_ln)kyQIyO%=x04_Je(@#_?D3xSM9zn(p*$7TRTt4mg%5N3xd>Pim{;!cwak>C;@d
z&E6^3<@`sVk25e`P*tZkUGmsRUY^%%98)b|V=gFrbe63XKYUK-534+_VX#7pfR{t<
zv{luxrc?YtzTo>Di%QbmYzxg)74}YjaaHH!nw-M?oWi$r?mBV-i*i_4EdA7I<kRZC
z6KE<bt~}EgU#ojny}Xxq=Q49nCotLf2{ukxCN>`tmnz`rvMV?pq)L8XK~@!2g*ROb
zXMF#so2)g2osha;*<i$Ro9&L8ERWEeyt9oP(oRf+#En~CB%NLft8ZTt?TQb6$`yGf
zm0MBO+2^hw$yWZ+`BAw?yk-2oGjVwpCpt@|;1t?@;_9g($L|wQ7cBA*yb`igoW!I0
znRr>0%9`#-^SU%-<qYZ>tk@LxUDXetyWW(ksYiD2L<CdvTh_1<d*}SLp+&%kRZbD)
z7w)$&38T#&7|`F-Pg_~kKi#kuW|UG-U{#B>xnfXSlk!{7poya)_={SYOcZ-hW{OvQ
zu1MIx+9bz2o&mxvL0tNdkz*_DY66eKp$LUgTIurYAS%2Z-kwGGS0Y~?<+Qp!EU$d~
z@}7V`htc_<cr+Rpul#`swG_!sy?{p%Phd4RNrz0#$~~ji{KAi8Uu*bBR3x%}+mA`-
z|7h$?!=YRoI6jp+Q<AY2QG^qbBx^{PnX)qqNz!C#F*!uCCxm1<gtA14Y&lGltl?0$
zRI-F*Dalqu9XUGh|8e^AUf28Kov-6D&)m=b-1l?w|NZ_!It{ZKC$AZs7sv@c`4YG@
zcLV13rgt88duOSKGr7Z<au@bzZ6Ed2dKGp@|7;xdY9l{8D}Mg<-B-Mxmwxp44;}64
zDf{FS!^@X;g|bmRQcQHh%`v*oER%b06q$8pWbMRoBYQ0K!bksyxr<zl>ReZEf6fTp
zo4UzC^r?mA=Bzc1>ax0l_O&;8cm=bvMb1tpMCSAaD)P|NvzzwNwMr>;#+E|`FLGl?
zHRIOBdNdq7wqmS_S*XxKrZm;rsA?!Z;nIs7zIvy3*ih#n|NZn%PtoEV-D~&waH?eS
zGNQx+wZ-ElxU;f1#y=hS>)9Idk*oInD^hi-zjJA`#-Fd++Ce_i%0nNbt+qQ(G5;D%
z(t4?K+_Yeqs8m=I^_8dSmC=3bT=oVfB330i;yT~x9jDubsqve{Bk=UHnd{fK+5>B9
z`M*#d_ok&U=H%YDAvfwoZ8~h7B4R~R^wQcE8@@LxEW9D+&jGgjy3Hn3QK>wcf#-fX
z^D3t&JNK|gi&T7yyP308@eF<Hl`8qAqke|n(sn$&$(lQShJ)fyv~m?sJzDFL7<2T6
zgXLelohxkKl&glkkX@lkcB_0m6C5T*<E1x0<BgEx<GY;1&uDe6y?$jR>~>EWvzGiz
z&`!rHy<T%E>#KKGxBoe~R<dZtZXM&H^2W!n7Nq+*KCG_~-9-yC%sQ=Qz}+bsH4^0H
zS}Bs}p;gRsWK(-mRJ|vInf1zk$^25PbRN~zzdEAZVn9{<;LRj1?Um<h_(XH5hkHGQ
zy#HKDNys^nZcxJt+Wmx`bwE7c?D`v>J7H_u)kG!J#n>LK7HIX?D1IS#L|GzLH{EtZ
zh->xh%?0c1Hf(F2QPL`1bA!>oh2<^lbi`UW?p2qopLN>qb8P~<8}~mEpaz}GjN{hh
zIMdWFBau<Zetyh#&{NBF*BS1*$*;xDCl8Np+?z_#bCTh_O6z_;-`ul%R8_ykWla97
zWsktq4$^5(yQn8q*Hoj}Z`|3TGP%I3lw3QtNi3t&31)!T=VDCPn6T;b@Clj(dpL#U
zr(GdO^xA51TKX?+D9L{m^jlI_9*Ja08I@ME_aB?TVKC~x(OUb%YGDoXtv-!b_mWn=
z%>!pnx-VGt4g_o}Ep5?x>%bn`H^#TwZT`0OF4AB#p1>r(Q12wk_peOfw18mMG3(zE
zb}0|D84B{x0#C9^^DW_3Bn9YRWOrniwM9CUNrR3n(VqCZWy1U2qt)`u0hj>m)_V!X
zS76k)79c&RQB+B!no4I{s<S<lnR7k=Y_Dv9Sy-jW>>Hs|hoW(GzqUwSzd|{WSNX+A
zqZrX2Nhu$H4gRd&?ke<z=If-z>A{m?v~OMT1{bHxWH+}l<98n$C7NB2Wr)4}=a=6#
z?}_VWNOEi6=8+3KqTKNMRi@?`=^=O6ZslwE$Y}@W$C>jb<2B<OkIViDk>6O|boN1B
z-sb*)1c9ZgQWk!m!AYC}Z@HjXc?<$bf8;g4+ZJMU`q8+@aUUFX?0q(PFW?)=ZP}9R
zwgr#$*64Bt=u(D$9_%erN3FgjHtRle>lgL*{JbQgQ)%a|t!kS(-YZ_-9zD%@v%D}l
z`zj^lMpf66cRl|h`2Y@C;hf^nMy^%E$W4Qn-?AYzFYmLC0JVUup6tzwU8QRc*Y-U&
z4(~o5Z_JhquOIrnxI|7@>01CZh^%m0``roEthgo4zZ`xDv!&%d=I7BCZ(=;ihF=7l
z79dhZx6tS4O$mC+OaJ#Y=h!F=(Kf}a>Tl4?XjR%bMczi|o$~Opv&-z8`ntFj!sve-
z5&6LjT0ip#NFj#S54rR(m8=rHQbUECMfT8M{X4e%R#0#1x*3UbPJjR9zz)UrVidAx
z)$!;jBOVp|wno4Gbjs2yX#Ve50l{PlASt5Z85xquapg(1>}fIIHW~Oo&gW?lMLW){
zL*ey5tExDpsmeLRg4$tI;%CIjD+PPmPVNe`kMU5Nm!zmZmf;jNWGioe+EEn|$q@GX
z{8rG%RdG&VtdBu18{E$QU*EKontDmXjy=4@WJ`ujnHR11=hRRS+s&0z5%VDrl^n$D
zGkbtU4-qFMiEjB>F&MMq-}eG^@yJ2Eqj`rYXuwP4r52K`D7;Ys9W2)feMtEWjz`A{
zD;v!F!KQwG`<7b>4?L7KBc!#sSHi?vW`U8}?COqm*1a><m^`@rVg3TFoi$*PmCO0K
z*b0|3WjFZMJwIFjR@IRG<;xcYWt+1B0j0&qUr=<bsOAecb#QnOlnKTGJw31S+`GOS
zwk~fF>qe;k$j$^P{C6Iy20J=8=Wdk{x?X?<Uxo#LVJwoWP@hYOqeG_xr3fBkv+(%x
zj{v7HatKtGtnaLMeu2d59x<_c$NNSpD#a{Ttc)$4E_Y%4aDFGMG5+dzYrimX6Fq4f
zva%-hxQgj=!p6lHGQdaFZUGOH*?284uWEOtDTze()1zt~hV@ETTH3A!6hG>y^yzUh
z=%Pho4sQBw?kFjXn0c9HaLf1u0{wOOo^7sy(-x;~ZcYfFAj<>EbvB9U9UxTbQD<{D
zd@HG}^hJc(_-@Dh^D@WEAaV8ZyT+gsmn7J8wn^es#U~B@+%rkWcdx_W)uX#(sb2U;
z5m@c~#J>4^ruqjX_~n3cfi#|cTXPALS9C^Y#C3ru4hGGMHo+yt-q9-vF;AKqnr?2N
z=>?k(#tp6~=7Xb%0N0xj&v@cy-3muQn*aARa7!j-NAk-Bn!)N8MS&2-LB@CLLH7}_
z50Ql27i4BZfzTd%vQtFi1QOyYz!;(ShOukt{3DBkBQLz{KxNs03x(z-Jmaa7_slRY
z!AeO{aqq2X5+KEqLnllMQ>A@~;p^-`s~dnb&V6&H48{;V=e)G0XV0?ZSShl~$`=6{
zVZN+;sOt1L90@Sz0>!Ymii(cjj|&8iGXmhHFrr~BO+$UgXFLHcqtz@GzypK}_V)Hg
z^)KUPJXS8x`ay009T!!ELKs32e#y(<H%Ze#qB|=N@|Z<Hmla8mY~D5_qs>Qit$4#6
zTCNEg{IbyVkZ6KwZB}OXi0H+3PXMmVY;%;}wJSUByKgmmxaub6L-K=VgbX!CpWW*7
zYV7i|(^#52WKoR}cuI;;X{87m)~ZwQ2`m8G0Kvjo1kJ@2c#`B#8COIQ3M_O=v9Q3f
z?}V8#N^SafT%m2vz>o{X_(iiYF$6m@37xE!S6Qdk2vF(P=1>IRXQlK%B3i#6S{eN_
zp$8S`bS7O)U|1Ks)?j99+rEzY!7s1|_*s_rtQ`Ztk9}{ruwr_4!54xPD0|vkTIAQ;
z0S8B_8cGR(^+R4i-lk$+`NF(-{14^r+e2gwcW|(+1WOLP137)Ltr=>?1>b78FI|Be
zLO}r}x(bGgyM~FVIXk8oi<zxj0Q;<pw6sBof`!J(Kf^FN-Op>*b=Ggbo|M$wY;HbJ
zEctbHb)bO2rC1OpB4WWnHU=2KLb#V6DS&QL;EQ8jDCQ$HKcL1xfuMntg;0&d?y=nD
zg6m^xj;jmfq;p@XOqs=}fhslITYAREjy$pAtMAh2_7|CI>UrtsCR|KxJ%_G971}%X
z^+f&pdKIr(dvp@;J?vRa)D)2d40K}^fJzV~Hzo<Nw-AOe3`G!8pdRPsLTzX3)UbuS
z4GiwDtNnb&q~KylDcZ>i7PmHe@en<ZU_=4n1L6X&^aHvyZ%C_L;&bxO@*gO|pU{;q
z%WbeR>z*H^N<^+L1R)$J8cd}#EzKq3ORNof8$1a51m-*_^igdxOK8C$9RPE{@>4dt
z|0X*q@Ss}%_<FT~Ez=s>IrW*n;3c1T9j{Ih*Gs=rz^Gj{u&_~Wg~?W8-Izk51q1U8
zBty&cOAT5BFr27Q^PG39D2tz*oCF=-%u0c~GcnQ1*0u%)j1z%a1M0R{FHWnOo5SJ=
zPUs8BD7XW^M=B3U?%44{0YLV-A*qj8XJ8n>hLHabOC&SU!GME<W3nCU4%XFYf^LXI
z7r;ngUatD}0~SN9e0+tma7rY^#VIH$l{y(d|2{uq)X|TjhTxFs;KUx9unLyQ+bAa)
znJH=@iXRwub@vANwruT`o<39Kzl2#87&-&MMZFy+QxDfn#s&Wl0+|@Q42FY7kBE*w
zbqO6Hj0or_3jL?Cj&woL(eNurJ@y_K=qVw0#CK7J*X-}VeS5nW&tm$**ACzc!+vQr
z@swm1ZV5g%2G&17P-w&3L~{j$IwU1$<OYrhsuiFE1ez0Qvh`+mVnPB`0}+G;@knvq
zM|aljGeMsI2cT#0MFKhj_{yV&3XmOm6&y!g&>^Xr1z)Vyi2%t6k%{vg)oTqe3x)e2
zv$D4uz$L+gW`PnXJ?=hz5sI#X!6Mr6S`z5yL@Q;<J>foJ)>io#m%<qW&IQZ#dM^Ku
zYE^V!xct2RS6$Y`XaQmcto3d3_4UNWy|9GsaxUf}9(YNlE%>d;d)>Atr$S%>@JumL
z4IV@oCoVcPVdKP2OzS9t)e?OA&3XG%Z@)t_dz7dI{&);ht0I#n5H+YgqS2xIB9wz_
zxxr>fEi9B6b!>XESd5{5tsIn3$K8PKs7725h8IuVpMmdhDU8lWM4Ew=ChDTB5->nO
zs9$>7p(19VbH56W?hH{4v@{P}dfaW&lz&UDA1dmb!bP(IR=%@k@=-6wnkZG{Z2-H3
z?d%c+SaYlhnf`H`)-+Yz=E5gKeY`<u!c`>|j-uj4@Y$Z~sV$tA7v+@<D}2vExe5nM
zDxokNiQZ4RZSmmp?Jz9V*v$o%qm~u`w!;B=8r~P>QuA)kxn(8Q<F+TCz7Y}@a4|cj
zrThM^6+~gESEk^FEwym<;Z?Q(y^lYZP3#B5!0J&u05Naw!L45J4k(YS239Qp6e(uI
obU6NDKq669mlvM@^Vw`^|EF)$QeQJ%28d(zXvWk+?Gu6j0YGuT<^TWy

literal 0
HcmV?d00001

diff --git a/docs/images/flows/04 - Invoker Register.png b/docs/images/flows/04 - Invoker Register.png
new file mode 100644
index 0000000000000000000000000000000000000000..571f2af8098ba390a31cf5676ba0cd180b55d983
GIT binary patch
literal 71642
zcmd43byQbtv@X0*6vP0e8>L&220;*zM!G|!8>CYaP+D4Aq+96*6{G}2N*d|z&O6!r
zp6{OTd}n-P+&}IZm%SbA4L{d<*Za<Ro;jbn0-wo0y^TSPfgs3jDM>LU1i5Mgf5_3V
zz)y~Tyt)S8t{cic6+<pA|M^&-9fcs2h?JO!ifhv9xZ7hq)lp>Abg<UWh4m!wW7_>R
z4Vzc=HdB!d)g}$O`Uwry(dOpW8P@wI`PzwDS@Bu9x#qNy^sIsJKBBPZ(0AOod)+y1
zGJo=7SK`$b#zeu!#`T|%UUtV5&Ht@7<rc+4eT;t34@-1$qAg$@5xx9xi`56lV*mVb
zpeY*r@|WnUSCu6$zu!~2ElY%b`Kf1I{|7$wk)-A-`n}yLB_*X;W=+G?elyN|wZgpg
z3R>9@&$P6T|GuR-K0NGK#6iE;Z-(tl$>~S|D@P&Ywfm@$Dzq;}KoFP6V>_s*O&pq)
zle4(H)c5u4SEqhdQFJaXS3}}^{eDhMzvtk`YonEDuXrY0XTpWg%@)b;`Td%?p&(1;
zm+-(}6q}TkIj$3>>HGI|-CE~q&n@b0pYxs6^rzu^wa$gsqZMq8rzNtqi4UIpwi_jI
zS*m5rCpSkjsTYL=2d|9R9yABypinX~S+0$g6A=+<6*_NDeXV!j%PSdQU0oe6HPtR0
z6!JQj{qP{|<41$81TNE_lmRo&WPT@Nc0*LTzI~gY@efTW8@v{}lM{u!+$AL?y{riQ
zu-s=+;b^A$UDj_Q`kq_<USV2=MOZ7ozP<%&E5Fj7piE`P>D>*sCtaAIzm7DXALmn|
zqhXS((Bsa<CGb00`18XS>1t>Y;^LwrX=!PhnVC{jQr+F%b8*X~mBj-V<!tw(+MACO
zxvldiZ@<A34ZoH0K?40z#Ym;?#Y%A_xsd0d@87BT_>LA*eaHoznUT}eogTG(Jme0A
zP*QU8+U#t9vA%G6FR#OFTV!OUX^PuCd{VE@mA$j1Gmh<IE>6E=$ebhoIwpBiQWELi
zyCoh6HnGMp3=JJ#zHI567Ct{r4-fA-KRe;Eov_kxHYvSL!fmy`I$Wq-S+v0N3RZ;i
z?}`Qswdp4EemDAD*fySV)6mSVRZb2rIUXGyHC~*1I69Vn_!COZ6_m9E$Gk8*TUA?Y
zJ6z)b{6pH4xAO}NKF3ShmV*UE97gZzyW{lSm*7y~tVSzsQ>8OUYF#$`ZxX=sl$Mqb
z6>6g)#G&&YF-$(^M++a=Uo?wX*iH%=G`$M=gMgv7P0>?{E^g7KP_oj~8)!N=zr#j0
z!KNHY4|aNlufF2l{g9A=fxy`s5=!XgSq>E;cI#u++p5WrJn)f*lXZcoPoE;ZUdNos
z?Ch+k&k&qE(q!=955d;vX3kqDG4wQk|MU>_v{nicto@!I;fqsPi_7YtFD@Gsu!-E(
zBkwA|X)xm>@1-;MBd59EO?wK&8nfVcmYMgRpYABc8q3k*AiFC=8+{7GEc&vUN&|Bk
z;JjYn6(#(h?ffp(<`EVae)Dy+gQ>V_{GJ4|xxat?)$XpNM|)WrC$hP_%iMT~DSY}-
zg)y8$Sm@=v>`A51#aU%zqfe8rx3~A4vI1D<ErX7CSQgGHKId*o+s~iW=-<3so?o1w
zNkz&^OCRr#+VX`7_?(}DHQYgZdwb{N_6`m%<`ZoZgO(sXIOBIgL7&Wz;mM-t6ksE<
zQ2(|?P(5<r#flS$N57s08$io^@7_I1%Ext{cI}Zg&!0c%(v+4ZLizYKoP2ufK5}?`
z+;D!pf;_OF7K@i1tgs%1y)L&IcONM;$HS)(@;r=YP(}=XXGn>QiwEPgTzLhSqn6z#
zMIHI;*DpUmzo%v15K}b%d5~|?GBSO?e>dO6upO_7iHJ~)$~-+gYthzTHO&;K@Z9_g
z4>FM@N8(EfM*xw@?r`&YrjllLfN^K6)9RmIGtN6?{JV`8XB)9B+TXr?YmP)gK`920
zyvbI#iLQou&yV=FXDjDFu{Q5|7{~p~$eLzxdGE`g<-KO0`k%jpC%+88Im93SZ~oA)
zaz++(UrKZxKEa+HK{jtyo<~*>P(=_#Dw0}CX$}kZp0_`i#c6_SKO-g;p~Z5-+E?vt
za$1i5`^LBjNdp!vOb?TLnCtB7n>9?ZUDB%bDJ*D+DSRmj6E=S-vgl+wRLio)bsBNx
zs&qUEsj?@jc>}w}S(&3sF7cp0gKObUrTimVqa581vvRFc8=}|?hc&H~at9uZ$(<hx
z$Y;I|TTJwMLEV0>LbXD*&N&BPO8Ov+#Rk~vUgmT)H^Q&alm}KZC;0bXMZDIkvU`48
z`}43>X6BCz>+S-Jg-6{T1^si0_ykgSM6fvJ9^QJ=$0-$g_>e43qG(v6aQlI8S{6Fy
zM9n@Dk%pfhLfQ(?VwED$W8lQ=@%JwBnVBg@S~C`}=Zwd(5li%-FX`V~M!i9^eUxKu
zl+!}iN7|}erMHcK{D)Jw>&sY;Q~u}AzsxvCthnpmUrGB>9RKv+yIjMZI9AMWdsZ9$
zrK*4X*SKX~Q0U<4spp%o&(zdRN{5@7>_}>q(bG=M=N0n>Lkx1vzrLyT?q|H*=vlXk
zANJv&-pWM|8#1u6aubK*2Ve6^r|PHX-1&DS%cj0+3tQk3S;TP!^*pgivEoh~wyLmI
zzEy?J<=rJ{5%U)N78i@_=3uy%c)&>gStj38qLc+|ZtbI|f%pB08|O*OJHDd_B#;Wa
zu80)gf5M_9ar&Hb?Al>=$TQ_v|1RhTENG%%kYh?9%Mv4<MKovW8+rg%UV&N!%74Na
zmT8_GVOXMaHzgkUJu~JCzxDsMe#KxH*`cJ$U_sh%eL|WRC503Axva!jUgh>2OKDh~
zH855C&+}Vcxz{f%I5{+`$#e}7!TPCo?yjdfwlwxF@~v0rT0WK5)utjU9*&arqbr=I
zg??%6b@xk$eHEHSa-3J6vbJtXJanPzab&EY0-V*s;Y(>(_e{l5PL@s3BR6M0=7mO1
zRJ3BcK~1GgnZo@1csFlDdv%L4Mlz3hY53=R%2MZj*8KFdzl~E1=~3A-8(Pu}Dem<b
z2rgxtEv2yvFT~p%$8VfR>*hr;B%?>>S^Fmqs3gS=*L$fWhfW(5S%&c{OX!cI*{IO#
zs>`Oj7{=?yo%$w*-#aJ9SdK}S$ooDN4bQw&$kkAEXKta6aIMryeJpz=oOkgo^A5kV
zxwn8q>L3eQXB-jf^7#PfiT5d$%-_ZDlCyYsWFs;Q=zk@e&z%%sOI=##HJ(@|p|QxE
zcpJg1Qa$B`e#Mrt8}Iu!2%<M_uo$yraj6QQg_I`DhncU;<)s`C@-V0uGG^n4s7PVm
zc5|qb|D<$W9;w+GMJK+ZU2b<VyE9OWc}`=$`H_gol%+Hws536Z>_&?u@~Sk!ty@~@
zR*SS$BtGhd3B!yvzHbJ-g!FrA+fqBV(x#V>v2dx<2pL4)U$MQ4f;1U2&YRt|E#2gP
zXj=N7TAW=e($IB+cJP+(W2N2X_@tQ9_-iRwDG^j(N+}7^-pGJ)9P~7a$H=R4l8O}R
zc1L?>Ql9%Ao!|Gm;*MoCKEH{{HB)2VBsGP5;q;86`{Gg&O0gqXdWL!P14}hgU(>xp
zd?^_cC?$O}22UN|mnIZVaAIY=p+pxn{aZkrQu>+_3s(-yuX>leM-%1a?tXcsXF!IT
zMBXPewW(?Wnj5|ugh3Hl)GaU7CM@t#&*f36a%*3gIbT#_x&JKCJeX;JNVHC_=S7v`
zUGrje;rdg0(mzM38+|p`?9`$tH<8cI-v@C_Ss8Kjys^osJRHe|OAf+o<3@glaZ(j-
z^Q1NHO#506+6u)-|NZ-y&&DV^ySCGJ>AQrSK8yV?rI2W9hHjI&0$Puf=L(FdDKl0k
z-6q()i5mArl&D+Kkrf|46K;H+c2-IT0tD+J&V&iJYYL@Qq@fi)RnI8$k@_O&UUrB{
z1_z#k%q*&i1ME518%iu{@!!nirM{G#+`)tr2rA;6p&1k*I6{%?6v>gmJT|wg#I%5l
zR9~av!DuRsVe9J1x@9i)+O4%==IffL?(TBukb?`kG|gQ1EvDps9qpjcXJu@2H6pAL
zmR9&LiYebd7OrgG;dv3|K*seuMS-t|e>o`VmQRYLOtntIFE?qtV;`FhY}9U(SkYcT
z(~-MPG%1Zl9<<?~XqffK1e&Y;-^$oa4Nu0q-C*D$tad(bqa-evJahbL**eHlpX5D~
z=z3NmR%Bm06n@L^S*Zx}_&DaYS=P5s&2w#jen2L>(qf6>UPxWnw+POwH1#PeCsh_f
zK|vP{u2igBw(%oR^7`LUwzW^UWhd!6juenobIKjLR<8?3MkJYIql#p{@65!=U#oeH
zp%#_)LZ%`#Tut=*Ug8m2xanApb-Z9naFqNt1V>_@g`PVi<n%jNE6p9P8|GoR?9G?{
zYUyajde80m_9vF9a9N8{%4rN)3H>Uc!C|RSt~`%*te0dQs+!@$@Bf+HSrz+UE2I16
z@gs&J?b?SMJw$kT!`2H8ezW;JW@^`c5yU*smPW5c3RkS7<!Zzu{yyByNNi*7VC37`
z#aXIMqw{K=NQAO`=jQ0b&DQe$gBUD{{9Li=kLB^9(R<DtVcjf(j)o=noO3lQOVXtr
znav|iVk;TXi*y^sqcXzdc2cVPXFH9{nnji<2lA5(xXC4bOXCZ(K81O2KNe1w6&-J5
z2s&BWepvrzj~EScUGo2W<ey1R<>BH~Ai9$K{-Kwsj;Bs}!1V7%w(%f^?g;uMRFtf6
zbR&B2wb&=R0u|dk_9rylGZJ5tV)7~e+G*&foKQ+4lu`-L=isJON1w55{dGoo3hL`6
z8$Vaf=v~Nva(v#V7BN0bFxIWTwKIv^@<Dn#m7;$@Dtlr}+tZR~9If=YBh%&6-w&o9
z1t;b`rYm<=1V^I!lP6IHO*20(j_0x$YE_-ZIC>8?xT?)9%`ob7n|_v0FXM5UHCj%(
zI3pgpr*$tbAfPN-ng+3>+;6+~Bu(Wn{bvqe;KXV3VV^W}zeN}t(X#3%y<pcS>|V~S
zXb_+g%|Bl_9s28+p*}fU@ayDSnVrtDMVZn)CjFk==2?y>tWq-fYs#GZbGbM8RE?Ou
zJPa3pg*EJRD7W5FOrLjj`#tnk<T^55<A)%vJ3Fy97{4kG9lq}HuL)zXF6u9sTx<+|
zzN3hNX0GurmGJAGA2d2uiuYCdpLe`V;EOb*zQd1JNY~Y&U_5_rKWk-lu-~)4;l7%_
z#*rDNApt4S_4R_*Nj1vjh&1Z#Um4D(@0PEJNCrKh(~9pH_B<$bH!0QZc*(7to8Ph9
zYk8H4n#9)o*u#M20@HL~jsJ8dWarC^*4upQxM35|6^;Zfa3^ig3x8>dB6VD8%HiGC
zt1Vd}c&;hg^cYBuix&pM8<tu+JBm-f%tjD4V2-;Vxz!q_e`3HSBK<9uxWMtfzwm%o
z$gM599{qNv=SJb%I?i6YtdQ@T0_h@pk`*q@jwGT&PiK>JQ3^e4uP@_t6Re(7v6pz9
z2>m4!);yu3QZ0ARPI6p69Tm^+&e+gvlw>vb5wLSTS$~3}P<FoI_nhrkxR3)g1H;az
zH$QX*BgD3|GHvfz4}4?c<MQel!z=iKi8?B9v6ipO)SyxSx2+vFS%S}H{%~EPd}V}H
z&+`yVT(NQeZ05M|+o~rHm2w2G9-kl96=cea_C>_&PdVpaPmn2{5gMk?sJ6)`hIFCQ
z=Ph|oZ^M(FogKVi%pZO(`Z_+cCY%(_e=zPQ?Z2v`v>Z$3lQXb<5fbA3(y2sKjypK;
z?qh@;;SJ99x@m0obn^a_t!d0gX09hg*#aS++)DQ&y7f-G2sRp4m)5uU1t?N`>R42H
zBT(yvEpyb;4-NN@)9IAUEn3FZ=^R)3E3|7}QC6{6r}mOQt&ZZWeWJDWNv07EzvoLS
z8DvPU<iGxBc(rYPE!FD6Z&;&A5^vhPoxt#TFO)vIb1pf>^V>6>?Lm+H8xm3vm2zyF
z-YpblMG6MQ?1!yiL2`ZcKfm_NAhgu{>dV*b5*dnP>ZCO=7LQXSJW!-P>X*yrtjI5^
zK$CfXxMQo8JQJLbR#Uymm)LH>FlS|A-`{7#P#P~IQ0BbaTP>%kxK-QPz{)Zs;DSMV
zWVKN#bn1QV_m$j6eh1(CeWdr3Eaw=8GKxAO*?i~AhoowaB-^XuF|8vU;mh$bSZ(;e
z@OTR4)u-G?Czz%SF(#80&&p~>RI1d7DHRgf57IsJqeK_nR(D(Oospi^CC@~?RLGiO
z=8QJu%9|P-nf;mg=(-ciE8UZs@3l_-=D3v(+gU%4AFtpgsXbeqce9vn>VAUe*UF~Z
zBe_AnN5PyhT-1eQP6XA0Gvz?;$3@P!ckkCfN^;oQPTouSAQEu}U0nRS0%qkMYp>?B
z-PHC{`IJtlU8{|cd(X_sT7s!od@L#bh;dMm6pE2rpB_UBHXislzpG+3aoizBW)mkY
zr6{59bkseWV?MrtT8iXW%hdYa-wnpk6~DyQPCV1$cs~EsA-jT_#c|znylWu$o90av
zRMX^J2nI%w^O^HIwd153v*9}7@iu{k&Yx<D2%=e?ITReDB+|Q<TOpLfTJ3h!?Y{O|
zB*M3eU?R|9!VuNNetT7U=~`II+MESXwZzkDEGp5t_td%?O4kwh<o#}z+X(WjLN33;
zr4tMJ`uaRDu6svN-P-?x=#iO$@SEb|xbW=!0h5!d9SU52wx9@9_r8hs<FPtVx~F@e
zzeXU>RE#!v?YxXnDKUBK)2e2V;^w8D3UR|6D{ZQ6SluIy82g#g>!Q>!kZb<pjTiA^
zZ8{e<heNSf31sAwVy+@p4(XH+<9<D;Ax}e@An$fNs!Vpwd)~84i(b<9Y<21H$QQ59
z<dd*><#Gu}>+zi?G0HOWN<AGas7LfTiPt5GAV7cps#|2wR(b`=iMd0Go*`B(yuQ0B
z^4#nDmGG1i{9&&v$SU85KXe?VNMv_PHnnujg!<B=$GuSur0~p(#rS$+rffl}ZXz9G
z@PlMS6TMzyMMSY6HSQLYv>QehaGQCuM%sz4^Cuf;?k-C|Yheb)(@4Vy`eNvTBNgT}
z-cxSgr%b_YcsX1}{KA-A$Re3jdVsKY!)NJ2^AoX~h@`CawZQa_VN9eMwdmW1$CY=b
zMAd>lC&#W?q?5_+=hJ~1A!}%n)^%5@RD+Ia#HBQ<6Jp!6Pb@y>p=YV&He(*OTt0NU
zjHMdu9rkH)F7&e}h{!i3<e83=C|1Uq{wYCzgRsN0uS${C(8!CC<^@{8i=Q!xEl>My
zYQzV9T#vi{&ip#EDR^<}r+(2*o2*^&$!xGk`355I-WtLFrX%ja?j_1A<!t2wN_z*3
zv|nz$WvB>n6+$9(4nC^4Gj946Jvfa%F03p&&GEsFKQebRW^FVKG^_n$^0ZEBkXI9m
zJloZ#9YY`0av7Gp!++ez$#gc)gzFTnM$mEJe$R22TKpNORCKUC>Vvy28#f5vVq&a}
z&n%JEV)9xH5U}djyME`DWW0)$4vQ+?lKMj3^@sNgq7i`aDvz~(%JEr)nYpv!WIyD>
zV@JE&f)+h8QwrfFblI)%@qVAHW5({QT-Giv=D2~5Opgz9Qnh$u-*Y5DLG%lBJoxvv
z<76h^cN)Jr_V;SwBSHuRP+z@yJH60&;4i(=*}-YZ$rBwdG@4C?L`TOehD3j&`BpE%
zj6Q9Ww$`QKO(HzoPIoHkJ1UGlb{@EJ-5)dguqZ<PU3TI|64{JfY!*Vv&HDF@jk`U%
zdphPJYD;u{HTgI{)I>NqsXS&~#P099PFbt@C~zT0I(5=Ar1V<%X-S9Oe&mZwqy3(l
z?mbmwQMeU|u}0cI{p`27-V2)Cpc$VzuZro>K883o&(jJWS~8BD4K)2T6ksi<QC6Nc
zB3aIOQMW~~eh88rk2QUcRH71>q1O^s{8``a6~!5)&*)~|p4FZ%dR6O4aJc)T-TA!d
z_9D08$hJ>ovw{JUsFmf`Q~ge^^$;-;EY$bW?cX{FiVP1w(Z^;P<0{i(zRulIS?bQr
zy26%XT$~48ixx>XBkf|n9z{md3AY_%<Z!N%%Awpc<@Hsh5r2X^xK~Ndh#kM$!W^lx
ze;D^k;{@4|xk%PkvREY~<(+An2p9{FE%}smYKWMvO>$Izc(8eVcck{iCjER_hS(e7
zR&3FO2(Mb^BgV$XC<+vV!}k+swN-IMHgofF$m10?@8Rl9HwjJlzj~q`ad(UEW_svF
zTtmimlC9>Ig4+$a;@<r&+9uJKij@9IPbzHt@`6Cf)w*~2)c1a&1m0lpsD`8R)HP(v
zjl`78K50*_0R_=2w}?>hAZ#j+-e;g4yUmUFHSau7AN6(bt$P9@Q*MdFChS@v{z?r~
z@okTRr2Ev#=4NYFYXnd-XiYastA?nwZz0I7CtG!LSciFchJB2T38+nQ8&6uC5kkC&
zoAG+q(%Z#aax{FEGE?#;DB|3@H|A7jU2%7609_zewbgdqr2{$^?0A!I-C>mIcqI4D
zV&!U7IBdFWCa4w^5>KSg*RF(W5#g`iJ3q%oO({*_%jcupkT;C-8g&>gU`!K~p)Xbv
zQRqw}%)PR#N0t==JQ|rWVJErS^+Pmqz%ljPbf~-sW-<z5%ccMo<+FH3Ro>)kgQ;t2
zx`}E47IhqV>O|X!f9G={q^CPoVrl6#F6Zbr^D*^%UtN#~&WEo)Q(CvLSw2<JpXTlE
z`|dQ+e=mckxL{M_X8qdCkUQp`o%)N^Yoa;v>1Mg23r@^kW%eG-NF6)ZkEh!B7wW{V
zTPfr=!3*-Vg-1WWF$>fE^(o#XCY_j;wFsa@Crh;&Woc`17bpzP=lhsRf}mfyD7L>Q
z@@{Fa(!kKv_ECJ4zU%I8Ou-5tLWxd_CFU){j+AXWGI!Um7FCc7r5MieD!2^s=#xLz
z+71!t(OR_bG}-gYdQ0(x%`dN6vy0}MrsviitM{0x?QU-#9t4>2qgG9{Pys5{cWCKd
zR?OX<%v~}b9pPci0}usi^fNU16vqe1s9V}px^I|gr8-lfy{a?~J#Z?E#h>7fb)*~q
za58BsC6n@H(_MycJ!<%Dw9M}AchR116dn6{9M&wg26tr2bt_NWL;H$tso?1MlVpZR
zr-CZiXa=bQ35rd|QIXdRI~YMIO^yB@=6{{k{n=Unmi-z0Hk6WWRT=6(q|Li^;lbiy
z@S$>8<IK{ETrWAP*Y%tB(PWx;7$Y%aa_(|k+GErx=#wtGz~U|Qj8o+OW31^M29Zcq
zDI99?zLGa|#qz{g5xZ5RlCSrBJ5?$}`@=oDL&&jC8)-_dxk=>u5WA)A0Xcy%dfgEj
zBMbZ5hYn7n7GD(_X>U>daoQrmc`ENMEHL@`^yE?B4@_dAjDyX4_14^BSquoTC$rS8
zDr)g4!E3J4#P@b>sihv?jg84`m`E9^h*7uuc=5aXg`VqLezA9mhns9qZ_jPgv$4k>
zyg{J??teSF-aPFV3%Fi<I+-}P@|PD({-p7~FZHzv{E>FHvc6j{;scEd6S8dPX35@N
zjEc-SO|K4Q`)W6y9cNS*Z$Ex)m#W@yXmavXioNId`rg=--rW5^@dC*igubnt{=bBU
zv^W-gP@gxhty-w<_gCxlFP<4&s9O#v5522vG#EK~{C+l>qdk|Xk-Q<t(b}b_^ta0j
z6@AbrjoddjUF*RpEV^$-4m}%;mfILEYGZ75&(9{zXVAh3f15VH7us+8e5!F*Dk5V1
zO~d(g^7h^^GyawHC2Eo1zD+Ojl@I$+{wkmmcFHnCx!8;8U_Y&qW3Na^;nA?gc~b6<
zN&PL<vJJkaPOjQ41yT+NjsCXhiu)DQ(+VTZ5?@3kKLuKlvmZ?@QyWJ=$f!N<-f2%t
z-ldk>;%0h9X)>UM*2*C-uT)m`mN4**SWy~%fMG_ZjB)$ILs;<nzG;x?LW?A+WYDnd
zl!Sc4bGz_Cz4hZ$-%nTH%6on>sg$Mo=&(&AsdYL|sb0-1={UL8fsV0xXY=6DvpxF8
zOCIZ^8Hd3_ih!s7W#)5K5f2F1Ov$7rCsOU~$DnC##Ax~>=e`t1YRfyUyMb|;eM;B5
zFhXQ$aO&_qt9`oASmnb;FeeH3mVeg|y$niS8|VI*`Bv<kPMzo4)Zb>WEpv<PSc*bE
zLwfH0J06i~OU)T7>grxH`Wv67If5cM?xJliurn!B@H;(W<vUmTSX=q_WqdoX&+1Rp
z$u-&mZ;YoK`Zx}|BYr~TqwRCQ%WkS0GcFW<QMZ}(683EBv(`S6rvBOTv!Kc^dNN$M
z2Inj8@!jC*-ibSb&!QwEse5*4GJkZc+mIga^bbzT_etB9PsBy=q6^aL?a4$^BOkhA
zEqQF#&SqxA8#5(U$Pok9YTYmVP+<%z)oh+ozd!VuBf(^jGNSQB?pxkbn7sRV>rL8j
zSKHRXH}ONZXPaY<k)fq%Vfw>PoV8^?M@nT#0<!M*WB?P=K6ED_mZp~wEp_;!mHQ^F
zyxkC|xRd6KF8|??YfW_g&!_T9TGdMr+Ui{>dR`9F?X9X$j;;KM7GRYwPO3ZGv_xrc
ze)6Hs#5qHjzTK<FxIb#E5q&4&83JZw%|-z+xl+Niy+YaxsdC#J!Au);!oogX#pXAN
zxYnN9%;%O&>xfJN&`{==!gEh7|Ec4iXhKHHxn3q_!;T+=x3DQlr@WX6AlAehKmE&Q
z*05`01U(t24V-R+ZL0+<15-B_-okJJZIB7nm~(#z#^kzAm@wCvGj^wIR=@d?oI#{)
zpVDi06ICS3(a_i;tQ4v;%s=jjl|CyIyFVmNS|(`96^D;S%>XMPCAB;}9sSMJSozEd
z4Zf~lKR!NQcI3}h30k5R4b`+xkL^;5O?6UR{s;x{=Ao+zGB>4f+G@zPz;e|2qHrx4
zm>8M5fl{KpieSvR!>@IJV`|~O*P7^bZliS2&5`o`k;AUHcN{bu6<_kT;M}dwD&Xxg
zVV90^j~DIH>@sfQGkI~(^m1u=zW}9$sC<2?rYz+he-EBCQ!`$6?x%E&T5zvQk|jI-
zjVlW59Jy~|BXW5YhYgvjCAEqiBIq5t>dvk~M@!4XV{@V*MN8{F%{w-<ESdsY8v9>T
zvswu;C?bD;O1$Wmd!bk{V2C@p^t99=P$&Ime`u)93$8#+>C*!;0#tj!qvhN((XDYW
z+^&v+qPu8hB1(qVS&=%F^p}LDKdH-#vAvS;CKS(q7l;+bv~ekvJJrN^?G;D02Hku)
zQocR%**)-$4!)4VC%N@vXX`G_uKC}ixKuIuI+8)$Bsb+~j?`W<h+u`NFevlM%o6)%
z6lP6>F}z%|#zGBzBcEr7ij;n7QgKKujm4&J=}@^_9ZSg|6aRXFxj=_XnSbcic?p_6
z{B;BJGy8r(SWrbgweL%@U+HNdC_)uc<dk`z(JaEG_gPBmmWUFn$nOH3zl$_ORgu(k
zzgNc}4n-e2t5=WQMkPo8!VTs1$WLUP<d-EWIxN38``w+j=t1}!d~y7XuHCfgE_x&M
z4NY2}Sali-<JKsC&-z5!?<RX_`+jOZ_<k3cL6w(7DYI$x6(!hl09EyfoafI(!dk2O
z->)BOxvc!cL|pZ-dfcopxGLK24+-#=IB-#^-nc>+AOaArO-0ZYFP%udlv?~M)al!}
z3RKbvT<@U!e$w>K(1_Q{v%}?0q<ps#X>!AN)=j?10b9FuG!y%7Zju&b899QWnqRos
z`dD+aL@+s~IFtt;qDw&AGm@4;BK=d!5|Ldo|IM2i;mOrmj+bO9sI}O&?DyU3Z@t<@
z_GjuPX?C-G`DeF#uk>KvI@lO%Kx@+Q(D+mH!sm6Mlk-bBRaB{V6?s&V2+k*1)GVrP
z{j677zm7*u87@enu~4aQ@+)9XbuVf98q5)+6=pZRL>0lBmKCXrI(@G){s=AW&iC6?
zxsDfiTB3bKURPc1@KM0Za20UR?0DDV-*SZ86-z-&O<y9)9+bhz{1kDz@L0kY?ZOdx
zk7pxDEg58Tu}9ogEAm4~dCGcsX=k`wE4MZ{)_9R=$YyQC$Et5arTit6L{=VYEu$EV
zKxBs0{v>-mk`Vp1@jITl5^^|Y<9F_FV!XNWq+Af1C=$}_zcF@hN?X5}KhskCV9m&c
zdOn#RLjC;97mk=<v8=2OJ-uxO>zFXZpo|VvHbGN4=}sr5hc@yS0cjk?<0D6-f1O6d
zmjtiOS*UNV-J9#gL6wT+ROyh*`x%@Ua&PbbpD8vKP#zGXwn!e3_Dmk1@PRRRn`D{Y
zU>Y(L9FZX{JDf1}Bj)mDEN5^dk||loE9#>{7nM+=?h0BUwa{gkS`$h+*?GNV+)}N!
z#g892*1Ny}72OE>gvGv(?4W;2dn>9G;u?Ru=Lr1@o8H40jb+#G^}kaUR6lB4rjbmD
z5iolMsc>s62vsTymnCJyd$wx;^HLnO_#B&B^@y0z@7YUQJ<Ky+UG%rYzW<MAs^Hpm
zQNTL7DEa{Lf79O7P@e0vJB<&+ve0_qd(V$CU)3l_yh9QTbvWs2D5b$q@f>sW^?!S*
zQqW6H>4z@5O|&Ad`H%F-y1*>+pih#K)LZpM=v>%c{QtIWxu9kHc0?>dYZWt+dc3^L
z<)U{`Fi`AU3A0?E>kU3pInjsVT651)pUB-LuiHyki%4^3cyUubH+^jT*CQ);X7PB8
zJPl~Q&pDjLS})39cFq553maCb7_Gxfg7q`^!|%82rpks49n`j`%hS`-i;Fo*xkemB
za(&cNhOqny%Zh)O&+zR{WznO@(ElFQrw@wkoJ(O{7FjE%Hr1(%wPax})hwv%GMRBB
zM;Pl;w|YxJ;}Yy|tQlJv?ox3V_1>nM??c5woolMA({s~nYirBPc>@-64t(blPjjTq
z{^Zc)E&QQ@-f}|C54+7l={KZH<$LchpDbOLw$Gv*df$kSO6B&>&EVkRE|bzO6C6~L
zF(0Qg0$bdPD*Ks$?(uQm89jo%(P3NS`{=$|=7D1QD((XO{59}ZT^*Ph^PI5Gn-rS!
z&(mXbCJf`ysR-Q#IRoBQsx2Q$78gFfd)Y^q&QvPbx{WY*!s6b1HQ*#>!N1vR?^J&=
z>%iBubAEn)scZ^9UhA+`1JoHC(>cc&Bb^UQEUg%6niy$@pl_3l(0sp5QZBZKUn@rV
z_18=qJ850HQqNO&>qn7o&w`^PDA5C+!{wwRr^A?;m`XL6r|G|VRSxu?mueOI`}?zK
zm7(9dRRA|x9Sw$9MQxs7qNzq3)jsD?t-~54y@kdvDkuJ3f<>{ug%w-k!LF;>Ei~K0
z{+$Rt?Qm+2epX}LhtJrBo$TyD6ES^g_ee+MeR6VPubGanu9uhBN)eub{Y=o%>)$Ty
zx2S|_(S1H%N(!v{?+(0Ny?bd?x-WQLEi*;Jc1PUXE*FfwzAhR`%@B0gMZ5m?9neO^
z%Vw!CI`Qi!a~r99<EoEE6Ix(fI1oRu2wWC+4!l%X6n({<&@#`Vs;{^djj$S*RX$b3
z?cWf>NhNG9DNtc7tdv-L(0w1IAd>xexvc)ZuliN;y7J$IaNj&@BiHxQTdzqx+A2C4
zuY;hG{P7tYR){Y8qr0J}=oWXL^6R07{vVLuxNB%?YNCo585<8g(S8YXJ`UrKdfLRm
z`RYNC^$_D{g@m&tcF{IezxzaQYP!InoE04%{Z7A7ub!WtUXn3}UqApvSLZ)MNv2Oh
zJ;cNTnNNvNK;U3?cn2g%w0XaCm9s6hdE#YJMW|_LR1Z(zgIew(sM9>;2GyjcF+{Lh
z!^rYa2fiO19d6Bx*Sfga*_jQO%n|5&-s_f?k-2&Mc8qi;*r9;)YL$Xi#8-nw5EA;|
zp7=0Cd?|@sPMcs4C2myBSM&Gt(*b2ncM@N9b+vYdmD^4i59sw~s$VX^Eq7pvGO^4{
zpvyBf{M2r=+?TE3=(r1#rw;ouP)lx~9Zb?uQ@`7jjpv|w@ZcHgm=Zni?Go0ZVtoY#
zg^huH^_VEkrp`{wv*SHjO?b|m3wmbekg%{6F3Z7*dJlyZK|Zrzl)}P|IXOAczX!N^
zcwB6?QZ%0JkG{jE`rX&3%BVUQ3Cc3W;2(LR)dRvZt-|{GA9a@-O>QcRgH1wGYxnot
zpFe*B)+M8!musO+9ZdQV(D7K0h+&DrR*5U-s~1-gFflSZI68XHgz^j)>$Amm@`aW9
zsA_1KU5tVJlkerc%J8pp%OS*IXTA%xh3bqkZ1uZ$TkSy!r+QvrzdvG$e0JYkrb}@Z
zWsCt?<d_*JhVKKPb59-~9)Ho^Oqn=8KS<lnTNNQ8w>+Ncd+n(@Iy%lteYrYXVSOp$
zZ1g@u6_J#Y2@VN~md*s{)hM@!(GYs{s9q+H^==?FB_+sGUu;dc3=a?Q(=s}K^t=#0
znvLqfQ?n`ae0u?kKcua_9XoM-qW;A9+ReK-AVq!nP&sKhPc<LzuBNGkg__vKZPfO@
zJ&Mj}xA!Ti>O!3h70Vwu-|Hvkd`m^9Aj?B=sd6gyx$usc-JcF-8(GL#$+MsNu{Kt%
zTs#yP6B8rMkgJw&sdrK5wxj2Bw$~$cVg)A$j}ROlj`j*Rd2DP96rZEQaBxIOESvuM
z4-(q~ooWYAwRXm`jMg}<1mQ7(c+qipu@^*{pb^DJBqKBEgDBBGa6I-`vENSS{iAOD
z{QSEfY*KK`rP%Y`yLaG4Ui-tQrKUYX4zurC441&t;EI^!f>m~ZMI%p#^u6cqL~mSx
zxihJ2r1fHu+4N<Fil%)KaIpbrG&f&5+F78we;)+Kj{M2t;o((Qpx%v)ippocfke^D
z84{WtZO`FVynLZ;3BtQB)RYh2r#F1xM@N@|`P_RFpws9*J~R~f{KNJ&s1}wRwgh>f
z9k(<$JA$kew1|&9_DMO6Bx{}5EG9Y{yiT+#tZpFMl{Syuwr87OUqyMG-n+Qxz9m+1
zIBdj$(p02dTUTFyc|<#{6h5Rvo>h9qn3$M!=%2h!_6_}&vt${3qTaR`^4U!_(WQDS
z%~2z(lZ}mXiQLF%?=yFhJ6BG)-$b;^%(hlbdu+z4*dIRZGyGDZTdSsX0Pa`gxzLj;
zte<w(P`E`%UGs0EZG&b5Y|7xu9=QDCXypcY=k)wMH|Swuci|vqb5%x2K#m+AAFmp#
zQ)bpX*BN)PKCXSQ-O|qzf@Ds7lj4t7*o8CtAdDL~wsv;3s~zU*g8~oAPj~wiTEi*8
zorhjuMFU-OEUT{8PJl)%p77${@uyFpP6#SYMMXqJ)Qk1V9vD0}F)=YPm@3dLZGK(U
zaVb`{wYAmPpJb#%X-Wyr%*vvrp{brIcUl<)YwGXsfB*hHMs>;fnZPq+e>~#Ck7Z?!
zKSGGWg$6*V1iL7FyhycG;CO`l%cOKXfA;V9x0n<{1xmRYN=xwA@gF`cE-#N9{u9_<
z+<Hnx@e&;V&h6VyFJI#Ha8#Q0-iNKTD34X3;^5#|)s%$D30uVLvOWfW)14~pGygOG
zK$>?w^E7wXLbFf}+!>nT5U?q{5C2YmeM8}Mx^=v_k_tj$3>r}9>Yj7|#fX{%2_0-K
zgt0#hl9|6jSv(Ro(!uCLNlQC_jyGZ}T>Kki=k4p?!C+A+nVFgI-=9u)nIPh}(y+Jx
zQXlfw;MbBP97L&!oVj_fh84)gL7+U*;N>x+zhXi|N7p($T%G3e8cTE!?edu#8X7=r
zx}Sd+?G_=30{1}}J#rHlA0G_O`PWC0rKP3ms<^hv$<zh6lm&_c-Gr<gzF17m7uCKq
zt>Kl{qp=Ha5M{wfDEJ-CAQ^ZZtQYERpA&Gz4rR$Dg4+Q$IYEz?&fMPL7lOU1ch|1I
zI(MRD?0=x|1v*6UzH*C!4lC|TP)W0~Db&3|MdXwD2fz~;W!&A|u8qyj&QixnYs04w
zhiWvp_V>w!z3W`ZSwNwW_JM<&4Ibd-{7<*J81?y{R0;xu15i^tuMEm%Ds_Q2dgezc
zXsNZp`T}w2Dy)V%OuLgld>{-I+cvn}%egi)Q))9_)7;z)!E#tQJ3ISo(@42xIGI2N
z_-PE2I;5|cy`RK4>JRiRES4d8Lh5+)<_*fF44G3d_#%=GBGJlV;jdrMzHDPe;e~*R
zoVxwPhYwX%Rj@zcN*9pHeAcTMn(1z@O*UTa4e1kXC|Bf<z1}{<ym2E}=lPs-rwcD5
z<1(Z|kQsM$b_R!rj+YpBF7~FUdTzHjH8sI)$sf62#*0foU^f(tp~=@N{!u;H6+3LD
zS81bbU|^u4(y#AxHt=g)1O(u38D5m`tk-UMg9QCDO@P-j71v$neyXQoi;gwyFMbG~
z?e^I=9GQTp>U$r}EiNuXP8F7YlInfD1m5xO`*(#TUd8i=2sJhJ?%Jrjtmdcm^zYxl
z1Cr>2eAd?1wz;_pvGgj^vonq3gBZYtAOdAB2@EN!d?<L#8n-c889q~ma`n2Hgaj;~
zQ&4aW@->`?p{SaM#vcgc+rxG-WS<ZCXlODW{9{I0CjY{n*Z+KZF;t{0BqRjE^?2$H
z=8rHk8LVc|MQ`uyK%lR7+nI-Gc65BKrdiUlXOUz%o@7sI$`QZ6HcEhv4Wk%!mP4%e
z8&rP3UIdykvadsqw70jv)P_@t_$K5O6fm=~6@%8>&E0*_GZ$iUD6DR*%3f7o=oNgq
zOt_gIZvMs8d2(i%VmWT6+F+ud_KcUGpA}*zB%irr<i{WXXD@$|hB=ZNi-jilnhAOy
z+Nr3h#6)pb8ns7WMZ1&4Yi|gr#mC17NzSAHQQ?!WmxYP3Fya6+AF_$uUE||tU>3#u
z)hHk#FXQ~8_ybbg*n)$1{~^(>00p5VBZwV)K5Q)kw@I3{6(F1)A8fD*Rm^`G5*(@_
zXVxlP6q+nyW<nRWv$KN%4Y@vt>eDT9kH_d-Zxw&g#&Rq>)|mHYaXIQk{LQ*@^(u@^
zkZ<@<qo>Wk=ivUbz)@3G#jNr9<7FJMShwKn(6FrsL3vGIvtfK`=|jD`a4ZYE18E{v
zM!e3F;)dg8(84z_qy@de+#3}D61|(CaVb3y?W<phfseG-tCzC#-6?e6_nmV9$ASsi
z$a(Dy3iUn&f+!dLpI?H4+K`a;{(VD$BH)o0i|dqr&&I!9P77Jc-H!-?Lzt*@16Xu>
z97b32FfSFn&kA+x-3R_xyqY}s#S$$KIJz&IQ~mY-XU>RtX^joUx1_E1Nx;*DaR~@W
zLM7gOeV>{-`K$g3$er(9iqC^S(Fc`i6$<v;g#WoBRE~YG-;wKgbi_;*7zLT2>*q89
zxE&_oGFI)10^7-k>u<gqet8#2B^CLB>%Lz?&W}V6azWQ;SbqPo^GEL>Zq;x7Ab~L%
zi}IR+f}chln#}mI#_X12=v<1SyIK;7U4y@LAET$CW%rulvuN#}pKMS(axcrsXf}8d
z9UH5~jK4+g^yJ_UY)N5676`++90_1rDGl}db#RNBIDPN-wzev8GeDC6Tva#ppxN<>
z3kpD1H8ZnCh}qX~5l$^F5s{KwrG}g4V2jGhQ^^r+(ec8}2^KMN4Mb;=H`f6TKNS}r
zUU)GGLl|0@Q(0*>G+|tK$OQ?J2mh{?^YVwSQgG4kWPyM0_0NfTeKrk66%i8`$9DO`
z91LRzIa}W^Phwf>sKCDI6$+=EGOl<e_4fytTSUxvS>4EyXNDlTw>%KDfOhSg*Wur{
z03nrfRTyKyf*Z6xpL>8QalO49VR+=ev(VEB3B0}`G&s1{Z6^y9`1u14)k(&~$Ezgp
z0YsKaQG9D_3+6f0i*$%!OasPL&S1cZ$1&Vu`TUV>&59En;5I!yJ%}PZySoJgzTuNu
zW_}RSHuQlIOd32O426@R6&fSyk)!e>E|oamC+L6W$WMmAG(fU^_J9RRjR2^UQ-t&O
zIQ}P7dSrK-fq?;4gcLITYfD#2ITr$9`Jmw7mbkBfthhZ32>;y&)r`I+!T?1eV#)G9
zSrURy4(hfF;^N|lAkUwjosr~S4K-EfGzI0o;TMfUHBTQ((HtpI2dWw=P&H#tzt?#F
zJnhh0Ru;s+rHH{--)rmZ>(ZGe5Ur+PX}Y_+Z%ou1b7%s5ZOK0`Eh$0w{R4R&aK{Nm
z2YH*3G6rCQnM!gAoPi5&`2)oG`16oF<2nT#7qLi4EcG`>Z5#LY_6C+50m%q?pSl_t
ze3VFcTS#_kPEoNb674~m>SSxAMxXxXe^b@lW9fG$jGeU^aZpgC0+Z>tle>ELD$2(v
zZ|^`g7e=D!<dYW1s!PT01Ew4O{QQX=zrLCpxAW>Bm|$V#fhn{$ZQFX|NirCK({1qN
zLsV>X>R{jn!lJQ}QNPhsl?mLO^I<FQu$g90Y*6z*!=dDqc5`zJt+4HSJ#2-K`qiS`
zfz)MxRTH6y8J|XCZmU0*#q|}&o%r>7K7ch~0t%p(&7aR-0Y8}aUWS%9R^5^6m)X*p
zLE+(z&TGVotGhd^W{DB-i0KUQe;^W<LsapymsbgH;Q&PP1`QK{qg<-cczZkS+ZQ9i
zn2?MwsTM$6NJ$&;H@;&EQ={K!VJYmGXWZ4n@&k~ojO+CGn}5fO>a%B4)6+nlUQRa$
z0&2QV%$XBlnUI`(8~O6(3$R~!VE6j-7<E0^#GgQ`G-4mY&{26ZfhDBT9EUf|x;30I
zsI>Zh(&s`>vA-*k2jE>jagFoZ2tdkc>A9_$))uD%XV|c3IVmVja7J~&86lTLp@1k<
z!ebrWILPqD3j$UhLK2eEUu3yYLOEH!M}OJM;fQdD<Gpg_O2<VMunJw+pVcTx!igNl
zK_7CH1YG2k805h{6_YN>^COQ6uLzhqgi9k$0Dqbz;q!M<zZyJ1njm2}8}cXH0FhPY
zR?pu9G7}ROrL3tL&)dG^d3&g=px_oFpDM(H{tf1`pwhFZIRv@9HH1jndVwh;1dqE7
zu88i7#WPa7(Lh2(<aQC@ygruOYvv5tcZcjXF)1ROBIq`drwaZJ!Dg4x><$AJ%<o|u
zLSO-U@%r`aQj;z?ShQDw?lUr|hiWTq#uE|~nef#ZW9H(@g%!k#hY0ZSwgiQ3Cj=D~
zdH^+qk?`C>LL|~PUOgwYw~wS=Qz+~+<HQf16Y3gxCM_LwXdr06t;dtErq{Rq`}c1k
zA(GqO_Wkg*Wo2a+0{Ur@7$nW3qqP7K0ZLtc1;!jo$Uc33JCsade<?dPEG!J4&a#2(
zav&?=``guz#MtLvg{t6`%1TNA^xuMcd7o~zt_&4d4qE|00pj!}E<!q!hKA-KSNZ4f
z%PBOdmspQgeSsVU$wM`ZYi@^c>t#&WfOF_7k%s@#934}!xvZ@0(YLu1T9v(|=#Jz@
zf|E)riI77`A(sRKJOQd4<Be%BEy@N!1x^^s4*?!l@h2PTm-Ap+ydCfI($w-%n!J_Y
z@k;*KsRL&?J=(z}<L7i-{8jI9P+{IT4|9!LFl*Y7sg!G><O7sfOiT=*GrI4TTSGv-
z`_%lZR;5kyhYw~HJ2<Fm0hZEzoFZ7<iMJ6jFhDn}<MOhyR&aoYHHw))ryy#W43`+g
z#qn(wsuiBVFxxjcdjX)f01>{W|KWgQ%QNE-9G@&)U0tiHtLvdY0~jy<!SipB%MgSA
z26{gYB^Hk~g3Zv;83Vrnwt4}3FqCl)Kp8;yB?TL=<zZyZ3#iX~{*p<p;G?<L&rC)_
zK8K89EAOoqf{Wvo;$#6A332fOJ2~@&{jDuc@C!r3X=Q~+s!B>6FMfo;Zo-KGLRRR@
zlFR?gIQBL%Q5!HTBw#*=SxNhDnCo2c`;}kZKz#Quhebbq{=jjQz!ez0tATpHB9~;O
z4)FQj^rx`c%%K&u+r+2{Oklv1EdjeQGBR>?J%o|sIfo;lIlN&cKy8hTX5sVsUMK!$
z5Jdnsk^o{2A$mwFpQQ0!Z{Rau%0i2_1f$Q~>Z&KeQ<z!aUmjSwIN!JcbZ1$Wg=~T?
z+Kg7P2nwFUu>$3jmy}%W&+Yr2DFc<j70BX4c6jTyvuzQ#z6<XBd^nw<lv}6pgj&iQ
z7z#`sgIjw{kpV44A4gN1^Xa=Dmzr8Uv_fJ!2?*pKHYz(D+SJrkQ`6(EqhzIATz$fK
z&-$Do2*aiWb^}A<bktwQ_}`vQWCVYvL!VwA$k(lLbfZ=vDo_S{(JL`(KRfX(wgt-3
zLLd>RzV<V#-0RZEo?cOwP>DFK!3JQ^w^XKO{lq0(VtsM}V-j-REmGdi`L4ui%a03P
ziIspO5_+tHM$zD4+$F)vf*{F%e*iW1?7qMy#Tl0iA@#$-VUW;;5J4ehwI!GUNbuC+
z;vtkq20cxb$ArK>e?0+^s%q5Z*Npj3an^HhKphw}N4yox?iw2#tL1YsGyiOFmtu``
zS^Ra6n_ErC`9Ejw%Yv$)DNyPCsA`C-r#(LBRNmfy{Ry(<lQEG0l0&Z|@5ugFPRB&d
z&CMaB#Izd$WP<3PGiHh$Zg;ZX@U0rEgb8tC4x_fqTB!6Kv>@n%@{WFXlwXd2hCc!`
zWC=9g_zx|BICH07y*nNP0g>C}C!ziP_FU(r>r5y_<aHQh1}8<Z$jQ$EOVI$|TkL%S
z&*n>MHD2QcL>K0}`Q3Lf3%$U0HQeL@6hbW!<<-Iw#I|!7)}0pchV%zEr>CPM2*qSD
zwp2kk2dMMn(8^-nyxIh_#lU3tm-CBbV`9W5Bw!>TLd^n@;RUyb4xuP&DaGhR{!lo>
zxjFxUfRTSnAW~7Zdr+KaWi6V2nE&rlypT7G-rn9Oww_E#1W<(XPmXH8b`u{E@<?M>
zclTwDPh$$|Ave&`r`#sat>^e4nJDG<Ta?pMQ~UY*ADx_}@;h~yaVp`)#K%J+N?KoE
zf2;79FJ%aXj-Mac4bforbls=0*0J$%7W`mdaE@x%t!b@7?4BK{9$=%ULD`NriUBIL
z0s^)34=t<Du=1|_r`!c*B9Z>(^tmsVg~R_lD?<>r@T1;1%|*R-4X91b!V$1pAfiy1
zZ~zL5K*I+t@O^wd5g{QjB#OgBS0qPpAvZha$}1?PT<*2vKVN|3<)oz@?Cs&{q@XO1
zfl*R9@K4U-+$sg{6i#~N!A(sqR!1@S6$=&na)2KurL*Xzi-&4!Y6d;$uT}<wH*x8L
zSB!koD#Y-ghJk%OD6&*edTVQGxgYPEZ{-8}$jZnFfpiCzL5!O>FG1cMA9JVka{tn7
zdlc}HU`T&qVH343wuXj=W@hvV5UUhveAN%Qin!u^yHuKS5mZmrit^?kLOU~U9^MI|
zA^;UXTS%q<DZ5}5)1o3N3umXNP{O$ccJL(Y<F%FBqzL-$+v89g+FKdAEQUZ~3}Q1d
zY{!iWvj0drc(k;%6&3?|qG+C;o=VEfYf-+G{jC;Mm(^I3tdJau!6ID`7=XuvWB?Uq
zVAcR6pd<j9;twobMI~Cp<iANYOg$*CVA30^Bbo3T1cWk1`pJ_g02djuLLfx|8;ECr
zA>rV#4S)`6CfOZ59btii)t*P&5ZPhg9^$3ZN!JKofyNi#tR+ZygMTGNAe<z?>o62U
z|D&pclAfLpA>dE3ej|kc9>^;Y{SD)xwgPow$F&hIC@l&KdLHjC#VjDNK9G&zbmipG
z=c*jfMk!o*rIb5X@8KdUDhd^8D4iaIKfwa4MHK`eJ>r4dE)+txB6uKx6qbA!><O;y
z?eD$*&l>PP*`F(P_4Ev_?1h%vcFC!!#R5rzx(@tBk{UMjN3`g^AHaj5x&RcRxVTt8
zJ4!k;rg%&ooeS^n9Wr1(E3jS&`cDori!NVj08fUMcR6=|8Gdqz567@nZbPT0P85M3
zSj^k~cWnJ1B8MuXQ}135=qiRH_|QP+kw!9CG{gujF*P+cYl4D4y?^2v4s4n@fASp!
zx-|0HP<0JA%Eg%UhMrQhF1!xFHDkQkA5B~N^4>(3;rc)EFxfnEZ}@D(=C_-$)5xob
zrrnnoja~dW^wFP$%Srk!EU=RM9_L0EcK?O)yrc7leh)4#E+k7@xrF8&&$-No(`^}F
zN>-h!XVvnt#?W>}a#R=tp63-jpr)QJtehx0$ODWB%?z|xICSz*wbQ&Gad>p3N}i@u
zVHFRESwiAEl98Q#StF;7DhJO8YHW9ayAQ1X(j=j6(cvWl`}izo^PWJ?{aE8-y?P7;
zNFS9{$>-0X0mTFPy?na_^n#%@!}R43(7JkquUDW=<Fwollnv^c(fSzw^hcyU)5QJx
z^Q|gH{V$Ub6b0cmDOVt`T=YyNqjB1=d0iEbLX~Wy6cbZ4!Y-e}VL)e85yM^nv1hKz
z=zD))gegu)H6MRP3FYg^@9c{GnvWVh^fr?D_yvO{==Y}rtnjf29%p`1#U5_2^ZD85
z_A=@{D(aQPv(p$pcw@{Y-@|~^QllWSm-@Oopc#Lmo;)*ygNFxiRmsE@I-CmSnRvj?
z{@k6{X;}pbBh-<h2tV=X53lt|8RTOqQ_L+auxWgL%#5Fyn1~|^2@D?#>jC62r%#u!
z!|{#A#{E4wNb9%hDk$0pHc4|=%F&TCwTI3RnBPRBPb!uJxC8{0yP_a2VAXF}otvW>
z55l@jc=?s{S;60k|8y}ue6T?CB~%tkND|@H0E*rwd_c*;Q39?%>2*N%_WPIe@_NVu
zKnE`kK(q}a5-|F3Qa%pnRSnuzsB=D8U|?ZkG3`pggVv$*nwH5EZf<T1iOaY3pb}(>
zWWwA%h}LNJsr^0|e>IL|5q%dC(F^qseXl1RWC`){KoeV9TX96EXJ+EH$%BJ}tgNkv
zANua^@537?ewsp+9oQ5=&o`RP^z_iPBRZ@E?3I_tXoB}rjuh_F|27(11>o+HxHfm-
zD!tX)iHQj?`6|fEHa6=}$^KxF!9!OMuXBlxjJ!)i(#g!t!&6&bJ$JeWe0P<`39exV
zOzq=0=#c{c9{lsCjoEpw^C~o=J%CYwy}7%(J_yg&(AI{Rq)1ZV&H4s0BLI`4+fxs^
zX@I=0UbzCV!ngq_h#QD}KtRB1poEv#8EY`C?_-=u2Rh@=M4sZbwC50Tp?<>$_6p&0
zz^dxyf;@S6E43X5F$sx&ovR3XZc&kqg@r{S8V*j>4IEl4An;Hhlx+uaYiVJjR-h4)
zn0QGdA<{0TPU%%UWI|m&JX}FpIVwCH^X>Po?QLl}xvq|m5r9TuH6stK;PKvry{J6k
z=9ZU{$uB5K5_H>sOW{qAA3R`1A0erwrG=XkBM8Nko%bEk0dm`2RHR9U1uMwNtN^BX
zj_)t}TvYTM)Er33$e<?(9V+O>w5rY9@xps^U}#XY(YwB=X#Mh)Jz822OUK8@A98Sj
z@L_=LA>93xE|01BVcrIyCkY9O@rT^VD|InNmB)`?B_}6qFjsv3j1?&6Db)Dg_U83h
ztWm(I5)$~KQ~*druJyO3T`V?S1W|e1fqwa&k<u9T@;lypj!RE?g&|3V0^c8B%Lt)l
zdh{syQ%=eMVC=mEx!nKv@mE`gBq<6RWoDD?ge03Zkdzrp*%B&}R45YJdt_x5MUm{0
zO(A7uMP^3%UboJ9pYuMS^ZR{1{y3-d@^ZiK`}ur~>$)D-^O+z!JNuBK6dDdEPj7Ea
zw#+;&X{vt94{0$mH)4`7xSS_C8s~(c5?`yO=wJ5ItPD&B8#Nt0y~8kOY^ONyRMphz
zJkKjCiik;q1y7L3cDzAI?%3Dj^Y;BYYe=M=?fAjH)IR8zJ>{a6*v?Hpt`h=V3`PMR
zsr^~iN0Zkpo?0JSW=Q2uWWXv&^B26qBWhwKL$iH5qzRkXuHLZ08$nH=1yMpuQgZF;
zH>fm0S=G|4->_i|y|5Ao4Rj4cW}_E-iqIck!cW-RPJtlfZ?h(xd9dl#pNOWVr`Ofj
zkK@*>%mc@GnwGY1_4WLGM*{<fsRX*KSFhfQL6ud~%;srqX6Co+fZCBG<yBQ&`}W;h
zx^@s9RcT&c9^|A%B2r?TT+>l>O+rDlhRV3LN}i=D=;qB*6tL}_^yvRk711cNScCQX
zxj4ti$*C!3AgImEv>&(rfSlto2r$0oWxb-Lr>8d$C6+K~xU@6^PsY_~X*HrR_9myJ
zrloCdXgF(OK}SpLfI><;QEg~s1Oyb5jN8YG3J#zHc<L-HETH`enq@ut#N=cZ3fyZ8
z({OvLuCCt5oRE-!t`cTY*M3YeGsnfnd2;6G=5`^0z!3@Wxr>pp?y0JpT6#)Kf$bor
zc6LEQXGO(V@MA@nzbG0T$K~ZYI5>zleXOb)#x2KBY$IEX>MWR!OtlHA=+l)K`4_t$
zFeRw42^uKK%VXOMr9r~6g*RC5)Tv~)2Pnl+Rc`Vs0jXkoc(Q4)(Dupqa(s$psJ?IC
zy{n?Go&otqS{m+XDCH(nCm%u_DxZS~Pc>b)i@6y3h}mRRnh>CvH$=UAr)c`Vt4oT9
zXB5|>rlw}a;O@SRrXFO^DLuVo%l%L|fXa5q1I@-}eJq)rnd#3NaI_hfVtF7Ut8dxo
zf&%fC$Q*C^tuwc}q~wNb%F;?vSuf1Df4|8lvzo`Kg_{$Mh=<yOJ`<!w3BpQtVWEU-
zlQIk9QQ-CKhvei|XDj#GRjRCesf*1uEtqk*>h|WQD7iCdA`oRBJ$htk1Xfy2t?qSk
zSy|cf<Hu3MLv?b3hZeb79D9%IL1g4Oy5+&C5ZzI3J1@ED66?!i%Z{?0ot<cbIG<|k
z=onjCR=4Kl=ksxKos+h-v=m~xd-raHjC=Pt=4wY1Q&aS_G)zqDWIld=bF;I$j6OhY
z0I1<Jyy4*r<25~Qsg3>KkTxOAK(cex=M64@D5VB8tn1^)+3}wGM-%g|Yu4Pv=LgX&
zz{yE)+CKO1Cs>5mCUwRoCnqDdZ94H@xHchT(wBVxfy4Pif}(Yr_yidU{Iv#aLSiK!
zL`6lR2ySmbi8iUR%C4ok*-pnF@gkhUjPB4n?86&3RyzbFSjgSJcTW|!Cpwz>>VOJf
z%n|@C6F@D2y?agYh|xIF37mV2bb$aL{~?7Hc4xpMBpLl;k_HA$hmN<lwqkWq`*@yu
z3EUI=QQ~Y^N=>-L93m{D!_36QSw?kD>PkS<F#Fm~MFn>^<<lYQytnBPRALbex4(S(
z5~)5LB{){)`n7A>*x9$qp(haAeLpz(1a_jXZY$m`->QR}o_?Whhan0(qWFCNyuGgO
zB9;LK1qCSBf-C)1ph^?eBhy{=Hc;+{Kh;O5mXHvo=lixX`k7t4=!PBz{pa=_JA~}f
zvKVS>XM-;WO$R{teEI$4<<d3@$8UY#omA-CbkUxm4MtbL2=z;|k8yuh5G5rg2u@X1
z)lG@13<9{F=9{z>HQqEg3yX@*A|Zl9)8}pL=m?>TNlgW8)bZ#MEvjip$2q8gP7q&h
zZ{NzBnVC5{I^xd&qj&Avl?doiS63}Uavor{v77J_9|SYi5J9h_QX#um6)%1(L_3LB
zkB(X;+}GexQBrztH}oJj_B_gX(8oxV&AWZ&S&SldEqZkR%6gjY)Rf+~aHK;zLeaw=
zmOfjCD~{T#Q@HHvkixDWv6GI@zP>$52plLmonYL{mk?j*G-Z+O#P7ra7zCdD_FNW}
zg-UFnr{)=)w(yedvLJ&1h6_%<;Kd6I@kezxvhU(eNl~k{6p8<9tde=Qrt3y>GUvC$
z`0Llaf60BPP)pJ%KwN}%lRW>>8-Jov0Ai8Kz>s&|b{LT-iX#OnI*met6H;ssMhZ^W
zigRbIi9VIuhn#{!qVRA?E-c_^6tLTh792h#LIHvuwHb>EMLR@Q$2e&2$g}KoA8w{J
zX{DqSWD^&6Y0osuDC(LWn&?ILn_jI%cZl{0mjKga?w2w^48htbsy<O9tE{VIJa91#
z&2doBaTS%jDpQ|7pMy~6x-387RtW2=9hJz4By*Kn&(zw$ARL<;9sc7n!Zfe7RoBqa
z9ThUQ&)YX|kVYv+^AzvzesR8>GKkr_s~{H<9tmPo=|j3G*Bsm**{>Ie0ETvn=CvI<
ze0Ys&6P6Zg(f<B^PbzKgCbW}yZ`~6oP%vEs7LDEz;kmiB6<&UBf8>t1=;$|%je-cj
z=tIy?Hnz24#RU)fCkz1?v3c<ko3QfI{job8=|MpR)PR?<Q<2?gl40Ds)yUeqHfI5e
z<+=Vv6O;H7|HlAw`mr=<HhBRJskznn$E7mdr=q5!qN1Y<iHJA@BtuV+J3vX8frgZ0
zc;(6!P)1j-JWE(JB>%%eQA1Ww?+I1Om!Hd}U$FmBQF{7gdm#b3&UHENrYvu5o&8+q
z3nXE&XZfdLLMQ3~fG4lR$WV%e!DP|OY7`n76LIpDFP&!xhsNNt7Dz?CV}~OoTYl0D
z<`BmqnB-(-9lZS6^U0GB9;?>S+?s~%Ahle&Vez-|ad*ThRNZ;B-2iUmHzY|C3#n}z
zugcBSo^s4n(Md@at*wtr=Zjg(ySs~$l5VHzYH0XBd?++=2?zrcL&h_MeOFmMu|=fZ
ze|@Z}0Z_;(EgeBc&BQc5HkKyI_Mfu;u!++s2?1S}u`X8jLxZrYrjDg=ZEfwvix)xf
znH~G#>gH_~+;t~Ef9}oA4Lf*F`agLhVOF=hpLyN7bpXxYy?clHC6D$Dp1rp`D#Qlg
zULMw*d%3yxYHIhfuW2(33PmARa7g<rRPR$aG%P;924c5w_jVlsn=;(n`$jS%hAj@l
zBZS0*d-gy!m19|gwf;58Ur_EtO{7e5LV_t^K`>hZ0RezFAO3n}$;8A&>HVd@KPWUb
zG$<$+;=lcRc@>V&e%JMJm#t0Cof9-F@dR^SkAgbfUpHNU2zc_BFHN9wOo<Y7&l*l#
z?!N}6_FRalQRrA(SbT@oprd1bMTL#MebBf(O91~C)_lHOz|nw}zM86&81{VIYXd6#
zq?Xn*DBeU$ap@#F1S>1Yzk(HsbY`o9CSY6?K<BbRSjw?cf1h_9(z~)M$_yr#M^#nB
z#V*I7<xDs~#3NSyzZKm06@QCeoUFv(lRN_ds@J1d?WXizz`Ly?X{0?#xch^0ok#b*
z@-N?=Bt<Vb+ll>A&Nq;xq@)-a7#RJ$GbBh~w>pJV$_nrXAM+PmEj!)<v&?9XiovM>
zk=3$(4cD~afv`g35f~gSgS3sV0*xZ}9TLvX^%RYEb|liU3j#M#+VvnMp@*gPF8zWV
zI1M`b0R9@F6qlNs8XsS#AJJ+TM<P|(H3bIz)ZOd(b!doUw^$~~C|JWH;DKpsSb4j~
zmKGFqHI6$JG$k3;VMR#<$QbA)5Q_ykV-rf(k~E_6@$`95sH^)?K{Isz>{$&%!)3H>
z2nQ!mpT1LePW8wJQdBysS3FUH9s?Q$0e1R%*P`_F^oR&X#Q(3H1(&LlAUEo@!7yb}
zksHbk)N0tq>nV4egCZaLie`6aqWAD@q3_S*xLJua2Y7>hQyWPQKke}m=9T+x#L&&5
znn<u1kiI-{;eJBw8j?n^1_uq<+EK?H4;cg#chObsfE(o31Ws0F&lnE)1@>RD2;Jvt
zjy2{aX>DyS9houIfL|1!mX<bAxH*J{G|kg>z{EIfnX~)}H7Tn6jpGi|H0AR_dg5vS
zAG$K)Wq&2Oe_14?h9NF4F5viZqHVu8H8lnDv~+Ol)vH$$d4mz>klTP<hTi|2ORTJ@
zLI}m6vZo?j%MxG?3InTl>|4s8otiz@cvoTYwGT$1%4}_grcNC@R^8tI18uD4&ZBN_
z(h8bjRL3Z_oZB<n-Jh7sR{D1wr%~9r_6EdZfC>hV=f(S1y>Wx!7nK=aigL$#PB(Dm
zb>%p@kB?78M8tnCM9=s3?TM)=TSrG3z>nx}R8>?!)i;Pd0V-gG4uiQ5W!LD@rwHGO
zfOwRX^R8RA_yOXq$N`0+1m!nmyW*TFb>9pl9xxN2Pk%qr>R}~A5yVhr5p?qv_VVvW
zIXv9J`_e0h?{-;;i#vAgfMgi`#7oAnj4XfaFVLC3;dXO8uA_qo3d!e*Mla|sk2pIY
zWM-3=1~TF{+?*_|3byz~Vd2!gD{fCkg;Hn&3Mm79eN^IWS6|0(($b<<Z2}ZII=2jD
zoV!Q)9q9Ru%=nzq76r-4K2(zc-?A*BSU+}M)@J$FwV{0wk+ONBzTrQFkbIwBM45vI
zX28o<78cPKE`U++q0q!#zH+4i<yXlkll2@7voHk?oHNwdAMNXl!=ACWmcoY4%;X=M
zFg7KefdOBmbAa;V-u?TJ=!zaNS3f1t-i^#)WX!GgV0p~qxm(IbXW!}mLfLuaqWOU*
zR?Fb-A29jW2n+gxE)YRGDJ*QP)w{fqu?+j(OXlWD;^pKL^TMk6c?ajEN}xPs^_0A}
z5O^vK5GhdYPDdqvDbO@#SX-l=C|QajZgQ1&M~$7Eo4d(7*2Z>nul0<$F(&~$h`-0(
zCIsJmsG3_^Dg%Yw_aG60zN?Rr`tYxv?g3HJbiI6DAnEMvW=P2Brh}E(R5m>b3)4S-
zd}e9hc3xL-msW(JsE7yv34*6=R5gCKo0~foHv)-7eGk=c8Mh@Qd7vqH8zdy~>jDA-
zn{EcvMcK9EA!#<cA3l5&-^j=q2b@U2b;cD`A%U6&sUUH{?EJGFdX)auxS}x?%>pgY
zNq);#o{)}*-MUAQZe%t_929)d)w8aOeF`19KJOgp;N+AP(8<Mp<t#$?YGO|E-1qf`
zx_NJ8JrjTeRQv=!dnX1siw>jEXdmi!-0P4%@!qlgCRRPnZ>A>z$O6^~|GC4+(z0-+
zai5zT`*1)~Qoq-x?*O}@Tz=Pxe>{Qoe3j4m(Ul9`2N;#AVBFr#n>UA);Z9)DXITP^
zggB?84CpCf)&Qz2kP7|T4Ij@t$DvMV5$bUH@_gj-Jkt<$2v1^8P9SF_7z_=K2IzDF
zm+Yn9sAp)jQ*ccnrJnOL?jqLdy?ggmq6-TPRjN3;TF?MNZrm<pge?i!GMKniHC!k&
zk+1H=c*+@_J{?*!di2sUqZ}^B>yvL9g=_n-gp6_RURi=5aS|+$#Y3skN0dCJ_L0W}
z2<lERIe+Wkk;;L-o5q|fbRQg*8ic#ha3-oV4SX_g1+nCJYCGJuX??d-9&y8Z8=Js-
zdmfDNrw6biEsc7USB*DB8}QY=?vBx{)RdG5N^B5Y91sy<5VuPzE|y^i&Y@fIqC|J>
zwto!AUP~<AkS$m-5a-TKPrtl6mwu85<fy%iOTi?6`>K>4_d|!S|8Dce0}vlNIy<k3
zEzc!3tW<bP;kQQpflh@#d}s^c9(pEcC#Sx_!F-WU(XrJbNHq$k^dXg7H+do9SN98g
ztzW+$w~@<_&R#T;P06eCniA$>-XIPFp4e~n1-SBlZf<R{-Sf4T!5(swsvD3c(g5^x
zaB^Chn>W0Fuc?*x;zdVotu<gBtBsNMeppV3PxtN-(?Q@F`kVN?(mH9*pj|<31X&{<
z6e4U15*MuvCT`9Hb2`xDx{ZM$jsGsHGf{<-SwlU&>I5FH_rm+b$E$d_*o68pr~r6p
zo80Kw7&gh3r5~5GPCj+Z8S7p*c{%SqPviE-^;~`-qSooTB=gWmXRPL!1N{9PI<p(G
z$q~&oiR<4Fn7$}3_j++1(XB--PEJpw7w;$HrU5cPmv-&Dcl-GG>KhvTr37L#G9n*7
z{DMgWApdt_*r+#ZKP>;ENz;NZ`gE$O*Bk`0h!Bu~C-<Pr`zM&7$xc3$86+em#LdH_
zqjji&+tP9b_@u)XtWu)L?f;oCYV0GgWoXD}>!5AYo>8><<k(JM$)NHY?u+RV+IadC
z)dy1Oy|`E2Ynj;u1TG`aZ8`w*Ndy`XuhM{?FxQPA>LH`ip&XvMPV}c;!CqcvW|7zO
zQ1GOrq(ELSDlGiAtZX|iEhG>+1);#75mrH^LC!Gm>Lw?50}bFw9-`fMo+RKlCnquD
zV}?9=0=fL{(q1t!F&nYnA-Y(wW`)*PR<7SauVaqGHbH7RXrXiZbV^3XGAcM+1!V88
z0KpL@Pq@p&ja^(^eEj8<8iZD0fq{x_Uth1UXnfQ=ZE0=a)$v#Prf6;~Tb~yeE+df&
zMSeN*rxpM@0vlUf%d}Kvdi3BRD9^zl8?g|jJl4>|aqV9J5Sn4YYJl*OT+yXo1(J>m
zPVWQl6ZWIpVh%$FQAMC?F12SK>OUE%?Oc=ju&1b&f>E;l?b|;1n9t43K;rfmVe&-U
z>6W6yF*!NYup+m+d^vzu(&m$gw|6;^AmBXqpgYlfRBTz<+*aP0@Ib+byAkYWwKNm|
zW|8AVpZ)VJ8j?#S<@~o!bg@aAu{pW9Kx#nCbZy?j%YR@I0?TZB(9?-PY=EF9CJui4
z<_2lr!h#EcC<BA8t*nZpP@_{_0l^cRKu~9>iARQp6pkFJ&VSH-QAdYnv7AL*Jk<Hq
zO{$V!8+n%Z$m-XAEjiDdn?$sqy*WKMXNYW#j|_N}k7g4AuI}8~-p~-m?=-*anGr^s
z+LRX(Ef#>!0Ud;VM-KuP`~@U|F-u^?^_m(L6w8Q}C^JA`S2XJg8ar%fmRDE5R29ex
zS$|L@g@Yc(<TQ7tO&UbG3R)zW8)Bm|`KoY-C=BJH0>Q8vf{4RpOULeAaXGjXC~${I
zMj)xJMZE^m)tCeu*s0m>tK(T+f|h^@nQ1m*c>}^#Zpta?t+=FSL?V|XL!CP{4_#BC
z>-@8&UnZ|8Pi<0I9^AjK3-f=<7;?a21SY?V$w&?1y@kiJkr=>$3Ojz&SKY9h!3s4K
zp3i7<Ibsk(20D)?p`i|+blX1&aNa?4z<@Cn2&H6xecv+wLD<mSeTazFB$psS5Xc!o
ztTOcSzoAnH-rZs+-|*&wr6r8hfwgs;=*3wq0LcP4F)=ffo0B8yG!ZpzG0+BP0?p@f
z^g3A5{k^@HA@hV%GTgauwaYd<-OkR_=g)sh@3F%oMQuq)T!1H|{Y;wTmV33HS7i;!
zj%A>*8VK|J`In>y3N*`Hr&80>RGV_b!@E2;ZgY~10NXTPr#10bm?WFHh!q^PJhsY%
z(R)513K7<@$Q4TN{Gql47nV50f$)nEB;uTi(EF=Noe8RDbcH-zszX0n*OD5<&YwRo
znX|d!OAbW%BO`!yGxT2w^7H$@IQ8hox_Hajkqf_Rn&w6<SHuxq4BGaTd9JB5=zkIW
zJp{SjgTLGVZXSu|4-H!XzyK}8ycmrhvJu|+`(>*U0G!H&H~;ZBD3R#r-%Nblc*&h$
zfiy_-F~Y>P{%<YE|1Xd9*N=OgAkJRU)6<iVykuqd5=<x>PbxXU&760{-G51Hv$L`u
zK5^oJxcKSVfYmun#541l)dLTTF*Qj*m{_ocJdK-s1ROb0GsTU-x16BWHm(eXHR*(r
zGHxdh5x>$U1zI9E>?wqXr9qkH%0O_rghM`ljB@kl^U4sk@j>2+{fOmn!K>wQ!fORT
z9GiwVmTc_}81`rF#cc(S3MlIw?Jj!y?rU=fSFbJ-CjN&7R@;%U+?z4Gxo-xjqp&fD
zO3=6<zCM|M3H%ok2wjLKO}r0jl{opzhoOA8?=~I+?mC1y@2w<B8I*G%-t1U0!zU;z
z+G<A=#f#mID@VP0G}0V&U{+@4S!sfzLXt$ogn=MTg%z2`to=$xKne}}A^PV%^RgY$
zq3OEpE_}$=mX@CrrCY2jal0sYi}B<5ggj%YKO!;12qhmbRb(rxZ29X`xV;pGP%lBD
z0pQHm))u^HLg{r;2n0?-B#WEA^y$qS0LCZ?Aq+o?KscamhrOw&NVIq0!9SwLQdQVI
z!9^r%+4C4|BD81&1GBivxC~~)Q6JGu-AhQr<>lq-A%gwHT$P<29({}w+k^Dd{wrv7
zmH<}oJ@&|)OU>hiC-DdjFv|go2m18{K(7f2w-PK=kF3q;GhAM1EB-aZ7b3^#$NtI;
z9U>PuccCb+$9+$tmmPWOIxo0ypDE%}OG}H0h)5{q29m77N@LN5<cA9H*~%9vH7hHf
zGsRDz5{&R@Oh`xvKtRp=R{|YBOrqd5FfeE=d@m*cH#Bh-$$ZT~;mG26@ujA=D=1R!
zD$z28bZZblRDUJw<j0Y0nlPfmwgb)f1FFv!nQC)WQ(DxWuWnxnjD0B)+}6?((0xDV
zYK3(h8V!&qHL+fy_t)VP1$zvJKUTME7d=|#LG(gD0vJdh>9L84`F2B%Ajm+Sprwq~
zxP4;F8d<-U#y$12SQu&tEGCrLYLEF30V*kdlP^HBv;6U3HK}1IrZkb5(L!Q|XXDz{
zLvu6;Vcf*c5UzRuUI1D^KE6xP7-B81+^1E<V(z*DTox@yRaKQR0~yH!$n+{w!B)g0
zRc{0V60wL0VEx~4hyPO$@JRpC+q;#KF@1;wZ`4W7$!h0lZ*Py|Ev^H4$NEO&df@_>
z_8A?WzR#aa2B*9!b~#M;9nJfNg^!*((AX4uc+^6xugkJg*FF|t#hvWRYH4fJrh$^Y
z=^L<BlFQn-yA55yN<ro<`SKNs*$&*rGlpt-5e;Ez0>Mh5B*Md71e<a7s?enY3Q9`s
zxY~*e^R)cix5;oi36?#^ei?wIzkO>A^xQxU5RC^T0;ioLvah7$x3K*D{M6JDjOHz)
z!v#l%{sC(YQmK15v;=z2nwn8S`JVphMG!|YGkeVF#N2pK4{!=37=o9@aXe5jV3w0O
zw`BYF?KBF6U>IvPLe!d`IS!;!Y3boTROIMFAocO|2i^r8!}NHMAvl=sZs~&uL#SA2
zeK#^g;6bB+V#aYYjf@!x9zglk*I&PR(+g3Cfsh4m3Il@tG#fUCCslw_U}Pj8wNFiL
zZO9c+*dIUY2i2;Fi<f=*j_cZI@B?$x{7gg+1mgyECt!0m44l>0re$W@04oP=xr6Tv
zo9FX_0-VS*ikJeq%k=DQg2ivza;5jqb^3m8UKh_6<0k_H1Au!l7MLv0GSt2ix#cT8
z(WEr2U;Z@*qqI>gD=R`VNwcZr3g||JzZ5IC#aU}qk^s<b#=xB66=cjPU$DE*@}7h;
zqApZ~TU68mojY{Q`#g1Yb@2|4xH`Z-z)Wgd@7=vilgGuw6K8=Xej3B=RL{_Iorr|q
z!6O|i7ni#~e*A#KASXxIG@x{Td9VUVZOf?q9;%$YJGF-(hs6E|SXjZ++T09L=V6ur
zS5$pSSxbm+I8I1~44iz>#q`YME0pe<hkTGwOzXcAHF2H(y47|)nF}HR2V#Ie{%v=6
z1QiRl5Blmi>5v)F`p9!hAhiFV8?^ZP%Ul-Q>FKM!%yhb&kVq2?U%lo8Q78Tt`@N5<
zt4E?-#~Adl?|$z5dt(*vxu6LHT$N3XPHDy}CXbdkHBF&F>Tz34vonIKKt%*<rI#-y
z4<9bQ?%veaR$p0p+1B=nxILGG=IDMOf?MSn*qvCSi)RRqz^Wclk0T}4lW_8h@a5<K
zGke_E)X?CE@Cw4|QzuXI7kjj$Ye(;>%|lB}{u4<E)8AUUx&vcls$|J%H8V0U;X*Pp
z+#%Z6;OM*Z!s-OV8u3Cv%;?2U>%ux38mM;cIC1i1g`{=u<oE9zDJW(pCr`g}5s9o<
zS5iWQyVbW0#T4LSFjA)O(*gg|A0d%r<)RdWu6Po$6Z7}%s-ewZ578|*2)I<9dIwbd
zH=Fnq#RZmb#g3~FQ9dBATtPWL>%IuZB*z_bz(pX3q2(it1VHye)=vcir5xx$G?T<J
zQs(APKNsvnx-l@u%F61#IF=7G7=mR<{3xo6z~tC}qh#BV1ywM&+}7p@Y6R96M%?b$
z(var@)<z>fnWmzuidYQNeQbQZzW)joKN8M)co^dATC~#x<00QjNDy>p)`PZznwlDN
zG;Q!>+S;r_k0JzxNnguo+#FZQ@=b{^9UD*Hk${qvZriqOB#7bR;m}ZeRd0gkXm~P{
z8TcLLHEtGoH+%`JqKW28#@Sho$1krUaexF&1m;hK@H5A^9HWB)L_Ng4r)#UwQiju$
zlRT8chg4S|Ytkf<UZyZU5~SS8{|UPA<5N86QEUXSTThD80AHDK7?FS^#bW}>`u^?P
zdxpEJA(0?OU9M66PSnMpj?XkRb-ZtC(krmDKqF~o^%TvB21gu+a?>HALY-EV5-~Bh
z`5&oJec@FpzD;Uib~$>Z|MO>Pph6!!5JVGlT{a4g#L#WxyDolb9taBVW?<MxO^qxI
zur3Nx+98{j@A;ew5)^#;^eHIH6S}$yL$ZJT>tjJdz$PLLgj`CN@4cn=N=p37@w*}?
zgj2)|{{zuSKPln|{fUi=FNhQdN+IJ#!-D&VWf()S5P{KffBelIpb-Lyq1q&@`epBN
zQiCmsh^+W{6Ld@f=0hphlA@%Z>whEA1M~MWcxY%x_Fe9?5v!nI73Do##0i`RQ1kB>
z;&b6FD0lRjn7z)&3PRJBl?AqR*C|%gv_{wTnRmDzBCj{N0bjzSL+gmy&?HnQ>FI9s
zlP2fSv)TrnZhF6plymBUDjkBZFh2HcZtOK|v?UBo9#baDXgvFc&BUAPcg>aL5D(Sq
zI4>_RdXw4dX<-qO-0bZ0)t9~KNiJa*Lj^w<e<C$VKy`=`uO{qZQ%#K(ic_nD&p_Io
zB4lWGyaW1Q+?VIvx5@c~q}tM=ihJzQ4UD9}Ia!<dsDpA)uQhCMe;N>z1bjf-y{WZT
z5&zUhv<x0<m(jQ5msioaO;)lKBY0TDXV32OEB|uk#cs+Ykh<ey?QB;H!)~;ysC+MV
zzvL{gdjI}AjsQd1JOD6X8UWW5=iIYx8#a=nq>0DMFpj3~#Ir{+NvMxdB@s&lUwV3l
z)vMQ#%p)%@Xm@XlPfXONfrbLgn;cjLi0DCk>PIJZt9}srF~<u|7eLJX))WYd&rM8_
zZP_w@H$o31a7Q(pA&zYBkr?~nXAq_BsG5-jTLFld(yiKmCc8Vy0Q~`|1Buy-7j!b;
zC`es~>dJHqEL)l1{;9W1=@^dnlYW+$S65R*Ob?}6Ny*4W#w4K<IWZJxY0joIGpDvV
z%W82=U&_2~S|4+qGz#!WP}+ea5~HD97BfG-p9dW>zx*!ADk<!NR64)f-nbFRitBN|
zdVhW{+dN>xk2-)Ly%tA|IAgJ<L5KOs*UUW=2ieU?MRnH9jQ!`Zm&4BgP%>xYAErkK
zXtb<+u(+AaGf@UjPd*mA7e9aQG}%{~cAV@#wU_1LAaM&nN2UB>rf#4!*z0I|#Bhv^
zlpMlLNXFUOQY>ZUF6-;EXD?nXGOeYbr^fsQsu8TG9EZuM<YbEy&yB#hP;BSs=c}u!
z?Q=Jb`j~Cz2gFu(56+oO$IeSl1uuqv@|0z-$v=dAV}t*Y@u~EqzPknrAN5pud16t~
z86(@hS^rh0fxz$RIJJigKpfgpU#gN@ou^6AR-g!TmF__?(%hVrYuQnAbcaI)W{NR4
z`)Es4?yKx;iw*;!xsyMC41;fRV%WVKgx70b#y{kNYR_}99-zW1hA59p3%pKmFEbU{
zElLJVU|;mQdWb%I7Q$0BYY=>*WU8yGqV_GrPR6K>R*{*>jT0xcbEVo(hbgmYHY)F<
z&N`_=mX)8M$T5sUnAMXFZ3AX}4^Gh3*_fM~Ltu+R+r2_ER)^;;0=Fpko{jhO1h<Y!
z?~Pt^@QFfyIV1*<X@6I7No8PqF-BkW^k$Y1R<GT&yd_!$s{#$MO3`g}VlJctJro{U
zCGCIHFFIqBLmGjS{8@H3GME(FQm?)LVL(8ZJQ&Z+%DN1K60r_^1QInqd$BwVCm$cX
zXM1PoHwgDoCS%`GY}w-ehvY=w=rw9uAn}9~3gibYtgLv_I7KnU4Z$1zehxfAz^b7R
zO0a28(v(@6C`Ew;9vDi_n9LUs+8@h=0mTJB`!Dj!cehgbJ#O7vj|c&e7({M798ZfF
z8x15QPk+Q1L0^pHp28HX3aPP)<&~p(Xm{564Z+o~>_;B``Cx(H0RamM#RcL!X-}W(
zJSzrK22_-jW)mi`A8X*wm6nu%!?`xx%!wxfc|yohe;@Bt+_b)5K7WSHp>lBQ2*f+U
zoZ+N!CnhN-hGp;JM;p%=sd`=2IQr)!HbqJE5ET<LgL$YMN(Yo)YQXL2OwG=tP!`;<
z^Mi&d{r2^-HkqS<f|s7-ltBP?P=`Ri1%Z)Wn995Q*$f-O_>rC$w%$X!Ki%slS5+(@
z*0@bInc@D^5={v9+S3(5ritwl(pMk+#=~-Q_^$|q68kVhLJkO8NJoX-UjcfA3U;rs
zs_l!9D6)g}h@nH2!yB3LHs^nde*BA=2}-<+a0SBR?6Mr@9BLzFB8OJkrLYxtiAwvV
zuI@XUTb`cqMo}jAAJB5a)c;m}8c3T2ZiK_lJE+<cd`b>+9;NFb1*#u=l2p8z5QHy*
z0Xa4A1V$S^Zrg|vKPam$;ulAdRIqD+Al0P&!Gs-JSX_iNY?aCl70H@T@SIJ;zywsu
zurQ4-K&yZTjf?J?%ETs1u8%jBKkHEYJkS*k0A;zAko?rq0MQ4g0mZw7uqt<$(IbNT
z`s>E`<XAk!8nt`2mmyJQc@w*Kf%J#8h2^mRH5%KP;kAX40YND#22NI4z6tTTyHZ0X
zId^~S{-q=9d9-Nu8pb@^<|9uCQ=rR&iV9b|O%63h$no8E%c}R&(yTF1J?RE`l~Dih
z`&0ZsJ1F#99Ll@x0}ycJFdESl)K4@xjHUbf`wxnVf#l}&QQhYOIcAWm&bc*C_G9hq
z5Lsw{VS%b991i*Zj|qbfgF&Nw{}CVkkC}pyqZ&K62$jl3`<M1+%DgZ;dln+lB;yLf
zH{4H?ZMJavXdh)$KFuk4@f7F;ej%ak%*;KW9AUk!N(TZ%6usVX$mm1K0umD20Ffs=
zA|gGL@<Z_hi{R*AGG_Luz`ioLOpFVHBy>y6*NxGFco2iJ&}_kK<V=xkGXFM&71+Z0
zRh^9!(g{(xRYHU0c?vn($kzTGssYJ}0*QbQc?dP0xUIeat*`KDXVzwb-%<eD2c}R9
z=q;Akt0n(aE)`?v{&&3;H34D%p_tW0=>X`dan}PM?}L%-OzRg<g)?&}<Kw1mOLS$k
zwk}gvQu24}JLPsukF`mopJ*Hccc)`TL3vKt%R#YEFz;W#n!{qIl`B<fjGTzF8!}<#
z&|0vL^!2^V#Hn{+Baq<Jva$kB#aWy#k~d*T#Kb-ZBp%Ok=bEU3B6O;_{-8PN06;UA
z&f4IxS)h}tLU)KWgLfa)B5r}ufdhOvLUu<B-LsI8Q(*qYvu4IV1XGnrUo26xD!)+9
zyOaN{M^n%A%*^qNgdGil^>(Nuy}dU~$=`VJGZ*$`&@yaTyA~)UwH%ss)X`{zI<gHX
z^{gx<hsjSJB_dR~SbuWQoj<6#8Xi;|&)CoT#L!*5r*b%mc+L?219^hN0|W1-5Tg&&
z(1nP_bB3vS&9p2J@-TTk$XY|1HkT4J2|IA<44Ty#1>bZG;-NA|0azWJG%C+So0yP*
z+5bsM+XZK~>=wfaB!GiD;4#-w2UabH$hf-!-iHSquuimPaA-<cI^hbc+z~QKge_<k
zG2Dk6vo|a2pE}@7^=7W`SQ$u9mLSEjw-<rb@aaEqI9&@O=*i>91ULYcgE*-bmvr2L
z*BUQE|9tdi;MXLBC{G`sO3(zvLB8-6NRXfZb^3pwH(}U#I9w_<E}=xKy-2L(5&#-t
zHW;_ZR9`Lx7DNe-LVNV|Jl#Ie=C(GOtFuqz<Gp@D*38wUVZvXvr485<U(t`4sHjh%
z6QMJQR;}?e?T#I(f8AQwaMXwJIYUj)F}jKrmH71yXDl)?xFHjhe#~ehXCBTv$%C--
z@Sh!Oz!_o)3m%gE?$oCx_)0*fBalKg0zbpMn6$iehaL*n2MgHXk6}-Q2Mjd_Xr*W(
z^PU8p1vHQ76Xxayue?CL#N{oCxes{x0q$E|SdhLtThrZr2D{Nn6$0W<udhS944EJ+
zYb+Z0lu`XqXc8IsXq-ulb+`^@t`<BH;Z^Zip?}f0v=@hhX2!)Cqj&#T>EE>=rQ40n
zsoL7Tj8=wW))!{F9D6W5h2d5VjR37y7`RUsf;)?^o%Hme6(ME>5-|Z-0v~dcB4|VG
z5)_2?0HW=1U!kM6w}(l|3%fA*ByzE98(qWB<tCSX2R`}!?t_gO&}`jDONu%YCBCSZ
zJBwj>ABZ0l&ZQ<L5#_S8^9!_IimSgWLoJ0OE>yxXJz>rKmW&o&Ck2Dz4IyuRoo~ch
z(myL0>`e)K@nRk;*;wtNHci>fa~N$CDh@@J(Bgb<3#lLxxbJ^SqZ{EAXYmj?e&>e|
z)xj8@O;a6@_?F}*%q=My_G0AQV5Ga-^w)s2v@!Sv_NUG~J@iV~c=i)gW1&?Ok`;83
z0N)H+HE!O#W{(CMe1%I84;?A$iIahrBF3wbO};hxnc`alG6PnZE)nP|n4Y;CD{r)C
zDoU%Zp{2!oZ0n5Lg`_uciVFJrj1k~OU+vsRin{7zp!H5vKtyCLqHRQ?3UVP4h8vq+
zx$Srv^R0M;goYpE=!3n-0(;Uoks7q8Kb0G<wAhw^&MvuVRXvV~P}9^w+Cu>}X($!=
zC^Aw8^L;=M>mKfAWMssQO9rj!2{?DfaS$$P!}UiOO*3|!{B3+zE^0g&`E%lefCFE~
zSTypA@^oBazzeUB{~wK2TBz!ub4^xeQ3gss4_fq$CLg}p6knIHZQC}ztA`oBKuV3R
zIk|jXqeJ5zKvWEZquoMF1I)?p^V^LxAF9lI0s*bkV}y{N9_X{cUKG(ZAdJfTui$l%
z;$TQ^_FLDnpZoXiQ!I+Clh6UMFh~?xfA(F&GS>;9X<)9Nrs(mZXt1gBM~-aSCHnML
zfCIzKVBEFrL`n*^;3`#=&i~qP(ZR#g3Gfs~6bN7n@-N_Lvk(hh$O~#K;v_Ki`}ftL
zodiu5UyY!NdbJ2<85`fNzWApW0NaB&+*<#+|9tK6t^*f2Bxkyvy*Ck9D4-qVUmjUZ
z|D3w22yXA_z$j!%S(!rR!6&F@!RlU@MZfV{-{|Q|dv?A%ji=ZLx_`)khrWJ=c0+*O
zV)ySJ$$>cR9nqRf?jPe`02GPtdN?uCjUL_?uneGiR~lw?u4fbzn}qJEmA<OJ5`Fvj
zGh9I#aJZ6$f;C#>>*#2W%Ka*j?e}%&?JDPzZJHVZ7y+GcD0auJ5IDc91N(2Qu%Ttl
z%FClATie~;jeXzvM7P}xrXO)fA3hFGwP6Ac+uGJvJkzQtD3D39eLX7%yOOiA1jNNV
zTUzWJ<BkHIKJVs{S)C9_bp@h@Q}9=elr|Vxn+WbBHueifJD~MS1(*)d1YMWhZ9q17
z)Jx5kOk7y<Qk*7uI=tN6te%9c!mp)y=;E$|3q?1BS>jAgjQ|U;3I+@atvxYxo{|Dg
zL$jzJq!ywR9wVlDVRfa0!Gw&U@d*^;1f}@y9(epK5OHl_a<zfj20G|0_c#oX{vNqS
z@r-c<;J>ikdycVWjPsxq614w|Ajq>{-?yu(W+SsF<hC#L=i8Jjn(zAhen9#~$${xb
zq;v!5P}E*;I+9{sKr_o(Y%w2znEYS#fvLNV8RR1b@QZ+17a>(>KcbuGW_b<eg5V{3
z9mW@udC?Ef#zAF*mJhH+=3WAWdB(ZdQ~1CEplO6z1bE8@WJN&v{Wmc?gB%9UW24uk
zHoLn95JRfpooQ7&`a~!{L8FxOD6>(|Q->zJ(7%XRTZR*AML2C>2iC+C7G8xC0TAy-
zX7uxu41Y|7Iok`WHvLwx6+4bIDrjObMOYOWQb$);c*4*hUBs@*xw$Rm<gf~4_v9DR
zdl(#igbZCUXSNt<6?nr`3LCTPNGm8?b>>udc7}$q+!9~Ky*v5AkXC!*5}_eoX<0({
z6RqyUEznN-`Sf8xtS05tr?XinYc8HHQis$OQ%KW8D09MFS<HU(PAW!+z20PgFp&Yp
zI@f&_uou*+-rnAWgM*I!fsMk~zI{9hmIb&3jBg+=0G}KIiF3j`04rc#3E-&s*GTa|
zUHGx4=@q4F4Qaa?gPo|HlB_IDW{iOpfnu_@-tVwV*6$G%Q`FSZTRt6<71vZ3ujXKd
zLE4))*Xsv`d}$OaQJS$quZ4ejA(>dW?{`yjFl_nB0Wj&<_(06r*%QIT$tk(IO4_=g
z{O_SSfwaffH^v&i-I~NG?0>ZardUi>4<dQJu2o%fK}T6qjO25ajhHV2j7m&tI5*KR
zwo*9^pu7(eGD@THrn=HwvJSrx6nIcTwg1H=ww)F<3J4_dFt-F2h5Lcw$9uPLe<c<b
z;lK!^2P_J(cVMwFjA6x&0vjIYARwWp!Hs(0qu<+%bye~8%_a9}i%``)r@1wKs{1FM
z($sF0s4AJojK=)4dyrGIwavz$2)g8sDopAoBq-Lt{;K9SR|&Qdz!Y$Ta%^EZYwiPa
zRqN4zgo`1&#*TBe3C205P4E$Ay!zoaiu+jHK2}x`0*NXilau|&ynL=`YimbJUkfBR
z1G9@7rO{84+eiPF-C_G10hH&#R$$;1LhE+SX@RvXG*#Y9T?tJUq_UVdKSmay#70nO
zwV|H=SZ;;SpTmTd!?h)%Bw1S!Ft?M`%%|+T(D6UVWIDj%Y^A0gSDz|1)TCg`+7&|f
zO){Kb8SBo>mpoJGV2ys?(;q>g`}yVb_|3?}HQUzwHP*e68NxIBcV$ZkW=!rz`Q2G;
z|Fa7aS@VdA^O)O8%oxIeyx31wLqi#M_Ht+$QT$_peKbJrQH7z}xCg!d%P*NUo%;mi
zcBO11C-~Eo3$w)R6PCq+Zl_qw1mXSr$B@d<P1aTtU!cq~Qc}*T)18K_K@V`-1ye6=
z@IiZGHzeLgJ!xrfeiC-X$low#6uGuwH%}cD?&R#;^}?2r8>3_<CnNKBX4EYz#oM;6
zDB)P3k`@%4gmSCq5(63oki15SQ+T)Yo#23=)kEP!h~}O?1z>ft<C#ME<-cTa>MANr
za4dxhT33Qa#|v9_zjEy#Dn2>?QpjIe&m*JtXbCGr+pS6P=k2o3cvmn}5eID*P1)g|
z35RDQGGLt&ULS$vfK>jF&}lL{184dz0BheOND;J_bwBhc5C(uOm5^A3xB&_k%)h%p
zF^zQs6sjArtAvCE8Ub409+#2*#8fzRSC1u*Y-C0}22#uAxPh4s+Y25Rm?KG}U;@P=
zqxw-cIaJ)QxIq}>X~3|JqczMS{<+Y?<+Znp343M%zY9r@fc419U6IY=nA|nnjZ94w
zK*r!3P%Z(mYj=avFFrPQ3X{Hhap0j5^$>^fg`J7+;w<Ae4nDpU(&@iH(|<&553enG
zSts><4|ZQ(>`6;|;DD@&(rmMroarY(%)=XagtYpb_Vy%}s2)qr$bje&p9TK7Z-MWV
zF@wu9W`Re``lfjljqwNe_Y6WFM*svN5&d&pr?N$!0;a4M*4cS?=?fp)t3Pa+oh8o{
zyZuCh)P=T8L>t9~IJEc>mMJ^_faD%U*W-gy^Uwz#%|JjrSH26v+AEF?!mrRzW1${?
zW3+ZmVdBST+3`tn$zO8s!(Hq37tz|j1wC{1-FkYkdIIQ^CMSsvZ$Av~9;9Kg^VxXS
z&aTWI=;{r#&UsB+7&s|lFeYOsm2VjsRhEF;^@FKXZy8B;>c0gjs5I<sZJX?P!s9m>
zKE6ow2b4N}h(ct^bKtgBj~&w<tn<8oq1`v=(IaV>X|jXDq}P_|8)O8!kdybJYQg-5
zj9sa}3k9kqFBz{UXNs#?E0sOp%k}F?pG4*gAjN132@U<MxbEIb=owMR3p2pZ!n}Rt
ziqXo@OD9GuiF!V%;h`27Si3th*v^nrJT^S6Qvv=IGWOak<$^BU_^3lSB_$=ruaJ+G
zkq_fC<)Up6phx-ol4Vrz4jv98M>$z-*A#)vQeqPn7OttUPvqc&6McBquwyk1<_WFa
zGkYP}ka7RD1aO_>4l!@oz7Jhk&F0$@4aly^#jsW9c=}~*%;5O(vR)eko>_~5PEtdb
z%gL&w`1rjvn-ow!vHdl3(wzL%Enme5q9|;6=x@c{cBY;D+t3P%#kAvJrsgrN3-HvK
zwuNaQ-cPm=G;2WRoyS{HNurjhDSV8ID=a)5mIH7Kz}59}Z<7ODpr%Qat$Q?Ir57t3
z?g-+V>o)w&(I8P0g7v>U9{fuQJR6&qR%@jR`4$8fy-_=Xb^?GuPAy4XM)~kjnP+%`
zfv&D1Sx13Aw|6N#E4FH%IdK9K*l(XdPh!ZK02+{&CxbRJuPD;1iVY7H?PHF^pit$9
zKwJSzJu`j%FeNr(q6EJsB+dp3ODt2+)|+X0umDj%diq1@zHaSWSkftmzv0?VbF=)5
z0N)ME{lw&+$NiRvT8eVF^YTQQJ<AvUGGRAt9t!ER>4TTpI9yM66J9GjlT7nbi6Ja-
zeSwQ}0-juIDz^fp4fj|)iQWfz6~sE8R8Y~Oye@l3^xlsM`<8<<8Fu-i90?yFy2fMR
zH`}|tZX<C6HVjh?#sjuOZ_#{^GbsUjU<`dPW7<aNR1?$^&@i9NBJ>j&PxJI&857t&
zJLdj-G*iVyB*RW9kQ__)0+u4e`O}Py6UCrFiPcDvn1Er{4H4%Tp<By^`UHNHvv274
zT|!zpI|95|U~pE^j}d`!8S4-RqSs(XggzU6;2#s4+*9*Qh#q;jqFpth!;eK>tHFU^
z0kp(=jPPrTQgtakrHIO&n4$l^-H>|+%&X1n8G*`TSUABLkO>MH46j&)<KiBNglxr>
z;{U+f{?vdRo|TWqtep3jVMz9v;1Z6(t4Rg?ny;&0F`G<JPQnAC4z_RLF6gMJ{898}
zb^_%_xPyXYvKwld=OCtGx^@j|Lj_I&fT*S*-=4w8gY-oJvmfxHz<aZMdfvK4I4J^0
zB}gS+-n{JWsqf!=ZN$Kk0R{nOi|hUP%*0nb7Wv|Dn)aiWQE0vi0XC4m4!{|658-u2
zO<nS<^#HE)b?OKOXDoO?z`(%aFw^ovKOKBf$pvbkxcGR5T3dfC5RA!47s4>64#B`3
z_z--;#ce*xVuT&W1!T-%%K_y9kHQYXpAqB1Ct}ph3Nj*S!_gKfD&7K(D6R*mmj-P6
zjm#+51|XUUA|FOwhbju0Y13i{6zUkY0brC^r$`7Enh(ADZ1PbJwdOW7(-iOWAd`Wn
znSI~B3tXhVZun49QF~?!UXbI7!fOn6W$XsKx090KaNyxVT1mfFMn=rkJ{W3TQukOT
zs~+%AhZn4ecXekiEuVyk*Dm!LmAjw{lU2CSD3zi%g-wV`8@P;@B{nIOluO_EcuzF*
z8r-&#^aGLtU37@AFn1DknKswc`+zExa<t>^+c?N3uUQjP%{LpEh~2y3V`YKr36IK&
zf*c>qjz|CTdeYYm&-p1Dsy~$o<DW=>iUs4@<L~}$${w0(m8RYt<)2~__VO!|H;mWW
zS><;<^!7di1J8t54LB^jLvRJ|^uq@|H)|7<y$YI8pr4cB7>!HZJ&#!II|F>iIi>VZ
zeCC39m~Jvtq6(qi)^hjt@fnJ-kvQ__gyLi>$^p30R8|fxBo%ZYVY+4vP#owmN(u+Z
zM(z8qSm0$YjoX_38rYBdwxp4{aJi}(gEqtg76;*~g#`&@((csjaH9%;LX0+gwZKph
z$H^>z_T>Xo0j4|RO5YmDLRw4f1O?ssLblX+wV@=q?%ZvI4h3ua^KyB2SGmaL{zbwv
zi|oxFMcHUFvQFQN%7@yyxYhS_tv0dTt`Oa9xZfc8+Wg7wscARNyBhUUyY3{NuzXWi
zUbcFja{jR>mQ7rWs|r0hR&U?@dClY=He)yU8u&2zu&sWuR%X0dkX>ldwchicx|yJm
zTr}oQP`rewrlh6<c{Ktf0%-zZ=!DDg1B09Z_ZbHU93)R@#>a=%1?p0W*)g%TWONNw
z1|G6LuOrY4K%6xp8ZFF$!)%_e5LRDMm*7gnHmez&+Q^KR1roMqEr3C=j~77B+YM=j
zs0{S>eg~;heHBh{lK?Bon9-!6hZ4c4jDv%&lpMMPH4NiHeU!USXid2EH5be>Ak*o7
z)R@_yTc~4SZ)b0hZWFVNvi5VE2v7t*D+-#ZX&Vz5b8qUxH^tc*1%`{0Q<7ACsxYtZ
zr-z(ARPe^hLzf~~ff5@6G7Eg_PoH35othW#?yiLBiVKBRNdm{6gPu>t3#g$4$1Azq
zioo%uxI?!@I()D77((`OJv~Rq1FB7k9?*M6M_;F6q1l9jD;MGe-eAIp7VSPD3o{x8
zjOyDvI>Nh0nwhy5P&X!Caa(ZlD9ND&gyYt8mzfIyj1UrZ^bjCKFMfOsB_`OdbbSjf
z^M{oMg@w=oKpG18gYX*!_yse~BnG);wa^5dn^0<+4HUV1?yh<0FIWt$RH$(lp&?P(
z*|y5cRUiW)5kqt)4jzGi)@pIwefdePDcIaZ)Buf*SJ1TJmmO78LmS2mI~!5VaDw{y
zG&PU3T4R&4PRLSFlMjbzWJ$*7H(yM5s0S9cRSrCwjw9a`2whkaIscf5e&^Cm+1b%C
zU$U7Grci(u5KIE;bh56rTwd`Ng3i@U_c7{cNEDpF+G9=#&Y379O-)RIlcnTMFK!t^
zq_h%UBt+E~7H~a$HvDz+6`T8aSTXd#?c{7LnEyc=F_4cb?(Ap3k}+eT5K#v=6yOZB
zZ!lJGQ&=Ut>?0rZ{J9tg(MRMWnAiB;z4Q1i?i)pD!iUaIGQ!!QMsM}?PiQkx^+Fu}
zFryfw2Pj40g3$s1^81HVxeDpY$wNSXJpEx&!2rGHyLSnRiQdlKpktYt4~<d%3>Q{S
z^}P!yyhaZ~LumV9F;A<Y34{1p3m3F^@Bt831-aY?z>RSqbn9r%Lu%0t?dRcv;vpoz
znYQL><#e+A(Ei*fsa-;o<Z%U8K{b#uV>YDq8Ds7UjEQ>S+F_wlR&~7m_%1p?*$@i=
zC3~!h)5<yp{bkrhpMV()VZWD7PY2)!#zPKuIG_hoznF#S*Zdw8Wc)RfTLRwutEr^I
z9$lWScWNHpTCJ(jJ=Fi;Qc<zPH2#--5w;+vV}RVE2-)aGIIz)f-@a8&N6%QW1EZV>
zW<&+<J#LRps;i5=#a~*P%y7<z9l5yXWoAwexcul>uYLkyh3J1HGXi{#{c~&pWJ{h_
zcWG6~r{O9$V2_N7V?(HS?|zzfb|CEe>B--Vsv`N@8HLW~Sch;_UefDZ#M1Q@6udwy
z23MQVa^BIh9-3p)k^x9O|KkU6m>X0C(?=)^W{|7+pOX(w1{ZNki(Pl#AEb;FzdbUo
zy#EUBG)CWlK~jwM=#Jt7b;PAtGmo^6fk1+o7g!)>3eey_9&POC;8eeK<$||U>o)Q&
zTZr*C^t5S^=F~ko;729bl=FFd`woP5kWG;=&e^*4d)$o=A3o$hJv26e(l6zz;za~1
z<-!9zJWt0dgN8K=)c{|4H?<jN3_q_C;h0{&7DuJpG@0}>?vdLv^DBVD%E#ZImTW+M
zq+sa!9adQKpfPt{dKrEB8j3~cvlB<?7Wpk2<8VVz&Q|(u!GK@2u^^;3z~FY!(7?wC
zz`}`K1s>YP6?p=b01qo4cVpTTrW^^iRP`=rP-;VxTZNJgk^YT7dGF`Xkcaoj!!AlS
zOf0~en1_dkL~7r@1Pl^>T9?|TKNb<7-SrApeGDu?Q%s~Tv|YBb0Z$T`5ldgDQ;xmB
z#w_o)N?Bcf3v(Y@0YGKv&j|fYA~x{REXLf}R1q{&SfvP`bs<9D<zJ*MMDT&4g~M3C
zfTcaj1K1d65*QslS_#bsTurw!F)hPr8tdvzfn75E#A<6*a}_vnUJ$J*EUX6x)~{P9
z@Cq7`Wz<dJ2T}Ka!ITeC9I;bGpFRqWqj#y1oE{S*C}=2oG7C$~he~Yfr!gA(uDpB@
zdPH~zFgH=t(RE<l7Ot*%tozv6BgHPueZN&t;2IMXKy?BzqWA1mVrTq?xw~P*-(dFu
zSPvlrQ&2#v=tndq%mM!5<|AN+1O#l|wvDwo<(1!ML#N(#D45ly=g}t&f-{6cAd4pt
z0QkbfMa&|>==U7RLU_1bI99yuPlGoqI8A8!;bg9>OIxSBhUD>UXB})$;C0eJGdl}i
z%i6VTal!}~Pkcc+2!siJ(vO7&aNJtCd$DBs`T23~2`2PVcBoteWRLm{$;Vh;{w=II
zKrVrVY^IDp?W3~qe7fpT;U_SFC(bx~QBA_?8Gdjt{X~G0m>V0j$ykCWL_u61E-^SX
zghb(l9s%;?suQMJCkbsGIC6x59G)M^4#}NTtUdDfbJTJul`x+1ZDd4GQ!^Tm{U(Ax
zQaSF`{xdHh*P32+cILE>7w7dY6UXE%rb+SWdG_yz-R(wZ(3wEI2`(NdFA%eZ;5J%_
zUBTHJ>oCm@F?ViWUWCB;TeD0Qs6>SnET+DsM7MQz61I1dxdQt7`f!ygfIF$dju^*G
zv-P|zEG3PNlkiS&v}c}pszI}T+qTlMrnBF8;J>lmJ%F5aD;_LGW@bZueSJ@lVOy>w
zcj@3{Fmop83&@?Zvj|}|+AMfs6r?K|o~<X30UZG7v>+-<w#^Iae~C~2T_WHGx&i54
zbOFTZ(c{hZ9(ZL6P_`XsoDO|Y1dc%x_pbOsgFS0!a3i85f=(U=!5S}J&{@hdkq=g{
zFqLOD_WX8NTz~twICvEcD}It>j(|=4pPu;kSCVg8j9cQ!X-MmvnksIOYmjz!i(y}u
z25dND5WI#IMf{WpC0aN<Gk}P$U8_6}H8kltXLnfL_(Vo3Z37|#*=lgL!iBY@n^DC9
z;Hn5iSioG+fnBt=PD@F-U~UeP9p=Sb?BUeeS+F8v%?Ch^FN`O8m*OZlxW?x|4kx?k
z(|0GLrW>*_I052yht$2hlb4Rm-Nq;lIv#Lh0FR+)ID=qjZ~|^D`!SV;fHcl~CkAe5
zK0X*T-$Aw(3tv=7=sZhodNoEHWz|_(VKFNt#Oeub8G(UN#DgQk?*rq%W0O}wIweU~
zkJ_gXqKXxZn40T~uvLNZp{9n4Zq;jzua}I4VfLDJ66R(YT;U4pF0hA7-#HXZ01JNq
zIIzgcao%|YdtAr+aU8CKJ?HTYceTPb9%s6u^9oT>Y!aT5xIAEWKRtB~sev}K9>e}Y
z?v4UO{s%u+$etnYU}8W3m7FFG>Zj}uVbyJNP*33vLFffnx7cH*rV}H3x{F<2ab%=h
z3hu12VN32+-{aPj_{DyFTkX-is`$lv;_*`8y752RHS#M`@di@BilvXRtnrHV=Kua}
zqbN{toOdo*S?#`&g_`lXRmU^-{nG5W+*%LMZ$&h5lQZ6(7pKKJbyraI37+IDykK_L
zVIU2U_eDVg&RoT0JER*Qi>^JfK=E@9CMbXea&u>}g%<qWmu_ldE=2pwSJbZX_vWGH
ze#IDt0)P;O?3Yfvb7#|?7#v2IvC#V35?&i2*d|zo7`N*AHG3c-3oPS@4^OK5F^0wr
zWrm*!9j*a;Mp<IX!mO+K1^MSh+=x<-Rg&lF*TY|>qqOwP@6e9Y4z)31om=$dvoA6T
z!GB`0b_48-{5743z7xaJ^<f8v#KeA}PK4dnPq<wW7M_SE0zY}sOmff&Zpc@>yEFRX
zizR5$0pB9Xgm#v>?L2T%A7ww5==$W>%QGOg!7roIK}}BN2Vvpnj*f#I9Of|Xo1L8{
zHaKzA28N8$zd-QWA_D)0jm)?ug!9VB)>cs*(%@XbCKB0A*1cgpa1;Q(KJqLEJI?V#
zwa?raxxB=l?F7TuJ29w3+O1}RA@`+9As&Kxfy1<ts%rmtCphs;=7V+L<32VxxC0%D
zLlhLIauq<O4PA!zN=GgS7ca%<=fk@1)L734)Xy+^!##2T+2(%v#YY&`Lu}G0{K|RC
z6j=yDFdPO3&lFo6pIQC^b$Z_#oDnA@CU(+3fOF4^eXJBlhZBZ?djUc~%Yq#Th}QHc
z`ZOXIuADQ6Lp3&oFCsP$bKoY8r^^rn=!|LDYn0sp(qcwXRzgD45H-U15VJdqWXY+i
z=jk!*iCw&rvzK5@NJr%l=_EN|I6hu$2;-qJbC+ITvV~t=uEZgG#S4S!V!@DR;<!bm
zF2L3Y4&+1C7@F{(cA+5rce{}EeEU=~=e4)jety5c+SPHD<dz8U<;KhB7M$Po+F%dj
zB$Oi%KH`wIBi(4^icri$oD9G(J)O5~8+xnz%|**_`~-x05nVTmKvbt_8i>KSX0$*U
z;GZAC`F(N~=&>NV&P107xfiC#A~5y@lS{-=JXtI-M5Vo+nJ0NfpQvgEy50uUIWY00
zvkbrttPL+g28NOvy(-j8#mJ8U3Q;g(im3ynI^;>>2M<E~UtU(0b#i%-&oGx%wh+v7
zDyB2KF-m!zdZ@4k&PM>GFpB4Z<08<_E&cq7lVIT)bo1t#>@-*q;8=#1^rK{_P$t3V
z8CM%Po9)_q!7R?<+Z|f~RNsGFBp|b5`Vg~57NNR}*SW0Y7q(h1=OgBnlGIeTxZ{k$
zvd_@R!;p#CAc&HP>UX$R!o=X{$%(>(hliNS2L?@?(uODZYr<Q`Tt*pFZ4V!AWA1|p
z2&ID)I{uB!sL_DE*7#Tr%phKGWCo;xz2oVR`VZ;@n0LI!h&`x?n55t{E<QsxI27W}
z4rk0&5yx~AiiA!Dxe7m-Ut$)GY;sE2op7s{hQEkh1=_P7*Qr|c$#^f^K#=Z2wleT}
zIQJdKNWNODRKitiFGvuvf@Z^Uu6Fngg8RgX6FeNk@7=3~w;mb+Jj&X^ss5Xw^U&EO
z8wg2D|3cM?V5j_E_i`(OjZXM`?6l*@egd=Uvt{<g2yi&n6|iL3Sfkyqo*dLqse+Z;
zkhb>1ZHTgke*z15J#jtuZmB+INS@TrPE6Q1IKWh9{GsmobW522$)mC*3L6YKA=rW!
zxgg_@Br!#lC`fJBGI-SG&=x`cgP~i1{a`I1->Z4E|G3QZQZ~W?crM(Q+miP%Hgc!z
zb5^kg>`bsp;DQL+UQ74UNFgbgfr}!AuysNSh)M;via;ZX!K;w$#yeXzxPqiDYM}_k
z(|h;vV_0=RVY-Fl3=idaXl^Inj3(FNeGf5~2T#em%1R4>^Pc{7b!xfV8Z$af0wfZ-
zkXV&i4dJYZF6Z65TL-I&%naQKn(Lh+L|EytM8ku#VLL$P0>i*v1#tT_?(q!Uox}$s
zFw6ll{8-RLSwW$!2V<RBkq{oTh=|N!R$uG1kc5QZcR{0g1qB?W(bKaGNG%{ADit*D
z&Yv~oPkVf37S3g;;*&YSjRUeEVFpv=Nrmpq-F+Dw8C}^p(A7zMs5!7fIz@`1k-dMP
z(lnQ#$w62mG%06)8y(dN59rj|enJdj?%z8;8rJcLbsDKIDSl4R0Zsw+YPH`Ej0eY;
zdLKl0NX)!sP(#U%#RuO%4#Qs59|RpnL4j#a)B9Hipa$CWuoB1dEx$vj09uWKt4J5;
zPY9w22hKG*3iZwa*a2)tB$$-+j=3##+i{9o^2?X5m^+xfX^nrzUIAcmRVz1T9Y^ca
zywajXbo>d=M{q(<JI-@#JjT}r2VggrA7JNk#`A+tk@9=H1}7!Bxw#RzvDD&ErLKIy
zL9}&P?$C&F-g)3xz2pp|3y)KyLqp8h+%Cuxa~_7zj5kgd>XAGKSFwDVDg(2NX<48@
z2wc28Jd%Jjkzm;YGXv6uIv@BK%35q*@W*JQZh3hjF-%{A+uxT@pZp&@K+typrZPW*
z<S18xWew+}NSsfM4TmU&>3+hZ0Pq5&pDF3-4iMOS;&AZGV!H<-`|!-rSJa|L7}B@U
zto+xeP{93{>wwzfKYG2#BZ2)on>C*HVEj4vaLeWGn<+PKTEMZg@U<sIAk;pvsHH<w
zj^<{wR|yUQh{7}xx*}{cNc}Ff=}7SXzEv-{>&n{OpTh<XRUi6i4vyPH!(KbipbEwb
z*6LUzFm>pH_jJ6v|9rEoCS+1L&`X1ZeAA`^xD=#UuOc}OP|-z7U<zOv=eYpwfIELK
z^isHEi2a+^-T*9tPOBf2SD`Q#MU}z?3I<*Fb@Ch--ht7?=tyIuR#}^;KXMAPhVRA;
zfRLc=f@T}&Dv%@m8LDhHPn?rCpvLRz5Bvq}70jOJ8N3=}s2Tl;^Z!14*af5qro|Wq
z8X1v59f;?)&mYL>>#i;X0gBZ9vS)08qFnG!`NBmDytNO>5}yp#=y03=HIw0f?+ykH
zhe6I`gAuVFfsnv!VF}`(nmeUM1d8PF!q56Jo5#w++=_16>Fo>*wRUCavT&|A`mmQc
zu^5>axO<EG1gFf>pxmWP<9L^;$w_1{Xy8$?<;c9)LON^1ad`edH_qJS;hCPAI)Cxd
z>h&oQ72|{&^do?hJ1>>R?H;&7(NgAyb`iwm2$+|JuF{5)tF5=hSZ^jQ+^j=!gEKwF
zL7cL%$bH}O8fCQ;qvV$5_%9r+Ukee*5b-MNW4QKTAP$3pb*?s!+6M3nmJHXwp|H_R
zY3wP5i(;udv_^;`aQr7M(qMtBuR}>Hy?dR(Buv;si)n{|$1ez>7O|QT)6%|gdT_|G
zuVU*!<2F=Skb?>3rwN#sUQ%2S*S{h^N1%@|Lc`Ws;j1JWFF7$?#Xjrhh`p|$cwIL0
zT-hdrw$*5eqBVBX(u%%ZX2v;3%!2go*XUrzn2pIPgA=Pr^@WMzRbs}+SCJ$o*3TN4
zT3g>^`mx5NPKr|y;{=d@Wnc*)f7Vd&g`D4VSdW49`jb#5I>xBT2)i;6@e@S**x*j1
z@ZISpTmdjn`4YpJPN6I$@)Ja(`SXowHiqEwTrl4X^_0B<CFymx7k+4>8HSDknW4z;
z8y$U0^qjX=qq}^q4GBd4e`2FLTwt6oRQQr6ULN}QUPV@&4+@R~q@sM{Sb9M|;4!GG
zJJ9iWcBYIBlSm6_pcFK%MA1YYW20VayHuN=Te6aN@}i$a@<Rs>j<|pqv#oIc{YF4n
zwV^F|gQlj^wMS@uy_(5L>y_PE&x6fTZTkH>e3%39hD1z*4iu>sJpx?VcJA86Dze(+
zdSg?MAkOD92nJE)j)DdA({L%^;N`uD+7pcsX8wnUjMTJ73dBhsi3y1Th?XbX_96$~
z*5IhAsQ7^n0|^i19D<uvoFa)|f8px6(<`qCg#SK(D<!4dz@M?qUNV>^t$O|GtA+8~
z<r`~WPkb61!#5b{=`UQm#6&~GcIgOu@zNW_J+~4lr(cE>4W?S@SG|@UvcN6fsrK^K
zD`3O{_!k>ypaA6SoG-+2a3M-9grkPQGx;imw$Xz*<}p386Yv1s$SfGJC@S597MSQP
zBYXhkqR~sv1DfmxA_CwQjNGgH(KHJA(e7T@g!x@>Tmk<N!ixo>6RDvtoUVz%c8r1G
z2EstSzP;Uv!*UJj>jrtnJ)ZsmuK|0ad`3a{31?2uBk<W71mxvpe6$(-!G`sZPzw$_
zGyDIM_uheAw(TFVO8Qnpr9u>iWQC;ckxeo}W?5NLnb|5)Mm9xRWn|uVR+K0tJ4Gmx
zO-e+@`?>1(Jiq%H@BH`m$Nk*TUAVs2b)DyV9G`U*dSq@37|3lsi5<)<uN6Bzo*b~%
zXytqH9z!4CIX^1ywX~Iz|C*E(iT;>PloT_niKyHrw=F%o5@#Jfmw)ohX_)3e84!ng
zN1c`swR$h`N%{Y}LVXB(lj%N+gVD-Y4EXUVZv{({Sk_;wdG!i977TD;KTWq~imN+O
z7~>gvj~#P{@w1#$%EzVddp5|c^mK&-;U5>Tk)20WG)B^WZoB68jFH0Q>&JE9?Sbo|
zUfj$A$1|`HWLaSwel1;qN}T@ag}YGe2n+L9&mp7;YH?H+sCw?9RruZ8!90YOj}5ia
zT;R4W&LcAm3-~gCz(E$`Sqm@@XdO-kJdx<ADAG-tty_bz^$0{~P^F&{X88<sGL2&#
z?XOo05*BeE(J92?H=Z~F&cR05Hd$Sfbj8&*ox=u|!r#d<Vl0`^&av@vD29;8d#&dI
zqEvp9YfXgf1>FIOC3C}JVsa_s!cUzF5!xR(p6i=@C|Vg<&ArN7cm*hYe{))0y*>U}
z)6@2GX_$0_ML`6beg+xy+5jT8U&syug9OFDp1S&F=pLXMMo)#n<p08KVK4Wifddz~
z8n8_MAneKLDKOnh;Mg&7R7N-?u^&U!SZ6wmiJssy%mwHR)6_Y{kb8n`IjndbM{u;v
zy|+x%pap@D>T)8r(K@cb(2_d7`6)bZ1CEtGYpduJ@Xlf`3<T&hCr=jNch=I{$s)_T
z12hKIzwo9bj%XRb0t6B27u-08L(k{bwX`0(jKJ!OS=D^UmVXVb0m?z7ClF(gb}3vu
zw8T(g!eD#vVLi2+bNVxygMO9Jw}a3T1>FyArKM%MnCN<6Q0}t8{lSoS-xNFP&d@|d
z@2p~XwFhP>$X^B}FXCep+|m)`aa_f&tttX`nV|#WA#dLb1pQ%*VlTC0^Z{(gGOzGP
z+&y;b!xQNaCm8Zs9wjCD>Ye%>MQS*8c_qON5$1S^y1IJ`IU*a1?mOe(SUy8|@lT2=
zq5KcUbWBb5umI=OeJoZO2PSJ!!EYibpA%Pye(vT?ITx3b`Tbi)8Ch@-*oB45GBQZv
z+t1To-FM)in(B=bsGIQ4`^kL5YJmEP#PXXUx;i-nwPRO%`}1sYySqxG2Ts2D)5~CB
zAwDEdZ_L(!2AtgwP=o*%9X&mNeBoK{#RuaMcmS1OqRZV61my1CA^xD#<!7~>-v$DG
zKvkiay|(Q7d3xFy&-uy$<p&&7j5wKrLcle@QwFsa+(EzgabS`?cAd>sR2Oy^uc-q&
zD+-98tl8PNwy>a$wFr&>Pdv&5$YwxDAo2pcJ=z3x0`gC(Vw>zxk~}=kevb(PNK{xn
zJa*_3kuPfVFxb@J%s7iFw>t8m;HjpacQq>pQ^vE=<<aWuWJl__Cen7@7Q4ON2Mh=q
zU-M{O%HbJ6VZXG`3L+64Bv=)QhyA?S<M9kN&|j&8j27g_5Ua053O`4B&Paz20ZV|W
zu{k&phz@vS8twqNeKEz8O)|~G-ahx#8p1IK1|$K>q;P=Pv(R4Ir<SwloM(P^wyO8*
z&@^kzfBJNpBQQca)eosBd!V>Xl+n|BkEDWMMiC!SCV>?|DEb@hReZ7ObNsE?)2p!G
z0E<D6oxnQ}pwGV7UXg4FR0ljSrrv?@eFNMq9#heXSs-iZ#?ez8F)BY}WHj~V3*scu
zP{346a5cz0M=JwWv{gs7I?6Y0oQbcRo40M*(q6#H6M)Qz!OJI9y~k@27>SK`0JER*
zE`ad>Z(}WN`?ro^{-xw<epQthdREj`m?9&AKu5TiitelJhgT3<gQuuikP<Jz10k0e
zWf3@aWIDr50>SR87YFp%p+P~mc6LlxXF>aMvj|*g;NCp}hd%HbSWXIxieNTm^8-=x
zZ=^}Ye{d_do`V|?{u_~^uai1_S>Rr9nd+mNet5J2G~%{C=r;D4s#@sZx#cEOhG>Y%
z*?)?7;1_IYHG#DOp8)&<)688F=ggRnv0mH?lv@2)hqhe^Zy8zOhv01qTpJ8LsIfY$
zsV&g8z}r9!WKE)loUoQUb@rUj11mc_>|dQNJ!Jm-QKrKbkYik>j~(U+M_}OX+eqTU
zMZ8`SEi>fZM@KsUWDCBwZpDm46m`x<O@-GV2BVI|sY@h_v;)y6D@I9>;Cdh&&y6zl
z+Bz~{36Kk7GYC;9l%hs>XGf3yCk`z`I?TzL!hzs#@17#-8xEGwENzfvilVyX>6b$}
zm@3pH#;32b#<0zH6YNo9JVcp5^QAoiOeNyJ@z1ex#vH42h3#=5Rfs$gplNqsN?qzH
z8UuW^;iBLR#EBuj<oEYolR9s1{$k`il#a=U!dYI;%C?Y==jj)ZHy<CsW7xKNGd*q;
zp}MJ&Kl$MrK3303b8;C{_$H<=auA-&X#fIoy>bPPF+>5(jE@6-K$C#N45bWuA=VxI
zz0g(Hy?q;l*bO(g2a-O<#cYCtXS{P=kPWgnv$i7n<p);H3iM1gGB{O`@J9$UFc=qg
zzYIyM2GTL8>IHBH$S7)SN2C7&j)=%nxC^vx*?;R_fC0?R^NY&70{BBDWg#k5B9TDX
zh2q6)<hxjK+5S6!e_%vQ;tyqBp|~Zuhk8Ouh9qdb6VR@p4r3+W;Di%b2JvbEhC>G{
zcnT9n{~e3ewws-we|q`TdKOvsNI;8gIH_MddO>@L?8{Z4mcZ*l<N@3^!ES}LGu}c0
z7IQ=i;Z!$(*9fHxfd3meFd69$`Ym&Tdp&U=ed3#Sy!`yz<52B_jEqrEMNkr^z7Tom
zFiLECm*GM@bISci#t5Fs?SDHjhP()7KO*Wvj}Yjob3|45{yEq#+{D3#vle~qVnrqo
zKv#tL9|*^Y@Ha1CTB1M$JTN{vX<qmqI2Z!Oot>P_6Skb{aQf}sX4R?zJb$+y@f}cZ
zAUlRH2)!|2>6L^Bs_aNA#NWj2K^bC?eb~l^;k;RO(6tem=KpcHWq{i%EYzBnqz4Iu
zMZn9e#=2vyJj{}$K>z9XS)4v@2rYw2tI50o2r)Vp91#4}u@jS%l$$pL)5dbca_8aX
zJm8m6vWyfhq_D@v5;q$1S9}3Tgcua!G*HEV)DGYBQTics;cmC5M53F9vGFvfUl`g8
zT&9%+8n{CSF!;NRB@nTLGu!m;1jkL_vZGi(t*QsYi5ZgcTcTt^s@UY{=o17Oet!#;
z4TmS-T;#Hk4h=ctjqKV@#6F#Ffi@LZeF%W@1(*r6zMF@~P8q8>9kJ-_qF3h&-!oEK
zwvND-Ez@Pc=^d8b?@jXpv^~IeFsmMq77Z8P+-mmUXv2S~3vSX3qJ@c#T|k|RA%#u&
z1_I^-UypZ8jf4^i=|A77ni?B{S!J9d-X_45p5bX@$#;eD#xGNaZ%-J-4voG0w6by!
zdMFr=G4l>z=vr_fs;ko!LMyQhkDk7so*V4LfRupDbnTY81*?qffY)(EgAf_BcpDL9
zV}8I4o+FeAh?CDXu8O;V-xK!9E(4Q*n>YI^-5fCr2~`}VLEnOkqkm&g_pu>bKG7;7
zwEn=op{X(2gEyFuM1z+AYw$QC+1b~_;|t&qF%R;xvf28@oXA1cd)eK69Nv<qCg^@@
z5W|I^oyp@z!_L%r1AIPBY?IgGaO`FlPYKEYat>&+p)exKW(=!gvIC>gxtkk&Xp>b!
z8<iU;-ga?-Zdj$xMtCkY%t>>f2Xxth!~jrV((C=6^mlZmJhx6=_{0fZmkla#biH#J
zHG<EG`zMo3<asmGz-ZTXZg#zIGBB1uAj|iKg>Gk_7R=9HPx<tJ4ux_D)B+};9M69R
zk_#A2i~?Mo|F#bY$UD)#)#k0IKxnc4s^jV3e^256IaSF76I$ntlhIZ(-wW;x^s`J`
z$ZGcnzyNsS+sBLv{Mz3HXX`q&xA4SL1>C?e5<Zf<JJ%)9DKw1h&i{l(6GJv3WkxT1
zo@Va20BYs_r(PAw$)7-5<IZ4(p+-jq1HASRvkM*!q*@97EGLHtw8rHVs5?M0mlPN8
zB9UYFM{_7Fo-?7mj%+C<JzQfoN0~%W+M+J-B<IN<Ag0125i)~-CW_Fup&R+$2g@yp
zZ+?ELrPg0N53UYBQ`NlF`5vfwboSV-@E`nW@F~#C0c()-{P`Cq;vi8)CRx3^3)!G5
z2f_&ec5ylddcxLM!wzm@2@oZteW%;95)zE<2{NpvVc<F{sqHA$k&K5?(XiWS{QmZ=
z$B&g(``D_p!1nVmF~v96>sh1W#a+FZcV>4Gq+G0#4OVd%ybry(-`w__xyKYNxaYxg
zvoi?<U<^qRaR&tjcE~^!20?&OJTXoUq80o=A)zl0W#zovz^kJ(vZ<~Jqg_|?7kKoj
z$hFhL2~lKZ6q^Q&$oRxQ9`D8q{v$NN|Ne_S0dL3um3rad|CrK;m~QdA&poYg@~4#8
z+Za()3Sl0UcVp#SuJ#jnhp#k(0?ur4BeEgYIVL@_{>e43Na05RCZiY98=qku5<sk!
zthRM@1hjQN49y@Ba>!AFDY$^5t7mf1XU3wB#(W@4y`J-g4*>%0a~@O2u=ra<iJFH`
z5mM_tL3M<PZx9C+uTi-mVCVnn;s@c{F@kpiHXUZaGk+79@{MG7**7tkp%?zspMz{Z
zdf_!6zy}A1p3+N+n%b{5RMUK96#py0z^~Tj{hP@bLE1fbdAMSm=kUqC16~0HATWc3
zqXAU57~v)+R*7g)rATciwc?E*9}@x*U+Fj$o2aJU-9-xFcSjmLVY9+?Ixnx&(8$5!
z0MS3#skk)l<EV+YkVwed!;DwGQhOYqW<A=azt6Q>vMJbcpayu2p&DRf(E4GMCj3f-
z?>@#IR3LQUSW`%efJO*#U<s&5r4=IM9aK5wQzp9|9UQLTxG`)rg>QkH9(!AJQxiNO
z={?uA1GFICvkw^At<X*AW9D``+PlN8Ec+?D2qY#J_V39jddM>Y!Uh#1()6NB#2r3k
zUL;B^oDqIuYm13%ZtW%54*Y0Pf&g#^Hvt8yC!CRfVL+`3_6Iv{NBZfRiZ>|B>;BF<
z(xj9mVlWpXi{LsSGOphLg%5z^W(oN2un|}>xCV9-jW4EfLJq{<g^N~ER8+TFcUAuc
zF&EX}1}6s~1OQ!V0}Y^N`t1t%Z{2UEy}_R&|FfKMNG~eTzY%yr^&-IR{@GyPGmG(>
z!ziBNy{q8uKm~z`{kD7egyh;~Aa^KAvUtuqpXl1{n@(V~xCoTugwX5sX-Ti8qM)Fy
zjyg;KRxNysEV00uf9Km{p^)C+U9ivW3?hi0`mA|(bw#P&M2bZ!&^$4*Wh5M<L`H~I
zTR|e|g+oSMJmHFjY@+0R*QYZE2}K5E3FL$_g_6$Eerf;O&wyop>-@8mGc)_?=oB@g
zmiGi^!Xksj<>4UJS6UT30kz2-%AC<VWDtaT#@JW_>WIa41NGT3Vf@ho$UsC<XOG`V
zG{>uG?oX1!|D!$5t@ox=mNY+e<`0uryfKR^y(gvl=}mMrMzKi>1j1S43o&3dLZ_h3
z+DHGdwM1*A5argb6=+z2{lICCa_jRRg)IA~PnU7E;O9^s!_)AeD#YY>Q(KQzo;Nf5
z-f$=p1K}$%+Yl$WUl>whVUaH?DEI~v4htMdE?Uj;iv2Q*c6L+f84z5W^X@8K6@+nv
zjcp1zG0te4tvXn%7E+=sWhR#{Rhu{LFywjhTjH~Um`(wV4AG*ipQwG#>!TU_JH4{<
zXd5DM@dkrC*?q+L^@YN!%F3m8F2MgFTmY~NmjwC*VCCSCQ4nK?z<&(vD>$1Ck{kfR
z5&fc9pu+_Pqi6;vCgL#>V|aKM4b8`i2_oHlUud_h<Uc5-!w<wIu`@#kdzVB9QSP6I
zzf}D)@etCmfMLlb^Ko#D;$<o4Rd~r!T)MCIBm~s(x1;bzEm)q5ylR7=)7QPt3YZ-=
zwz53>m#T$la#0$u%Er)_@qCzaEb|;yB=4nIkA15uFEt4DQ&q?N_im6dOQ>bns;5|&
zBlQ5!4Uh^rBtnFX9H87F2AkhHId^DDp+6QV^&?+t!>lDZh@re7g5cie4}pO!&$Sx;
zsMAkI)?$b^4eqntEV3J=U{}7x3?&&rg5(#5>JNUCC&)_q?YqU0uZi*m6yIdNmea@)
z3<?eH1`W)2_pT_15quu#;_>;pxmCM&i5n2t(DDJeBM}rg!AbUUY;MKJ9VaNDqfh}V
zJ?(OVWlOLzj@YJN7f#|W75jJQrn&bXS6V<xd9pvTpvjV=|Ao*RTQ^(_91edVbxyE9
zcGm5W9587g1aj~XFDxM0_UqhSr?YUm-=FXIzkOQ?f={S3;S+Q=3YsR4P&g-H?F+4V
z-1KSe2>u_L4f7FBng7n${J)l-p;@6YN67_}1$w)l9(U04sKMC%6jL<=Q@oeP4qbQv
zpBV_sxVX#?<#kKc#1@jYCb2a75HZ6zKaL}294Z`iAU;bSiP-YfpS(d6J#cj>1WzX;
zgTtt6GoKWr(H>m+`3!895Dk6D0aU#_d_)zy@-4{BkWP~j7FJV)#JD4%xda4=INtIs
z+Ve@55jO}z43Q)r|BwWk{!<ckAs<F9NFpFbBcvyHY{=;tf4^BPXJBqb!WPCCzeCsk
z0xBH7ylxC{2S1K%Z*|(#p!Mr0wh_;!hB<N*e1!^#xIqeg-`fp*mw)m=hq=%CA1Z>R
z92`inhbci1wjl(D8EosXC*bP>hJ}V4K!Sq2{CJwO?=xSZHDvC|P+sFMV*f{3pCE&I
zmAbm!P#X;Mpx!tEu^6VmRI)*rhJzJtc$Ldk94~R@#L1Lo2J0fxb0gY88IwI_yN7GE
zE+c9wB*f^c=OVyg3{OWX0l6$x4!KV3A}lP)V8(H7L&8JHZ|awuxsi?p(2}h69?k{i
zoC7$8Ln%2cYpYuujUA?ALlOwFHxVQaycq%~WQ=gpkZ8M23g2UZOchQRC#Ry^adJ9l
z;>Xb02;Ad_FAX(1dhe>L2We1?l5hC73LYFdx^f5tS7#%O^YaP$Z|mEQe0PZ*-Jh78
z4W$;YlOT-x`*Vqgq3Aa^`5IHk;Bk41cL2D2+8D65r`-sNmUJ2o^Cb2G+&n7<(VibA
zRasd<FNeZEg$U97Z?8`SPOrw(l|U~}|0wo^fVVCN&){fPGSie*cZ*B1`iV&`qD3MT
zb2O_DCW@nZ1^TI}DJa`gp4@UNdT5l`i}U!^Wra41Z-o<(bU+UDrCsI^rJFj#Yv<i$
z#c{5QjCn!q5$y-_O=RasA<E@3Dlfv|VxY~iN_k4`58X#Wc7s^ae4RLatgJ=>Z9r`R
z%o9r1v)rD0H~1RY#?q4czCi;09?+Cf_@f}h)Z1C%I=m(uv5=%*g6V`*8xlFfagPS%
zw-A^DFQ%_CR7es|qv~E>Rk>R+5OM?Y_e0Mb7)+EyR(g!M%h*`{KWk3^@!fP1P{a^(
zFA&g!P7W9Z?nYYGze_&l*}#}MIy)m91J4uD)n#74gji%bqcv%NKo`Y70d@QLtCc9@
zEF~pzVGpFu{XP+!IQlyjW>`$QaFYOj#pqhajyXW?2$fiaWPwM&hy%s&)2GIE4>d3C
z_nK?NTM3LdJ~p-#Whcy!k}G4UvB78=j(}9VR5>dTnF3rVG-|ZOhH}Nph^!`w9t1E{
zXRj(<92^ix2CoT@sI2Vl*KgjqT)uo4vJI?Zg5EN#r|hc7+HI(STkaRiG{o_(ev7T<
z<H6Yr(j(Dl)eV!qJBZO}Slj@{v6oTLs^WI})7=qx{uKc|@}%t~a-7+qDv^3(P0R;#
z|B=}vU)PKk@qfEb4XeL~no=sAhTi1rQt!YjR6{~=h2XPdwy0YLI30vX6F&?}97ZN4
zBISNBbeIsoZ2R&9j2dV#&yO|h0#g!(34iw-czw!~s3QpYl8VW6Hz=4D(OBhFFF_kt
z>RZ^W(41oB-caX757)o9q}t-*KX<kbKsEJX+Q;--fLxnFzJ4S`Sgt_l2oaWiomze9
zeq`tz3Rk417DP<`2@w&2yzU$W{0E%=K#VXRZ&B3}FJzKq?N<(D5l$fh0FD)4Afr+m
z8g0OM;U@dkea`2BwcA)~>~wz>2L07=!x@7AXRO(q@eZfp|LqRhQ}_UCF5ld3Sr3E%
zbB9#NlfDnk6&)gIpgL227IU!PNTDxK=OD5+paJ~~PjYv6H{^DrCr)Gtak>nTjzUj>
zT%>Oh{(w<~3y!dhL2*8&>V(gRo&YZ?QkVElU)*AOz=M;5hJjsy9xNKrdBF2N&=NzC
z`nhhT0~Qid5fMUcv04GKloqWsIyWp6U1U>3_J~~-IOv()jLu$kN7Yb3LoW&K2M^|}
zz<&-`n(|2A`-}6q^$5h>&%`9|^c{DU&cWX+N`pNT3C1t$>j{vgw6sGoXChE4*4Sso
zx!7j|^2d;D+m)u#@Mklg;X3AUg0W5m)C-~<JM!G|)>8T>%h%&A0K<z+sbat?RaHja
z!+3MZC@m>=(?jC`QR_Jr(wdqw9Zt|4?&pG}b(^*k2Ezix#h6n<%)+ORzf0uY6KOI{
z(L+N+iPrppPv9*B=Je0MLC9b1`$Tv`1pv=myxM|!s%X+xeoHIX!?}l>0$xS7VnARJ
zQ<O#xfw&@+5_KIJ9mmP4hC8qxpeRSvh-w*a2RMY;48mgJYxzR`;K3Vprmz+wcm~-d
zP^7(tDtPwUGvcH0ari6M!0rj<8(f%o#XU-}90nc1k6@4R^;a@Czv}LO!O{{iKM~)B
zB~i|cRY-RJE}c$z_$SZ;7}gF5|2K|E#-~bI`|8zSgieM?5Fo34@mB~=cKn*N|0mmS
zYsV&vcELVKD|>snppDo=$gU<QFG6%=XV*mlI$pm+;0c*bA!=Y%_J`JSY1U$owvbWA
zCdk+K_xIP-)IcsxTtMsoi$WeK4v5KZuyVtgwUZGrz9zsX4uDNi(+HlLD91Utit2G0
zTgU|ylmFicWh@6#ETa8=syPJQS@PFpAskgeoS;O+%{9%3Bo6W$sg~bj8wmg=@P@4d
z7s$Ni1~(aCLadB`QO_Lsr+P*Lf<cM?RE}|i#z9*PXI$vZqe4Ra3Z6sfq;UGuaLx#{
z85q5bv4mLdAUd6l-e`3mC6CrUbA})jFxvv$&W+x}r&BJz*FgT+L5?&z8Ks>1r0h7M
z^r>IPBwoL;|7F!4`Qup9qGj71l$g1%*fuRS6_X+%P=UY%W(I6D={!j(Dc4gn(2MSr
zk@)#>1LpqV-vj*p8}}xboSX{U#E1CA|IyKe?}1yEMPNQaikVM901)E(YrYNq{+glV
zaaeXhywF_|3QX)Y$T5K~dnldfJQRCaEb!wp`x!p<6h^=@qQ1eU^`GFFvn$;|DGSLY
zh7ZXec*X*$6zNv*3QH*Ww>=1NxGU_KhHnK$fWZy22SA_a7ZeQ6UPV2AAbeEG=$Md@
zCap7qd>|`E?GsO<sjn}BUKw=`cnREMzO2VW|7-b1cdGn@FrL#Q4b!`7rjeMKhg1D3
zh*exZ&<#)<#CVo3@s~(MB+<V>b2g6yH^L)y5ZVG1+i2=>SAHA75&y;?qCdUAj>;7Y
zL;Aks_M7+&H6It1mc}*&p<OsnW>rOu_^QeYX@kwKqX;u>rlwE_|GOr|<3A1EYXQ<q
zCr@r*dGY2A2AA2Pi^nqu`i4M>YP9B1d7yoU$*re8Esb5~)^B$;6h4~S0cm46u>N{K
z38V3Xk(;Jw1QIQDbz{dxP^aKTM1Yq(6dq+|ZW<cln)qlRD%~P!G_|xGF+Nx*eg(%_
zX;Bg1#L<wRNqn;X5}q0QzM8W)7O$+Q<dJ!W^Pn0?I`peJH^5p*jB!DGc3qJbiGPTe
zF6aGB-`;UHZ7p0w<F^teTI}j!?;mhTJrMUmn##mmp5k7CvT;C%uLlvDgHv_b4XO=J
z0Rc@rvwvt+Hazx(&K<myj@@Y`CCvSd^CZUZA#^~CQ#+rGeX6UovsDlq9%%Q6?=ps0
zH73>V)@`_V*w>iF527QuD=|403zc$1%SrPWr(7tc|LzfvXfTJcp#g2Y2Z}Km@~+Xq
z)%#w7`Zo`!tvx(G-e|fqvS|ZeH(-T;<}yQWXjkHew1H$R^(;45J9pu`{{DTyLC$2(
zFXj6zaS*$>|Goo5%t_Yz2_tl1_!Uw0si?#sv(-^h2$<&&O0%vDkm3un*}Ex~n4N@X
z3qmTqv2`ww&x~U#%W_8evtbA9^S_QOOU{S(tY11Vf*(rB$m>H-4n@2vKqhS2M0VO)
zZa7Df5NLiU!+IbZGNQBGF_$2;7J|^b7>(0!ORh**BS1t57r@4;)YXI5LA(n1=un1Z
zHj^``lA}wyo|5q_gqjBQpyGw5og(}S&3|*F{+pKLX%?zibfFL(7-5i(u<#-TCWL#j
z_toF9GnB#6OG>{bAArrhsL?h*F{$+jdFq7%2hb4SX(ZD16B3mFDk9;q>vdhX@=h|4
z$^Gh8D{fyJhkvqi+bU4Bkx>xWi@qfh{uJ!2FjDkj^eARQ!4~m%m@LOj_rLRQJ@PWI
zkn#h75pi;`O++sNW_&#?z@YG<#LmFM;hW^zVhfH>$V#BDUqFsMS12gHrirO3C=E7~
zNT7-55pdmC61sk=)aNsk4(5Gp)!@BGLbMQ)P(nITZuwqIDpJ~YG7r{Ch`A+gH>`a6
z`0+28i&4?xwDnCtsX^=b(gR_lqoW)&BnaEiugKGr`5XVKVG<J)tE;PXZQXP(FE-JD
zymoMP)wLVI^(09KEec~SOYesdn2TrnhpJp=5un-*@iD{!qve4na;!T5!F}TABc3l=
zwFUV}$g&>*ase(yMwYPkH>&Y>;^y6caPPEoNCi8MBw<JZ0OuJ1&Zd>araOPhamrFW
zY~`rA9N;70c^dj(H_ASn!leNE3;!(V9g)O%09B2sv)tbDE4GrhsmBgG6AEGjR{T0E
zYF*WZza1eT7t2g_f9Y}MxPgL5^Fm<<hYSAc7Y4X%v_ui#(z@>sP93p3d`A#I6dD>D
z9la~`C1$<v!RQd1e?KXDVt@kuQ-=vmBlP{{za^DSAX3Q2;LPuQ)PF>QV1o1mkRvz+
zkRk+JAxfwJpEAfEhP#EeM2+q23}gW#SRbphYsDS=yApFI(YhL;X~=%GFh1HvB^{1S
z<|F;LZGUQPjPSpBdq2gzXXJN7F9&79f1U-}2IUnMIJy(V!Y%{DM<oi;C=`3x4H3tL
zUf&Q)j-Q_xH<QU@qXN0{0lz=Q3~+Do9l*}cVFoz7k}xm86Gh~Xv}5LRc=)rC?@(af
zy`Ay4CVLDq4G|Fzqpd6ezwo0uo8$g|ZdCbv4gqY7?(SP1SR59P9a7ZW2|)tJHK0!c
z6$RkNLf~F*(0bohZ2SMBZ=919$ixQyPq`w#=YP^DN+BGv!8J4@{NZyvL<)r75u~Q`
zl`9&{3nz=^;F#f+d4-Pv8E1uS9@eqgQM`_F^6~=oTt|;~Jb!*bR5adA#ctc{IBY7a
zm<dH>YHupAq*D&pkPITHTaOpI_Vsrf`YWdHG_U@y)o95>!Gr-6km!AMD0?kJEBCkr
zv)}&4x&Sj&#B3>b4g{InX=rR`ku8>ch%5@IU%<5_<^dB#+~s$XzljXH-quuF{BN+u
zryAENmfb{YPhM@oNc-mykhuEwJobBhs(bQrX~QO?N<6=vOy`y>a7Lps^MO4IT|Wvu
zbf9yyvyfKbvI(k>u!;kVIW>q6h>%S5ElU~FkB`^oQiMy>{{9u=SJZFSnF5AGx@TYt
z2<Z-3VUIxC@q-Y+Aa$ff^?zMNLzch;1n#{CiVjf^wqL?g(%h_Vr(r<xPeKL&$P3f_
z%Ddnbz&Qxy!F)4?W%TmJ3!oD_WIEq|eeKe<W<o=(ellruMp~I<Op*B?gUsk!scYh_
z#u?iUH7)lf3cZetvuuo@k?}+HD>L)D0|(ac$km)P&i$GBPMupfpM}$ywpY7mdgI2e
za&fncq&U`*?@(U9Sv-t9BCH^O>gacGy0Z)H@f3cnUlx5nmI{kHez{jDO5LKy#4lrA
z35gOT)k`p;s5C>dkA~9mr?@o1uuHnGsG@>`sTZndV?cR08eYd8n}7ibDTJd?D#LHG
zW9LrW(w~$!QZkS;kG&mo&m>5gK$oMU1k|AqKp#ZTXRmV;mI-d`n1l}f5p?mElp%(*
z2<z0MO+Dk>eI97tah6xW<bXj`WoJ+JT*qclMs_`7)*s?NEKFjUF(T?EP?)CjBMt@*
zXCSHwfT9+kQwI_-wOg772m*89AQm&m7Z6Da@J`>qPmBqipXfdU=o^RY<Mf2gK22R#
zA|Vo;0hSX;3qU0Vie+5o-uysx0m6h)46CpdxX!%#Yhdlm$OtN<4&r*RC`CjeB*^ZA
zAVc#hk^{nBk;#9f!MwbLnP_2sX`Xj4uXz=MoP*Tb_Cfx&5;mko;6C66IH_z}Uz5mJ
zA1d}u5o;e;4A{HP>hlSzH!n9PO#$m2_!F&&k%k}I^9A=@T~g`Q0)hq#xMzw$+;F^m
zd>^uIhUW@$9kyWs7vc^X9_66#O+XhiI5-${C&dnPA#C;a8Gh?a$eyTO<~{h63v&d=
z!6g}pY{54qHQ$H;T8}S5GG&4c!nr`kL7!I#8kVmfnBGKhY2HE(xj}sWOE+;_CydSx
zCLUDYk#`dUh*`rB!NQFjtWN4rokc3iBRp%ymy4BwSx=tOnGuqpmaT~oilXgyLM_OM
zAA8e5_~x_od<-EJH<D9pA8QQ_W%IMmr$Wti{P6T%OQ6VzdJ=2d8&WSiQ|X8UM!BM6
ztaIWA#SPSNeKmFOr(A-sV2Z}6goV6M`7igOK5KgY+7q!dd1a9$1$OJnq~bTQ4He@z
z2%fSPWO&&2E-tU$&h!4Uv=3g|=q{$K*Sv>+5cO%{`f7gEHXaDYOMmoe8Q3_0eT*FS
zhMFk46s_Wmg6!U@{vvCwCW_5s@E>M;$owmJWbZL~gZDz~aO18;%<5lVJ+5iYp>P2J
z5!Y}`B@vU2)d5G?ocjt9Bl9{UHug9G;e-)@oj)O`KOBNuN*@f0{KGL|IMA?6?T&3a
z24|#?kB>AB7E(R}wk_(>MPi2Z6~=Cu8n6uvpD>$}>%6s-We&vXPq7SLv&N^o*2O(x
zVKl?ez&>THP;NuOV4_!o6d|~8jY7QpF(L~)7yydIS&j|Gm|Bax4tx*H>+in%THkE>
zkz<>S&ShbuJ9K0bxPFhV6WF%cbKY)*WfgN)Ph38arA8oP(13Ex5GW?mt;q+Ued_5p
z)uO962%Zr6>uxWZTsw>37VnK_8E<>Iss3jzwPbdBZO@G%@fj#h`RlO-H%_A7Z;|+Q
zF+^>gVRzy{(bCJz`8_jOp2ZuaNGKF+Aifl9QIM4-1kw@)xl>sQckfyW#c!gd^W`Vd
z059Gue=N$XxptKVNq|`pvz_}T3f=C<`Y?l3Y~nh5<1yp?Rl%e~nXCpNB`FeOx{yXN
zdCxN8(+OU<j<NU=M6?#dFM&BrwVyBvBMu!M<e55fn04782WJ-3<bEwKLi)a6#K{V{
z192~>cBgkN!Ut;izJLvLuCZ%?2#jTIz(9G7XoAcG>x7ucfejAwktxUR#|EP;76Gxd
zDSg96^&>Al{R+~{k5qoWKGK3y4+zJhgsV7jJ#fD%YbX0EboExiX`t%279_5SqpItU
z!o31KO0e8Z@Q1r4tRd~Q%Is^|Q;CrR{Tzg;V*Sq`%r*wzPRi@9y1*Ak-1;vRb{T6S
zu1Vk?;h_iL9oYbU!$viUTjOyZ>{%bj#5nB!p#^Zv@e)G96pJ4iAAL>D!KzUPrX@zk
z88=K{383Lba_@!xr~{ELXyY{Kc-C|N!^g8-tAiN7`^1F|&JuL?c&6AYjS%pT;YBv3
zhTnBTliz1;0Iw1g6-A8tm~W4sZD?s(sJx1f1SEU3H5y-4jWby1MgyPUQn1XuIv9%1
z=rRBUJke79oCwxpCv`Gk+fqRO*#EsiG4n7f9<@oe(3?0yUv+rR4KiHim|@&VKXrHa
z@^3M1R?wjA-@~KdS$gSQ%N&s^jBxyUOw7f6Lbo+Zjf%R585vf1N~C18*TfJmm_O9g
zwcNPa*es9@AhGAlN|w$;bHl&ROJgG*@fk!j?t@dPaXb&&@4Rjdw^ws(vJ`8KBHZc>
zK>6MP(&`^^sOs(>F(e2G6gVN$U#CA|jfaGWF1%j^)t1{m@j%TI8FICJDEKq^uNAz&
z5#;{1$MRwGg_9&=w%IC`7uB7GN(rtKh6g_xcPEM;KcQ1xeN|!u!fKPzoTSsnus(Ka
z`r+B76amS9hV59fN<CslgYyMU^D4hJV*L!4Y{1UFYT9$MfwU>@5?x%{b{U2ce`Zny
zYqWf-pfH*x^x3W2*iE?(AErkM1a}j*s03_QFcdKR*_0|q2;wkDy@6ey^K@0AehzB$
zQ_9MkyGK4bZa?nH1RAD4$Kd$&C*O+4+8(|HF%#WQ%vgpSgBa~1L`PlA*SHn$bz`IQ
z%&J#zUP~F_P4%F$`RLYf`3v+AycTjDMLJohl$7*JF5YWt5M($dZfn${-dWf2>4)dp
z1U1@Y{&kiu+wN#j9Z5J%C{)nko={udX=Ye499KQw&5TF{q$0sl3UMu}Tf~Ewmv|E=
z7ljz#*ZNwz?yFNS6@+M4IGl>*#g+TUd6IC_;W9B7F9xL<LXn8!hR5{LKZALFg5YD2
zT_{1hhOc+o{Gi>k5AQ*(?x`4ynd0xO-?88b!WG;IRJCVy#h}!!I6jk0O9X{Y{m7BN
z7sRR*m^stCm!AG!V&cr@6K7+7*vGPtVFLv!28!nPH%lq08fcux53e$mz5PKccY|Tk
zq@m!$D=Lkufg-R8U6MLj?b)++TD($^xBGH89h1kyKIYSfx6E@}mLzm@xNf9`<tHT(
z8pv&G#C8|=%(y;28K)Jz@IrKy2~|h*b95pe!5&lvo&vPe!Ux9|l(x2|<`xzRF+Xwa
z*e<ilGEG)!ZV>CwAN1rC*A76E(b2=VKSR6(m1X0^rhQjG5>NAUxB^j9G|&DtJeLSN
zDl$sP7Ykk72(TJ0AY9!w6|>N|LEei#3zGj9h<O?td-BZ`u%uT+%RO_8TjT>%`0DLT
zD^|PagirK;A9oV*3maLYPVdn33HY(_XB%0hWJcGEU!QQ^TraoJq4}Ki%vFZ!C7ei-
zco|`}7sRj_X&MG$Wjy2Dby2~`YyaO=q0l5;M70W=3t9oh=K8hwg4cm4Zx->0#Btvu
zzVHFu&V;_~l;Rf%qcx&5yNqrC$kF2_$Z2B#$M%fZEpnkRBGK*3Jsgp+^gc1nm9N*j
z(emTRVdU1sh<IB3M<-;^``kWnZz=w~52hI+wg&l@!l1Ij8g1JvBsSN2l3MI*O@T#|
z|F*qp!FEvL*p>FZg=(Yx&Z+Lgw-SgF3cPg-0cdT=RY!8w_;~Bc$Ez&{Mn;I9TyEsb
zBT_<e^FM-3WMC|JcelTsZR0Zw*PZRA%Q&Ni8SenFCAL9e=lc*6JQZWRn(6U!$Z<>p
zekPzpIeLW@cMx+X<#;1v_5uw#{?oP;4j|?N*aIPJg5VuraEaJLbqHb!#c-ng_~RZP
zoI;48c>qlYJ}f*LnR9OuX$h_3GN@Rjm80>4fO=C?fy5pS(H$s?xrB1<<WLmD&fqfB
z--io=&Va}jMu9S0sY3ID*q~A1U>gz=NMP{H%{vVtI{0a<h~|N{Ro4jCUq2>vJ>pPY
zI^q#P34#F42M{m8Nsh_{qZjptNME4c*Udhw(Q@~v;Y7LrAZiZ7d{a3<O8|)`#{bHF
zHv9V5%l$r{Aixkz8pmgHJuz_r$JF0$AL)7q6M85q2pqv3hOwO7=RTSY=WY*A_p<iF
zotGo+69P7!Ncr`}Cl+$Jg%{CquV-`D$^WhDi-pjkgW;}6>{4kA6}j(jJ|KnI2?2sX
zN!?)05S;HY@C{*d!```!FORJ{oh6g9jf8vx?o8<$6j+{5Qq8P+FE6UZ&jBOnTzF4p
zh(ZM$6&KgjzI|QmdKlG+u)BnW{`PBNG|%mi3bxZk)UiY2S2(*b_E+ka83Hi602mi#
zLBFK}uF{HKU7$n>@kUl-G-Ot8h{b!fu<<PZAdcE_mFO@*1Cp`*4m=~XB8&P>lmV(z
z|1DjDs#vOl&_?~^FBOqpXa1_q!?YE9ZFY1_aM;OpWIlGpRHWg<j0Pfzy#DhuTGyZ9
z+|^V-D<@sPfvjkA&YVs^tI`1uM*M9f_DH3NZI>B0X&)p@I%QSGHUyb0WTa@nVV;6>
z;m&?ZW2pI|55z?4c8oWcGK2LEUkKvE7Y#WyY|5!f7X{}p|4@U5JT5J|wu6W1F!Gzz
zaZL%?fi#+r&j8p<;V3uE1>lDajhH)B_zWsE<ajGT+~h~Ftc6~Pycv!j_DCo*mFr`u
z(3vo_DyzsxuxfMelDTD}S7m&uv==@+TobS%oRj(@z>2N7W1F;*viF%cIKSXw_|OSy
z8hlpVINy?#A2Gq)O*_b+UAeE5<y_H6(7O{qa3R<Uc$k=Q&vd{C9CCG=&IBCkwM!}D
z@)-uQ)}`Y12o0sj<kGEzJW3JVO^t4Yjcxb;=ZYV;eHEK&Fj98Tn6y75RYfAR+Np2d
zaEs<ST_meg#3Sw|5=&g#;XqS5|Dh)_R0!x}2r{8dEZfQ{M<&(V?ye$F-4g0>RTFs!
z&DTC`B>QRW>zGS4r4XMa{ZXNjZS(z)#?Lp+X!Sr-0e4f%9;FCYCCz@D1X5l`W+n<w
zsQ#hRZ7ye~9yW9y=B0bI=R^pTuh657g)xI)MtC=x^R>P${#oD4%2S+ryz7TK#fP6)
zbR~pQiWa_iY&moP$@%=A`;7`2p1Iu>`+mT9DiGhy5F($|B{XqejIUns=E)HAGc<=t
zmCPiu7DvWSrTrU|a;)BGr#@LMQ&~q(S!A7KGGrGK)6*V5?k;e0r?R|K1YnBAAnn9e
zO?CD0^6lZJ+t{B83usVo?WCuqc%XKOw7!;)RjI@Yi-V%5H+y)S0G(CP`5`;|?lAgS
z1h5cZRna#+ZZqK_nP7cse?qfd0<Q~2L9AHlqGp2X2FZ?fR>M7ZZ@*FCx6A!CD^zOx
zit^NnSU7q=9Njhby*A6?F;(J;n>3pHJ|&$Q{CbqhS0`88lIK#`GxVT)XHK<tzHas7
zN|VzNyYkFogXzWiH%1PqK=M;kp4$|c_f6|uJ+P51$=@ZRxKf&8gWcAPmB$q#1x|J-
z%R3f-FR!)Ddaa`iUIIq9<_nG$eU0=_c$jE0^?FLo*6ju*MbGYcS1;XRxA13=3XWhc
zlbe;7ea9|*UkyfsVtsu4W%*55Xd`+}d+}^aYU({41rHw;%rQSR9ndLJ)@Kh_2)&l#
z6S5-jfB%7L;w!1*mh?&yAM8sPa%9($<(%_)qu<Yb<C@SWq5k+JrF+Sn*$yuAMd!(U
z)uu?|@%?jePo5vDvSvu6|482vvhn?HvQ`&-EV9nGk6!<Mr#bb}C>V!O?|OPlGIfKY
zqZ|Hn^AY@npRi{i$D?gj-<S35TzyK$&p2|ESmxfnQ{z6#+kd&_(epOdAZXKeBA<K{
z-3h-i?k1{Or{vC(sq;!Vhusq$e!Z^BCnX;f-TJ+ydy%Y&Y=erHtaWPbCqL1TWUYb;
zJi4@OStq%<i)UK6j_?-#x-TDNp%KBwle@ufSHNj)p{I_DTbnfn#=D%>3{(>&n;M(t
z7Db(|@!#)}r8(|!o3|qM^qwl^^Af*iGHojEbW?nIx4MpOO4+nXh*Nf`Paw^wrdr}>
zRnq-rH=g=a65I!G^TwAwTH{%vk*U7aJ5z8lPV1oGnk(mfi#%^@P0s-4KF67yrZVnA
z&e~(#TYX)!6tX1*6o>l+hTq)kil<r~30TP%xixr(w_-Tv*61iHazW6QnzZOrH=P>a
z@}0pa!qmp@E{Wx{OHaAn>;n<Hs=Y7gsPFPy)|ENLb^nYMoN%mne^v0gAU;}PtUE-M
zdst0+uVR=}NCRuzF-HfPvq=}~t9^tGt%i!P(bgVw);q3KNPE_8V~nMw_}o{Lmg>t^
zYKhg0&1vFPht-{gWn+z^w#yV)KHyi{!5XrCw_G~+?YqoMfpvGoER=Q_MU2+pW#(Wo
zlOg_9rXZMxT`@3;E;zr}BGO_r%Ne&ZzZ;XUzKU$FFjsm(E*&PwuBf+zt&K<JfQ$gU
zVxD}gz(E<(5ZBI=cPNq`Xth5t4f5%UkKRu^dfcLYlqy-e<-@?Qwf>){R2*5G8wyx&
z+bcOWM)>hdhebt*(?qbb<=;x-R-rS4KTJ_C#?YmyThe~FQOR=T9$De22n#(2l@yg2
zSwEWR<n`~2jo8c45jF-bei2|WQ_bhRo)o2;p?Z6BAoJsL0Xk_-o?kwj$#|yY<s>JC
z!(erZiE}VWeB{?w>;A1s(Dsv1j!#sR{q{a8zt+-$mHUedxk)+$!bJnE&sL`Qdrd54
zEj+PGP^XV-E}>|f3X?q~Ga6qfIsHBnKS{)*y^l%eM#9=iO+(9(1BYWCF7x3CQnruf
zF551XU^-;OKNKUor@Z{xfna|2KHgu0(G^T@zacrSELBQxhehg}@DGYH+i|Dm(ogN^
zBP9o>eE4=iROVL4&v4oxz8JYu*7EHU+v~}dc9OFlTx`j{-WsiZ`_ZL~CLP>t5Bm-$
z@MgL^IYmlVN!>M~!YJKlLR))!Z*O@0bg==IbI{hUe2-fUpH%V=6{${e#JL^dxx@Ox
zVsB{T5!crH^-~4Zr#fAx%wLJPTxojdASr(QN$I(;@Eif%nG=`CUmZT0x9$AZoI}>i
z5e89AoQ+E@8b&1U{U=<m*y;!?@l%#iPmS%TPboe-={CYUBcdr&5O-+xZ8ZCbAl(b|
zW6-AA7(N|Sl%{|7_*C~-gLPzIyCXdctXi&YeN&pqvpk<gy|#;q{yB5usEcWYX}*{G
zX)oENbJ6eJm*-N0vmJvQUwjqOi#ZnTrFdygYJ=`sL$wIms~H3JueIJE$|14j$fuef
z<6YQ@m|=@kfx8C}I&t6RHOzijvZgv~G18gew;W>Q*BUi@gNxffVtc=llkb;e#xaH%
zTDo1hWG1%}PM7^WY*t-6hlZ@5S6v;Rmbk4EZj!bu-eD{6&ig%QJdSK6n`#U<OE2Be
z(Ru%2_q4uH#>lkmIWMc9AC0q)PYWBW2XEfdARxnWe9iMqzOqhDz&D+3Odmp7m9`BP
zlus6LFGALBtmMhM;3TgTewkvAk@3@y4_=yz-0Uz-Z89+-f53e^>LPtlt)zhLL)yKf
zp@u1L2bBu-)s)A~=DOSV1RjYbr=sRxDLH!N*Q1-vheP5PI@)-*n_Q2QEp0NH-t};t
z!D8@iLB=D_p_;`C|GIl~>t#ltZLV$Nnqqwz_x%)m-mLD{*I^0k!lg4ggLq~xj@_9&
z5ZJ-umq0ggGx_t3&eT+gxB%yCpRReWktXZFUH0d@-USC-*&HED+Ai3XNqN7=kDs5J
zUzO*t!z&^lY4km%9i6d0NhicZMEm<oRThWaH*$T`CLb<}KF!$nvL!>W%0&0#U$awV
zH{7O`g(_XmXV|z(y$hTYg_3rbyPtZ(U1pu)K7Y{b;lcIu`y0=F?{(4N$*?O0a-Xh@
zUyhbPrZ>19@v1EISxC0IR>i}A-;Ca`^^0A_9qk?~wVcVai%-`<EVP+2z3t~LZF8A=
zS-WYWPNcqWhIGQpSF#&13#w&~18sZy4Vw0fypW^o_jb4?U+1>q$UJeY*>khm;Jo)N
z`;GaLZSQx-58b@ocS&XP<GnARHaEDgeQ%a14L-A3OeSL>=QfE&Bf>ag!7=t-2DNeJ
z%M4u)_BUd8*9H~hmkv>BZ=JLgKM+M(VqtJ0;eFj#5e|B3QHA#GM!GcWI|r363^b&K
z^ior)O!K>2X@1#cE8G=*u<34!Ui39B`kf;F2mCm*Udyp*m#YWw?J<#UyWdEY_I+lQ
zJ+J6p_J#T>CsDg(_bYF-PTJD$J>pX?E+J(4W@m%VwI9=#GfyQmmEVxcKYs3SldoE;
z7>2F9qQk}QOVp!lRVm_;D+5&ptPQM6%zpM0k$yBg*v4*_uI=6a%17{M^T*<BBcIPt
zzpmy9q)^POYG*xJ6@M7@IxPRlh*SOp^Cu-50-PR`e9y_*`K2*uR>#lb&Tz}h&uX23
z<=NiTuG6$Gw)ZbAv^CiZO;=T&i;Y?>_53+N8K+%G9_cNAO3!V$e<h%sC!x-9ZpOfc
z$Dlah@nZU+wV9{4%`OexyBF;>&6p){fc2ms>HUwH5qSj#a>h3eK0n_tSQ#lOJ5|oV
zV!omC^K%fJsLOsqhN2_l-_@%V^1Vc7bmple$@5)SzI>O9ZJ{-MadzPT5XyHI)`lsU
z9`lA{-*RRB)ZgT5sU5E`n5f%SK5^_r`nl!5?7EF5BgaxL_e~B|*d{*75v3lf`q~r8
zu&Y#ZVl<RX$jZ5A)1f{lM%s@>IwE!#A}&Pt(b}gUV-Z*`c|jGe9rNCCB%Wv9+sj>z
zF*Z={WpMW%Pmz(?zrt$n<*kX1d}dRdI#iZjm{?hxq~-N(aY0m|Fxb6W<>+eOrO>-i
zuk_PjY+4K&wmcGLdhz1<Xfmr!d^j~z>322Tk|G+#3{P;EDJ=NWRip+#61Jf3*f2En
z<Y1~k&Ci6*4>DiJ#P%EdDoP9Y82F4ta0l{M^ja%1h56Bl#Kq6hDg|#Ytr{E-@ZVeX
zJpCMZ!&gqBrMfAv&#SD(HTzz@F)F|KKrPSba{K5<W}krK=k{gUjB!#VVWuu#(T<0O
zYc<Ag(b`{1`+rqt_Oz9{F5DjSuNE8WP2b0`lVNggkn0kYgiA~ZMFhFK<I)57oUdbh
zR7z)hE(wgEbH6ZdS5-b2)b#GJgSx`g$`LQh2TJ!CWpZ+GD!h7k{_qFZ;}fRa^E_lF
z7C%e|>4YS0?OA-8f92pN*_#X{`?-4@M-Ano>ykR0Lf<k;xL#>}WsG`mqLg~Hqd7y%
zsPfFbPlx5>6%mU)G}oSq9vV1m<z$n{G_$O#9^5`6nkT+}{~iyqwYjK6BVj!p(GpKQ
z4xI|1(XxJT;q#E!ZtgOD1Co49lBN4ZHgV;PeQlk4on5%}@kDX{jYb;TcE(9lax!K=
z_D~gi{?6U|7-;q}d~~Q7FnV&m<EL{d|4oW<<)+3{?h;eeCgjrE+Is3F<>0Mcc^O-_
z3h7`psL#dSIU&qrO<o>}h)4{x(2J4Pi-<Z`62VGAch*ncO|CBP+;I~LtC{@FnQjXM
zrtI2JPGxv2rLT0oZxWm_{l!*yGk_v0#+d4BM|#LU-X;gMUT3Y;7bK6q>+lGr9ls%x
z6~c7JUGn;MqhMTTROH6Z5ns5naJ)sfeRSzzE!A>6D#0t#f0RW=yrRzHf%x0IYb)uh
zPdqwrjc43yrD9p-E&Vk`y=QYdbHs&9w|9t;$16AS{-Q4)lBYgN($>+wd6NQmCWam6
zg7I00)V%I|yg}~OYUdSn{l+pXKW=xmEG@ND^BtO`<Zs^^w;3!b1zTUTuWLU?t=n5?
zZNHhtX<p`igK4SSZi;P_4EqMp>Fd}FWOT?=*WS&@76`aW;XJdW+-AjvtwrqTPp(aO
zVr`dGI{np+v+Vz(wU5~S<muf{KlE7)ElAF{Xk`?$zF0Jb(AQovSbK75?xV@d(1Q7z
zyGQk}?J~APQx#@EY5dgReqxN!n7AQgyL>>+*y*4jPRm}NR8FtI+ATc|xn-=Ds{0*G
zLY^H79PDgkDk8B+M$YzMIan2&tFg5)s6e?wh`EO@uEur)hyNi(1~qf?q`t`QGDae<
znyX=~){SO)!?Bm^Th$&skBTyVa%tIWhF;Jn+3_W_U+Zf2!&^U&-t4>1FWtr{li^bE
zMnVUTv-#C`;Z@aN7$vKY{OW8B3AnhU`6&4TML(M6$J!LfxJE@?=M+ebi}Y(QEo<g{
z#pB8p6^6r|o9g49+kfh0kN85mE=%T{#aGX$aM17d?ycY4iyB^jukJ4y;b?kX?tI&G
zsjY!p?ddPi+g_FlH@^tp&7L8%_l%_*zR9W-x!?24D`AE6XZA;!iul{KMw<@t&WxSB
zzOr4$hf!=YYBVY7Y;pdE<}D<a>)G0_CikN~q@y0ay7kwJL3LAuXz5JrSl8IgNs`%h
zS&|0jk<qi!60Esen;w}b7ish}S#{c+-eyyx<=>jiphe!CsT60oA-1|R^buX4rbhM_
zvmGpKatHl8mY*J-dD?bEE5akE@2@`d)`Szz)1NnPZE_&71k@_Ei8a~M8*{NRu)JuE
z8g)?|jNW@t_<@?gNx%E>Sb(K>kkXcevXOKwMQmO#Cl{WYc6qZZH5Dk*6rD_=_;DJE
zGqg>abJ>kGml-J0W?t@6Nc498c)9=j!nr-<tJB*{eU^t<B24K5rAT&a1GA0UZk%Qu
z&DMO+BUtq_?S>S#$&&OkbGY-&u09Ah_uG7C;y6dWtVY?dva+mw$|`|DR5Sg@(mcBF
z7KN9FB+i=@2UUq|du;gml{&7-qW8`F?@x!%$X{o+&^w^mGtIu~$INY-6stR_l-Z4=
z6S?AKMXnK}cQzkq_WO1^;h^=MN_W+7&r>sxrc&k|`+P}!=iaJ`gbIp<r)-|KI=l0J
z<gH!&NG-W&>N7vvA`!<!TE1K1zyFu%(T2+;lhgUL^&aOOI3*)Y&Gn)z=0ZKRW|)q?
z(6mdXyS9CfGOt44x>M{@1oPOAt+Sn3=fvl0T6yy|`UXW^f@V%kzmbScTvQf*Ky7xN
zS?T&CdTi@<?@PWHmr8yrUPpV7S+Abl#C3aiPsZnUaoUdA;h&sYorhfgj{UN;FlTLQ
z+@+9kvV)E#n7>@WN|~$f>*CEjj(d1*I-h5?s7aG@mYpk-wsPh;u=t6{-waCWm?{WT
z^SHG?l!lX=mxa`*C2`to&N?Wy+|smrOv_)7Ym3pH@gR$6Qu4dIqdT^0j0wfvRzFHr
z%<Q8~Qr{iSe{FLF^Q*lTy+93OO#IYMZVyX69gg<#387i)y_<|fK{$I?Y~yR<+tuV!
z-)eGQl9#@4pi|!evj44i<wG(YtQ=B1j8aBvji}iAy1Y%flseuY;-MB>m<pRcB5~|{
zZ9&s6_XiiG7MN|j<SY(d;|_}GJ$!pQh>f_SQ8f#lOyzH-VI~(CO~X&oUaE8t5<r!{
zleII5%#h_EnnwG8UXx*^rco9n>^k1PZ!#%qo4I;7D}BE%p*XZBS;!@fA8&!;q>FH+
z{pq3J#gqasVYa-MUsNoDCd)=<0j{O-Dt)}YsRf*mX!l+ykP*CxkH1|fWI2epce@PB
zvulkx1+t|lW1^U@6)abmtuuRld3>_t?d{Xer}rIQnH?E8Tw$2ooq1_uAID+qbqx`t
z5wauE7ILoKysqb5tX^}xlX1zYm(CXQ+coFoq7ZhMIqu+5L9>R8;5*!9eRph1YY!NU
zN7lG9($+pcHBrJSMY`!qindrRwR?ZRUUEV<m9=TJk?C~V!@ShV-~`^ijvkaUR^Lnd
zDD&9vamDiPjybbtJMZb&`l#sB%1)=Zje~ug)XL=exdlgyE!nfkx0prIFnvwbt?xUU
zot38w%vHDbzWyG%3a*#SeFX#CWm?2NT_3fTO?=#}5hdbBQN7X=$$3Yrz)9ueS0Ce3
zdlTcX{`@Jd7vtd)I+IApsrTlPU-A>RXC#*4RU4mquBIU^Q%i9XX7=ZK?STS?M`&q{
zWk_X4E^QV^stj+^1de~al*LJPG$ptSlm6z%=YE|L3*lED{k)c_+g`tI=IsHq^->du
z0@dQn{4N_#4&3{Bx&C~Wj`Lt=S@hm{oPmK=4!84JMW(ujQ*tIt$cJvRlpgR~eI=o$
z`8v8b!TI1}HM=bXUayyG$0_|<n>r3DES61viRjyO`gRK4Zicy~;0Dfw8bvky!m)`3
z_80z#txXiGuU@RC+kc>5K8{AFF=uzxs|b#?RM~3rl{Y`%DF#Kpzw)v3{q+NWVWUnQ
z)-3Fto%V;fbp_FT+zBLp<nosw>c_%6%*t%jeb*|*>?d1uHLKX(hO~2UN)rvR-B+C+
zsibnyFCjt5VzO_~{=_Q7RwLmVnw_7!v`%e)bU!0d>3Wjloxb~SOKmtMtrq&Tw}|ef
zxyVtfsnR{2D45y(;dsK8ioP7KAD_v{_8cK*1klQ{_^CZO{L{W}ceIbLe+P%NV7kDh
zh+%<~_L5)QjdO|oZtXi~5|220fBTU+M%{OGb-MTEfLBE?k0$MHn#NbJW5i7qziwb6
zQ{O4we!o$w{n=LU58cI%vY`edEpGD()zx2{EmcZXD||-%io$oc%e!kTFU`N+nSSKr
zn-hG3!ef!H3G>r0dCK|g>4v!6D9n@`e$3E!RgVb9H%oWW%7xd(D*LEN);t!SY!LCX
zH64kyRP~y*-h8mr>u2PCuhouVg+q_}j&V%oN*5oclU6_LKew?a@ypZM$qL<)6DWpV
zpN@XA9QjtyA-#uH#IA7$Vcg!7EUGlRX~Ir|m%3se_JmDKsPUgMoT7?kZO+{2^(r>Y
zp+YtQujGlDXdkt>)rQojpOKf|iXC%SZ8kM?-5rw}b?tVd*VjN-AKuuGEL}f-78U!_
z4k3&#xK?E*cJI?*YQd?BJM=3jJzPWGh8Gpix$DS~*r<HINuFB~SXry@6LtAnWftHO
zQ|#64oxakjwTWLk<w6rBkjDbSWJU>j(&DdpKIs#7+V__lZ@AN`sWfu4A0Dm`VQp^9
z4rD$Y@#To_6+MO1Y%Wtz?3>mVvjktzX00Re(VwPccaux~0w`jlb?tlN7FR7L3wt<1
z&au{!lsUh2dfO<k)ipls8xpO5>F4vc2U_gG1<7TX$;rhQ_B;D%2FeaLwI4d2I8gq*
zW@+vr^`lf~KRRiJ_ZwAdE+-3;edG+LNuj%DZmz?psM-12jjQ_C`M5--<0J1q65Kt0
zyx+<;G&9=9#(v#mEHZto(4{rAsWeG)yN|tzcA43k`y@DSr#;^AUg5_26%l!V-McyD
z4eFG6tn_i(cJCcy(q9-{+Psx|Ytj2D`ijCYJj;4tP8NG>WC?6pp6k`z#I|L<&*TeX
z{|;WGL@o6bK7;S1jl}6M>dr6C)hbgwbmJKt{B%#7>?#d8i&8{tkNeWaPxU$XRCK18
zyONiZ&Z=1yJZx(8mc7nQBSRHX`0;sNarMlyceC*u8ad7ECJm!3x|+MptZk|H<5UZ6
z;_4`~VywL1rpH%%HVq84e4P%8Oz^ZFrmh}N5cjcuKDur;Uqd%2<i<qlexrQhmW##d
zbJaJ~GB&&yes;}UBb=#`D^oFo<*<$(W3BDsbeo~+o!n!UIhLxj0nG7zPY)jbHFW8?
zqG9X!gPW^qRVRPF+$<I!@4DM;@RxJIn{(Oa3%O5c^TU;Q_e5MdKlNn;WuCT;X`ptv
z{Zf6u!AQ&Y+45hfHh_D7s^{V9>TNdkB&?!N(_1=5Ht<uIKcDpe$)b3>=sLmlE(#~}
z6Cr(?Hix;wSWA`nXA1aX0M=hRXQC5Iw2cPOP=xp>sM#GLX*vl{#t5h^ZZznUYqQX$
zGRdM$uB_kR@XFAoq<nCFt+k+c_}!$;rXy!`X?L)uwg<G{e`|5vAS>{}TV*AuaN63;
z;L7@QF>LW=QOt_b{Hm=RHJl#q>pAP?Vir}-0hIx$I{|@qD?taw53!qkb#fl-HCdF>
z4qJZhk;?H=@b9=~A5ff<kvSRMtI_;;Wuq63{5yT;276wO)f>rYcje7mYWw$JNqc^M
z=dT3|o%p7Tdb!oFT^^j#d>5A;Q__ysPGmN<h}vm$p1hm1&8erkYj}hSd-^ErVSlY(
zS(GgI8#&4!ylp(tH2mFO;TTGBf4(>^(VSgxGlSF&qPdl5Yp-zb%o0#cX|gX<RWGWi
z<sH4g*KO0KSLc)LtjFs;X3Z}Qr|vA^-pMMb$z5wJT%4G+)tp>hx}7)vy`f9Jq5E6w
z<7UB|uOFaK*fqC$Et$H%Lxt8zH=%k#^6S%sd*+8@0(s+`4V5*s>yK!*ZZuUrk=fL2
zVQHrws~ES->6u{qmG{jhnL$*xH(AS-0!_3jjCZyk;jeu3bGg5&;&p6Lh0C3@--fHT
z*Gqo9Q(fU_<#j%|$s}KAw^p#S9c3-Kbym4mPWfk-GY9?XjJZayZ?t2U=BKhP8+N$X
zr|G}_OYyo&A*mgGLf_c}h6{Qv4v`|h6j#=VGSjE$;K^UL^X;LNcZ`!?O}MCe!K$7s
zZ5xY`U>b?O;V!eayd3{}F1o8Bl1c)C>FkPeTED^tL(OlSl1G^GOY>Fgj0`B*k=UZF
zNjq3n+qv_$B?%Yz(6QgPzy63LF8%B^W^2|a8#B6ep&jI>9BqcTcU20J{U4Q`c{r5o
z!^c&sk*T9N$Iya|EIArut1P9WGqw;WJ7rCjwWJdbNfRw&=QOfbL>c4=7exv&S|m%#
zVQ4u@NQ>zAefa(JUhnn(@%qbEW_j-CdG6<#xj)~}x0!yQL~Zyaz0Gj-H9dBQtde!O
z$qnkbbYu+e{xa&@X~q!Bn&a~9_n!G6f$46UIF%91GKd-0%;`0>B)1ikSo>{_E0vwL
zY{|rjk6|jKCgP71b&a|!k6Uv*1ZiF4otZ78<&hV0Un|jeE+^5;RzkkxFN||Q>Wqo@
z0b%yaBuQ#pkaT48DD@BaejEILaGRmb`a6e+9c=zs&rqE=G#qM3aaVX-F`2fYL*>oF
zoN#~H9lY^pp`87USVdnuWh%a6R5!u{86k4GpJrH+je=*5PflJ`3;k?=vMOX`HpoS?
z(QhG%V`m~6FJk8@t7Pm+G9p=NM&`fhSX||-ZNDmcf3)oN>cbzOjHG0fW*QQIJ2@+;
zq>HW~PkJxb-}q)rg^Z!4MA1Fr<|ER{216$Mv$wEUDrM}XBuX?Kk*;i2Yvow~kc~N(
zP=^JUU6M^{d7Ie-EAQp>;$p<vuRLsQK<#kUNQtl6u-(qJ%1W#$hS!>uqD65RIILq2
zFxa;Jc6JxAhdbo#&(-V^+JU{D@wDTHgE8Isg@*pUxM59+qVY)vR$B@^s0U66;xrh+
z@v6?@?K&H1O+3}7E$O$o1cW8W$_w|8QjBmjvn21fjt@GW`=sRAd8UJyF{S$7l$qW9
z>G$0iw=dec*Sr1Ko8SGX|FNA8F?5!4*{!Z;6wFLqb?T3dD-`3DKRq<;j2_n<)n%wl
zG_>+!JnWlum>Ox)au3~vew?+Hq8MJSnL4D(b>1P&P-mSV*5YPXDm_hdbQb?v@x&>t
z-Re(!&g{rN3A2k9XAAxoO6gM89o0*f6Q{O~Ib`h3E%II9tgIdK=AgsHU0?1Frv3;G
zxm9<*pjl&t9r;abrbtHnZS-JLYak6bF-zp~LQJhS?-wTNDmsl$m{dl3#TSiI@6&nD
zbvHHh%u4TdT3<E4+<L8E_^ef%YyHp6*GERP9#X^&zI<06t$0<%IsKkX?rJIgd*BRX
zp-_)9>)NGX)i*qpRu)7i#+z9`%D60<Qqo?YZn~>7TGrQ&M%i(PxEme#Q$gWX_l+rD
z36+Me)@<}{9+){fYAzy26)(S^9YmK~rR`EH(w?QylK_aqwiTz^4n}z-^epOB(I#;m
zs>|M-shGa;>uHN>DV$}?n#QQf2KZpW+}c>Nb?meJE%hx!Ch0F8rDrb=5C9#BluNrp
zu^8N=u2SI|qk2c(&{}g(Y2oVGH;aYp6Hcoema1?Dtk!mgI@LZfP4rWb7s=S`XSTAY
z=_h|;ALZ2kuRV)>92XEQiIb#2<P<SJ?bB=0w7=Ia#FFUf%xRrvhEKSOf{xBb&;7r9
zQ;GH7BQx*xt_chIRK7D1%{ONWcL{$j1Umyfg-oXiUAf)ly+mowl`+RF98&#AUvsix
zkx<WX7>}r)j3lWHOS+18h%3{_KSOnA`(n(`ALkdk3$W0gsHvc#>Ay*ye|xZ&!?~QJ
z#G#6?EZ13!2>HzPgw8MMYu)<PPd0BRn}5|Ku}JFWufR(rgM6TojjWC=+alz@Lzh3d
z<b8WFmb`PZ<n60)z(&k_)n8p}-FpXb=;dx8_ysXx{=?e@t-7RqWPTMq7^~nS85zVo
z<WQAKKOXL~GG)3R{mcJs**MwiZ*3Z_!-MWyfgqzYdp&7kkeX1jQ+3<?OOdquhr^a*
zb-i+Y1H)P@=GOL?*Bsl|wQRGu{D<D#XOTJ-R;|F;L23@wJAC!`dz4m==((^bwmBQx
zPOV)COLsJjMP3puOB!1ZG$Y&DbB;xD><ZB7_X@pCY=Jy~0wn$0ko7SOD<oT6RG_tj
z8?yQ(PjzFKtK&}zeaYqS@xV&#qm9J_=;=U`VU$aD&-ayXmsxt{v!CMJAdhu*tRS9p
z=NznXelTR~+8uH3l*<-OKq3Tta8-#Nna<}&>|<~|C>Wz+J3kr)@64`9u=zZd@ik$^
z_V-;DycC^>Zm(}<uMMbadlyR(BLgX(_7X;5Mk;&#wKF>pR&*Z%q}y%!@7t@zkteyI
z?oq^n0ZBB_^!TDIS<=D>fhJNbL?ol0-@NQWY-_#iPTjs^nVrkAUzMbYZz@eWc_-K(
zijs^cyS@)4S?!IzaED#sE9f`6=)b^cW6z$sgW<>Ga(+Uky|cHMk3;h{O9L9eF0%7-
zLw`hIa(0Z3==Rl}|MR^br#Dn2#jhJ3(TLU)#cNJC&+WdtsHv(?+C>FkvF}y>d+<gG
zeX%E~8}tqSZ`uYii~j@3Nw9TrV5`H+y~}jz6DM%qweV|V6-Y&e)&xx2?`@oe=zkx4
z@Sn{AP<J6w21eS?up(ss<%(B42!wjw%XIf+cD)Oc>$np7w!d~7HS2jb>omN~!1s+G
zhgk`CWnB{igQ+Zhaidx@!i}&|u|0O|D=2sXt$GuXn$z|4oQmy$w>NO7U<EfeG74Oi
ziherxh9&u>B^E)!!AqA*H%^>@kP6oEwSs+Ph=-^*!BS#X@M(>FNs){|=^JpHmmoxo
z?Q~)0fUL&zJFK~|ZQA8N2HZtdq<mf)48WCuAN97m)kndDl>d0Tei9oVOP0#9D_U$w
z0n!e&VX`lbJ%AI#xgWdBMi3Jbmy`spuBO&R;b-dbeKakg*DL8xeq9IE5mZ)&VnjJ1
zg6oqXU%BR6D<~?u0<Gp+eI5=rpAUb<8|Q)y6yKxgUfH|4u5oKKF@`?o+=vfV2;GB+
zVsIY&<S7AK0(HI{oab3Z?%&*_tLr4}Q_yjxfzls5{l7gG8xbBvJ|oGqDlbo1P6Avo
zI6nj_0HZ;t-^_!sLN3{aa9k6e>ey}42~GP;pLL#X^AbhhF~sZ;MpoTFCs|}u2>s1N
zo|C0zlo-U6<*Np;4MpW$GG-X&d1emr=47|NfTPF`ArKW7HihypNXQ9O*Z1gjz3?Dt
z?jf+hON-}qjE@K9muqFV8RrH<`w6%h(W)9jiX$pCz<a$6xDXeYhRz)*sDWHIOq>8I
z?`dzxZpY}OaU0`&l^9U$XBYvIXn7EbH`amwL?WaQcqb^!8Vu-IRe^S9F&KrTFGITs
zVDfN(A9lLuKIyW?<MTvexf(!tI)$901hEGUUXY{&ytrkUA^^OM*wu&Q{r*3!5gHEX
zA_&mZ2yQdSw+G&R&j&zflcth4GI^?gmA%Yjhy2ciNCIzY<uwd^MX-J}EW-J+l6XX6
z)>4@hw`Mt|vu-FD$SubqaT7pZ%cQ2cYt1n$-=834;k$NVDiQ^DN0qfbTau&|4uJl2
zJX|XX*_tfU4|P6%w@ncsR=AoR3lVbu3?B7GO$xYac6pap^{OABtCOb?Mo~U}S+y0^
zsx;jrPPNrwcjxrZ$*KZ^8FnZxxpvJ`8X2EG91r9y52Wn-WpgSKweoRZLZ-Y%vGLli
zNtZ6EBl=?{K{POnixaRbJP3)@@V1ZICzX-?;Ps9|@YmAFQ^ogxFl%O-Z2(DqED)&#
z&~FH?04IKqNCT{GU_s-hwcbIV?qRR3qtoTBh^gWn3=-FEOd?RC3)0t`AN8#B!YZ>}
zyJDWGkyuaP?ji|>hEM^IUSp-v$m!l!VmokNPIjZ2;QUb<a?q%y`{Z)m&F%Gp3;I*w
zQnA;dxP~yU5=L$k_VJ4Q4<3lJu9!WC9Sl{W$A@7m-8)mZ5h~auN!8ZlE*j+AHJV?x
z6!w>Xb9$=Ne@q_w@2gM47m6FHLv%)`^X@7<C-Mu#4CQVgHum~10Ct3>C`gkju>l2(
zz%^=NVYe*leR$<1Q+#cOFeeV8ac(|d-K)$#o#_kb<+sF<Z?FoYIFKkdK=r{aio`%4
zJ2MqovT-?Ye6xKW!cVDBai8Ewad{>l?;S=^V<fp)_k$s}dla=c9H0~!n?kpNAQeis
zP#+PFm<SOe#q+h?G3D4Cc)X7LxWq5)G(F0IDI+%&Yy<yyZEmr?WGk;f!NiTb;AZ66
z&rx&r!clgL@XsQ-LTm|o?|`{~finm(M8vP1epV+qncy6QBbOiO6f*aNhQ3GX8v4Il
zySQ-2|ADKUB^z_*415qX(Z3i_G<`adNXbe~y=r|OWwZO3iV$}o<&R*Mi6S7u7SVhs
z2$gJRAMyE2muE6&{+QU2M8(2kOBO<@m_4T7y`$m-_@+%aF_9V5)<JiXN>!GZAB58B
z&P2N|!pBMLZ(z4Vrw$o(`k|k*GX~Mu{id46wiGTe@x@t#xn92kS~XnO@t)-+9j<=A
z;J668?)5OSoeeZVuPs@K1yKh3`ug5Set}5}J(<4Id)YZJa5Q0d_ww{4GNDK&1CGCR
zlY0uGB-*+Akc<#kazrQWQv~tx<ctF3bur1@LZ@4-JBH1csmOsxTp>Y9g8;v`p`>wS
z9F*#MdHJW1be5IjUxITVU&9m`@7?*E>b{N&KW2Uw!gz?ZOyLoD#pPr&<msE<ziS*g
zf?gjG$FoQT5TQ++tbuBSNQ&?SiAcaEwAMgXT&7y2dS4KPh_u02{h}64mMr2#%}l;0
zF~~WEepAwSzkGZZ3DCdgJ;JcKzSNaieV!Hjv*dcK;N6q_R(L9Lt-5{q)jIg0U<Ni;
zD_u8_SQlHNR2?s#+=T=cOq)7GFVPJS53`n63;NS=A_Gqbw~wVPnHGVBN%tpQ#KJ!G
zb^B-<d}<Wuit7Fbbs$>cXl5ZHlSt^{5ay|7p$`d#$)4Sqne-uh<ZjG`KyQ_d44-!h
zK|W;k^+!Jo@2&PgIt?s8f_$$x!@l${`q8g%OG8$@ATMuB?-eqpK=Yp~NxcmCf&#sR
zG)l<Umw@9js`Y_?1%-w~PJ#)A5{raRhPJ;$Wx&fJ2ZaO9Wjeg537qLNIeaaB7#!nP
z${*wYLLy-pV%xlm^qtIqmn!XhQ=5w;Mo37f5BD{Adpul=QdZ>o!qS7mLhvAI8wAl6
z$i@7Cd-V6!wiBm<=WmoU9=#3e4}7rJ6^<F)2w-ZhbGyqz7O67CvW--dwuE?EAKrZO
zxDC4=u3qH4V88l7*d|g|6iPw;M*I;nuA6E2=!2jC2L_M7_No85Xkh2*##&)2@u63U
MVPvtZWQQB;KV{rWFaQ7m

literal 0
HcmV?d00001

diff --git a/docs/images/flows/05 - Invoker Onboarding.png b/docs/images/flows/05 - Invoker Onboarding.png
new file mode 100644
index 0000000000000000000000000000000000000000..9cd4b2d9fc99daa0f285a0f9e5cf77d9c51ea17c
GIT binary patch
literal 64059
zcmc$`Wl$Ym)37^O&=A}MH!i{5Ap{A*0~^;6+}$-;HWoZ=EI_c0yGufF_YmCOg8Lcn
z=XtB%AK&?LPSvRcRmh&1HM7?0?$y1zulcO1EcYCP3<Cgw=kjl*-va>hGXOwTLqh~V
z(J`gD1%EyJpdcp=JU)GYYb{6sfPVma>DL;b>H7;F#spK-z_Clgi0#sup%u037xsmi
zKokvDl}b^`u9&MkWE8^Yk!PZqEJOsA$4nzq35&&(qv~(V=gbRy0~D)DsF7)ckT35Z
z`jyQO=S7-*E;1WE%p=P70&%3!s6%itAR6jg0Qd*^-((^uz2wt}QcT}X-u>qU)wi9A
z|2drfC5##2-)p3(pQ|JOdqs#8Sw8Z=SD=ORDx&|lNvp4T|NMKHVEq3@gA<d4l4#kR
zHkXGB6ZuM*Ej4ooJQl+(lDA|$=1~J1-Wy3;@$vEO($}-IvrGQB2bp3%Xw<2xskySz
z(3lu|Y(kL)fkjVK@LG=rx0xv|BfkN*dY~gWR{T$^&t;?zD%fdU>6!EVG9)Q9KK1td
zi@7h<ZxA_hb8?h3MZJP9%<AU`1_tWw=B6u6dt^E8?k|@DRzEYg7&;h#rjvJQJ)Z_Y
zS*jr{?m1rR47k}Ts9*Hni<6_I4goq^yiV<#cJlvw7s01Nw3y75i?y4pTkzV-Xm&sF
z1}|^`Z<=2=X2ccnaED6eivyH3tU}2hTGVFFy-qjT44Te@P$?s#qA0|DJ=L|2_ZgJa
z(STCDdi!1IKOv(__)lZ*Dr;WdXxbAKPlq6>udhE>XBWNEtq%*hTcfg>DHC&Am6nz5
z{#|K0WL^!2n|4Q?c(<yEo=DG>8AK;p41TS2-su1F33bWms1+Q?EdQGw@V}SXJ?Aq<
z5{}Cq!k1|&DVLM#D%bZ9)NjI~NO_(C?-Ud)MlxG%X4sn-7He&0)N*CHuuL^fSATt$
zc)U9W=Yc`->u8=rimpr%{AN8t1+im$EVun?71MMD>4m7{UTOVshR9`6K_(f$?eEsh
zMLi3b;DNrrKAi?f6HQIccklYa=cT2kMS2ug&z&yOsRo~MttYlwzpSC5LFA}~2RwEK
zWE!6S{P{DL$AVJaSCET~i;<DBBC_h~i~BXsuEayoxr>X7#Ladttz69a@86lA&dVJL
zrikN0ZAWO-1kSFYWS(<xmbc#?HV4u3r<H25+AX!UE*;Id-G`Ce1A(_k?MvF~kg2a<
zNdWBz$CWCx0qgVXo>(fQ;z4j4lai8Z9hNA8o3ouY=SEk9r8YkwM`DVnDa2@Ba<HX=
z=2RZ<mA8wx{@t4{<$3T~?~PmD2*-ZOo$RpCRGYbp%wn#%!1b%AhnRqX<gv6sEeNY$
z5-nBC$K5ft*1FAVf?-V?#RnWLSA$q66fw|kZ#v`rYOkryr1M$xf}w>FsBgO=9u!h&
z+3ke}&F+}Q?E1CV5Pki5aCEmuvR(il^G>M1V3x$v(Irv`98&!E?_U}knwyIQA5arC
zAdu(e{I(Bw*Xjkz8-j<REI*#~P<<LW^KP9n3b+RwX?ESIvK*t4k0+36+{sVFz{Gr#
z4{&0^V*<>~J1Iu~*PCe$QA*(PlWy`X@7<zgHoZ*4zLz5IK;XoVqOvl!VI~YlMox|i
z%+))T7YHF>hnxNkK?iT?CY%8ZoI~3+1JJN==uMWCp6<KkcR2)#&ti*L{epX1+1}&L
zOndMER#_t)emU==VrXcX!fs$boPOO+?m$OJcNe-=&eU&LzW@r&G^kv$;y2r%+{VVn
zmbX)Y)B7K_bIMl>2Iq^EBf3#+MEtg-Y)?FEWXBb;BS$9E)qqOGofQzhJMIKc2pjOL
zySu;2*7m%YHWugro1)S;2UQjL23{{CBh&r2E0P#V^5e&K13qEbZ2$lbLVIQ3&rr<0
zqPw%5350K;9u_<fFl|K(EEX0B1wl)V+7~^q`xvtTNnKr7*`9@6;>ea>t@YGaR=~q*
zBnO#<Fa!b#;{IgQ=C~pSRA{s2<>ht9n{<Y~Zp}q@)Aa0%rw5FyXIWTSlsQnTLsT;y
zpRDk3%Get=HZ~L>W=%Gl3<Yr68iqjlI9-o>r~&{<P_=cE`RaCOs~LfP@JGXwbRcvv
zX8Ga~5t*~j*4dE*1Ox=Wnw^3tMrvv%B{;;yS}F@seL~$|WY{QUQG?BoCTG)u%&lmN
zDEUW5<@8bB(g#^T&|raT=68G1dO9qEw1)J95525$tPq^AO!2L)lHgai6lIiR-rB6m
zVacCxq^L2U76)OYAE)~W9SvM#DiZfKAN%5igM<0){<t3efh3y&X!`$P^7%QLdI3F7
z!0~bC3)EzC5A4>z{jV+`W<f*f#O|h`pnw!uQc|)k@&z$)U_;n>{jG7RH%uL~lT)^q
zPpP;-4V2=BtxTVH@7{S|9^Q{Da16otiXXgLpon}Kw_zA%6>9XwQ#Zu@uhFu<ggz}@
zd{u_6-rzt(G&DrdM&GEqxV`@Hfd-%ubo{5{&%^yK!nbL~OOE!t@eh@@zbjV8<f!<P
zNnY*G)pLl6wYo*u)YL4;c#46FPYcZ%*}C1Y9tlnv$rPJAx=d5d2b<<Abo049<b!o`
zDvCwlTyJH$8BlS5?A@IzW>kXlI<NQMMDjs}AA7_}wEjsKbXpZ1czU$pe;-ZU^xHCM
zEknMH<;o#-K(q{G)Fv+u<|H1jOd$|(DZCvPIRZNPX7uq}OuW5s<f#0R0V?0)Ag7Vh
z;_^0_$yZPW?@zNHc{gXvb*l4?+WosXEzGKCqqgG2KwC)Ve`NwnvX|F2XjU^lSJ43y
z34h<xTa=8x!-Zx)@g=bP1&XPNK=%aJu2mwJ!`6CV!u9oaV`Jlp*ropc#^wHO0#23v
zLeoOC2a+VHcWr*R!+9TSU5^$saH>GTJ!*e!tEq84S?$uRv%SXL_$Nfw(rP!76i2G?
zTDRHVu2{1)>hwfSP0jD-j4OGjspTBBI^hyaYG=zoKFLNMEVTz1XP>mN0ce9Q4zpEe
z%PhZ_xqG6?QGs~6gFm$jGv^((jX&nVCAv|QZ}``S^ZDM)(b<)R=dp45jL-CDx_Bxh
zKR>@C{x}ccF1RpvpHf(JRl$U9{MVud$TsL08BsS8GX^%gYFR`-{EC>kB=>a_1Z}A9
ze>AIi!x?;prLUn`Sy@!u+gT8A?<S}0QZAcbPVj*}7QG6T()dHZL_|bznRb`x*20I2
zjhB2+hn~#k!XdeRLv~KiYN|zMs(^zbxFkd;fvfdBxCSnQtNxZYseHWu{rOD&l7BO(
zv+;ED@sr>J3btwij#p4**ogIVN05n$2}6R_?+TM*t@4<Nh{AR?W@hF{BDUT6MxGw0
zot>R0*F)!$&*x$vT)Rd-auX5}VN(bmpY@bw<jz)GfL3&YKTV0C>uD|v3Xmk1o$Wwt
zSU}rUCgAoG^v$wmt3hiM-Z@sJ&iEP!)JEQqy<gyP_?vL-yzk$6-KM~~O8o$9LIhVB
zRa2Od%O+?lfxsLlr3qj;M&z)=7qmgUK~M6U-JbON)3cXi-e;iDR<VM&iv>-<_;-0F
z1LhDM>uJZ;|M-HStH{A2`~SO7`TyKWH6^R5E8A--D}K$ZG{HM`H4|E7k^p*mfQ%Y}
z%-Cx*>h5+Nsch!&G$uSDKS=pdNl;aJT*X%^5txHc#x8H~DPuj3#;QuvS?cBZ+mO16
z*ILNN?r@~E!+r_vBwD_XmzIy0RwF<TGSgXG=66HEl~Vd=^1p2fMIjY>31=Puu1M@S
zy0qBRYI$7yj4$&rQ9O1G69^Cv#A8U(pHqvDtrDWZP8(v7$D<C(-^ni{mnuXL`ABCQ
z#wnPaAL0b?nFer)j;rS@3iXIFL06p{jUG2G4YD5Ed1AA~o!`f-Vxm!FbylzraAL`*
zd9q_<;}BHERgnH%j)GxyBTNq7haUe9R6_*K4<#GskV-)4Qq8M9PQa0Z5e>1&se8U8
zzl>OF`vd02+uv9wj<QOKYk>6w85t$HV-Gb1Qtb>U%Z^FOUqf;B_xIP)Nu4{;BtWsi
zpdo-siQ@6UAxR(W3U>kw@W==#$&>Lkn$}Ot7W3fa2OR9|Wrc;uo}$nkk`x?1w>%sv
zV!a5tpXO+vc$%&_vA-!uefnvN^d3=Zf&gL{MP?Z9Tcxj~v*X@urqhkDh89|a6B{yw
z^UT8a#DqdJCFEIXPgovu_j8Xo2{}ySSsadvCt9f4qXet}=_|W<6w-G5=r?e<3y8y=
z3#WLM)Do91;{FMdQfK<lU9IuJ**%>BPYFx}M%uRd08<31Yz*3er{3Tr3F>Ix>U^hZ
zr!2Y@>BBl`_?|=p)Rf6@#}WT4WD0(Urd$WA1s^_1I<8cq@)ji}*Z(2jGG&*}{;W2x
zbiangVPI%BtrE`hD+VyWi{Q=7-MaHFsTlMKau33h+Ulg?YUS>H|3Q&g3FDogNLBxf
z^g^sVfx-R-H#cs8b>V#lZ8587=Un;QC|5M#+n#rl+-yLO^+6ep%+v~&34euuMFRa|
zxxbiU!1L(md`elh%N0FZ_W%QJlYi5drM%g>x-Lr0Vdjc0u0t|%)6YDL-m>|s_DMz?
z3;2l6J45HQuz|G_2KS>%DE*$wv$}&M(&=2guXDw|S4*_;FqfdwyaR`6TJE+nf0^6m
z@Hau_j037`vfsxDn3>M~PX=^yhL+^Nf3hHj7tULR{BUv2|GG39xTIZ**6<H=(8Az_
zJu#7|j)s16>sI}7NKDJD{M+1U1xt8))s=Sr^h-8|llvF#f4|U;;bBXX75jodhst7q
zj=k0T3D+l92Cj<Z<k#pTmy}*tNk%0rMZ5zZ%7jsYI;rgzi|LJHJFSDm$WU`L6)$s|
z37TsS)>gR4{Cv;FapDMu*d{V_i$^ndPyk_y#`;U`B(Ech;2DAaKQ70|$w##D%`l2e
z0*J__4ZIzG<teNGp}2+<_+4dn9x#*iuFg_R=g_QF1g5k)$J6et?o?ttr1(9n;gq{z
zh@i$z5t4L!UEii#UqI8BPN|=j6JNE~9I%P3(7k{z+ovZ`s#DRXQ6&pW+9aWGzy6W_
z@*=9>s6EGre9psYurOzJUv0-cXx_s>u2{!+<$Sj1vDdA;9)Hjz`l>T%RK{I5w(#t#
z>`{i!4UZK!`s&9tAK&qix5ws|y|7G`EWdZ`+c>d<gwUE_oWR%1sqi%He%w9-p|L-u
zNv>Yuj=+`a(T~<*@y}LcJ!ElGW43FDt&M6QM|g61@N(?d9?!ERoL%)kVus=GElJPt
zIY6BD2<kkV*@0y?kviWEd%cgsLx26tiw*FyGS9XGm*)5%W_4u5^{Uv;RS@bLSdTj3
z6(QK^mUh30489~TcYKDU8W~)VMyzYH#V`6l<{HgVEayo}srftP<+A{iXk%^}s=Pyv
z1Vg(``8TaiWfNE`)uPmi`8R~Kxi&0aj=Te(%8LEV;l1DXLd-3b3rG!T+>}l}l_3SL
zy4aK$#kIm#CwQlrP|?N+z?pJ|AV>uh^~0A?zmYEyLCq~Szga$;Ko3z}vwm5i;=e5{
z)mxY0({6Ou43CRRwdyQyYw=4X$ST&Ty#>ChgcEi5-`^VMi(SSPRK2Z{e$Sh0123}y
zIDLi%^xP@mDJ!?RtV1fta7QG#S7Un2?_XcbMf;fc)6)K_QS|fJOefSk)gHt6hSZ_8
zbXQ?DXE?n6%_>G!BUFKF)>KCsUj3N8*95<DYrVO<HxPJ!=d^>$&B5$n?j!`GX(s$L
zC){`OvtfV~w%GhQ+Jd4WCN4(Lb+P+8h5naJ9%C5WlB?@c+)t6rtK(VJuo~;QyQ52q
zYrA_BLoB3Gx6-C{5eKs4&MH!FMrQw5wW`g_2M48Tw|gFLy>5y7Wu+HN4^bx9s1IX3
z)<hl$LY$Z38!JT%q?&Zdv^-5AF9p@kd-e8uu%oS#GS4o2s2*CpsT|(X5v*NmTEVFh
z#b~6)SOeg4->rBDCQ6LYA~f2y)Cr*`R+@l;*1b67WT#114QmL4cVO?E4cykZ`mRc0
z?GCzBd>u`RYmt}>uiAZa79j{-VTNiF>Og$I*#O9rjIu#kdKR&7XKFhjaE~SDA%_>O
zChiP)(6%}i8`JFk8#9ko_?1Tc%y!)l>>X26es0$;Om`vUR=pDiwt-F!%ZK}Cjm04a
z?oM-2WLp9T>PeEF=s5p`<dDJ$t-??MNL+L-a+Cdj%xF{@3w+5Y@mZ6-trXKU*CD|x
zg3hrLNi{{cYpBY3mT(0@XXb9evr7Y=%p8)gt#MuyfF&{(Lcql8fIDb{#W<aSxdUTq
z9zfNfp75OAs#3iFWTX)wI`p^65dT;rtJ&%Hq2?^vBc_FgpW(wF{9Jpl;{yXxo|`z*
zM}ddkY1zO9$FBnPYKpXs2E=sq$Njq}7+EEV06|LQ>8r+wb!{a`_X`DcCbJ(LX~K0%
zF&OnPhuC#$E^ydF#Ju$^a&9;8DsH54xx(qku_Ou;YL%oWZ|qS0=Uk;Lqy?o*17?nY
zJ6d?<*_<bL`Y2xwUI>PzAo@(cKJ|IUR`Qs+Vn+(Il~8T*^(m77e&gZFAUiuS@aoch
zqinuOtEQW?<!rRKj`d{Z!ChyBz4Sdk&DLWbWBGf6!Igm9C?aZCE?mSH3)5h1;JR_s
zV|dq3G#ig!YI8w#bvV=dNG6epZx^D<kNziL&Zo6)KYjkJCedGP&Q4TyJH_C~iQUML
zeK((19+|9SUvE20h<j@6GR*Ncbj+Lw_-4xyB;}LZM@_kBX`>fUrwvd8W*u2Yf3SZY
z3i-eUb^pb{Y4H|4m>IfSp;z84YWL$0qEb<+=eIrhlEC5S1(uS-eAVeNYJm>Toc2#V
zftMU<&38R&Z*-gP(~V<Bb#D9KWvL(lOzf8g4W2%(=_8O2uB=h<;f9%Y#&+5HSH%kX
zmYNl<0v>y)kHj<WBW7ZM*o*$A7|gVn=I@Lsr<q`=fQoCS+>yYy9lx10mCM-bp9Dyn
z6uoK>{;U{{8W>=h)q(REY{c(wn}$bdFA{H1V|k7s3-xt%C4P75#~-k9f>;s8I8nmc
zkkIOe*zUjgU?f19Vms!Je|AJfM1IIxUZ`JtJ({^@SWTNr$X4K9v<DsO!u+$)$xQ;Y
zoinQWAXg;+;hCEwovcv*z^e=MjgsHaQZ-#w!5b@SJR~$(ySVpNuj=39mBv{d;JO`*
zSIPwERj?K)>1ymH_AUn$K{@E92HqzAv?U5M#elx@H+1<{k%(Wa)|4OBo-L!K#YxXH
z@6OxodD8TzhM*H;^Nb`P5;bd8c}xLO)oA;;ad;=yy&ttj*IZUaQ$#Y!CfaW`GR*eT
zQka=~cWVmO-6AD&8civVxzST~D`K*t@Lh_<<5*5@^Qm?p*GjTGR&QjA{r+$MS$nR7
zKLNfcM{^VEc;!tkggqU9hEVzUnR&zM(Kk5_)U9fL-=fOBkIKy%uRVJEu$v)=>_PyD
zdaBzbYZBiz6`9Ju(`Y!bR6bdClMAd};;Df&EFc3f=J`s#4=TCjr-<vCMZet`GAW4d
zA#;d=Uk#?$o0`LB_J)T0lvEU2S$VAG><M3`d*8YriBx&Z{m5J`%ng0?arj$mH&;{f
z*S}tFcuKJ<2T9VYv3`_3l>XN!*5izLf`#+z_uwYJ6q*bYkgc68Fc!7!l47vPHuV9o
zyyb54cTbX^N|cv7dynh(OsU)J#WAhNQ_RjZuQBgELW7_C`Q`1YMmp>EDVtv(u2khq
z?60?R@7vNJ=Wdtmt7X4G8@6Sxl1n)?^4+{hE^^Xyr_gS(Rq)pBFOGfgjvVb&u3LW)
zS7h`zxo|+l$dn)5uelBfnG(<}TW~-79xEWkF_|ri7W%zL+r`-z8E6qdm6Nm8v+-mZ
zLWk{oT+ib#E!ny=sAA2Db(*YW`CL$X{*AjWBOUkHm~Qk}$-^OtvxIHXhg(Lox->`8
zBaV17!LpTPIkIxJlWBQ7vv$S6*vP6WA7RY(+lYxjB0^w!`~6DHoPC?m<QFP`pMmnR
zp!oQlUqte_!13KH9z_$Y;VZ>4Jd^Ym{fg{&YAw^pA2lnkT9XK55P)owWC5-cCiN(_
zT(Fggm^s-8)AeO4|J!;av05#txk{ocX7VAKc*A|Q%DkSYnmpR|{vH)}#+hth%@*Ap
zslN_x({~&UwC4apS4D8@3SE1BmC+2rX_k+)*14GYrjgO9YtKM)ZU2ansNXc6as`_C
z7Mqsq^J)d7p$sjZ{oPUS)s3Dq%w62`$G^=+i)qbWL<{d{;04viRm3&HRwGgNsbuwL
zJr7+2{PmV&t5b5Qg0=<9yd}Ezc0W(EBI_F3GRiRyaZ9yZuiv(*aEAX#eUFF;RG1%x
zEw(nrl8Wu8&TJYkoC*Wl&HgUslm_V3-TF~-_It2+9LnF@hjB<*ej5`@9#q++4}a~o
zG8YMbmqV%O<;Fh=7-dq}y!c~1Ix%5>-{z9V#x2ICnJ&J<5_zq{<HGN-u)@xfOUgf;
z-*OQ!BXUq6JZ-~&&vg<l<0oujmmKn=l_x56#%Syyc`v4bj$V}jA&|WM@ZslP7OP?X
z66FFnSA3TE3P!;K1(V5nScXd51%7s@|3X>qR~xOXMT_>G>AEa=Jm8zh$N(TYRTI#9
z5p5YQt{(7y#;t4XaETp;^LGvk?s-vpJ4@|$WRj9gEU|x886wWH3`^LL=c}66Yn8?!
zNd-DTPa$NP>--?_oQ+@~M^-YJ;f3%sT!Y!I<3%~6w(}rn#?wgMJjOH2J^hvsjDWsa
zVM;ysh<e--cMN)U8dRZQt7P%l_@6}7@<i!}fc8?d+h1q(=KgD!uW}tI=7o|xk~YZR
z2m#*)Hp)ev{01f)41B5>S~$a32NQZO>h<zGEQU$1W96uPcQ^Lu@7lyf&aJ2n4ZoOS
z4UO`)Zf_A%4PQGLejaqB$&3Kwv$8~Od_Y4(V<W{TSSWo(8v21mb6p9$kE~0<9T+b#
zWd&Go+|I|{ZV`-CA2SnoFB%mfUBo2cv<PR_b+(xYD5p7|1Ml7q{Dm&?c4k<~4*m9#
z^*`Hfn4u!ST9pt{X>RZAsMGNJK@F}dA#L8QI!*pdL7gVbx99hIKE=?e(5AB5cg}#M
zm)FK(iD)0u(24of(P`7WmNLAqBZiQisJMIG^CEwFz_@SxxoqE?+xjz2Lex^J%9fqT
ztQRR-4e@wu!XN9{nOMDDx&@|>3C75#wzoQPtchHe)Ct!x+bouT_)vN6OrvH>q#8}K
zh@EJ}S~_w#c*Qi+w41S#o2NXD_+49&Y47?;5armwlvqw$*>+-g^SkOPSe)2`5!d}m
zHk<mI`+?9E7%*8b3SVd4?`xhcq`Js1p1=JjH`(kb?e#iY?Kv!;_`%^i+=Xa8xfhG^
z$LtNvrS0Lz*6H(BcSm1AvF|E#KXc+y6q1o7jXPU%phrZdsaHQy*BIL_)^f~3zJwo=
z>Z&>RZm|^YV3;plZlA%z81<+7X?*%sh#-EC?a?YK8Q06dW&(6uf^q(C-wPyf9=Ie?
zWVoulh}4;{vb+4neAIGxG;*p;gcwNUbGL|L1X)?HM55q7ZLZ#&cRrd}%k<<DVJ!Ek
zuM^|3mECjSzcF2xpv<`I4+p*^$2Zt_Zq6O1o%M?t0UZs^a*4zgu1S=)?YG`Sw)q|w
z{{91ED&kk`1G7Smx2_ILuR0AO&WMsofvvaIhd%pByBG!ZXT6Tf50?Qhr;!NDsau9*
z;x}>43@vup3dUX&sowtvHc3d{HOPTR{!48i)=Yrynd02TS5tT5h3HqX-OI*z^JYRb
z7coeI@$psj!7O13QK$RF8u<Fv=aZP#7wg=NEH7>N4-f(;J-3=l!&z9wu$yar!ZoyX
z?6cfK<GYr#M6&4Y73;3tyz%k%810B(#TxScTGO}#aT!XWiI%Hd%0|({E=Nb?NX*`J
z(NIuH?hECID39;w+mkfnf7JBf6CLs{x!!+y@M{7$&JiV3F4%k_^xX`mly@`VXEsN!
zH$1aB^ed!Qc{3wH<zcAq1ti@K#XIGBhfur+LsUa@&}DQ`TK$Si%17#5yPDP*2VPJP
z<Dz71Z4qVmOVJmiN^D-N94WUQqzN1~*m)WOo;wF4GB&J?x+7<u3CXbe)2f&hx8d#S
zN=Q96Tkgw}f+|Uf^8I=`I>)T|)fpo|;xY$;H;*=OBe*Vn_<*o1txO398?V0i$g6jM
z6c13D+dAs=^;f(_u-oZhHHGen@f1+Bd@N_bo-Wq#FmY5u8@l2>8F;kkH*6DGGu2r`
zQTP=qh#IEqa=M;)dAZIlba>2{c8MVQuEphGx&+D++iAbISQJ{!Ti|gE#>`GD<u%3!
zGu5pV_Ts5VXUFY}vrg#`R({tlGJAmWRnme%UL$<TH1T@e<%Rp+q<O&f*vW`LtDxT5
z_Pnt8AH#n~c!76t8yA8g3HDG7BGWx{cj%-NR!Q;ve`*0F?sr>+B&ayzX{Bw}b$p~Z
zAd4sp{uY)u6PE=i6qmCpr$IyrPbvFs%Zpi$l=l1Uqw75X$f;B}I#eKsw)3-YUhh<r
zul4R=E8{hV*6&><AK)LM;q2bSE%Oqu%K<l(4OkatvK#9QASahbl6^oCZ_V^43rq1~
zCg=U-LK%G;%LQdWk9)z5-@$vu&rY~9UG%sn7inSGWTW+ZUS24GYyVqrsiC!zmZr;)
z7H6%b$~`#-r6s?~T4ya3AS7JKb9G1&5C20a6sqvEvqZp9;(I_=*#=<}Fv`p`yT!s+
z2NOKV^}CjGPcl94mH__YquzIPFEScKSk|`R8T%k?6yyHu<1s@|>dhgXCbFhL;WpW@
z++iwAj1dEVVeyg>rA=WEZB~m=5Y=_bKw!l8WU;Y)$$P+U0l|28?=f!wq@~XbH%u|@
z8`Yq^J3hV~+QG#RV9cigmrX8{;Qa75JX_1K?PN;mo*hg)Q4z5d53cO=jR6&=Glq)<
zR?%<GyiSAmS%9}HN{M0{L9<$*Z-^LJVCbo0w#u5^TZ7E_)Jgl7LNuN;{LKmG#YdxB
zx_PrX<92aYtPTtWp}ELt+1+M}XIt8J!#%RrFmD|ZRGEmS@<C5iJS7(*{1<@M^A_8w
zy6dWXZk#3E`gZ~ky&O#bdlF0cZMna2=fXDF{2d?}w;9)C=~LwH=$no(d?qL}YYM#{
zZ|8CC$ZA&DilR;3mf6cbWtGoVPLO)Z+E#HCKspHA6q(_Tly>Wjz_bN(*KPejJAaZE
zjDQ|Wi`7uwygL1xQG_wK(WxLYU9xifMz1RmiKA%^9We4%`UmHxd6h2hb9AoG4_d9u
z2m**vow&`_vU_LQVf#+f$gP_aLf|!K3Uu?hW}O81U1`H%0j-ez?i_z08AA-{ey6_{
zH4Exv1Xqx)hti5lO&g6!X;h8N2z#`}+M$(?zjwU^^B_<*?ggUMZZvZ+uXfX#Yk5(e
zrMV#L`&Qq!hV{1n%KfAQR{-?1$J`9m?>})UkVxDRrO{tKGm}i%jr2wcOrc<4&&26p
zn*chj@d##J+?M!F<*;jYze^k_rc5OKL@*w>kO=hnlcTH3tDt41qoC21LgauN7;#*o
zXHQ1fk};+GQcA}VFZHb^bksG2Mw)xpk{Y^NTyUxSt?sQW8U4KX>9NF1nqsyuFHhnZ
zes%9PZC)?~#$1t2*nA#ECPHdBgUXtmouu1M`Mrm2sc{4{cm9uh>W8!hc6<r|XNARH
zsnJ2cjk$HLJ;bl`^IdR`fcc<7Whp0Xn;6HenTky7kvy$saAIJN6*LE3C`kqvYS<>^
z^Xm(?7WQGaao_ub1?S_@N<TRa8axpviWh)*R@MhW*d|k05@bzly5XhV`F9PSWTBX}
zyI-v@+OKlq{S<Ei<Jo?`5hb4<yyRaB?ow)!5j_QZKNAogsFgnRzS0k=BneSP>wk5D
zDEa;atK7$~qZM%H<Dk?ET2=(#-<e`31z61|I{aIa^q!Oc_81?i_A7f2TZy7S8oG1c
z2y3NOVquz*vH7U|LC$o1EcGJIjo0BeyZ<;u;|JbrHQp7HVtHfjl@i7UW*8xB9MzBk
zm*4ooi^TwuH(KRcdfF&}y!;8C+}&copWHjj0K4pFR)<MGgPY645-aG^*0_d*+otwA
zu5{z*8_UDLI|+w^kg76-KzOf~JElzrk-D}9&1b1O{!-cJ2aS#g=wo=VxhM=30v{I9
zveCP~sJA+1sGj|06Y4~*Z+3QELWxWfI!OK$9&;#?NR>JsU4Dq$*S$c-3_C661}gT8
z$P-^H#ai}HTuNO1^nkNeySl}0KN@;Y;APT$O%KTdI%xN%BQ(|&5oBDj=%?p>w)Ejj
z*k&nqb1o(7vg0a|{-?o7De!WHQH?yA7OQcjH)zypb%(l@?s7UZQ;{Qg)!qXz{O2J#
z(SD@mZlih(x>-#H9Mm7zk~3aS+p?AaeOAW}Q-y4pYX_ByH#_Y%F~{URO<yg?<L#?4
zBD1qn^dV1Q-N(g@=nS>)*VArm@3f=}J17_pv~-f61)9CmRPnnvP2h>+JEVU%W~c+k
z@UIE;`JSJ_3{acCZAs1Wfe}%_r7~b#`Std)mG!v%p;e^y@5#H`O#oc-5;knydw;oC
z>EjQs#4#@*yLc{dEeAJ!8PhDMbe(p4?s`9HIxU=Ch$OU_epl7NbX#M=2$nh>5r0lb
z8zX~gY$63tCL*`jzrRSdX(A&wM+%%z2>sDc^g@((XF;IA-FnG;ztEniZ7IQs;u*j;
zq3(jol0oCZ(=(2x!kfxt(-QlmS{W@n()g$nqg;i^^Dw_yc-SaaiAS_k0k(R1%Tm6R
z)Zltwscg5Z0cpNp>_M~PvgZ)9TQxYTjB9PG`Qw%ofzR4qzHu@iPuo>On=kWyg0g`=
z3*K8$_I$K<ISuJOZzsCu4?Jp}Tr$`GPpSlrvonY6Law}wY>nm=fnUVJ73K|f@EW*s
z%kMoO@}&~0e;%m%N;T@C2JRN4xsIMo5=KR)O~JB!{`sE2PAg=^%tyc1lwV{%>~UGq
z1_roim-u+AjLHqSC#Xj^Zc_<m<NC?<s=?@}7^8VAFI@fHl%~!*283~>us{01eWV`+
z5P-IfcGVi`x6_3=7^KSQ5iEgUv<qGWf0c<wv8X0#y>GyQbF*GDpDz_NAAA}(^nV8q
zgXO36uzgH6X^<ti!?b6>Y%1J|D1@`*cq(2j39{(*IJXfsf;Ip5?abuBA9_3~%@W;!
z%TA7P`kH#!h;zOFS_g?<seY}=*}Y0Qy(?C1;bEkDh`5gSGXUJV_Rmtd(8Pmc&o6vc
zbv5}sU}<bZSgA)VG@Z}vpVLoKo~eHJkH%{gQlQ2%E?H~$Mg4CXE(}RV*kGjazyMz;
z4uIAatiUK4g`i?EqtR7x)yn(oJ+Jy!AMw=D+7CCK0!=u4LG0lX&4QM<)YE|Dajz}p
z>Z@|;PY(;N*c(bQwJ%BKat!qm*e`N*GCv4HbKG({?DiXO)F%VOb2D-=`P9|52-n<8
z;WR!5^i}mzrKD_dq-+w+JG*;a;H_fBgxh^j*DHFx8e?~R5!HMvZ}T*wnF|~B`09b2
zjd@QqR6x7Yyx7?J8N2u^CatWD2XtWGz4O~5Y5vrnM=_j;ikRnMwlcB(7bH1@tf>9s
zci^6Pmlq4>@ST!0m^)uPDOzIxg9hLqwqH+EGq<gZE&deit6L?e+7?~8$jngpg5}p8
z%vW1^43BXuWJ+*pDbF{EpaS5gN{_k@lh3PYe<Yde7E9tmla{_=N1AL)gBgOXfh`uU
z!}?Mt@$%wdRJ`Qp<<ydvVZ<eBS-!VE$5J|`?YCZxV4c#4Nca5j3=J~~k@<<LJzqu>
z<7fDlZ`u0=v|InI8H3$RO*mA4;+&dy0CT!9cB>T2HfOJirTOUPpK-dAJ^q6$x1onD
zO*5(y=9;fcv0|J#Ez4gD;Hr?}J1}iTFEta5)tE20&OTvnAM>7As`}@6bWe7^+*xN%
zUOd}7&Tu;s?Xn$jbJ>Bt8;j)ieO{Yc0mC?SU_k3>1Drr_fwrFm^5Ae|3y}D&eOa_q
zDxN;#^_J$iUwR`O%ftq4x%k~-<K5Nx>hGg-E?U>V_^#J=WUHA*ju@PNDBat>X#k90
zdLt?v3#Lp=z?9QWBf+-&t#w^h_-u%e+;mh1-frxt#-=il!{2ot;o1Q^57TOy(^g|(
zQj@I9G3{c#2u?;td_UM=l33nrkeo)A-F9-dymy;7o#2h4%3JL|2PUNPS3fXF@WZa4
z^BY1%aW{LhFPh3!az+f?^T8dwq{K#qZ!+&nir1x)jW$_?RxUL&7j;0#DM@UBht?9d
z*k-e|D9WG}BeA0b?wA<0T5$ka`?K9!ET!mIyo}l?3W5&KoarAwdc&9YT$0G{t%r`z
zo8H|mzFRY+ZTcq{xfG9WEv!DW!U;I;{VgJ^Z*(;pDZ!<G-jnCu5{5$?M-xI5l4I$<
zaS_}ch5(f4)E7;@>7tjZ49=U}yLSE&CK7h(Y1WS{qec>j5ZEbK-F|CUz}ymT=pu;h
za&^<1Wb|0GI&E^#D8YXdgMM_kwYOpFK;=3&^v0pt%hI@W<JHW~{6;qe!I0|uKK>?-
z)HcWMYJiRvdd%X&pO|)wUspcLY+8JFs^wUKcAIzg$5<{Ad^$ZWoT_`(spo(e);`~L
zGzU@&1`ZTXxl@*1^f1Y^TiIhD`?&_G<CCd9nY-Oi$WCOm5rLGY)Y#Tl2*;Xr$8Hic
zbd;AvcV=JQ`AXZ~`aLUv1Is2|nKNUIH?>Rgu;DV<Kfv#PC_+}EWp%Jmvh=%I^dDQ%
z1io@!T;R?Si=C~iguwlg>9U!i=3aem?w2c)eZXjTsGo5x5frZMbx!M}_{v2(@<rP$
z_kCrteT#pu2c{MkhY0iA7@iEbH(*|$WsKWj`quFkCJ-BS+w;5=gA#T@`%2ellXD_O
zBP$?m*XM;Q!O&e>>+x_l0N701vAU_9$a9q#v%3r!vHkYEtvD=iJGNAf-TvkAIA;zW
z{La+PBwZ0wx}?Q-S+L|l>VBQrbJTFZ67Xno*k758I?w<2W=__S>bK)86e8|%URzDj
zMRHm^QmIDJrOK<sgUF~G&9l+n@>&XQ=x=cyg;(z@iyHe%tDW@aQnc)B^LcI@cX)F!
zL94aRv|v`d(%#vDjX&BV)Z}_!YUyunGwOxC!0Au`%A*1VlAHj)%O`d5_d2H1ilq?u
zTtEH+&Edv+4iry22;BT77{Xil$}9~8j@ll-94FCay5!_(*B5>mer4Z!va9FNBCPte
ze=1F*z5XU6hv^@JZEvNeq<j+p)69g7IR@p-v*T(NE6Hy?5zN>yGr`ZJ0oXcChbar-
zZUs`{RN95^&jh6lK`@UBn>&*`ETuIz&KfSi+Y(qy$IiBt;`wnDl3!G$c1DXIMvic?
z5)eZvUb8(m6JUz+s!PCJ;34=svZz9roTiZ}E-tRDrL4M{RBH5EuRONyO4QaA0?;YX
z>X2iZUpW3KH{DmaGZvX_S1DIZP#VYEi4VPAO<6;cF$3K@m8eKob~dA%+f7m<R^oIv
z#S4<Gf_WzO8d+`20Xd1oy)SXFF`AR1tp}&a^&@8t0|BgI%Os*6m;G#7#^ka;RqK~x
z<`yj{%mj+VEE3|x_|&clC&}AjR7_f9vQ&FNSN~RFS@5E_GCgU}oz0**V7MK0e)0_%
z!TJHs3X+Vg)*kpB)VlWT?RlH+Ep-a+l4svAhP~-c`Rf_JnCS$3IMoXR+{5pdvRX;I
z=StX%bn1MUg5$h0=eOX%dt+PRNWn!Ay6<R|E4WG|UE(cc@Aq%dM<l$F0LPpmR76_s
zf|1$Q4{JY)z4L0{Me@i?smWjG+xhtGG`iiFB_tnzOrT@v3Z0o`j8cutztK_VRd#X;
z4mC%C5z6SD6)cqptc;NZ9ky<w{+9so_4I%vl%0!JT&70)P<%zF`rPqoxM)PB<tWpl
zO#>n!E`?_>?wJgYENtuN=cb9uv4SLB!@g%EP}Fp*^ID{vS$N_P=z(Ep$>c+Cze5^j
z?Q#9k#kOWV8`RtrYTkauC(_>V;i{t!4EU1L79T$pku3h%k2oE$r)|Vx!!@6NI0?Q#
z;CaujOV`48eR#_lkfOIu##N|PT=RREa_lHA<?bPT78fj|{@SSzMV5?Wq$gK-Sq4_7
zF}*z7rA(wx=a^xJ(Gw^Et_HNcm;k|0>dTXjs-3<We=-rcPh{fn^p;?uCHB;-;|z)(
zXdP3u6Y|eQJ=17vT)<ecXtGnu`*!QrVLvgGASpqMb1SV2pK-p+sboFEly$7!zpgH)
z%33w+g0<6j;Y7|=!_(UNgI8Yo3jG+~b?0vInwL>bOOrwxk-X>#r7*1Z!$O(S3{{(r
z#yNsXt7elq0a#;U{fq3YIn8VignBc4>RJe8X^E4rTFD!6q&ht2BZpD-K}szuy^rF#
z2>l=C=qYqF{e&S$8b)2>vLVcBd-72+1H9{2)R_KE3<n6V%vdeuS-uqp<{@Q<E<#7L
zpA4Ap%pnCW$L9cwk;_-msSmr0jb=(69>+A)KZxD7g-5n)k@kh=rOUE=8(;7e6BCaZ
zHUupEaM^ux>j$|G7bx`SpeE={rPJem^%acgWS+JW`iP!OiYA4MYjMfA#IwOt_Jy~r
ziU%Q?1vjlZ^iowa6D7d6VyKaO3g`<(t2rkNfNuYqIT^IRACkOx*@*1&)iQcgqst(9
z%Oz#J<R4vHQq9Cx!o_}?wU6YTX~@+HD|B63$*qK}jGybaz3tbvBKLlmGjF!Uyc97v
zH)mjE6v<G2jl-EM$u!B!ga_`3_EKgwPwMH=`LMVuWs_zm?3WmiY3R78;6sT@<AQ~v
z%mslQma2MquYo@v;MrGJ1l?yYAXTpFI%betwvbi7Uxa_qvWgiofU|JR@N`!X0ulSn
z6MPWPaP(xfFhW;@t<M(gflrxyjer9%=oYw-YxXiKDzky@ZqYYee*WkwuYR8i_4V))
z546`$kgN_avjKa%$8z2Ty<cQ8&?1#xrfW8K=T4W0_=4xDn8od00@;F#tYF`j<6D#9
zOP!zH$H;y-#^?8D_9NzgG<3#+CW~#r;AoqirZZqMi#~nX-vs#n3Yb+O0yC>Oxx7#H
zYJ5!Ch0vq*AAHayBuQ=Mc-yh`kEf0OA00xCF%tH<2xNTV(3Yf7f}wZQmW%5EFspvZ
zGH`x7pF^)-)k7ktrgT1V=&WKER1epl&<IPARtT{~FA!2o5`*LkRTW5aih#~>S<zvY
zr~`zn>u)?C6ik(s_k%f$OU<A%u5`Muo!UQ2uI9x(NIO4+lCUx)+93BF3h_M@evb&7
zZD9;JZNmerIbbZhv@!}Ghs?^GXngd|8pXBH2hwD02&jLl>#UcuO!IZ2={J>~#%B-?
zRu%j_D#l~OjTd_ch!UcJ69ZeJw;>q%Yp7KOZsR72J?##YLpJDqW;BNrX2a`j7quZe
zuvwOqffog7bSKa_d_Eg;1<xw%rV+?)DeGC|0I!k>Nsxe$;8?yDbOeGC@^<>IW<_r%
zhKdXVwRDYaWiTiyJ}j8%G73)zSgPi>ty%nE$Z(}wt|=))&3()8WZWZ@-}Vue?lm>9
zelLfItkCsQnu@v&8~BgwLFk-!?{ja!ij}wL9V(-hw0m`CrL)do2?rT`(!tZ{q+t2I
zW!zd`Wi&pXW3tu3BkKNtDp3q(K6>attm+DKBq6>bqpS|xp!;+?OJzL&?btJ$ox@y^
znY*#L%t|sMjuRKUNgrNT47vkYU~w~>E@wEd6j*DL)0akp<uLBXc7?4DhO5br$~D&3
zc!A1HVIQ>D7<5W3Yb#pHGFTE!P?Vxk{~_p9<L#8^?<2FDKLbqy)EqsVS7}TmRFy!<
zMUXNYr^zu&&WWq!A6O?JWXx^otJE7N-5K5?2J#68<|gmp=R*}a^uhRcfUpdg@OBds
zd5tn3)EwD`<dwFo5?FTi<fvH^1x6%08qBC971@XuN0UrmDDssQ-r1eDy-yHJHus|a
zf+saaM{NSgs+DkcCM4KK87JG0P2J`(K{ul&44TY8cva7)S`Oxl5nc=_8%!Xsq?li;
z)2m|v5z}vhLgsK9Uiz<{IzQkx7}+GSA578gUIat3bRJyZ(z03MIV8$8d$4z7-6=5<
z$!`svk-epXj?ersLN|jv%d&hqWKf9A8DHrR4ok0HNC$C<tSBWP(;1Yq;{&X?!F{;I
z^R#$uak8-ysx?lzh)U;?b(Xa3JFxz-2l6miLG?Fq{a5v7ji9%%)=Wx}h&F^_F4yug
zl7YZZG%R#wh(V5(q!Y6V`y06n8H&r-GAja8WFpY2qqumwb)uVnKpDfcrzr05=j#%v
z2^h$HSq_jCTQ!~RuN*x#*C-OvDh}@!nr$E_@CXjRC&=A{S$^h>A<wpitwf8^l5#M^
z)|9Z<yfvXYR>>A9k(-L6d`UR(@inrWj^0&wD<p_%)<}~K(Gkd`Qj{3;i>%qTTqf_`
zrtgeGG@9zn8o@4WR-}6iFo*HXk{XWl4S8yVdD%&~X!EP(Koztus3v)uy%WQ3w^9O{
zOto+BQrNas9&(6kx@B=~#q?W@A;;Q3Z<t^!yA9k6U(H-^CTit}(1we+b*PWm5lm5_
zroclBw#?caE?g<%=io!<*vN5W>|$)w9e29a(Tvpm$r_;hKA9Kmy{ZQq8=7Vna(ZKp
zcdJTqeC_YoCj)lbvs4M*IJw<9PD&sBLAa}tvQF{6c^Nl+_9k$Y9)98@jTPW6kl!Rn
zpkZA)wR?z*Qksj9*jSWCnYvcWI;q@D57vs2nQr8P>YJWfsC7B9Yo``1!B%1*4-;my
z-1ZN&^HGugbN!VGwTHV$dHwM+#m$I)(JI!S@avwM#aH^{0wK{_i~>^j2JVnA!h8C!
zRx{i+(1(tBJ0X2%y*+L2TI)7^v2oacIEvphfcE$Ev~H=0x^$@lswtnc@E&Xn$>BN*
zM=C%sM3vX(FH4Dim1=x`mOC4QTs7|iY8W%fxJ2fV$X4`2foaaaTXSGI<toL6CCB%p
z<7Kvv|4H}ik^jP)8(}dt7L?*DkyT+d28(5kpnO>-*|XOK+6U_+E@f!cl1wq?QN^!e
zaQ`jDCuHVEq*#0=Vrv0c%0gW%q9<**ZCB>wI)KHPnt?u*aBdZr-)Mebs6#t$I8K}X
zU&Jzdb59Y!SB>`Pz*A-M6VD04m%KpH*d!rXqwb3F%pwE_KG7I1_rKxH^x|b+%n=!|
z$e$<Ze+res(q=Gw6zW_v<#xC78ZFfOKXv4h*lR!&FE5=azip!A`WsJ;*QeZAZzg!b
zDtN-5JqX!fh{yk1GLG1d;EHbf*3-5F6_!(|Ew}BDKoWpEa!S#|h4pEslA56E|5Wz<
zT^iFQ-gl9&<*au@ZpbyS>q8tJv*X9KruS&s3^@J&Z5tUZN5A9a73Kej{+pF<{4X03
zxaPFm;(1FVcvaDSC`grn@PuYDgg_?DgbDhSiZVn>wO97vl5uO6r_%gOVz6X9(@=4u
zhED!OtuFf@=0MbQTROXaJh#_hNsRy`93*GXWi5Y^_ExbDaQ8S-^cXa>B7+k<q@uxb
zz`;9_q=v5c`Sa(ou`%rMH}Q0$xS^`O)_>mq)@FB>wv#4FS93YOj6fRd&m&KS#hzlt
zK371OR&y1ksA5HuOyp~CXeg<w8s9nv{kOfQ6O;x?qfhfy^Yioi7Pht}Vi!`0R5%Sx
zX*fSQu|`B#lYdoIRBUf=g9zeUMHOo#F*tlM7(X6=awL%&IqoxyN#8rMRmo~+=4W}E
zxoSU6JKrO|#<Arm2aEG9{-ws|?dw?w;BdojjzBtjSbknXLA~wl->19yYFoiJ1(oCJ
zil=rR1u3w@r>qH)gYvDOI%N5u4(a}<L#HSI=@1FnAzAd;=Wo%`s96Wzf!spki4s_!
zU&Tt^`7vnZ9_0q{>iz-bFB20J2L}f+)%+!wJ#nR&z_N+3H9<83dU+6d!9f<q3{_>a
z`FF(rZ*HJ~9);D}E1}2$7V38cvoc?WQc_YZ>gRHEa}yF0IOYuzqdwW_hyR!~)|qao
zf0Y?3#q^QSj?R{qSSW{|25Y!b=*s6;kom^=^LIl%USU1Yz9XxizWl}n&9_=}2^f>@
zVI_)Wf)Yh`?YJ6_zC=Ne{Yesz7vO*+HTpfSqEi1Z;!gyKPHZka;Gn{i6oi@hsJ8H*
z*aYMYxd~qV`4_EDa*&uc<kt<BBF{Uh$U{`wl<?5W6((dSWuF+3QUzgb-d6!>-zI%|
zc|{+R5|=rS_C+rV9mm|EAO`Hl{ER-T5RH%hjwOQ;>zxvI`LF-b)c>Er)}vpms;kkd
zLDZ7i#ArnHbg;o`ZTRf3=)q!ZGl(Vy{}V;V2e0hMvYdx!wntu<-HY9AcvNJQ8;;hS
zA20s^>1msJzLA&yyHCKvE9y8ra5_b4((-qDdwZSMx<Pu8^by8qqj`IAfbtqdm0Lg(
z&)LN#dLvE1fs)tq%anCA$S-pmcidf{${RF+-1Bs+PphF+F9@~S-1}t`aTxj@)Xrq?
zY#3GeT-r<Z-kk3t7~fr;fS9vkyZ`-n`Gn#6oB}IL$fsBC>;r1F@Kb!BX^)D+!a|iS
z@dA(Bkw^7EAt3mf+d=#o$<b!HyZgkPM}M~3#n2Z8f${zEJOvO_`}G+g6BBc5C{4g>
z{5!~nuYrsfDW|cdz5QX0)r9x?Zmrv%X8DW=NJ80^HJY#d428oVuGV6+{4Qpj-1efJ
zyQ9fdQd6zc_j%KXl*W_O)6<bqv9TxwD~3}7l%%A7rVF`@PfQ>fg8(*1>)HFBn3v?)
zWdRq&a5DW$7o8aP!s@n935+WKAh!Ndr)?KrOjcvU<FS?D;l4e(QZ>LnS7|Dj#%~8}
z68@LE!uYI)_(oS(7lb(-8aI-)486=iR5##GV`H4=e`*0vdTh#DFBW}{lv26#K+^At
zKL?)`B)JTI4r<K?lKZMeEr!zvINE(X0ude`F59;TQzvr6z&VMI=6e_(92E7F10nGz
z?s>}EZ#f7R+?Sf(nJmJmmL}-xSOPh5Wa@Q^$7>akV3tv%;ImHbSwjfyOJMBj?$%{Z
z2FXvdf({TJ7n6DmBDluHk;EL7oW_A_x}_=MFQ_QFKSnS?<>lq^8I{j&??G@hIwIl=
zT@eWX4y15|!{jk*-49MY4;$8EK%)UhfnXaKI}<&Es7A$-!0!epQ;>J`%2ZKM;89K?
zLwNx4&<qg|e&JwLYzh)l&k81JQBhH~`H*nyW<d6b+87t(#>y!WU4H5N8zh(if>`D=
z&Eei&&&T`Ay%OIFfhAua8k$v*GIZl#IWvF8^Kc82hafdBk}<4PZEp9wf|`eC!oI%!
z_$MZys*+#>X&dH4SO(7*^SK~E&IY-^larHft1F(V>P*;VHKY`V9N_)*=7D98V@0_u
zkn_CsZf*5Ghr9U(OXOMHpiTX0u3Q1dkB6IETCL@LTCdg6AtP<Z#rD%u`TgxBh*C}z
z`YvNawk*!i_=IArwOIk<T3wxFyPqlxJJg8aDlTkvL;vCW?*<5O>9qM?8~vVsLb=P^
zAFNx_LH+7+0{Q9uS=(eYA<v;6N*`8QT2qi14*9~SS2wAn3#t$J#sKZDcI9+I1ONmF
zLFo7z#DHm_tKj<yKpGq{2HOq|4V8<bK)<s)1OC)INPtu!$Pmui)>%#DgWAF&D(c$>
zB^2>E^gW-_dV=^3W|jgT{b2dkRaJ;0Wa7S8;Hv{XZU)B3$3dM;vv0Cm>yCcBKMDX*
zcb0*_JR_pjwzE|SbM-1;IjL!Aq$YTCGi%-LCQreE1sPmkB@X=taFu)d(hMRbBwSfp
zc_DT-`m`x9oZja&59(bsVzlz^h{WUm>Gk{f@AH*2yswT|P%w$KOQ)xbwPxVEMupm?
zxi7WtZIhCdiF|(>`JGQqm+Fz*9M09p=I?-7H?4jR3gO+^gbGolS!dYurm~sY5Z$4Y
z(}j`2!MnreBTAoruGcu++}z^V>j|K;h2m5NJU)2C^o#$xmF=8fgKwI!Z$7BwvzZ<Q
z*>`GclikUp^U41u2V#^e$0FKWxY!iYi>*E?8Nz&5SIGP&TLy)-9;PNBL@o|m6A*!(
z1O@Ew?|_@V;Yj8479;z55q5U_$wIY(WVYLzz4ASwK)14@y&JF%gyr5i+Ms%HdwzEp
z3pe1$wX_CERJwwzu)bv;GA!Q?e2W0crGsxb@Vz_f;o;%2DHSs9#(IsztJDl)`J`c_
zyq2S&ZF4_beAzOrqaF<6ounM)jhnE7Oz(cd%XYgteuJ4$kNleA?)zUW|AL?|*ocwm
zN+>vXHZV;U7hmzLSzG=a`dY)`bRkf8er`AIG*Rj+8yYTxCO=ASx^ZtgQ$T3~M0(-X
z9i%+wAY5Avw`OfzixH8HrL-exuo$5<T>)A5MUc+#C_8G}D+AYz48zkfO~vGmellpz
z<U4fhmlq(jj4Ktz(t5QT`RUp7aktjYeh%%54*Plz-I~HohDmGl(i@UTG2g3-vOQ2l
zfQk=Y7^eRhX<q`4W!rB3G?E6AMj=JU$e2*(h?IFA$`mq3=1?RmBy$-eGRr)ZBxTN!
zOsNc&khw(p*RA*c_WSMq9ml`_<A080_r06P^W4LAo##5&TIYEyKJHj-J~r6dF{~4w
zbGezj>c_#uhYyE5-?oq69Cv4>^<8Yefc?a;bz=8?sl=(M(pdAz3&nl%^mocgOGvP0
zY0yZpoy+=eSs6^ru2r};urN7Cr;t6tsqW)773J5KSvNnfb&}9_Ta!kSnw2VJvXyam
z$vAtq@t*G<Wpc*&?}mIVpB^l>L|=%qH4C^Vv{O1UA^cjUrsd`ax(g9%@&|g9YBWN0
zgjKb)wO`S^sH;1E{P-*D?DJMV6Ua1g(3;D^=k0K*eMaS4_TbmB<I=3_Ry@}v=+;P_
z9^wD|g3-&%i!1W$<fM(U@x8FHP6L6_X$<C|932_CvzKqQDVndPr3Emwf%|6bC%zpx
zaWtT->P6QsemiV;<w|yD<`xQyGWYM<Nl8N=>uzBZ#)#l?uiq8e>=;}zZl$bzx4gVu
z{J{Bc8O~kYhE+hI9&HH{ckkZy4SDh6ROzjVa?YM@=)I4PjqNGQ&d$bGZQ{SIyMggh
zNl8gULc-u??C<onw7V3A>wM5P{JGlh!?O)(O360{o;@={^YY%kdwoN0-`+CXb(-Q@
z@XechcunNapHKLx9-^mMI&E%Y!Q%wf8QEw`v32WKKgoyJ)FUViY??oQG;(%!PVtKP
z>ymz~)O5fl{jeY>sP<&%Fc$<0vuCefrRC+R*j(OV+-Q^Y?3pApnUalSY1!2r)lsT7
zB+^tm|L5tCVPQ1f+}wP8`PfT4Br~(JzP+pL>+NM<46d%IcyOZY3NFg!%V<*9HZuCy
z5YB<|8L3Td*O(U6PVLRg%0eIqj^SWu|A{Pti@P*YJeZP_ayI^?e!7{4M#S(XU8ai`
zF=nlzdyw)K&YnH1pg?=fMo&s=ox2fZxp}Gbt1EIH1;cKqn|Y-V-VF|JMT>Y3_2IOT
zEx2NeaiY<lb@#4cU+3P!;&+FIpWl&~bMyFIH5Laj4-FXu9UUD5Lp%Z+J^j0P>`%DU
zLun~zJu9sCj2G}`WG0vy8y|9C+n{pzY>%8l;Z6n1!F$A2nn>mz@EhjRXQKWxHr8OB
z-SpO>RFD4L&zmgHtRIJlOfRv&F?EmqDD@mW@{FRQA)5o{4kaoF@7C4U21w*tBr!6v
zvZkh`Spd;l`StepVtB*`GP20<@Brz9Mg4EyXmIYzrxdATrw^7@rs;S%To6`KAxcI@
zmaAoDY)p)5L1(+?+-q5ub8%r=t{<OoTDT;W)`P_hgrd(%!<)~qh>0gZ@LF2p)7&zA
z>LsVnq--8tZ%@xo8k#5i`bb;2))AJbwzh^^TIMDu&#w+zoIihHrzP21Vjc<;!%Re<
zbbA<^s?EEKQkwx`F)=Y?V`Isi*WP1H!VnRo<4%+(CQ8<@%ei&AglU^@5IDlgiTMzZ
zEZKKF<{Z&IJ&~)j6gN&@ESvX`w>(5oGsnQm&Mu@+FFLodpn#K$%M5qc#+G&Xjhf2E
zZ%%=f+js5S#b?%Z9%2khDQ;u(dKFBhFfuY4ZHX<%83PO=pHniN?0@?70QTaMBh9t7
zhXe!!aAYS=oWM_*n51=e%Z)dGoOX$bh(L}lz544XgV%D+SzOrdl2;~rokkkMk+zwb
znUCm|96fpRH((o%r0U9qj<)vR*?n#JC5o-lK@S<3I?QJo85yZ_<Ps2Z8tcR-o<rWk
zd<ofLdOESI6-i0PSdV6AqXbk7X5ii%)tNZ5k-P5$(!to*ue&+5?11QohldeSTJ9e^
zm#(g*wa349)22<B!t<)JQMc4#q_^-=vZQD8)36I>W`dYm0r;aBD;&<Iyx&7jEv&rU
zT}w;r(xr@k_0M)pTQ+25o@vIH@#VCgz?g(kW`&k`v2(q9$0AQ9dT_j|{Ep-jsvGi>
z_JX7wHl4M#wXQC$2xH-w@E$*=iMP2!Gb6+RAk+*&fq|jKeb~BbQz;e_ss<z_j2mjM
z2$!2wdYSb~R9KQcEhEF2{#<BA{&(S0e{u~4g+@Tp{d9CVSFiao^$kgwvNh%9_-kl0
z-R#CeAtnoC*KbuzT=A{Pcz6PC-YoH2IjPuTYHGT&{7H;#%bur0)0pPLXZx<AtW3D*
zl>!5Ic6z#z8O97<Y>tuXn7eyOcH@>k36CE~#>6z7<y#qFw{G41{Jf%~Vt1CVY{wji
z5S_Zc=V4CHV7c=*j7z|TkT(8bn5c7aH|1{|1Vbd(aq46<ix@6;c8ssu((wrs6=Lq+
zudS_ha&jW0q^~fp-zNDIvol(rvlW_`2Jdb}@R$qd&=eIF#it>9IZyO5mw)6}j0_9A
z%^+rQj(D|pcYntfQh9iV^XO?6{LwZM#SQ>&?ApS@LMx8C8XQn-Tbms~p@XKx6@i^r
zp09Wca&u2BDylzeP^oFmI^8jct%-QIgbQ$aw24vb2Gilg*d|s?4F#bC?km&5UUCyw
z4zf|Msz<(JaK*g=1;et<JPH>nq8YXlGg0!zUJ_xZoj*1%&c@ohdD(s|!^sD(=2};<
zfBG?Ord$O$J-zqqF#SO-D_<HJ08tEma>rT?U*hDA8(!yavw@5`Jn6G$>EUe2Pc5-n
z3VTs&V2)3^u`6GCMg{=Cmb$vBjZL-(hnLsN)Rf)m8u^}{v-)$FR1T|!uTM!CA0OAq
z(h)Fi2;<T<s=rdyZ9$$Rzp(c<rm@U_>0mi|@}#J!-i$?RoU`->QsIs3p$!(3ccjKr
zb91LLzGvKXyGs5*^gh4dSY{?BRC0&K#Jn(j1hXt=zJLFgC*$n0*$6Pl)AJWbhmAJh
z@2>V*!QhUnIXZI^DIvOZoPAAXWB8I)wlIzsLpi?fB9h5$!U?n2flhr-%L4Fcyv28;
zqN6vgUqAP?`&`#{iSN`53_0&rPsX3?D7ba25nyj(V&dCibujlZDdGN8^|j%u`C;#|
zF&>|dRdM1Zk;aZ3K72}6mW;p&_r>KC94r^g*JCCU@T{s64T&^xcSduQm9;fKW6;!R
z4N3gi<Ew0I+GR<k(q4s4TefWZ;c-<>trMpgHE4F+d2&C|wRS#DTOJvp;nKG|QuyD{
z5NZ->jvqH^Yz(U?+o19%mT{!#aW)dko9WSd66pk4WMfx*`^@yTcBNaPzrTNaEmH10
zCL)j${M+8V*+xleSmjZQ3Nzgpzi_&?`is=eOnw0Yb>c7+u1<Ze!{@A@!LL8>AwCnY
zeOuY^|KdwdNfF0`x4k9~1ut{{|K(fS=+reeRcX}q^?$u^Hz=~|!I}2nS1)bRosLVd
z)tyqOy)u?EJv*x)C+Ctc5bj^OjrfMA98>|)G~hAoMjWuAQ6Z}u8n$|bg@%3{ALpbZ
zN0P*twCVRX>r$2xVXLaDHg4PqAb|Xd+UF>9u)lx3Lgc&t{xiyI5)wY0a~#Jpb4^J}
z$vvMNeG<~jo!G@;oc_n;CQo^N+2yhPBNuGexW!zC%}<*Ve}=2)SFS8f4rGkkiBC+c
z(cy$s<A;Y$oSna8Vpje0=bfFMj~+ip;r59rH8F$?$ody*CtqLR54HZtsg<RruH$cW
zeSCZn{%kK@5<#%WEFXZnraAB*`(<TiNALGyBREM6fB!bf&A~y70ebz~rXVkl3J7!|
zqrY<atj0ZXEjKq8iKS49bqhJU3xHfd#z`%MUf8;qcNmL)VPPSC8(AlP_Ucv3$JUve
ziV}7jL&@!lg6!kRkElk?z!=%v+hYhH#)Xx8EIMG%pz^-FFs}VjDJmvrY+`~K7K71a
zk5W>$xz{{>nt(#9sQ}#G_%$y5vf=S@tMliNUV6istJTzL@8p!sDlaSRA8SzI!Xu*$
z#;PzszvK1mO<T8GTUs9UwdyShNKD0*%BPDHvNysMnlrkudfvQwgOCk|NmEm^yQ@n;
zMC5)&$$iQ6KHN7<?&<B-NmJ@^Na@1tBBn!tn})eY8+3bWYA(!<Hv5JwFE2lo^0&Nn
zsqgLEmsh*XG3*F$jEIcfA=%K-fZsYgI&R#$4=d!^jqe@j#4sD_bnLghc$>kh0leYu
zTOnp<W^V3QP{atmUFqt+R2wolcUJVr_=e2PI3RBOh@ZE$wY9Nn@z^?O@POi=a+^Fm
z^((sbzkbe#>OQI59uypm-(s#^N#_r_$xV5>5|i!GH>!XC%(#C2dQi|=q~6Py^ZQ3B
zUT8SDqvmyUbK|YacTXE966B{@q^3=bSf!wk*!#a485=Ks|CW=J^X<!*fD9AM+ZsCn
z^l*>xZ~C_NB=L#LmhDIv;Z!q#97ppJo;^-_4U{<{bW&6Jg$iIG;{N^nF>vX$GBK@a
zctOyzGZmC{DFfKQ?UIN%U^4QN!06~==jP_X{7_4Rbi8C~IoV%YdzSApH)<6S2>qp(
zF9L(_pr(e8uELcsva!;0Nw9Ciche5cAYu~XprMF7qI(7W17?IR&VKri`^UM9k4Mg_
z@wt+L0oTr>x-A8Hxw&_5i}LWiZfOZhTZ~^>_HP`)-iSvU1<V3ssC1n*b8z5|Z^i3k
zj3&~CnHez8r;(A@`~&UnM%LCiFN_ELF@%XlxJbBrXB0>EmOIl_9mv{Vzn*S;C<Ps1
zt<O`e2e5e95dt#GD1Rt4wAo!s1$1?EIFB4b;^sD}0FL<WvyKc=Qb*#yZev1P+G(O@
zxp0Las36yE-tyJ-1zPsE6e>uXu@4>;q4fg86Q!hTaWw(aiJGtrtLFSu@3ywK{EMxi
zEzZ@D8i?EsL~xcIKxkWeY5CP0g>&ZsU=X_d!H!bz*nyIP<9q93vR%w$2f0lo5`PQr
z=}pg#rZEzW7y`wnn!>45@bdL*<#aO@l~C~mRJZCthKx?TAc_I(VGvlTlR*qMS{#q&
zBYt4PHaV{xv+0Mp;t-SO@$KD-6bHx>R-*ih#RUa(V_mn7`-R4uihBH*LQ#3f)}h?=
z+%G@L53{>b;h^T-xrjW+8pzJZ_Rzu&Q`qn|O;p<2+E`sY0*4MBOi{f5f?v#SF7@F<
z40_x(`x>zA##Y)F8&NDCN2p3U+`*#Qp)!3m{x^y)ensrv?UE>)>O1)b1y9<&_x`I$
z#J9vmN9VdGU{NC`?|hzifO<m~%{WO#S80+w|B=etS2rk%u64FYKWk`^PdUoP)$;1q
z>A&hlT)KsCgND&-!gTLNL{dBcGAOp}Viyq+$<;bjP5)ptZNJU_wIpxN(Qn^cM;rzQ
z2CS{DK>ze+ybxV-0VQ5hQGwB4$Sp5=dXDq(C@*f9Ui2_~_Wb!Uc(Xu`%R(!^9*>TX
zV-yja?gyYVlnx*^^YV>yUBI@Dj*f!j2)uop$rtCuJ}Jn|EVJT=*^R70{r^@t-)?JD
zl9aQsNXyUX>#NSlxMX3$#z(h(I}aG@r%%PrivGP0zi`rMlHP)w9%BJhw)xk7a40?V
z5HBTGwLdsdTTgF%a<XNvRfX#DH949Bm5Oz8HWH<W`sr6MRe!Q7P2Cxx<HyxCH2zwW
zs0mVsu?pEVyT3U}NJuz;d*|fns8``)56)cSkgv_=;N9zxJ{8cwF*C!<$M<!h{21f&
z-rk?cJ^+-V7muJu8GluLpLq2lb7945X6uz=_LymlEmQ8N3k~Mh*5OM}9Eft7){N<5
zv2`CotVcu$+Vq#)xUq5JwyZ=kR;<}z=<xgZPvd3_ce|RKf5zuOJ{Nx#CCur2hqp_b
z$3*CHzv_WbhME#!8Sqf@rW_LxN>Ax!7G3QFR8PLS{a=db>kUD6?o7lc4UFWX4sdjG
z8WGeqvnti&3TE-#cle*R^Zom}%F3^U#eTaWQelFtpn!lAs)uo6@)@syfM@bc33a=0
z<Z**&P%W{sboVH!BoWbKVq&oKTQpL$vIYt-Y1-M@VHlPilTjn8p*ka;rAMO~s19jl
zc<AKMDxe6vjEeM#nEl7~OIuSrtpF{6hpVf_WRxfTSh^;3Z7Z1<AIvFSkLNXQ08fiT
z<kP255E0Li=jP{gu(F=t?TmB+z<xg(u`akfQ=1QEXJ8<O<ju-T&kGkG-o3khDLiYO
z+E9SrR6|=rar5R|p`p}iF%8ez6c#m9X!R}saZ&Uu-MVUOBy295zIfB#o>x*56`O2P
zR{1bQSM_vkWp_ZG5iRX~0G&9*c}&<9cAa@N{P^#p`MS+E0^C(_ad2crMMWW;VHNPQ
zuv}dE{j1iW^4QU%Hv<ArD=5rPP01-LHn+ASMFs~1AVR%<^JenxH5bvi<m3^=ifqH`
z-@qhKh|<kB1jK}XsRLw=BPe;WgP43lH2c*L@mypAN$B-!9yn`vM|fxEe=mnim3nMM
zUNkjXVI(Udxd=P4tMXd+7X1AA6RdK7nG?tH<BNb;Km*2KWo2Ya%gg=!{0fVTZut4x
z3q1%43Be*o7{K{v>z5bR-aSf_na3*t!lS9eZvlfq6(Tr6wuv%6GPY+Qly@K#A}+@+
zrkPVwRPB&@b#?pRym@g}&f2X`SK<wrZZ5+r;uA6RH#L>Dv^jilAHD-u60=*y`1pXG
zdYW_thPV0k$227!@(n?eI=YFWRM<V|R&ekNvi7Z8w{rB$5oJa{emuBn@gM48c7MQd
z(mQXEBUb$-JkSaHOYD&?=clGhT&5F&<v<PG*s^y9sWf;G&&T}Mlbg3}F&WHw%k#B6
zr}gE_sfC4>*4D@ehkf;`JY4a|O~)x_=`gU=j6R9U*TmHH4(+j^$~97!S3pkw{{0&?
z{^nhrQO7T*3{#tyPdtI@V`*XG`Qw9sQ)X4wRVZ>JjgcorMG+IQ>jfP@D;4qj*Y;Gp
zJ7YE_iXP;1kmvxXyJ%>JzkYT9(#~va`>i{`msQWy)Dq(kk0R26TM-qlC@Ol>)um3*
zEA~|?99NPcPRZLy+~_3VAqh-+`}S?Dwmh@ueTNPufuQ^AssmrFTf0^xTQ52!glf+o
z*5XoL<4ZO+aS;($0H$BQlmq+v<x9^yAgWT(4=9VNBmsphA^NeBm#BUh#?e4haKQ}D
zpFiE)-CN_u4Aa-%yB#a+)KFhvUspGR8OAw|;p@t_By-V@0{egf1}a8WQeG|QvOdu%
zXZ)kIeP=*7N^{5cjp~)6+JUvTEiE=cj?jI+<T117Zy2<aa#7D~J&zom0o@Zq6fSTm
zCCz-r_0ZlLbrf=+7cpiRTFTRR&lm+Z)7=XRvBRAJTEzwd;(j?eSlzg5;KPxdia9y}
zh=2}YTMV!Rp)fABci)tVT>Y3kwfmJz^|JdfUhY!X*B@{m^eiUgHNBa-Yw?K}pi-lY
zJMaIm%GeIkozE2H){ywskS}oi)#&Q(&*1~pl#5TiLIyXO-M+m|T=HQEhDRWbF7(-A
zx~#CUaC(qj5+gH-)CSD=cWv8d%;pvT^v#<E@aFov_PmrtjhOHdThQ(fJxTbSI~&l;
zn)p`CNsi&WxNUa!FjxdB`2-yT6ycp51>avVDjok*N45p92DW!~0h1u8&11?l_mYFk
zzkbP9qL&Rm4RkH8G**`y-L`_we@fE|S5(Bf><}-Db8~SQr>OsY{`=;PzsuVMnq@a0
z;yWu`Uy^l_6BRaIcWw~7k3<q*Ju&=8oB5x=B=PGU^Bkg5>_85{>)_p+(JsH2UBPDJ
z+9UC)(b18--LOn*x9=pW-AZH)Of1pkiX>9T&RccFM9Mo1ys7~<G1LWxg^No|@h99h
zx_nl@>hXI!ArRBF0+wp}`msu^Ce-V;`CrdW_^QmWm?6CJIEsVyYbCzlMrS!vRR_ko
zVmImP>SDrjFIX(>9H5-rbRrS0pAK<+b{m*u_mN{#aUv()-WGtb>*(kZ!`x)blRq$)
z7dudZpPx!HWT#`L%}*D5UETZX1fM|iZUG1gkB)XltcBu;ynWL1XTigV5@3RZcclso
zZ*5o1p+127jgKYR3_$M96coJ2jyc=gUud+?O5kwn2qU>N5}$QrYGwu%7R9!0MNgh!
zaIL6rP-a5opFbw;G|t}XF;#=H?j{@bbMB|C@(KycSR_I8Cjv9Yng8$!;>AzRHqgl2
zVGxUR^TD|>e^&c*FT^)s1L34h8=(aJ!0>0FPd|VESr<`U@DFwX7C1Tjzt&I}3LT7I
zcA9!GQ5x^&;$nq*sVRzQtq(x<)S?IeV#J|bNUquE&y6qB!7SJjgM;UlY33n^q29+O
zepgmj=5eyR(WpawVD51PDZv=y(A%oLyucc(lVRmdmBop=s-T2@`<9hDU~0%TmO^tA
z$t?(D&v$ZY41Y4dqnGrz7vNK0UtfmsE?lJU`Q^pSqxH9C4sM_EIqR3Po^+xfGrJMo
zuX*4iy4`@J@KEV(Z*QQ&`dF|o;;qWMx*4bs$5`>}cU$htbs{?ruany(yi;YZcU)3w
zsWyb5E@k|-Vz1R<Z;yn0?9b1bHPr~1r%ty4B+7k>>Vz?Ix09j<TiT=^h<Tj^o@QZ@
zU0sXbF^DYQaqp2+P?`=@V{S`U)+#wf61W~lN?^Hp=MFC4C247CAfkW%;&XS-AoOZp
z5C%vu>BQ-gl=yJF+_oWyqN>dh2GjfZk5GQ%)YN4O9?5beabh3F#~;MU8)|E(jfvxj
z;;~pNpN}IZLR$VZIx1+^v`4+3*rJx}@b=&tJS5=6)#V?kW{JX>MC#o5f8W6S{(s-%
zMh=<hLhTK<I6M!66yk>~;txvd;9a?Ce*D0jGcJ7{$@|!$W5>QHci;!4yj67hAEU{C
zJebd$AY`!xre|jE#{vV&2(#7F*H=_lLyo;DJ@V;OWJpNc-V=O*fq}ol_L8r^hBCB8
zx8dvOsVf&S0Q(`TT#Rmw-A;=yM=TUScb<TmJW$IqXqlH+#Yt#IR#|zwj55%@a@8wJ
zv1RefCs^ML>A#i+SBmoU35|r9cz*a`I95}1V(PVPYug|0bd8-*(b6h0stZJsJr7MY
zr<00AdawS$8FzRsf*?}7r>7_WW0b#OX^)WIc}vT5teqJ}LQDsRZ2K~V@tEzqf?~{;
z@5KtKTAoqZy*u*Q_R&VC^D+h(%k|0}E$|)+4F-I!;_5Q=J~3p%GBZ0%$d_4J*2c!Q
z9<N*a4;9!Bp1gSR;<|O$;ROMlO<9D?V(k6<gruY$yLP?l@8>Lby>#g-SX$^}2*_W@
z#$sY)n->=U5I~@HsU-1W1jJAjN&N!@sPPraEi5eqF~AvL!|na=%uifM$kTr#Y8+_G
zN=ih%e)l&v-dY^3s+>19Ha07^9kc<|wX%AE0yHx6)926T=H?}qUFi!NU@GoXeH<H;
zSMG#T6TMUUs*7pytw&I4z+~PI%>>6~hKorOrW-hdHC@v8Vq@D0h+A#^1IS|F{4_N$
z8X56|N&pN%@5SsQw#9OKI=duxBQb;@Fz6xtc5!hnG{VP^!y@Dfpm5{H4fut^`}A08
zxO9ugu~9Z`*f9I4^;=(Y4xnHR-=}G?)s|LPaD0iQQbR=y7UviqBmtv_n8%M0Dishp
z$Govm0aB-?rr;Qw9ITGFko*VLq1fR-`x~sY9@qCD(?d|vkTa}pJ$v3pY0Jvi!^HsJ
zV$=GyWMuw$&VUETY17Dn18dNiIQ#=L0Lm;N=c62n%Tw~!yVDelzz1<fx-TtQm(ucc
zad9y*J>qlTOY*k4L&b}N2qGA?@3FBlsNT6+nPUlVnKo{{cfv^Togl@5yU6{NfW9=a
zn#L{KP=lkMJ$?EV_aWs;US25M?OV4lJ2-^)J(ySq8M~X?fXTPN+&S37Kt<)5N5LPR
zf3u&Y*_-ZeO+n@miu2&V(Ceb2Xzt49qb3!TQmQwJ;-4mmo0gVu38hUNzrLoXEIGl>
z&)x+p2fH+!eO^^{2jeh|FlUbEA8eqs^)Gtog&S=RRVSwdu|Y>lzAfBth)SGNO-E;J
ze7xzy@^{L9K%9btu;|g*#U|f?fLGv^qA*n=Y7+~~V~`@H&2>i8z}d~s&175m(d^xO
zn%u(5%7p#N_hOn|yUNPT3BKW`BD*($K%}5D)uKYT=GZ%0GYP<5m_-{$c>S;#Bp)i(
zP{_M>eVFjZD!~3(`D(Z_W=DyI*8m>BZQX1B=D3l@7G4ttaz;cn@Ub?tFs(4Nuwa8!
zK79BAXXQX7OIJ}-L!GCbs6_6bxN|l6MrfF};fC0w9SxZYGq>C=NE99mJr}_zA?SN0
z%SI!{3vWRvqBOa9QBz6j>B$owf2v*G=o^2lxfKZsPXWaT2jdf27Y?xj)z#J2jdLn?
zaO)@f`N^C<9l)E**7jjOoXL5Et0=vU^1-{G?{J^>dHeP)IHFV1(qZA@l{Gf_s$L>Z
zk;MpF>wwL^wqY|E;cz^z0?EIw`d%U2D}aPBl0iQ_&dx4xa~aDN^&C8~fN((&>ukgr
z85yzFqQ$(fLY2j~iH=-g6?B~${=@M<IO*wzn~8^Zu=tYuJ;VR*ki?SI(bXON@w0)M
zIK2O=fLr1cs_)iqmxRFaY-k!!hIrJlH2?KG9x`zoqt{`+qWg?I`CgsK(LQtY^YCe*
zz8wGX;ciq^39dc3ZT3_=aAwil+Zz=ur0Mk=H#S(GygYhlRa=`v4czqLxT=j9xGD<^
z3jnfPw{H(Sl*Yxyac_0PfO`B8Br%XMFf^<oh$q-cdwEUB8HXY4iD0+W8XA`N>ehgV
zyl7(L;_eP=qPhmh{M?9V_I6(XIp9}9rSc&zuEEaartn|ckcfBe*l}-iFD=QDUPPo^
zJwpSwMwu?3)OYYS!hm!cRssSRCG4Y-L4fMR%|r}bJiXUPd`kG7rO(<D6b0-N|FiBf
z?Aq?M85A@gV*o;CHM6^&1ddBE0?>;RvQLbUAH;(_kb=5V-((0U+SIhR+M;-}v9SRJ
zUM<(!YCpVS#HuEJzG63|r1^}fxbXTnVE=D<R;&Kq-4(OH1*w6$TR&!7#n=MNJeRI~
zIuhyVSWw<4c<roT^H$Q>hX0UKt1kSVP!~V=Go<bYV(hcHTjdMB$mqR8DRc~IwP~O~
z#l^<m3X5+-=sB7X=#Ih$B9?m9Y|x#eehu8H$;nC7R4-n<K!t=lmf2SiOip)qH=<Z)
zrz7+d(Di2iezhOwCI{Rxw;!=Kyqu<ITi>O|2nC~4x~w$&@Y=gKw|WPQF8tV(l$52h
z0EoOhP(a`?@IVR1d;=AxzOm1r@yMYSP#sK)9SG8~Cq0FAvyzidVJm_mFWf{oZ6N%M
zyr$-NBvvE#{je!Oyz-?2C*<q9{#6m4C6k<#bciqZe+qByzv&ZQOp|XE*LsEG76Vf!
zupAW>1QFHV-F-|@(5yu!j32A6vr`SQ5X@ZEB3m}n8UoZ6ok#Mg&z@~*Z0v)d6s!Z_
zWV;Xj+j$ke3Ft$_<1p~hBxz~inOJA50#jXPNUYM*KYsp<!<IzOL$K!1$RucAl=IkT
z&TuA!0uT}rK_tKbg%Ly%>O>?QPF7ZEVd>)shp(iTOdzUpE3|cWG5ccOo<dc{M4kJ%
z&T0d&{LP!>W^PEO6v8+zWC9=Y_n$r$!+cy?n}^*AY>z8Z*VM#$@Zhz?RN~<lFfsnR
zP=aJ)U)m3T=#_?pGqF&;W}A<x{POqp#nYj*@|ZyBz-8bY0-vM@q!tEPa8Psu@P$N1
z9`pENm!_w1h0?<IUzagm!dW4hL2R-pca0<QFc~~lVwYkED4~J;i@{2)bD(sgvb=r`
zq3F2#0-`3w9^VjH`|-32*#lH(U^zy9Le^UqwPI4dR(?54zJx*dZ3C7a>?cSR#PfR)
z9gtunxD8vlI^Vs!ibTq<2r&klqHpUb%6<H-0s`UI2I}gtS%9p(WMrhGp>e9i5yUr2
z67d61ii!v;%Ox`tlajKspRf!WDiD-c(?Q(6`l~%Fcm@xj-@U_%ItAw2JM3^_AycmP
zIS&UQHp2LrT(+i+4Dm1zeAJUCH-m!Ac2C2M0?z{&n|S?0JyQT{Vk^s+U#UZr%I`E+
zu)YP+B~HKKnl%b%EZ}*Rf(maITfKhYi;01}-?*I4lT=isVX1Xxvj4QQ8cZ-IeG9@?
zIaz9@k6?mqf;SR(0*^{c>y#xPMivlo;o``ZgStOZUVQodxxd=WP@)iMIGSn(m0C;+
zv?Of8vmJBzANTn&r{y2^JqMVbHB&Nh&k<<B-rP+2f-J+6)I2T<OlYPvQ0X2?rJ|?j
z@u`K5EAl>+$SXwEg3_8(zpSA0gmiScslVp**|nsG1HN!WiGX}McB~i$Cx{EqT^Yiu
z^qYxNaxET(w4Bm~01Ij66#4YR!bz-kFmtkZ_U+uaPrlkE`5Tm91eTbvFh^Wd91+{(
z0(|ybc_yzQ-KeOl!rcr@Zo}0N2nae*b*QOvTC=bSBGLQ?tAjN}JT?jx&x-{+1RUrV
zFi+uLBerZ@zaE@D78S}2Mq%NfgsM~s8WfMoIX!m&yd-&WeMfuy$JxaRnIG_kaT!!V
zq5wtdh1P(|Rd*T|Anm?=aY(FSYnxn|7#|_z;0aU6OOU|mR1Y4jz<r;ab4-zhst0Zn
zwlNb~UFubdBroUHJxiy#&&u?{EKZS&c(j<Ykx@Is2oS}thTlrpl~_BwyFX34g!)Z5
zrIuuAaqg--u<O<)Kp9p(zF836F?f6rq-IoW<Eip@C!`zT>si0nr?YrI6k!ulTg3k3
zb7=3|C98h_{0bES!NUW3C83W~P`FuaS$)t?ITYlHE(FcOCr{8<ao!Bq6p|}mKo78R
z9&+8<0B0F5?+i4{rp$5r#HNP4+6)(#HONP5vG-p3qsq5^j`b7WF^NYH@fc>n_!GRy
ziXaK~Z(98tc>ffK^XJbyI?nwMiH={9<qy&ww3L;WK6792j>T166X=tfnVh3ZaKCS%
z6})}t2rsV#((oC@lyf>CMKp7@2*d?`(77Ru4Ytxpu^H=;Ue6$&K0uewxcW6fYv|^X
zM|irB_w#RJ&wWR*%+3zF^SE+~HL%QnXrp3>p~tk0l2RLOFYg@gKHdKPCXGO**rLEZ
zIXSkHlDKboho69O0;vzl`iMb=)+-`Con(0mbIxN6XfGYBP;?5_hR4Yj)RCc;uPWsa
zbOrR=c2rhWVCv?IrXax=19k)^0um84>D7I^cVD!$WTzrG$tgZ+l0ywndkBAvuyrm@
z^g<4G8$aF7odO`H1#iE7tAzokM|6fie`f8vxGJTZ+fpi5<WUH2B{^=XQNPCJOYkfq
zTAT*(zLb_OCP-XAc<9h3M%ZAQWcRmtt&G7)8*R(8^L%w2BwW{p@n}E4x+fQEqqy~O
zv!mQg{_@(|=<Dm_Kcm0ErvTC!(2O@9NC#!sF9RVQjH2S!*}K5O!w$cG{Q^-77w?@r
zia4Ze<UQO&P?v|Z&;D)h4N12(HBHXSqT8{f_DvXV9F7b1D<!?C9Qkp_&u#aAm1)8p
zGP#dV)a58Qw=MW9bc@(uxpMZ*8IzN^wpjQ<K|wV&H7db<?4OnF`=B$eEUdlU*nwRK
zCj#mVxQaYHJt^sg=h}B-`E&Jfu&gEttaKELct2G5oYd5tY{5Z6DXf++ZtvyxJRlv4
z(4L>4-}(I~05W8Sob2r1cvK$jAN-~bG#gH^zLnbJpt+EIe<PewLzNX2q}2O=s)onO
z$*A+Q!5@zK-hbWO+tB~$;g$taw*T&*C1>PUREQfp-2%fDY5@EhsJtDL*r$IPaT`F@
zO>Xu>KLH3rAoVDBv#9S++bFzR^q8o5DBa{ATEr-7G9A&*dsJ8`z{+a={O0zifU5o}
zaz?Zm!ir<<;^LyN-US0s>VX@YMy96fu*J8xCuU_GSxWnFk|)YJJxMuv`M`VkI?#y3
zAa=EB#KADFcA<A0z3AK8+Uv1kbJ2tWpB!W`V>4tf&>Ec1Tl&6AFBl-%6hWCYI~Kxg
z_g);tn&eIJ4`9MURz`QPK}w0j_eDpuX=Urd!h=g1QDJNe*CAp})619dXBV$rxw38B
zHeV_b7~mc8agbti1@Lgotjx?Pi=GqGH4W_VKsF69z}qt?j>QJU97G%%nOBv?_o+ZV
z)IXrD427Sdzryu0xH`~5P3~%_wh_eMChPri?3$(goBj40mC=70cz4*s!0XHgi3-Ou
zeqydk+S>XE9~>X1_W?-NC&#wXi~d0Cm(`9}6-K~V3Xxo~=qf{vc5UkLxi}BV70@vh
zqmD}0ym`$7H5#UImBEXeu%d>CpN><3u{*HN$jk*NbYmMG(H{cql0BSp@>gD-VYO*2
zgF77+FyuN7ShJLrLZITRs@}VQe<_Be+<xfPL!~{`)QJf}TATp=5uy^`qVUX5VId)i
zWy*OWuHV|Q;-j6nZvTgn`zGygA@`{6!9su5gyE^RBu8CTA#Ll9uR?Bs$C*Wsw8*?~
zy@idft>18dP%1-%-6{U7#xwaAZH9-I-r0ZL0nli?_zV8k%{8h+l?js4^-Fs)Jh}!Y
zc0O4QJ9i?!;#prWMAK;*7#OIj^IWEle8fY-!?DMk`@0{#^<J|MOSuYd6rffJP$6=~
z>UE+_ldQ;<@jduI>_@Dtrjulx7Rcp5cJUrF#N!JY&`pKQi)U=+#}k%6^eh2U{Y1tc
zzESM4I0IY(C13#%7#gRCMe1sUQPcfnIRyos;7ue10OCP0qs**GNjWSeR06pcHX7KV
zfLcz#kA|#BJOB-;2`*+%n4xEGdBMI45(DjZ7qK?+K2HmOpcIEbu=O!iDr#!a->J)x
z9|s)4*Xrx(y(ONCNGI(0vae6KrcBNW57eWQlmoW&@j+stgd!Lc7gvSPLC$F?LXxw&
zaNz^?0<1-9hK4!AS=uV)8J$N?V~4C+vxY#sy1XdB0kAI%?O)jI_%Cf52<Rz%wYcHv
zYvDb5G^9*b&Vlm68|BFc-rhd`+Yo)1muFjnlqWhK2lIX<C$%N3{bZ6VpK{@O`qkXV
z1`bF_2MDTDkao!#t5<%D%!=Be_W@x$E$s`ymU)aBL+t>>8FwuR-r*j%@MJZ#UZ9uF
zDCJ&gD01DUOP6};pl;XI)=GgX>+K~<hPf5bO<!<kTefbE<kXhza6Enb6&SL4Xc2RB
z2*W_M+=U4X?{2$}b+X|TKxV=e@&5h!g=wQvmP$PMlcP{LG+1%>&Yfr?xuN}4=GLy$
zM?T{65tn0D<!}%Dd}xT^0VH?(a?!oleN&nqEO$;04uD{%PMz9u_>7R(Zx3_|h^;KP
zu35Kn%B2Ep11lj|v7O1^6hbxLm8Wob;z?!Ecw;2fJRVqx2pKXyb>FrM?Utk^xk0$A
z5Bm}i(`{PsU&|vXNH20Fvy-nO&l=}}x(PmKfmakLTk-U}2oW2Va*ibz9^DHFXX8Uq
zyl&MQp^wwu-97Cp2#^_AZL!6`8=$Nj6-b+y0N1M#tvCz&P&J-X>7YqQ8b0V!QL<UN
z;91{g^$~c~VG|qR6C?@1Cwc-!BPdTe($(t|&7RfPDxNv>Xi{d43p2<f$k%x6>%;VQ
zYm{jJ!8p8LwfJcrpnB=4yr$x0zYvIomxHK&Km?=uIosvqy)Pp*)n)GUUEbnXYe=c<
z>A5$Ol$hWWK@%o0p1RY4gctC~Nl8jZvA_dc#z=eyUIW`~_K(REECycx@Ag;x(f`s!
zD^B@gXo%11?a{hFdIE&8IV!MoOw@mA5Ou0fP@l|(M@Oq1_u+HJcM+aXy#BXd+!Hk*
zE&;Rv65>T&6UVfO4{0XUmrasVQg8+e?LP~g_z$hepNf1v5-TWFHKzl3cY+ylRQmz!
zaA}Lvp>vV`s70UNPrHD2T$Q7|V<Zr5FKg-Qc6WAyJlFf9Hwmx)6g1v?GO`?K{}8ac
za`E@xz2bO#(lYEYk=%yhWZ{-oCB%4A0zL6<tShr(D}0DJ%ga#kGX5O(i7CRATfqa;
z85tT8BLF<up93%SSrymN`hkRfmmoc#a;$zetj-{)|Di-tGExUXE_o0et4>EKsHuCw
zKb@#Sr~-h37#JB9mHO93dOvOC9e03}c%Aukk~;s9ZNjJgLq`7Z!cW;DOed&J7}Ihq
zfjE4=b{*brE<_((KQ#UJxp>!yIg>x4XMzZtmOI|OfhSOiZ`_K|At5kJ7!jYIPy=Y4
zl#|0vMGob&X!1TajDm=23F+x$h#5f1Y)6h{rKc0tufgi-^rUqpC0n3NTtEr<3hbpf
zcu$JYBs~9M2Ln%BoB^Tye*b0*Lm~8&<m9^klaI#a+%s`}Ps-OaN}oHI140N89SRR1
z3Szp3lOtU3iXe?ScMaX7APx8qO9Ujc(g#1rTTmNVS@l0Y#{kLYFtd_V)CuilikqO`
z$HmbzqS>aet?dZ_FKPlDXl_x_6-P(4)z8ZUYgtsZOID5a`7jfuJPcR6DNwSZV8mal
zT;po<R9%as*yewTiX3-G`rzw7As6h=MZoE?&(H<?kX%>KPYUN(<%G6qi^``X4))zj
zkH=Ej*5or_q5|p-I0`%XXYDp!-gLU_HA2BLs99+1+OG@)e~2(E&&8Fdk+mCVd|KWp
zs;<TKNo7LYA8F@TB!7*nciP3{q~QUoRAC^q`4^vNSHCc+@;WuI4_5~ca@T#fkDtCm
zvLz=zaJ6%ADuK`t|9?#M`0M{3MFwJ^p-M_#!zTRvYE?v^6UTxl2o97txU>HLvUt+7
zssY4@kr8GpayWv~wA1qw^wPr2jEdbTblK6#NfffiP=@yGA&hg|>Y=HvTIMDE-63zT
zdMv~#=LqdJJsl6<CHhfeAVbQ*+xIGV0FWRV6S{mYI{u`jI5;>qF(R3Rqy{}<nN$4y
z`Ew)zL&HII(Sb8VW3Lq&m-R~oNo}Qn9W@G85zn8F=H{uz#ov)@kRxxQGNzyiymbqC
z_b<0DjBr5CRFY_y1Fi;&;wsJ{9MoF5MtA@%nl90DJNNxN*uf=uQ?ZuW0`X|%c(7b+
z*W!_>5bOYtLAt`{DS!Gjqi;b`QPBS5c@R9nzhIf6i1npH;YGlB4jE<mt0Jvs$g!7@
z06RgrIXhQ_CGOs`&-(@8b0M|Wb`d_<+js8ZVDT>&R<r{pWiT>xWx*nz6YMJbu0qOy
z1p@s6(rIZ4HP>0D&4aF==*)~jY2ms-*oBcBs0XMXm<-QL1`k%{GJTNod0*cWjBbdA
z^zez8n*)cSdi4$YqoaY$dRb&?X*n}Lk5W$*Oa>aeU@yK;M@0&GM&t+_Txr$HZ+8rs
zb9Z0Dh5!2XYyJp=Hq>8Fi&@kIwGbkaD}T+QN(VFN8-jiY%qh54`tT({4IUW}vhdKU
z+gkZ%TN#JJT|R)F5xf%C02(i%lkZ1Gy|h+WQ32S2_6ymNaTs{Q<(CABwBgT9HGy{+
zbrY!k^Jd2%tax4bhD{}J2h0EqCyg%OhJ1xu6wP)#`EWgf1UJh40s87K_B0L`y<g&l
z?iFUmRjdwAWO=#BJxY@JZsZ9PiF^9<>qDcL^p!*iod9ka!hEDpJhbP<3qY-lVp$m(
ze1d{kEm%<2z~zGb0<x1L9ojt<ePDq+W)P9^;GnY&X9;EIlDT<E#i@r0>K-1V!Tzc=
z-r3hL!l9I)4{8I%A&4p^rvq)<aSLEA>xVlW?xfZ*P+o+Bo1PvRU3q091~sI@(k2QD
zOLOxdfIm!|p-MhV@9FE?y=xbU`uWwKihoL9cS)<QnwRfL+He3%qQkc6VoZvNFp6uM
zNAIy{>LJcTWJg6Vb5I#{W_qoUriPy0ek!UbRz1AfXrsGH#G|$0e?wvO8=AgBnd6t~
zp?dsEN=j-IBSb{J5H#^GqAMsA1hNSLB}>#V(8hAo(l%||W@BLi+Ck~`=}ogm2Q|>c
z;NjsRC-)Mp&xW-UumB_IuSN(f3<HdBz34UPT|cC)qcho)53;VLyc{?^O#?6)gd)U7
z23#<pIUF<^$p-wclO@=%`XYV@V<Rdjom%|ygMjG>R4`(7;%<PC0}DO*^BD>rwm|uF
z=e!VNz^74Sh6ludoQtF!FbO^%s@R)MZDSJ?$DtQn)80{2Q-|KW=e0Pp8~PaT(Q21r
zm!^snT*Cjsqljie(9~#*LJRwOs7O{L|B}G~yk8Z;+Juo7sK&HROqe1YvFXQ$U$1R*
z3@g*S4Ix1fp>)<zo&YSV$4X_@a<v|y>f5nH6-&?1kb8bmLjSim$y@lDMO?$GCZ*Vo
zOo#mj!3=Q%+D?Y>e&|$|M1o)S-UaMnf%6J4^O#)}et};Zjyw34GRN{<c(xw<HY{oX
z2&>mGSVS(bO_#|Cz}5#ti!Pj1t!*LdP<nOs3dgT}%ytRmBn;IZv<=EZ4q?@1u4m3{
zIXkOH5XmI|Fqmy|FVKN@_)OGO(ZGiDRbx`e@y?lU?qkP}Rioo_O;^nj8o&0*j@?Xe
z%3nV=gC|dPZpSBV<7V7IYI8&v3o0P&eE2Bxi;E#rJ!X~fl0YL{H&7Lc<V*GJgWa|3
z*A?XDG0=hs4}wSP-$u4_2w%T;8-|)rdAZ<GNyEbrM4Y(}91ur{1(Vjb9Ut&%HIO=h
zvVl_-B{b2+4OOP=17Io3>hC7dSki+LEXeRc{3P$QzG3)EgJ&RvyCD4i^)Bqy|L3+e
ze9XUP)P$=rT3}775ymM1Z@Eq4ssN0h$RV)P;3Ck|)1weR;|d7`7ZtiiVPSJqlgU@H
ztIKa28x?Azopp3#!25xl%gwbvfBro%j>vx9%a{3NltJClO|HS`Ce(&dd#50EYJ;ST
zG`tGndK!ss(~iTU?hCh5zQ8%Zch8<>jGO@KMxy|z1>X?xoR=@pqL44_)<t(SWHF*^
zsN*p_92d>ZieS{?(j!bj-p63CG7m&lB~(6s{?5KWcZ4@=eV}9<0tibG9Yk11iy(MT
z6a(ap@T?*{060bVbpbMKW@_c4?HO4c{5duZ(xWF_n^?g#GQTjW13U~emTyR29xwcG
z2<LdtIOYscNkSC|5br6rHN=j9poXO?c@rEt<MXbr@KwdEvFM<0*lJf4L`eh=d~*4v
zjfByWe~rr8Hfi{te5s6$hY}MHBJ5#}r1aO;4q@sAw>3e0(+7hj5q<RxLYIGZ6#g6i
z_=$;$zLFQj#l3@r&!Or@hDuCILI;rC|I|!69Bpj47?~hpr=*yH@XX7CB?Z+v(!;q2
zLb)cdsB^WJ&B%z7kALqu3^-1G3JnW}OVDLrKj$of5sUiU+NMwza9b00ca%4q*RL&&
zha}ni?p+*JXiUt{H@dbw$7r;5b@7orAhy9yUV4+s=(`MY1g7DhCl{pD)x*=$*zz5r
zs+VS=`Q1F`tfC@1HxK#}uFV`Vq7ET#d9*&k9+e4n9D)>Yau8Zs(Lq<j|7QlpCs$~n
z5M)LbynVKr!}}5J`Jk7LQ5FCItzLYX9P;B~8{JDwTV1dN><a=E@;j2qhOYmjX{mk0
zpMd#=lmP!FW{1FJDrb<S)W&}DWL*8%T(2yAQ-aQkDQzemfxs)sDyhO$pRXXCv7CKS
z0uCD2HlEGi!NCo(n!5T<K6mg7u)stv?4Y6P#ASvf`SdOgH8nYP#2ju;PJUkAvG3P>
ze84gOtK(w)&>B(t;6&EZeSZBKe|#iXt^A74j$4Rp_-H=$8(oe;CG4a3V`Gm{2VjM&
z(`|F)#x}qbMt=e<7)DpuBp^tCtNb2^ksQ?+kORVu9wIo_H$Q(E(HB6x(7CwUAOJrm
znvZ%g$0IWWv^Y38ETZ@C-{Z?cA%us89kt~!g6dLNUk?SC6Pm~YDugx*w157CdR&mD
z{8#UU(EcEx8~@t7mOFu%=;%(s0z&jLiMsNNh`2+S(-(5V$+X>@56M^$1oFqLzKHd7
zKPD!G(mNBmiJzaJ6SG3*{oq+rp$U(R`wfr|0LlPs9yS?ZkZ(vyi4ctTAjvYd^IyDt
z`57=<r4n7$m<>bdwqTVJa8Mci9?QsiH1>IHEDo|cNOM-!mtft%JidGP4sHejY*-Bp
zpPa9OCezdKuO<XE(1%*16a2p$^<O0s(R81$N~8!CP<iCNd$kX~=ldDu3L&u{KAZyR
zT~%dZso!bZMIx0&^&es<d8fZmc;qnVHlzfp3xc|4mJa+Hnjj0u?1=kH>I{!bCN2e5
z(o2x#jg3hbI;=G8*<Qmhw~uDqzd++6%mYeDhDmz0gp-PJo8S7oy%J}dg9k9*y&KAm
zOK0M?nhhNkxzO1XfPU|mmK1P5YexAg$(VPl<Yy4xXP8tP44I>jURXO@z<PZ#eai@|
z?C}PH3M`CefKP-BZ>q$q;N2XvoIYil`v6pH?|G2gvR2RIC$-9n6P0i;La0Z(A^;)4
zxGGKZSORe_q|V^7l=WM-`R~}jUr$BF0mvJ1ckIg-d!ez)Q>*XL&-8yF?*5-MDBh6j
zPajHs6!Qo$tP8!paB^p(4FCI5i3iJX+JpQBT!UWkKO7ExwFzYSQdLz|b^q0`NZ9CR
z^@ragHLPOn|CmtkJRTzrCs~x?<Fm39A;;_h-2THGxPyQBLo^_W3ni}gwp1p1w+RPX
zDc)?98<k=alfo9L;$$9^3J*BK3GM@oFJRq>BWPn2+TT)S-3RYB?llVyMf7v;+7Aa{
zaL4G!^dN~KgdiXBwiCt#VdCA5p)C5~sj(}uTM5^8Nr?*)$LfPdW*1*llo=d@&PW}g
zMz?AQay)2lJpn2f2H2_VlqccS!9hZ(_{))g(g52#WsGoTk`gYvy1Jq>mHxQHql$`U
z<XFPwXl_nL;n$S3AwB5qb;pj3^?x`TexJz5Zpaa+W15<q2`bz{kK?oa06(+10TIL#
z7$ITdrT`jY%*l&jhSmr;_IdyOv3On7r40-oQ)?L4YfE&01vx={y*WnX<e-E7AcxYX
zKaTdPmAB=y-mDEPl<!-c#w$6?ITLO^aM+RHP4RI%#b|i4A*E=QrGK^blBHQ%bc}|j
zzo`y=szr*KX`n2<g+ahUOGb7}mq+`rQIK;!dD7kVE%>$d^$oApvcG@L8R)qfx7ftj
zSUVei(X2?~=tbD?F_gi->>Lv{BeP55Y8^)sKhb7cDE4bkb$$eG<fHKEB)&FBMb1b?
zzURh6V&fg;aB=wa-lrXhBO8gyd=NBre-&V|9H{!S*Gc|J9CA$PqPVc<#)UYCkY=(!
z=4_W<3<t?NyFE&o1_p*B$tr1T?54a(b8eQo0#aL7&G&)K3K6jNpn2$x^8s9<bEkoe
zP9?pzEIgI8UCdxX`a%RLVLRyWWdydfvBEp4sFVf?R#B80yKOmmFYTRE!|Tq`m~A5M
z^Fh7>_kR$sV{bE=#~okh-LBVovt45$?DmJ0^z<^7SjR*t@Y}}?=KL{d4xeNYm!Fbm
zWG0!fXXoJXlf2+bxY(!EqWRX~GePcopL&lGMc`WISMBzybpx7%KKz~~m3tB%iohNZ
zwZaP%ihi!z)?*GgQIq)1A?G005dN`>%F3@Ign8aP1{aXu9NsbQLd&jH<s?WpdaGw4
z-T}ayAOSb4+u}$hRKnjQk%n)a339ZJfAzrdAuu><4}xYO{dxEH5cy=`*zBq#{KPwD
z6LD@-)YJ};mXNmoI+O!gUU$T;tk6_t4B`fds{H5sR0&U|{SR=lX!qDgC#*K;Lwqpt
zW8#&d{ns3bwoKyN!*DrIDXSsFn3xO$kBy1!M@=TBtOjq_P!{6O6;K^cgFS8*yH36w
zEq(ZSS9^72T->{dQe*+r?dUjUnb!B@-#S6LmlSh^IHXXWti!%<dwSBkEP>R@a-!nm
z&MK?P%Qs+}f#N_hpa#pXFY7v)Z<l?u3J+ChKeq1<)KHT=7&d1|pi!XAkS3p=no8v@
z(0_7X0uBZwx->7#!Kz<U6X&6VfRtjQ4gk-DBe!G&{C<VB)HpH&J&Ks5N13Ue^xF5v
z4V@RN_}gTK-LpYjTdNWiKf)w5KQj~BID(ORD^TDp(^noYRHnSg=!U^8-D8maRnjbV
zim~P+bfX3E<m(K$pfgb@sIhO|vZY|zs54nI!y0CjoTa6u$B!N%TqULK%$f{?3mqL6
za0+zsYDi_dH;T<L@RFVm5&Z_rDj8ki)E_FPc3ECkQ<eor14)FIKNw2q;36YuL<GHa
z>z2FG-IL<_&r+9KG}tT(9g<bh%lnL-10uEynsFl((9Gw*Wp6uH&yHQEg7yQA=zgyp
z60(5>5XC*l+`y{lf|RLvF7yZ&7uwvv!4w%E8Ci^ue1yPnJ^7C#Vvw&fgl@x~Q^p3o
z=n03PALB4)sWWOY`37!ZqN;}X4&}kRjayjR*mBDP%D%ZP*4Tn*fk*@jX&LTy%X1>g
z+UD<+z%ig(7k*x1L?~#z=PzCaVSpMu^G=yhQUt}|dc|8XpASFLRA4d#-1nF){e<cV
zmV5jQ-otwSt@hT!$s;Q-y<U<?!F#(8U``eP+qa~BYh%xL=b0)54Pne;$<<$Ol?H>j
zlVoIMX==TYnt{~p_eaLYDw1oLIwZq`CVg<Puw$x5Mss81Az!^x2fv{b6kFRR(bsCj
zRe^zv(CYjor+Y8uM4w3k(*P<V=GZ>aFpghTf`%}Gfv8Z?p98ZN253ZSwzjm43Qgh~
zI@{Tmcr0REF`yl~=%@ppcXaSEGS=w9!^gwVUjR$A`m^^!lejwQhYXWr0tSP`M%W+2
zV@HI7#3-A;$sB1`Np`qiBTlZ3=X&XJRb%Qvy*(}`pCMR7KPm@IR;r3a2PKsxmtM(v
zZC88y+}PLwlucP1E#|2(&VyPKZQC{7?}vtF!H4P`am8krBxl%JZx8w<j_+bn*H-)e
z7y0*rb)#ZnAO^;vRlD&3&{0!l+B04kzTaB=v6fS|cG(YRZM5Z$2JS(w)?f|=j;}*k
zClfVHY`9GJ`*+jRSK;r+cxKUsw26`E$uRcQ=&L}jFuLM~G_r%y1U?18Z|VROEDI29
zU0<~;Tyl$xi(NVJuGnL?aa}(${B^!Z<ov#~fy5^%hjoBCu1K^F4h{u6M;i0y>D2D|
zX(RTYW}=?{#0disKS&2jxni3EK`awMsEhHQf?QldLqb)<=x-+^ZZu|LD3UEy_d-n(
z*rKs}xU}<3;6woI!@qp-BIu^Y&6)x4iqaFR!tU+c?V+^byefZ=WdH~Wc0Yl-jG#4%
ziFNh$vN_$bKLFPg_BgZ_M<axQd|NaEwToGYZE&=uuUCR!c*l;R$;m2gReWh4=Org%
zJl&ofiK%3Q3QlM^qujhXqn!rL4A?t3nB_jy-mn2<m_Q>h`Y^88+wT>!OXxa~MSl%`
zxk8-@%nR6Uj(~<E$&A2Em?ycpuHOfo!8hWfbL*GU(9!94+(6s|j>6;)jjuJ!WS6HR
zHZPvuSg3>FjFo)TxGo059nKi+Nu6SwiLo(ZjCKhc0^yFaB5Leis2=dAFIcR6LkPNg
zWCl0<H+Z{<z9Zb+hR|P8a3hqCX+7)`6mu9RuRV&r+R)niiQDTZ-bT#C!6Y15W=*F*
z)^&YF-@Ga-&8VEP<7Ycq++#lGP+Jb@R&fn#A=f@M*b%x9Y5e``;gON)+R3J-Gr!N6
zfNflP4Vy0Dm1R70$(4zHh9w{);KOKa!c(5caMAbIH=`5#@ZlRnCAhy}k)qBVt{O)A
zM38%xQ+4^%*>L$nI1YX%f$Ebzbt=XfBX*il9{dRPh!t%-iqTXf<Kvm#Ul)TBQZnOa
zv&+Zw*TZae95XE>AF`tAY^Ao_e+=WRAYuG=!U_MlH)jSiMLyX9zDCL|?K4y;^4?+^
z#qw)N{utI}T*y>!kC1Az=S58oqmYnG&9w~z*5<JOB4)RJaok_uWgqdB*F|C3kDszX
zschVR{yl~O9154m5Z7CTU=2xrJB1&-+3FB?K%jVO#0?4k_8mkig!(M*!GmQ4BD6xy
z4ilDEaz<nY5HuO?egcKZYmb89>Hn4E2E(V}d3-5cVqIT*U}>m5ia>0vEr^O9b`J!c
ziodoQnYRvA6Sb&J6w*0`RzxgX!*AVEKpP7<5-D=vtYuk#&u^`wXwXU7+|w+5aQn)$
znwp1?9zAbvhW9X3%sCEXfMHNP1{Y9M8)XZk8a;IAy4MLzqd|^^9XQg<9dnxt3iux{
z!5a`7AK&U_;`+O*9lhT0*kVpeQh{V_-Sg*IFdox&yCXIuSrKRjy&BlEXyAa4t#hUW
zu87i-5*U(7QVv`aUO#%{pzoeLFJj~|0SHo}E84QLd$5PVX+WbWEW;t<#RNVvK$;f~
z1E36lZ~LO7wb3>L9T#w|fXIJSAnP>foKbU$e;>#P@YeqR{?&8s3Wx}pjG+M5&&8!g
z`rrr6;ZLqeIdC3!VH3j`kDi*}&*&vzKJ{6L3IWf6j6(AXB&M#)XJgg|v95t^LP98U
zGu%!f9l8Jl;+zgrk%O;-#Q@b$mQA)>s*|lN$$R5k05sJnNVPbB%mDyn8;>C-mV2+)
zoHsUBt*2-<js^3JR0-b_<~R^p+m|Y6h%@JHu7?Q5BS7{d#w~f_95Ah^W3n6{m9Cy)
zImlIebgfT9ki>6V0Lw+x_1N9b3h+OIpac7a{(j6-v32c2jCu_P$qdu{zNHayW-Y>m
zj*cZ)(rfch%fhZuEQWS-{+x;#dAMBwvUb8tTtmj7HPA+kkecj2UUmBMnP}=gd$c-g
z?J_sEf(drRJngHPDu9;7n1$5IB^v=3&@f>3F7HLIXm3Z}<gEXyu0#XCX3}CdF+PqV
z$1A|Z>0M(;16{cQO9l!{d+wZyK4T{E1kD3KQ08F<&dY{|&{rmyn0`iaT60slp;lxB
z8Oi(rfuA=(&4CDk?(sy{^q+q3D_}FyC>5&WBCKc7HnD(^t!AW%S#?;Avl?L6JUu*q
zbfe-ToXSvtRy?A-y@{TwzMh_F77F?wCG?p1g%uSw=<xm9O_y<e4*1z00O2}Z!|@_S
zFB$BhT3jm_YmGo^ZD1}Sm*IZ^UaN!z?`jo4su?ha@H^-pNqcS1N%;W7Le4(UFJlCu
zv9g5fhnYH{^jB6owJ75-kT`&l9<msagJC0mmnX6<184#G$<cg%^#kM}m`lM!qHv#g
zt8{g0%>RJ|il{_^ByfAsoF6n)pmd_JhIwK0C5w0jlM_deK5;v-j9#}7V`FXryErw<
zJx3E#jMOCydmW$aG_E7@)6CoDs?fbRSnKVd2SfwK5EvJrkA<B*kjeoQ9<Hj*;m#0)
zyfAzZi5qEe)P0kqaO~omShvb|Gj}ES*TcDF2CMG!SLEJ^6v9>>;g#{)e0*X8fR9j?
z5uwpTh3T)eV~6jt2@972hPhQ%RaBrOZXR?NvIwl04G@|!4PMh!s;d@7H&SUY^juhg
zSp)OjxNDHj_uSwSJCJ%9(0@?jsn<`;#-fsJ`i?N|j7FrG6lhj%Ze^|)Kod$nd|O~~
z&oy9mNk^Dozjh5i2QRo7ai}+?6Tw~S9&yEV+`Dr8XaWQKk0W9WZ$PdPdm_O3jTv*Z
zS#b$&-$oWPgL(J0dBHvpe7GK0ycpU9mIyE(BdAvIS-elQ-X7Ns<8<XtpVltF0!R8u
z$g=nm7B-4y0!N@6z?6uupv?e)(DgC|AO6N|``^NYhlUxVOBN^tNmLk9oM1qPSii`9
zMxVW)cT}&?ebYN622`)Oh%Zg@02(xN{D(^5#W>8&oTZhEfP4YxwZC4STSGO~$!c-T
zuoqG#zUwgz{|ny)#V?E7ao4DJiu(_Mf1sB)H66LR{g4T7G;AbZck+%ie@3UM<U{k<
ziFG(0p&-7;>*4bfjNb>0CUu0ZCU7Umb0ZiNb6qd9v9aO2c2oGF>P2-i^m~!29T_`Z
zUchNgEocb60B_;`z=WR2M!5Fj8q_hBS_Qd}<FC%l&8e}6!#i*@FfcEMx^s@IojqO6
zfSLKd5En0RJ1;Yy9D%HI;K0+oP|*DKa4CC;2;{hhXi%=Hx5q*UoBWaCZG%`qUP>s^
z*j7r)$X6zi&(RE&Y9SSIK`UiFD4Sx@fy-d*Gio$lA5k(6*X=gUw2*S@{~mL#8chtu
z(+J?WMR$*B<F2b05aTf+=*PEVjP7wlBE@ztu<B7^qIN=KVD-0U;0%Ot^RD!83>^v#
z6vh<60glzX5{8+wFTg>e-EF1(iB2n!qo3qMl$Np#p3fg^b=~TsAwW(bu+-AxqPijF
z)cmc#y#U+Vwt!=aVVw+UZd{=SV+^z9Rz5-R7YA8b>Q_hOp^+}R%6N^pFpLK<Ys~-_
zXrmVI6bnrJQGXd~j;o6c>cRkNm0!~xQ(D-*sP;F0K)r;;{2^Xy18IsN2tY1SZDTk|
zxPN*X?ye_IF^S&s|FuTE($3z#rpuXh=Oy9}dI@zwAc$Y~)m~-Hyv_a^`zW4|5g7@}
z!tkleD5L8Zv?;b^`cfd2Fd7-eZqa~L46?(H{mx`LipQ8Ze{PdFc=vf--HFnyW!hjn
zy$DWi3~by_OS|-lAn#H)5u`~#^%@L{JDa6}Fx%xUv;vFhYLzcPpt*=mm9~UIQ(CII
zsQCv52gR6~O@T#%52<i~gn>k?pl~R-;1H#|9){V9L0-W&pck@xf7ci$n;(&O?mXg2
zk2ErHD^NRUbZwnjWcpX(oV~=3U~dB`gj2@!Xj-sEs=45`Iklc7U~p0Jp(ZkSUpm*f
zL!l2I^y9+lT-l4JO}3|;Ys8aG=<Q<+A7CmG#^rPF0wX)k(z|%c7e<RE46A{)3G75J
zXJgJ)w50*Pr>PNJ89luj8MIq&pzehCq`@Q)84+UJ{jVsYbRmnNX5Pez@(=@RLgkau
zyos8S*%yv3;sGGY`za)h$!SkhWeJd`rlNZP@gpxpu)A`Plvv3bQM^k&Y#R$ik<4-A
z$V7YcX0OqzlwSh%FRJxn+*nz6417P9jtPv_^2tBnU#GO}tw~5YASnk+iHtIO(Y99~
za<Y9lR&NSJ0FBJ_5mkMAd!FhcteW|>IIk0>8?nx|3JQ8}lziNQ8u92JJpAQUlD(ZB
z`ZGU5-^9>B7_o@DhIpC@sB#2VL&QHd_FpJ9fA|4@;s$9K+r;AgKPLreW@mSQC1&6u
z)PkO?oPI$Ixs<bUCS!K!2e=c9!d?`v7}Ens@n^U!oSmG0K^4P85y%-a#UOW|_u0pn
zot+tYjGm*^^7`?C?CMU$9Q`tB^3tongzN1!G&$MXjrN!UsGzSD%1)MrS99*PErLI=
zCrm6fxQ=`Fpq%K%Y-ZoYRE$E;5P3=F1#3Do01kgvMCJQvmV=&95G=QQYmef76uMC%
zFo<9aJ)RF=Loz?Js+wXB78VhP;sPUcHokFIQq)*ScjXW>$%Pf+2u|<!^$Ey}`vfd8
zV`VvN9y@dS8Isvqbn+NRg@@O1LlC#IvwPC@e^`6#sHhvLT@;g11ZF6u1*A)mQb1s&
z1*B6zQo2J)(LpIex+JAT1nE?y8|fAhP`W$r=6%2KJKs6?uCva%>#&ypI56{@U+j4H
z^E`W?GZLhClp<aqkzuj1tp#2iGZLqtfH-hpP;hC-?bKRMPHrb6Sr!Yrd@HDPBh>^f
znZ+WB?*|**Vqj*@-u>s2pMX?DAh^$r2lD|+!gcEGfkhzO_b%eW6b*@nrsfCdf@|7p
z=g}8z8#p3Z_u)BQf`t`#DedwTLJo?HX4hfh2)Z7#!%2PMVwp)wUOm%>4x1D7PB5q3
z2R;7=CxF>7HOu?lRkRG*1wil7Vsq%JZlV3ubLVhk3Y@`U%L8g=MW#IZQkDx(%k8Fp
za{CDmF71`IISU-WCAxk^zVF75bsRO8NWFpr6YSg<!}Ix{;GqOt&Ha)gJ@+g)CM+sJ
z00ZSA=Fcm6?UYq7f=pfVlM+L?magZ{;sBg^xT}~sIRPdL8d%}JL5J+$VZL(AP^_K*
z^45tWt9DNN>7eqpvq}y@&Am?HyRTRPey1iR-1>npBGkXq4xjMkA_St0ZxCMC**iV<
z?107uEv>HlIRpCArAzsrVUk5cNjZ_L!5NU+L9I5uy6OeB!j?|(ELFJ#)UeQ+57L)v
z3vHfi7gfHw=<_O-=~M6iFuz74lndvk$I$-($L6d(2R`kT{`~uV2boWMTidyC0$MXD
z_W>s#Iu+Cc7)2P;3ZNWN-(<+e8anSl+CCSvzzqgzZUqSK18!IGsm`Tcuq5X^Uc=b_
z_>sE>KiCdJrUv4KCk%1nnnIV!L?d1>6de^sfaW24|NYsE<s-|;0ZJmoWq_9827e+i
z&x=2J);SNf8xADmTzg?s0qiBHq{e}Mb<XiKpu@((dQtsPQGMOl5bC{i)D9pA$l;aH
zUVsQnyNz1dt@z*3DPX)?z+$&_-hqg@yEtG8V{fRv&l%(cZcx4gFtQCbZ3vLt4PpSJ
z7rv_s1OZSPoD&Lwj=;phfrpC=S{pdJwc$cKnlxwu&P6LmQ~J3OvOon6^l+D@!4+@=
zJ@ayec(F&Xa{}~+BTzx&livr1@2tdtN$S~ORyH;#J3F(O!VBMwey^>aL7Q@e@<DO!
zrEKaz67~l`EC<A6Q4k5K@?C1y{{B7$0*G-Nb$97PrKxtC*t6&Wr2p0jKvFeS;}Go^
zVG>;fPy$Sn7X?$@AmaUZBt4E7F6??S(D!h``;3oo7f=95M^NSLP%72<zkd&9pB038
zC@~h#p?))f$Nrf#@d%XL{V}g+`)BU+Pnw0><bQ$J&;Q44@ZZ@A7LVn>lOwEuKJxsf
z&i`N+|IgX_{FVO&rMCc51em5<dY^MGo}Fj(Y%a3*lAj89ht7Z7^z|VgJaS+a8!Wue
z3;*$o6s9HTKmVs6)sqGQVNfbe81q0U2^<zk>M&S_GYmcaAt;>CKxY<o`g1!}dS+&Z
z%C^(lcK5Bzt7HZNWvre&;Gdf*_gnDNH2hah;MoXJS3oMrz-mtqEf;H{JbqXxy<`mN
z52Q$#6XmM|`DG8pEY4cF;P{c61r42Hp+4rrf7J}>-e;%tzW6#RYVct!^tr{Qy=G}l
zvJBx9wVv^ub>Q?0$O76AY@*@rWy{t6XIg+fa|6GBaD^c7PlI;xyyZP-jbI8^pwah;
zg<dsQuGHYiRj-%Cz#=%tiOYzTodZ!JAcB_8H*=^X-sOC8lL<(LX4bZZnN31cQv1YV
zaGSn&X@@1U4d%$t?yf(!7%d*y2TC7h2s4%_;j5{Czdraot1=N;l*Cbc4u*n|47e;X
z+JV{3C_r!UT!BmqWVu2WiqwD3B@Mt4fP%FIq(=GbRZ!K!fEnC7L{#bLPiW88?WTY`
zL0z!5z0Jev!L~TLtR@S!c%_>qYh)YH1iV1s6ZM}H0-$$sbIQocQJi~47(=a<1isc)
zYqet#4gl+gcL&HTJtG5XlyNxv&|gDE4Y_L-khXpOyd$6wz_oqGaXY*fK?AWFayPU$
zP4KL~!zC|;%fPasBg_O5KHuFJ;>a%?IaoOa(mjv^W02(JU`jEyC~u&ZiB4JH*vMAS
zh~jJoW>SM;p?WSTK|~?6A!vB5D-TN%G+-1HvYUAstB1)RR~e`vZ{Fi3)Aapy0{PN!
z0UJPmA%YAo?dVoIL5%`651auwG-UI+sWRpR5C{(s4rK0xLF;8vG79@K&@J$P0>QAC
zih$-f=)mUd0qX!CGj%4Sf|}j9R%4i`#{(kv@)JPTFcX*)SOsbYJkwA{0Q3TUo;NRd
zfaw%G`w+D1V0{A--;p93pfEy02q;3r!VoVy=mBj3LMDjFBg4b#h^~tq{3dL#If9V5
zRP-4}L=}PYz}KqNhp5NP33Xxo%je)5NkUG}8Y&IvAI1u%C5>#X$1{PPIoOKnBlm-k
z0L|%$&zi$hGq*nV*oB_$x5ELT`2xX5&`KX{9)D~CwBW!EfPXQ>`7{WcTGF@Y<Bpev
z5UYUkyH>r0r#}Xs589fVf0mYxn#gU}uXMDtU&<{y7X_s-wLQD58I}DvSxDQr`{B_t
z@PyelvL}hu7W2-p(6wfJcsSbNI-k2!!qKQ_r?q9|+vFaGUVN1qgai})B(VH|@#4pi
z6#44yMOL2J1IE+!G_M#W?hpV_hC-A4-@xt1z!mgNNm8;2#PJY!pK5E5f?NUe6SRR(
z;`vr!YzLb!iYwm2$$=8i6;c_ri-0>o<^rq;bS+OoF%Kr2py=+p8P8+>6P{*B!9@`9
zeMA-K$ZSMJ>MHZv&lI*`mb<mJH9I?d@Faxde*N7J$edtU1rTL7Cu{_P4H*!Z;4asN
zvQcC_Z_+S|xOTIRb>LFg<T5O9yYWb={}R69e<J=4inO$}aB*QacTfhvB~YN@2l{{L
z0w4t!Rix$TuK=Y1%nVxV2L3uh4~oFWJ%L+*jn!Cd@C9{yk(y!8(#~~X^zHp-IR|;{
zxlmS*<k6)(da6&o<q*rymuNr=8?W^g6ye%b9Ls4By@+M@U{R2<5bx_{tPl-7Jt`3=
z*f#gOI~!<(o7A1L_ZVTv%&ykCMtH*)hBxQ%BJ}nFsnFH8*pGvM0JQW_7#AA)0#Mp&
zJo7mCKg!!h2nVX!sxV@l7l8$5p2o&$_e&v0!K3cO**XLZ!@x|E5)eX9sl_52U?bA}
zhWhb1IDRkCAO=v{c3%h_&<X&absP}2ki@3bQH0LDAhf;lMe(G6A0}>~BurLhg6FaG
z>t%{&@SvdwCl2okAb`MT4?BuIpx!|uSIc$;bpe4trl1pusvv^=)EgthtFL1_2!-5M
ztV4KfL}KD96b9gcppjjg@n+MEc+e#3+fTTYb0V^tse)(0g}OjFd)v(uRIbu@pkxqb
zk1r*w8?d<W%bYfb{zZTtCjhohMdvnK=l+=I(p{U0IArR8#X%tG-Y4%ENJ~pcZZ!{V
zlxY*7|E-?kN(1l;aR8<Zu`w|MHsb<lX&6UKOZ!!fLQ4q6&_=<zy8{Z<3lz%J6^PLQ
z3+-2#UOQJV%!d$N_kH<EIlI{Hj`P#9U`VF`ozoLsJBvzX%4Jt?#-jQZ6Lagd97f48
zH}POG0H7Sd3ZlTvL=U`p*?D6anSdhnFFy!2);Y9a1peC+)LLiS*{YkI9gn7=iSvT>
zKm)lYZi=V!z9nDtzCs3c4tWkB5AZ?(@Ij~CWneIczk}hW^HkJ*FJMvp174T@3tq!_
z5Z)Vi1j@ZScIVYM-#y;VU5dqy1K8+%9OQj=GzH@`TrwU%WWD{zIcM%D+f4cR-P5Br
zTWBJnWW*pp_1>bSJb~?DF*uL!gaHMw9T!jzn8*TI1128rbIw|2tAI`|+^xngjTykA
zvR*2Qhwl9Y&7+R!IVAeOux$z2(7HNr&^FV+#B~csVOQUPvt`_4I2j<_gy95WRd2rc
zK&XJApreO1yR>9k`zm0H6Ws!Q4v@#4uQma<iMw)<A1od)g*=_Uq?Y|Pc;gFO6?Cbf
zLwm?<qE!m#2hK*WLmst-4i=U?`6^`cHn?g~Zb7VXOgbyoo`-aC{A)7>iqLZn4b-3k
z@88cQHP5WA!44_YN!fq;4*WA9V4Sn(0UoY{Nf*tX+qZwg(*~k!g*~l@<nN%Xt^*<_
zOW#dsY;)Ty&)bcx%BK%kmzIDAm;)26GKyv`Yp(X|O9bDHdZAW;`5}anpAIx<<0&vZ
z*z6{w#lVJ>g49$)aDboZhVlh2>=FpXUdlj*J)e<6&enxd?CyIQdcb`I-kCd41n3kQ
z%S1l0{O2Upsj3LUfC(~)_wk0*xv_}$D3m4;1rNy4P=vFb6I@InFT=nAX5#Op@8oQ%
z9sx!UxI35<eFmh`qu}m;Yft2NEb}_Gf%5{h7<iK7x}zbqIsjtuZ~I{7;IIi5K4^eC
z=3v551icVMVbJLVurdvHFsA^yowrH;;_#A9p{5XYqV0!Z4}1P~AZE-jEC4@4KeNwz
zq-YL+JXqDRbZLnAKRcmJ^UB?87?=cgCJ62Ur0)gRJ;1jI+07&n;}_XYwG3Xo5CDsv
zi(r^+8W{&KJcKo+02#Dr602#Xm*kEIpKtPn$sDZj{aFpY7!9<A8Rl*<^qhYi2f{kA
z6@Yhys0ml^;r_2nFpWA@dTe?=;fL=AxduA7&L@_zN<^p2Hl`q!1_O33=77ckO9=nQ
z4Y*}8U%rIc4!$hz#n+c6iPYQsiJm}10pQhGiRE)WuzPfXn-DPNua)L{k^3;d&FNr)
z!53^Z<OB>DOc)E&sX%&`?PX)|0y(aCV_g&YI>EQN&<x=Rhlh~FqW%H-Pfa0H9I+4u
zKwgIR1b$!3XI-Gzo<D{2gB$e(H78&LoRwqUM2coWoB;p>kwQFwbXeHWT2J>B#Xo=l
zp6~oxO~R)ERy?Ev=tZGgf|Cx5r$WzpfI<um^PuZc<7?0<u}}ltL;4P&M&z)A768(v
z@>Q4=f^>>Kx*cRa(iXKfF|*}B+5@V~y8H$N_kZqgeyd?c;a7|7`hAb2bF+Sq&W{Cl
zUV*2+v+SlLMRQRe*awJ;iblFYYkS&puiH<Y7HTq>2Ty?DDtFha6T)y5jI|pZwK}%}
zOKuUNZXl(mwgs~~&-3bCD)&p9aIJcLYTFyJ+=xQ5ZWv<>f-oG)q)~@P2+0uWM?H*Y
zF4=-s8mR2*BOCvMyY|on!nr*rQW`&DB;aHEZ-6ee8UGWYYsLf4MxfU}o{zUZr?hom
zkx+tW9x7EJTy3te17rz2kwqffWB2lC=)rznfJ@{8_!CQX7PvN({?i3g{aT;?0l4S<
zS{h8h+|Du2ud^Vj%H71GYWp96E|w58jCId{{x7tV|C_gwmxtXe#>U1w|MZjU06Uvm
z1VQRG%R4>SDSu-T^8`R41VTb{UhTOQ^2>FoK+b>uk9*i2FNiq4=w5g*!HerK_?%W8
z#{kVYt~MYHUS6;`46;l9+PS1T*&MVZJv~t9{~Il;Ye72lpH#SH<!rd}|IqyYgLiik
zJVy$KhFpo@Pyd5d2ZcM-dcXr&0;mAa-s^KH<RajkkO{qkEDk{Qe=zqf&R@YhhcrRY
z14+8oIOpGEkU5te3sl1}8T<vnebew(2Eh4n7z`4MQx~wly#cfw_zX25F5`$E`j^qy
z|LmO1SPs^hkSIR<qg)P$4Nl1@7)5=MzVi>s5Q|41ZUM3fP}o4mCm>M%m!S7APw)t`
zDNL6^<_TPzzW+Q+@X+@p!}hQ9sQDl7Ve<duzTgq(kyqIpaAlK!dP)A8-LG@#BJREq
zSSuqs{KY)q^+mviho4t(!KEDx0enPXg-(YLihAb+8Qgl^aQ;#<DX{r9n1~4cFKc}d
zAGA|BFEwHLhUxR?3-j}!D+NC>Ad|u7kG7GKidv8^n~k4Kpd1~+r>FPRMbSskMwokf
z*pUb@KCG#!0cn$VepIV5*p=6LWYyAH7m=CCK09SWqTzM0J8CuNzI9`AauP1V4tREp
z&N76zYDP(fT*t!2m}J7H^naGGKxqS`h_Nw<QV;2~*6zj^U5z8SdxI_-C`^Whn(4~0
zeIp7cmn0-GECNV;z|{#n2IId!1K>*Xzut>TL<#T>n5jMGkdj>|;u((+Wh3e1VGost
zSsu{lOieR@HUd!}*okYPRwgTh26Q_MtH(~$MRq<j7}U<wo;QB{%1L3&@yWP+y!R@@
zJVmjkh^^WFxRd^vNZC^g8>^?Bndo}9Y5)~67MUMQ0)fckLMG0O7VN}gIAr9%OWh4_
z1<xXAVEAzx2>}oWL{ljcIBaM`5yC83JQTdnvMrYr<KD&-#Khi{IQF2#`ex*F{(eMG
zvO9SE7U$RLe~UJ)OxtkI3jn(+{7RIGR@9t`8#iha9(F)qB|kB<v3aDDbI;n^O;dX|
zYJRKX#Oi!1yo(8G?^{!%rgQ4*LGt)`C5xH&Cn*2eu&tEJS=E1fnrnOa7FcF-PB7KF
zeU;NmSvb48FB0TkMO^~K0~i#5GYh!P``fexr81?wvdA|TO1Q%vtI7~AldkM9{(7n%
z%dBg$jM3w1qF2b_trW+%ZbLkWK3CI~TxD^a>;6(v)52&`J+p6ae2{G{F+um)3yM&F
zyj^b3Iv0lMC|NM?NmphLZv}G8kGngRH?jKPn2r(hiT?SRQkzWu>gp=0Qpyw{Tj#t9
z7_vuOiX3f7Iv(w6+=^K$+h%Wc?WoJ|JS*bvlDNS0sI!#O>Q&GEN1kFLSh(YKP9gaA
zoIb6_l}?|^UwR$!UOhO-^+uuhrv_&4v40G_X!bVF@yRgO`62swVUg9oTcM(!@qfe+
z{&%sns2OQA8{sVF4XqgHkn+`m;$feDTXd_x!@d40BH^Bp=O653r59PN8`H|Ke>$Ah
z;T06J43I&Y&r2o`9xT0Pzinx9){?P)nOn{a8(hM4ktROezSP4cq`J3{WWLZ|BpLqK
zUVND8@Ae^ZGV;}PhnDPVuP2XK{J(zNj`_mbw~6^yGoD4K2afSGb$I`uhv8LIe%}?w
zApkG7Ptjg@HJ^Qd4}*(*@I31#9O|??94d|S#gCrTt8{;Gu;N&^|9SC6TMxddk<uP~
z57TRL_m10P$O7l^5|-wU;so8lWbt#9^ZTPOa-|SOd_)&+U_DctsFH#NaQ^c@(un-}
z9TsOxW^#%ZLoXdY^QRTF1&oC>=$55RH4U_;KWaOU4JQakFJpbHOZjju_4Tr_PAlo#
zN|iK0_mbZZF4+ev?mE3O52-L8-guAScP|-sXgqtkFj%jEMobHQ&a00J)s6C~{bn{J
zjXRN7QJt>i%F2Hdr{<114q$7~A3xCWU7f_gyHT@LDa^kbHF*@N?(gT1P(3OiZn+bb
zG5+Fy=5|OBZ9-x`b0T(s^<I;AWl3oy4yTF5ZpJuw0XeZT^+8Zg>Cf`Rg(U`(p^IX(
zgAJ16$NI(JTR5g%I*%8aiFydHx^eM1XJ$Ffo?>tF$;;pf7AlI~jQF!}^Cj3~af`b2
zhxb!=gI#gui;?fYIDV-)ur^RKH|Tn)gN>ik@D{mfZ|!R&Pi%69@>0E(@l1)xaZW)o
zp$u_IA@p<Jt%_P?)2uIN>kRm~3tvuuxiy5N;V|_y;!cTk8mR#`wNCAiesi1CB1W0H
z->jvDndUx91-Kg#FDgzaqIZLD+jl>Z(=A^reT&MWe1KiX>+Mulemq+(@<`~U`ssk0
zVfhRCg<XBd$Y4D~a$X6w1k!oIpU+%5ZC%~b(ucm=l&!vou{lM@98*;cR^tWtvM$q_
zf2n%W*78hHC%bVpzpW%PDQ`5|BSrl8pUv(UZS&8Qh!ON+HhK@KJUVZ>+_~vzlG9d%
zuAL_)-_vdBsS##ip%pDzi=L2hOPBkb_JO-#$5o@H5k~{4id|oos;<%V4g9!j#+DP}
zcfIJR6{WC*@>uhI+8IsVk(#=Z0{)f0rDbvMIU{ORY|vq;^>6E^s+bP|ie?y_MFv}6
zrqxPI%G1%oMoTx9e2kCA8@qq>m?)U%L|ifk_g!mN(!td2=%|3QhYCVT&p$9H-17M&
z#%g~U@Uzs1@3}?@`+sr)jy3ADIz_x#9%ood+(U<_a5t#T&sjX@7!`co;OzKfDZD|@
z#IVrFvK`hdl;<(6J@Kun61`JW6e_hNjyF8FTy*B?@Z0-rV|{N!vwC~UQ|2aaL||)H
z<~A{fB`t=Qh=ziO2;Ml(R3O+y{%Y{7nPdwBgHfcg<R;yrX#N@W$`rGAJw^^=he;*%
z@k=EQHrkn!IRDd#$xg28;z5e_g_6N0%x?{Dp;DLzjg956))!(FiGK71eMmJMG=3&8
ziC#4+BkEi?xSfFYs=0kCw))6h7Y6l$dkaws*f$tB*cxn~)vb2#3q;?XAd(>xZ*jiv
z@(V|*WRJCKD^@WTDN9uB$3^PI@W}_c+4+|GNx}i(8z<@0CkYfQQ<P&S9ox3uf3Cj`
zIy!m7{OHngb*=3FZqHw<HwvwB;M6D|UzT)yQmtt92nR!y!lV63DbqxYZn}IifucQb
zd(`mL^yK|UgOmEQWu3=LswU<anv1|3btc{|Zr3rg`z1U2TaUM1ZSBjk+D+M-cREW8
zNlVM4qpgjJgGA#3?!9-RciYojTUwhfG#-gNX^qCc>i$W=l3RVU;J($;sV!4L4jb#Q
zqm|9nctL!k-C!r&O~;d|bp_k5DLDa~r)R;}D+Eqv21=H^zPREuQh2%DAS-JhF$uq!
z-mvGod4A2Db|$B~$eC^qn%z~0Rbp|dpT)0cH3yA<3lMhtol>D<w<#=B%`dPcQNj0O
zw?DQv*t1FW@zAA`UT7{nl*K*c*Ky(RyG?YDRx1*P5-FNF%V3hU^A?9I^|nq*oahmb
z1qI4JFVy7y@luNC=*p>cg>>o%7VYi7zq>hkRHG(qVmV5zX(EP;il_BH5H;c#GsSUX
zKS2}@+oL)WOab%Q?s=`>*8E<sF$FMSW;J)$C^MPB76oTj>ak{cC@<;#LFv_yC8oG(
zO+riVb;_<9%Csv)@{SbkoWJAypNfb)EVk0Lyr2>!Dy~$lR4`XHo;v=RzDz3)<!9n@
zj8&4sd8s|lX*9LV+H=1wbY=8b^oe2ENN><L<9^4y^E={@TH(|_<$d(t;~z(YC5qi1
z>~8%L1J8#yQQ=)Rdv&L$wTX|T@<+UdezcT3hE%zG&@zjqPey1xP2qQdy^&RM<FucB
zGYOjuH%@eYZ&V$vA0WM>Np|^SD;nLy9pz}p_}^aX`#621TlbvAPI-)khi;iP=ek{V
z(nHtTp}q>k*tV{>0eG%<E*~t~Si<^>I84>0;W?+{nG)?Ry!xpY&CKaFC*l1zrAx2Y
zohiRXvQ7NmNL5LMnQRH^kS(=*J7McGsn5Rmn-kw+^V!`9KNo8u-G2Xf91BF(8o1Ti
zrBGPE43vmskvAok`hDma89HS@WKW0_G)~`ZjrV$Za;igTCMk-@j0k;Rt*yT3bpL+E
zq+X)#*wM+UhL6%(8-gBVcYO92$6N2ogYdm0{qZDzzC2x?``?Bh(fs^-LsfyfmsAe(
z;q^>_4q3|k8sRhj<B;M&_Yghhl1;+)Wu`cT%iQVVU!^S`_YQWKIF8rglD?M|OrJU6
zSQQM%k&~pX`*4p`OP$|KG5J->lgvcwjZr!OHu=v^4_!76%c?kn7O6ky^B^z;g!G-P
z20K>)P*|`r*W*fearvncMX<UScjUaWfB*iJlgP<!3PvJU5?eXFoztG@g6~`rLW%|~
zOJf5eCKaUAY^br)2o@b~TG9+evQln;{O75h9`b86zZJw}Y*0)6O|goq$2d0VQDZJz
zmQhEcc!J!?TO{?!9~ntcCdz+oGA0`RSiU%(mf58%Vz-zv+%(zsHrU2?&5Cm%B9bww
zweo`&jhet+TIS}$<0&>v?zr;n%xasPfnGP{({(w7JW7WpS(d3x7e;@IePTY_Du5-@
zHh#vt7elRPo{3zr9xrF7Pt_&Izv(>lUBs5;nuJ5-fa5Vm^F%kL^b0e;vaj0;_Mg4u
zNxZ1=<}c>8KI2}jPWU5=@B1cSk<IXWK%2Ml#!$YYByE|IRv*+Om>X3KEeFp;;8qOi
z7*DNXbdaMh5xuixPjXNpy+VAk(2s?QZ7ka302*o~f$NP9!A91YNG?hW?O}gMTVk#o
zD}$q6XZ}lnW6450f{or^R3{`~{L?#Hn3uQd;G*Q<c7d)aR$!Zy#$-6!sW!hZ@Ta81
z^kTke^F5()?cIP)f@{*UqwiI2;-r<bODO9E8%d-IJ?NjDXw4{=bHD#}eRxDDMNVE|
z74F-d%g62h@eED#>9u;hE)M9HVN^|^taH%te4lfsNt-%tY*B_@ATJpat?rm;cR(Ag
zUVlox#z%RPqH8`1r@>*X`|8KK7jx@>$+NZUb1ULCJSnLE3`ue@^;xhMYs)@=c8%u1
zwcW=2megKUkfN0{Ysj*U{E}kOtFwn(7YiFC*~3Q3cII?{j9dK<8)ou$EF5kbx2Il4
z_WDeWy3b9u9UjL|-SW}AQwV3nq#(?C^3c&-?4@G!hXY$7#_;j@U>FQeze{K)D9vbB
z?V7*QYTVzqJb^!J<RSD?xm$n2@lS*Xc|i!HlunmDwMgVc=V`nY)d_l@CP{|B6!SEw
zKm^UZkfe$X6JLTW=Sny#YR>26A%l3B4^N^`lO4PyM}F$u4vW1}xp}=aq8q<8LV<@a
z2vPir$zi=LVtYHVFEeP3aP0oyE%8St+0qu4pWmTme_PztaSu^`6QxgUs2MKG6g4)n
zWa_Kz|6cTtx*`z`MzL6wNlDs@;tt;~4|_7{1-gizL0<;_6$6l)Cm}jg?}NyNvyOHj
zu?CSuH&vEIxK-UpqUXJeRZ|@t?W`G99-IfztZ|p)&#juw8dcK2E#8RA^<G5#i86%_
z4+o}|N<N}bVY4{x{wj!<&$EcTS0=-C(Oe<)*-=6E*<a$*Rq{_f>2pL9`Db27kyi47
ze3a>YcszX#1;Vf9U!|I##&;kj2r6o%Gq_2ebsy>GzW1{UcK3c4^D@KoMZ91IKgnm|
z21KJ_EX(K2%o^q0*(l1m*F{~EE?bO^(q~jC=VOEB-Z`Bv)_$Acr!vZeS($%l@S7SZ
z$x)O-b1So38{`SOL4K2`ca*I9QXQ+P__*yCdfe$!>6%Z=)w`~zUsql-5or#8;u0M2
z!d!D|<gv@P|DQ()8HEEn7VeLVL{O<@CEXet?3-I_Pd_~}Y&Z%mqYzGd)GIgiWp&`)
zYr^?6TBXvsyIJ|~zHY9STovy+U9S4HaH^a&QLX)Wp^hs5!`ZA}wuo}K<>OW5;%^e2
zo;=x^+9pP)f5aE(T<e5}E3EV0%Z<}*PHG)^O+30P61_A%8j!(^Zh19aic@=Nu-3X%
zx=Url-iV{OW|J8aYbkwt@-wLM=o<Sn8Hpub^eNphg^CU8Wh?4o84hAXbSmwSYcvc|
z2|FXEDGicLg(<gknJ+x=x2(EalFYRDYkKx3hi>9S6OTRVIu-K1#?88do2gd}V}HsF
z{LEbTqGmH3mJOEv?Xp)VLE!)XlXQ;9a<r*%>sQXbGr`{CSE)?lV$C7HI8R>g4ER&u
z@HA=4AG=a({gLjN$Q>^eg-&$md#V$mrWCif#P&s_b(JLY*zFI0TyBgohc*LhMev2k
zcs#XNt<|UR&nR}$(JqOvuXj><wZZzm8*^KXdz%|}54<-P&rCn_ICL!AC#YR-Eh_N7
zb+{RE&9=L{wPvEiNHMKWzBM7&gSM$>d(~4)J%1`O(mlGK{t?!C`O60YwUEh=<P#`-
zc0skTKsfTR|K2n?&@`!=YImDxBHfx5-2#8*EgYqQ@PEk{#vQfDBD-(NeBdS!%=?#B
z{_Un%_Z33)DhcsawXWPf+Bnqa6{dg;^S7zyUdAG)k>w>xC$_y~-JU!&hTr$s7tqAS
zaf0(y<s?;m)JOMb<7%`IJoq^iO8-m_Y7KVFgYg$LbB*0W26}}-<pCF(3u;Eii-mG*
zUkM*a1}UQNp%?WuWP5oY^&UHkm}oiHeYSQQt+UPiWTt&b?emmlg{I2t>LLZjA4f(I
z)M=0t1t&U0-lGdM48V%Jyy%5i*oyxCMN-(i_GBhWLoas!v`6FlWToz}u?%Ny{di%i
zE&_C7piMzdycS%MF>SMghzWKUkR>60{55?a7^O~%su^bQ5AU_Gi4EGLx+FRraA3Pm
zm&!_L$_8teYKB%r{Pc=$p{_8=+UU<!U3r_~dgAb6u57HxhD1>{pN=*FiLO0aWlT`m
z^GKrNuwY?m<E%?ITS&ZwL3-&18*QydSdB#TICn+QPQ}$(4~Ye&Hiayww4UV_<*l!!
z{7S=rS9{1ILbUvgwNE2roTcZ^s_^}lll0js?Ju4~Gy$m$!GCo>?q!zVd4BlE&iCo2
z)TnRv8hhN{!O+XHRV3PpnEruvVQsbD;F-h-^W0+%PyXe|Y{JRIy9@LA3I?^IUficF
z*<Tkp@kmdamaniPXspK*R20&K_v>6mw5x-Wo1-n0^koIAX0WU~{Y{&CrPDx0dGu7`
z`tI?^__EYdZ1Mf}$2ed2Kkq9y4QNcoxN<&wvJhO$=NPrzQKKe}h~=`>J1gIyYvM!(
z{3c?*&C7GUJ?=(j(VyT+%m;nEGq3fAB+Lh!1hijm4DVtmDdn_gxYBcOGi;|lI?Q;D
z&PT^wKU6^Hf)w0iq!}4nQ{J=839qIFx{jyJ+Lk$2&8*FR?*9E<LBqLi=URGl8XXj-
zoS)EE`smA;@5k{j8YRpJ>nc3upmNK1SS4-qy9uw)YPMqQd-pot*HP$DPzk3!ulw`s
zH~mou<Ink;BX6J6htUO-xA;Aojm9!mVv-&|R{K6-=$`Jhjw5U?nbjLXun?8fUB33f
zF2Hs#dS>eML^-7>J>=;eo5o0Q3@x-}ZIUdvF~5ILkjO-$LqD2ch7L}G>mnB&(w>6R
zh~<rE0*mwEqq>CDG(3&dwhi;ypUnM7a;84LU5&@oGm)X3crWzEnrcc^aCm8qC!gyF
z{tiYLb|m*{Pkh!OcP-%auB(Z#&#&Ikkj^0TGf{7k_czH&w=88laXM^&<Zd&5++Kt8
z4w3oc8iHnof9tX#w0-N2D(@F(t+^NXa|6P?>Pq?NqJmIiao*RPQ|E`@$M2nbPIIT+
z@{zVx^eCg7+fm}ed?<+W&R=N2lVuF;Cz;^pQKA5BbgDgm%`2+lE1_SS3}fHBYUIka
z)zObr)?>dcBflfx_zK<ERRrkLl?S4iXFj94vm!TjT(2|8oivoD>uV3<Hb>RHr=r;M
z*mG%p>=nvFaWJ}2Cm2kPs^Qyt?DLZ~$Me}zRNE0<s;2hspJr|QsNU5}nFn{9s`=*j
z9$%4V)F-bR<W4{I$xPxksa$c#YsOtZ*$LA!3|$|S_otv|z$jwiAJ09bR<9a{?y-TU
zk>2UWop{WLDE8(1x}npjxaBIQ-k}9wKbiN|q&#Ddj}Wo#)QeKp3hQf<`D48Hg7;ns
z@@J9no9r2dWXrKZ1(&#=MM|?%gv`R2nVA;6k^GO^b`+NVmT!d8KIbpvTwi@K%8FgL
zPa#zvM)3ZzWhSyt{n+fZ^Y4}o$-VpO6|e*z5zDi4;xJ>U!<r=K_ePukZsg@kgziT$
z4PSdOJaWTp<9<M@EKfQ|e!}R%{j+M$*tLR5x3%_TS>hCNDU~ifPp+m3tyrhsqREzX
zX)#;5OZ%VOs>})6aLLIE$hb+3FY0Q3aWzR_9sYZRj=rnh;YW8fT}St6{fdL6-5N`B
zq0v=*kCgHDzRql4N}As%Poe^?wf)j%7h9ji4*vL<*U%)EZTHDc%r_B<CUPk3ZJ-ni
z-AGzMAMFGkdTvD7OanaEkc1B<4QB{g+Z1m_i}SJf=fA-a9Ly~{p#4HJ13w>suDEjP
z1ejwg3m&Zj6p<Dh)UIId_(q%8swFTgzEq8=<E%KKU7$++G)MiEHoItdObqI}3*H7b
z(oAV)8KWZC0_?2BlPTquuD&s7Om!vo(KMi=$84`oa=mO-cofL(vpz{w0ZI65W;da}
zJKEcIeOul=`dLcDU{*nK<pgo=5VgDlal2}eqMVYPn7`QVqU`o{Z6>8V>882|tYew)
zmtG~N>}4<ud`3UNjgh7|L?cp|d?T*o+Hn^|hT3bX*y%DU^*h-F6&(Dbj#aa)4KcmU
zm5?;8k5B&KS$o0FEO%Fa!&8zt0sr?k$|I7u!_>(T75ub@_~}nchrh0DbvvJ&1a?Br
ze2qrO^^_$vw?<eS*0v{B-3b%S(!qv{#mWzXb<+B&lZh{_|LcNqxaozD9K&10Ox9MH
zl=}SstmP60w#mWyu~-ldm1{*b;8UP_(Y>x?!40^}6P0R@YbL)yS<P83@an@+^gBDN
zwXTPRZ$s2sPG6F}&NW_pVj@k1#}au{qL<h$7->jHNQz7BS$WWmPikhl6_WYq%hmko
zK&WS%W1VP=zS>eYAn1?7U6|0ZL2d<uuo3&sn+G;MTT!f|Eo;`gOt2$GP+E1Bt+|(o
zK5`7DWEq;ud&b<jSp75tgT!{<`9i~a{OKxr#eq|)>U5T}n*%1d#~y>!sfZD2e1tH-
z5X34Q7_BixjVTf7K9c<wyG^W{XrF8jL^rnBy$AC5N=qHk(tFZV_onm-#>T6<+NOr$
zz3q<_rl0G39$B_IW0$!A6kwK>b&`DSzVm_LF1qklVTxH?>MivCbHp{ggto(O$CMhw
z2Wyi_Y3d_SE23Wh)lPh4sZ%H|j_Cb+gSHTTr-WG6N-ix7NlSDc`fAs+F4r18P6Gc)
z@8{!bR|J{kP}iV<OrdLjUV9b`!8?p)UvPwV`=i{;H4##}sDMU`!VZPoVZW&Hv4mV+
z`bJ`q`25eW8F9yM&tspi<5%4!byoVGh(Y?kuXZm}m@hG`lIlEms?pPtn>fSY7}(@}
z7uFp`jw!qDOdx@ST~^9%!YX+?$K2}-LQ=LjN!CZoI}Y>`IM7NN6cG8%;g?grLTcX*
zV@goBK6IYW(_pA3V|=!Xi{r3nhM-wp<#6!-mNukUskc5aHP*Ij8uFr0Wsie0=x`HI
zSjd+TrBo>CBBa&w)ji8>r<V)8hdL&zh>M;`NuBX299(fVQQo+B!Rv?qpP~ih+Kxeg
zRDk_7lE*qok&UR0H0AfCpC2+H6+fYiYWS;l!7vAuYE}HSl@5L1h2_`?2+>XtY7`CW
z!kD32jJgGj>{7m&Wf{w#QJ^|sc+MPK6Lli4@X-A337uW*IvH;2lDMO$Ow?(gab1{E
zrDUdA<YI~{t$N^`%f--Q4m#Sn)U!5b8TmRYlHV043!ZaVL!~ojL}oO@3*t8u&X&ZK
z`v3NC(>1FE20SL|NR&p12s*4y!+VI|j!+?zSjD}fC89Bw&FP%N<nVy^WW8`I@NpYS
z$0;=pW>)TE933Vi(o#Y>UDL+(EVaQso{$@ZbokR!h%chUT4<kq<zldjxwfLYVQLlT
z%-h|SidrI+|3-BVtX7JnyBBWk5Q_O=M_2ai4MqK?0ZO7vS9Q>6!}BTXX{4@xQlqZ3
zGe9z)dn3AyN2nnkRic~t$lsDe2=v7ZH)t@I(Vt^mKThbbQ77DZByFhq`I*-g2+1Ek
z0T(2b!y&bafdM#oei6*7%BTf|5n7^6m6p$0NKWPEm0+aySC=0rj}w1}{mf=^?Bc37
zNRaM4qF40iCg;Z$M_5$)T4+1_a?!kIQXK4>AhwAslzujzehGzksj^<qO4%rA(&Jk%
zJey$S+xv66ki9VEQ7CN8B4tq@HZQaCuw%Y0H7ui9yY8wJNkTh^*cNfdema9CSJN${
zh`Sz1Mzj&C7<`QZQ^;D?dwiIlv9*)Or7wxzl~q2(AQyXU;!~t<2nT&atLI#zaY|d%
zobfHwnV&l8KXZ5Ld8N0t5cFdHB+RH;7?JY&b#<GCH$k|SEEx^0SjHkjeb)EIMniGC
z`ai(j5~vDj_n5X*jT*^I!gF&qDrr#_i;!30Pfcl!Hu0*>w@_Sj`oU9B^%svYFx5(m
zLfGx>*e2FI8n<goP3cjr>H7laTmi4-0KuC3lR{;@64|$9Gg26zS}q7tnWJbUn1fZN
zWD^aalt{9M1~)#SRn&5{<q#^Z+qU!Cn;)8aR(&LDeV0gy*nHAi<8%#M(30m#!jquO
z(g{-*ub*|v+r)iro?>l^#}4GX>5nLyA5qn;sVf$$b1%af#=DSI*)L*YdM<?=v)`jz
zaSgPou{_<$EgPrarc8$w<X5j_C6I?u<9v)~oTC4MAY95G&xnYD^U9L5$ldo8|8&S2
zky19L%RC~K)2B0mltj#Fv8S4~BrBUb2Kpg*9+n?Rjjehu7KGr{rtPf^>Fq8DoHSb~
zqtGBglnTD`l=dsD`Ri|Y`BkHlG(P+H@H(w?f+=lc6f<fo9o}_M?Jowf%lxgGxl|#q
zLOsbzXms4zWX(VBQg<&u^GB3j!LNqTvkiD63m*HgY;Jwx<g>2ZjSdW}78YinoOepw
zG-F3I(M?#AaXkWuhC2^Qo%5RBAs4ki=u_Ut<JG#uM@V{+n^?_{pO=f_S`wF}f4-us
zn(p&CyJ7{`Y#HvY+d&9!Rcw>#Px8*M{RfVpjE84jixJ>|ACuiIr((Or;bS09PeJzZ
z%eT876=%;;8DtEqAv_N^dUPj>xUb$UuVb|>R;ChCEh(c78_##u4l!056dzHLxMDyt
zW#Z-VO(d{u;L5F~?N>-{d0~=`rC!N<271FJcbjNcG;Hs`Lbk0&eZTK*J4e<y9ci6t
zyE_=eur`$WtgXDZcJYLx&}BaD0wSe^yv{HnoCjZ4P@BAJFC`O+cKl3wFDJ=*cGnPG
zHB2%@HoxiS$RYW$x8=@`)}G5H_3R0azXb9HMv=*|y21emZ8lv^Iwar0b&}4duT{&q
z4&#iXXI(wtU&<j{%6uEguH#c>na=tA-fa4vFDQ#bhkH9{wdhj@?&p6EzTKv+{Fbhw
zYJQbrESxzUh0dVzm$)czpdQjh>qSRWsz7kdh}Q37WEPW7H~X*P8rLgya<MFeeM#<~
z&NG`?%+)1}I+&h%or1cTO?SDpNpS|~N9bL{C{r>V)65&Tr9bh;mz)17{GuQ7b|#t~
z)fAB}t9<BKK>xd=0u|U1ubs?nwX|EWwsalZ8x@!Rtci>X-Zfe8&hOG+Y7+>tv2Nma
z#pA!%WTWW$^q!GH>i(6cn1HrL>-4M&iQ?loPt>GxtezaW*w&bDo_f0Lc{XC5ZCp~&
zzBkKwf<z}3Omz`4qGs4rTfBv<iD;ZwitW#Or6$U2S}aiPFV}6<82rdDU60ciFEm@~
zrgO&J{<79ai(j+uOxbOhzK7CstV;SMYJ{YTh+9_J$;iljX<KJ5E5&Vf17MGADh&%+
z2e-<-UGf5}&&Z<O-**>0TE5kO!hRnA{@szu=HyFr1Wm9&iq)9wJLexQZE{s-s}*r*
zF3A)3wBwb%d(Y*TlZLOD<Ip(uY0$qlaB7$J-k;R5Dtg7Wn3Qx_c4Vq>CL^K}QW|@W
zp=3u4qv)k)I;@{yitp>uyls|M;!jbI!VUQo&4#Ei6AW~v{)vAj3?EzN@zTmtnb$jH
zrJ=YOkE*S;pJK*?J__cEmDc+K!fFvba?*yc<|NrjcFFT?{{(#uuew}Qw6c|nD=ia-
zMAw}T?DS<0jvxGK-bgW*pHK`69SE(zOz5Lnx;plWUtS84BCk`MxA8YNRxd+f3H`pH
zx@x*f%ZRFCjZc@Ki5Q8VqGt1Uoa5t7w-tIa5L#)Xv69;^Qsp(@(1?>URc`k8UO|5B
zS)l(=SDeF29`gqAkj*fOO<u`qIi{F*5(f*bD>zzXb+xzC`M~e7O@iRTU<G3odB)4e
z^n>#!rMCYmsf>Az)v665g%X?WIUUbNz}bsmoVJbi7g)I%Uf-5|&7`%)jz-w4bZ>=K
ztsZM>2N2Tmcu#g%=8&y=9IGq^z2^FkIsSDwMIeZf@j5~5@^G=^+8#Fk!kj4$27$Vq
zQ@x>OZu8b?yrmY$_F$x5M?rhyu0Xm&0Y!7oR+C%!3L-_&rpD&5e^j6IK;t+Fa-XVk
zm}g&?@W#jc3zys<6qNIH-wm2N+f#mSfiI=qU3cQxN4VD&<2A59cQ&fLD%fU>9m-p-
zgvFr;C%)_nb<8pm3hmleXVApk?0xd5Sv4Y0pO@xh>1PdoYRuq~X5Fxo=PWORrr3U~
zlq@MRGP289%9?4jdyjwO?(8PLx8{doTDRFBou$Q(FBkreiZgsNQC+oL;yUz{->BZx
zwWHd;x39ap*5!2k+E8chVdaQMk{K$0itJiHkM)id?Nv0w=mL(oG5p<J1}e#9fGp~(
zmwW5$_)ng0H?8z*mVcKZY-=NZxJu_4i?j`Ig>#lhcbrKSKUq7bB%hLh`WUHs(A(6_
zPoi*3_z!i+3Bv~KqakJ$52XWY&ivyY_Mwi%2R6I?_8XMrUrIjkuOz$@5Gy~}xWo30
zwxM7TM>Pk3#=E+DF<4)3XNxr4>!Fdd(7T=Zx?l<Ncu8#DDKl%9yR?{qF;|Tnf1^Fm
zYH(Joni~+h4;QXUS%j!a2|0A_nAwf5pCVFl^;Z>S*H+|K#4a<8<<yO<*`KgEHD-y0
z)O;BvlYfLDW+KcYN>T}qm&E5h*`ZXarV@m}>8&TYvN$?*Y$6=V%aRB*(xh;{!aHGk
zs__lt7)9A4M#gq>oFml2Abzkc-;(urOaOw$M|LogdM{j;UJ8k3eK@%+-Ks*N*G7~f
zps(lrt2c9UOy4cWQBP%PecnCk)Np!MSvheYgx?cwDutN>%I<8QNAVNxkBPP1W?YAA
z$};}EZzz0@g+==Dd`H09!^0*G!CgMSx5yc6Suj&Pn7|hqA=8(LpuFholY{ljQQE<H
z{AfYV+rwcbcy0IUBZG;%yOaXk<3+@dUOQ8C?{>uy)(0+i^KD^PHkMgSiJN9}{1h%@
zS&y;pY_u8Km5PA%LSS1I|JHBkV;+%=AtHq+Bv<FHPRLt3M>nOS=7sv%ah`2yHVVJD
z9=(c>X1oi(O!@id@wd`p#AS%H#OdYb+dQW8IrFTQMkFPC%@ajx_IIdHj|T?}T>1Ae
zR({r?%su!u%Q=5G-+QK2sx9B9c!x{y#{|Xh#7Hc2q4cMLo1zG%!HBP6AHG_Ao${Q$
zh3RRx{hVVZs$g3?-!`gdW3!)gnP&T)1b<9na*9+}<B2_17rD%xSms545+#0Hw&mH6
zI_%0yKmBeSqVp|}RU??gxl#rm7F+7mqs<zd<0-O*i87<PB_gcb)gvDsZXfxxr&g44
zhK9MBeP&ZC)k2AuG773}CTi6h?M=Q3U=!Y`TAI?YIht&qJj_`a5Bw7w9qql|N&>%n
zg0iGCSi)^~V<W;j(rE}VYq^PYBrp6rt}iewK~XZ6tu5|$+n}HfA|*gLov&rpYrh08
ztr6GBuM|3OkL6f1p0`Lt3xe>t>oO+fG(<XUMv~IVxlyds6(iOF**5LG^x<&gcdo5l
zmQyEYZ>FYh;Ysn?9_=2zd51*r)F!v64orJKw;s{m6WN;Mueu~J_+tOS+pFASqAR0D
zC7elRmfcF`F+mK$S*F!iR#&m>VARR(baa`wPXAMhcS$;>GoQNaOo~1+<K2ry@SH}|
zrrwb)#pjEt+vzPGeW1@q#yVaj^1C3IXHbHCNoP>+OXBpp-}ftslmZtGmS9z-A|-}<
z^yYitn>6KIhfAg}ImGkb853`f+Q;xOWH8+tAx+G9m9*T|CFlS4M1D>6p}Sr4Cu@26
z&d02KHX}nRUdB9{`n5-2HPcW=Y}p*~jPcCDAJ#PQ^e5A&j|o@YnibWR_);6jJu=^_
zw9Nc5o@Po(-#MEK*Wxpql*4DHF@XiQG_GMg9z|DypPKFRZ)D>Z<@%n+%Go#6U(ny#
z>wQ)e7x9_iWU)~3*9)!k!YF11cIGz-9wGs%P09f}a7i+O;vkCXIU8Bf<)s*_GIs})
z_{=wsxV%xGgA?la&3cl-y%%_=l@m5vQBQI;aIyAL0{PNre|pWna11LFZ&L>PdSqnd
zL~sqzXUmN9(0+dqbR}N!v3whno|q<2>d|}WcPG3iF^Y|ehGe}T>f!<dgzrn)r(NrO
zM2{;>W|g%`DTv%wBQ5k3jh)#Z4dX^N(M)mm^^~MJbw<*+ku5w;DNNE2O_6$(VP0H*
zDVXaZC(B~YRVtMxi3+!E*En7<zSTvTY;!2$ibXpL&F9J=Uqv3NN=M?)GkBRi2Yov0
zmKN%$f;7nxAa)P1a*TgFsj1PcseuZ-jASU9FRl2Rl_o)EX*4Z4l4#}XN@!9=g?ng;
zcf|sq29wYK_3b5IHy)-jmE}Z=j0f^`BzXnf)SUOW{o*2Q_I}@O>^&_ZM|Ax<7R(n&
zZbqB<QbUr(pu#D4e?OIR^z|4BZ6X_potJL?fzf^!A{r}vU&B6)7K5%es$E?BWRMgU
z@mIRlC}5&;n8HGUEK86AuivgOSx)VvUOa1fwu~fCznzu0fMV{0K1k;os2w%x8`wD#
zBL<Ep1a0*`anBw_Qknn$sFK07Yb@iq)cZ_8kxrJ+-Qjau1u@yt!M+?F$wOzw>kRcn
z5>jQWLh$alB>PvpN-OgB^5`%xcz*9ua^mu-$^@u5nmBa5*&(LUFEL*fPyXl_R5-IP
zYoRQlNQld8_E}C!mI}?Js4_WhCvKcG-$om8g*=CBi6zJkfz$sWAa+JI!905RNiN&e
z*+6OM`_szPnyR|f`q{V)g_xI&uDfN73uJ}TUs70x6-jaVVlp@sWqyta2**0!`z;d8
zRr<2XWPlj2|1w-Z2A3zLX$-!{&6k|tT|-$VS}}~#eLrlfylz=^8O@}U5Fjj(tjuKh
zG=vB4e|HCtnQ?s;600mClPbFV(cJ750;>hgI7cC4s%}T}8Yo(%n2_^f3H#KtPFXe*
zWw>W77`7!o@)pUxZPubOm-{fQ866<(8{p8QZ%xKk#mJaqgW`X0mz*&@>?68DBTUvH
z{y{amPv_a*Z_Rt0C9}o#vlVXDF|yhgd(#=&Mwn~F60MS#n~dKXh%>7&t00@8O-QRi
zkYwc<&_27<vP&eUTAr<vp`4-3U!0w0zA7i<__q)_!;lizqPj%Pr%BV*@9`)^F(V+1
zp^cA)#f?qe@3t%-tzS{6k)sKz8xakMqNy_>uCPTzy*M%-rM-{^x&YB+xuTa@#wy|5
zd0*LRRFNh=vKiUrg<ptgvW9uqVsFdl+|yO1@N@K${TQEf57$U6!rFgrgZ^TqHI)yy
zyDSH{Jm#875%E3xfksqjDlJcEdJ}1HX7JL8`n9E{A)AR-Ue_qKyR0nA8N<ROMV+1Z
zZ^p{T!bJRzTC$w7F5i<LKMCZ_AWKBHcydMxPHG;5i5=bBy9^Qja&)hmvN`(tnIp|q
zx-5jAv$P=yWgO`mva=Lr=rD$Is?RH#M&#&B<#`eB-R%kqFGs}*c37Yc#E9tSk@O6L
zH-rNNuA8tli9eQoo<nG4s7upytDP@Il>UcbfLyvVwA$Hm=TC(jTZ4R`#js)q(uV*|
z$t=vHK|)Nt6p#}rTWH45`oxD@Ys>6&N5&fsq(lZm+YRBI2Yvpxm1QLS0tL9OJ(5aY
z8WzU(O;C<*TPTLX#m=c`ZA4XqV-}B8WEx}cHX3aGwzDCi<*A{KlD%jWHqZC|mPyX-
zwp#|Bkp?w>32kIh%f>CP$4PeNT<)si_1WyV_v9eoR>6?OFqBOSS3|$Ggzku6B@mB=
zZxgV%zF7Ey*pyiX5m|1oSzwtQ#-J#J${HZa43kfmqra%Kj389{nKu>_w)oSCMkT}$
zeOak6aVgS@%4Shj^)h&njy#Pm>Xg6CAWN1aNBmQKges7yQq{AozkMvH^02bfdMcf%
zi$}|`d2B;GxrkjNxoF@$jra#^s;-JiM-N>&zpUYeY~lVi9viY-258do6*M~T>&#Q<
zYks1<8hsxN5d6X#3bFO55RqW^Ha?}FiuDL~mbTYB9&%eOS?0!ZY>NK&j75oPGX+jX
zNuHYvrjCgp%|2%s$2<$VqLeCELUpYfq4SmUT56E7dtZmtU2$S8JFtcIzoVF8XG7b?
z#h|`E{gJNX@5Xp|y>1_mAk)L;%=<10<z7BqDRL>P9y79fju%<87%~br8cin-WWUtX
zl9*fB&xIgOue<a{(OBA`V~P3l?Zs7p=KYEl@VSZ-r&VO(?HowZyi2R-!~MCG?TN=s
zUB-oS#)Tl{Oc5@xgw@Y#%OX)yDIu=WOLiOe;%500X$-}BADo{iV@N`8%VLTeeqd{1
zXEG7CDOjUWVi5`!C>q*3{sET~`e~H~X8e7a3MGum+}?BYd7gg#{+8v3U-2*w3(Lm}
z3HC?Ix)=oeYXX#b#sdkPkas9rKe<vJY;H7@S4$a!E!FBKy^cq-zi9kuKqvM?sd2xz
zwahuvGKQpjHwpiKf278$p0B@qs{UMCKSLltTZCEVvXW^gW~AYRpMMX}K9x}r7X#x!
zh3I8kzaYUpvG`8G*Gwt|XV+6_;M&&4%X{NBqHY|SvU$*Gx{43!bdj(i!W66m?&UX*
zx3Sk#)@v3^u6}%4hA_x|$!4!HQ}8Db-&4dj{KL$?Kt9HV(bpxYl{tl~j4LSfZ^7Q9
zb{(0w{;!^BVJmQ9z1qqu>FJleZGpNqcKuMDJ4oSLOt}QNoH)I4xs$|i!#s)TSA;&?
zzO8s-5l@(@#H@+G<eSN1)Z6-GLlxR8R`Rg+H_Xx{oHj%1c1V=Qlu`#;dJGS;TSskC
z2DFN;sQH$DRj*BB{aZ$F6qSC8H&P`n{K78t`Wfmq6Sy1ynjPOe2$}iwT|BG)nVn^i
zYlok2zLN0g4j&6;$@<45-U1zo1iCuvwz>8@{c;NLqcm^7HV%my?;-NqbW*-$6pjdD
zPF*%z(Pd>^vyJyDSiy4NefmlRjEJxV^uIXs^FFlPXP!z5&y~k|6^Pd)j->ZxaO|8=
ze~sfXtB{<US8;{KeAQ;W2R<`3Ey0a__98)+G|x?ygnVyLE^+NYutM@%NIdVuWR;`<
zEUW~v_%dqFyH>cL497{SfAk$Rc_oG594rty{c8y#`h0NkgM{6n=v?B}@n!T);NO3{
zhWvN|D_M;aKcwehwHa3O<2M{)QuHoge`$lN%8B6LU&th;dh+S<GvQ8qNr|c~dpt%e
zEK!XROak)qbGu0~3ap#&`mTj!x<-qJR<7$_xhKa=eAx$y{*};-<z%4yfWQTf{P^7$
z%O30LWd%l|#3uYWWZ3j#B{tT3%IG`(T$0Sb3&U7{iYi~+S;pKJc(a8+gH_J-QT>Hb
z4Tsns&&Vgq?sCk{B(oo4@xRK(R&sKhEO*g2uVdL=aGH}Iz9wdO_2%V<3q1!3HZO$U
zbNJjwz^*e=V}XXIdmIamcSh|#P-uZ+yf9VBk7-3BUu9W@4<SC5u4452f4@MAC<Ru+
zcpZxB$*h{m>)Tm5adXak!pT+(wU_1wxV)u9n&fnc<om=C_Fdie3Ql;pjBJ{|phye{
z_`a{L%y)wI$>Yb46;E?=>V288D)TsquL;s1x{~j`62N+pa_>e+<`BIiQRAG0#3$em
z4A~cFWK6E@NztNohwd*7Ua%{qzPj<Qh^r|=S;k>xWrQk(5f<AB3s2;zD-li8@L^SE
za1i|aj$7yN82Oce>Pf-l+wDbtf5j18O&=99yBBb-z5&P2yFt{Q7d~j_zrKC9Nmb2R
zfZ}}lp~HO&JgulJVy|$Nu>POQ?mZgHynzF_HYaU2rF~1arIJnV6=ev~WtT#icP5vW
zCWI#AUSY;;ij9;vie+b_scf&Asl?DsC}%@8j8daADc7BtsBy`i_xr@2^S*z+&pDhq
z$2?<Zp5O2HJZI*7Ki>#v5bDIiuvbhARf{n2*W1!^Vd5Z3kw697fr`ah@o~sTeV4TJ
zT7A&nleUXTrp>=?n!JA1nSD>S@m&duFvv(xi`_%&r{&N(S6{rdFs^BimFC&$Ir~Y5
z%_?)T`pi{QQD9a*HD`0dBCgIW*Y|lAyy1Y2d%qKiyqYgf-+G`vay50WdifFzEsd@I
z;R(&EKC${D<zk(QiIo0sw-zsLo<TEXy4qRg|2}-$=fO`A-?oUQDJxtysr^zE!I?bt
z9OBTwVdKzWGa+(q*qRP&qzNZ)Kf7U1L@}}bVlr1e897ml2>kESKDCqA(y4i(W)(YX
zS$PsD(_-;T#nXkZTZm??Gkcg!o63_2?=BW^=gj<jPAy(7=|NH!fi=?zd#eS}SMf<0
zu{|8pmGr=@VqD$zT=dXu(&p>+ZF+c$HKz0y)PloV2D!XHYN)3j_<?^<P*ri<d@D3N
zCokD(?u;^%GR2h`lrJzE2j0b)T3gGH6f{OF1*&#fCSC7J?;A-@&zL*hmgdTj5Axgh
z^UqsQf3{;U_+%0KkZ61<@{{W;;c67tJ*xU#csa!)sRQ;)wM2r_H$=2;!`jYXhK_$2
zzUA@zHoCg4r!-asJTL=^fZT2&SD$FOLUotWEVStv^1Y~N3odx`PcjFTsJnaS<=mS$
z0}v`s;?7yJ!S_k39-<XHXJT|vlhJ_fSS)8EkX<YklLrrYGXXhw=jBO}>P7?}EjV@N
zLD&^uMAyrsT*^RUNeKhFaeA>ei3HR$zB%MxtLHII#7?m(DuP)fa@s9XLO4AuSKgI-
zX_#Rv9l9Oc&qJv9%9G;d?`J6(AP8Uy5dD70oNLTo8d0_UM2Hkck_#NrHiNXhyfAQo
zY%KihUXlXd#Y^+9))YGvV`CyU-$>U~|0c)}g^ma{2a7v$A>5UM|H#Tcuf0Al9MRDW
z^9_uRg-%4Zf~Q1oT1{YJ5()C|8v>rK<e7<YA*#-*yY7hWFmyA>4TRBy`@I!~pF4Lh
zJEogd`J3>$SZu{pwhW9k(g&cv0L8e2cs(kg-!gh@*u5c^?6kD-vHn-6v@1pQG>O~S
zDLWTVk2D~TDTrbaGeY7GMG}{C-~j0U$9LK3=|w;dfcqfnZ43vI<8huA>ALOe9{Awo
z171SpYT**Y=609WT{JGzoSFcNC!I2$mq`Xy8_yWno=wb`QH&%@1qiZ1Sbx$s`GsIV
z1k;na>Zk1uRd`c(>`mUjno`iiIq@z({Q-t#>YDgJn}M351qr){NOdnh1~ImD-mmhf
zkDR^_Zj_?Te9XjtBz_1AprGB=cBl>31HTV#vo_H$J;srt1`wqT^6NqHb?qi0QBktU
zD-LCKc4Hl`Sj?R6U|j7oExi;@s23R$+3VK<#;7l{Kb+A7*h`rHb$Ef=bC&=sI%4sb
zq|ii8ABq=AA*esvqLVMPVJZd1$2NH~nWe%I=zDQ1Um`5*d#>wiNhC&>G!1mx7OljO
zI8w;U!?N2n#|OP@n2{KsxUo>Z`TclNtEYR>F?Td9J38iTg-d<%-Owag)oMSpqN;b!
zvQ0)>iHwP{0Yvt}F#QA;64Q=oq^SLUvuo;guvwIiL}@Nu+uXqVo&~x)KQ;(?oLPZ}
zIy^IIob_R3^0nvs4g^|@ss;-Sna6lR_Sl?Ng%KTfl#S~Q44jOr5gJEVsaA1!e>9Tq
zUliG_GSnH|yEljz@bT4c9fttq%rO?wP3Ls{jb8@Q0<RJhHpO^nI-hT(JiW$IRhzt?
zwr4+2nB`VP8R$!4jr!opa$NjN4kb`w?4wq2K%@AzEpc6ejlDK?4fHMyy-55<jc5{8
z8?=%Kg;EdQhCky&CPQ8>_#nQ*;Q*HEd_+dv{;z=%L8L(M(mrK&5|=SPq<~xDoqxE(
z5aiIng9#?QgCIX{ULI9jrN`Cx&@rn_To>t;!V37qOoc{Pb~u{M_&X?FzICgY`0y)I
z(Rhi4Owrc1J9C2{U~zBOSU*HtK6A5kK}BwBi?Ff2a}n<w&qn5%Jv?Cp^o&P!SH$US
z91~{?;wlVF#xUrKws35gtRI}S3W3JqHNn#&-Wp({o}#dJKp(ZE@_F<d03%UOo9;(K
zKOXR)vNCXv6{<xc;AHxn0cz|gTcFtsk{@eG;$3-R`G~@9LUjH5_7{b4miU6*kn}tO
zpLu%+``z`anx{N1`#v}z;Lf-RZJ5e!Bk?3MfDP0XIXj>4uSFkE7-+{Jzd8itQ&Y9F
zYhQ8ALZMJ?b|%K+gOSEhx8O7p3hBj0AR-t?d-Q$vMxd;E8t?Yxo!HJ34xf%`K)nI}
zbkYLHi9G)dB+PmALK{2F!mn*~YHVXvCQy?R#C4zOi!Rj$HPEtg;>(SUgV9)PSY|h<
z+K`6uy?7tQcTB<GcbSNMfx47LsgFXyn11RZv`)M!vB=4XN`W}6OlrZw+;{LGF)J%y
zV`;#IH?M)q<pO{Ur$-FW<D;s>FU%4B_OHnzySWWQ*v1ESw5XBz#7_+%(C~8X470)Y
z?uK82U63S)iVfMG;hBlTAvk|h{9tSbm#7kIj?h#_<-FTv29h2)Uo;xco1xm_n93L6
zk_9TnGWxx8r)zmfarda+0(As#3!G&2oyN25z&QT6BI?ob=wsa!!ekYAIFITUiT}uV
z<3oPO8Q9RkfDn&xV!-^jzE|;O>RO?x<Y`R}$0nwzKME%%Oi}-KIeH$e*`xy9bwnRG
zCO0h$4c~Ne#}CR-GS7Vor-p$}nWXDDO8?Bpn?9m;4Gh5&AFQsXC7&IvGee|=AL*R6
z#<31YH2r>8(O|U$w6-YJyy-b+fv?){YV!~8cP><yF0BwL00T%9Mv^ehHVE$xrqzJe
zPz0Kz{}gfx@T<4nT{+6(pyI~A!bEHr1(rS3M+dqiOqGcc@sG*c<=VKw_<%E>si;jW
z)+r-LAhUkGHCRYlIB{0c-GR?f@ela=U~D>ZI)X;~Z&`nE#J6UjKF@_INNiT!iEFQ%
zRB%qf&cKCDSTyVeEJAn|hsJubYQG0>2P2(9-4*FlKBYpavFD%P$r^r<U4~8s@JFbT
zibfA7Dm0i^XGhY@lebMiHv3;`X$8mL-2HV$bO27v9UUF;hiXkRv1WVS44*w?-rtvR
q<qua)?jbgxT9?%Rk88Sy35`G7DH%$O$3DcPIPP%Se#_xd+<yR2aYYya

literal 0
HcmV?d00001

diff --git a/docs/images/flows/06 - Invoker Discover AEF.png b/docs/images/flows/06 - Invoker Discover AEF.png
new file mode 100644
index 0000000000000000000000000000000000000000..20b2f04f94444833bbea04832620434593f89bc0
GIT binary patch
literal 43087
zcmcHhbyQW~7r={d2|;NA2?-JD?gph14j~-}knZjl5#>k-NF7QJ(%s!94H8GXySw3T
zzrXR`9pk+_#{K8s;~$%`-D~YN=bm$}nx7S>sw{`|l>8|G05}Tr((eHPl>h)9Szw}o
zcT$^zK7g0UCW>;>z{9_PKbvx50pKN|ApKUuD`j`i(~ns5n)7f&DZNgtiBKLh<03Nn
z6oGKlMuy_tP7$y+Xt_;j8fg=0%vKq{&0@m*6aCyr^2>;V{DDB7{q#-GYox6_=0~((
z(FK+J->EL^1GBC}qOR)$28bQumm&C)m>F1zVvon*A2cDwk4SlF{@t6vF{S_S|LQ*s
z{JYX<2!tp7_sDiA7vaB0Rp&S@{$26&Uvw+|yGpuuBtH3f&2{*{ucX^x5Bp`vw$ozk
z$0Q!hYl-Q-a~1KcUtIjW-p8vj7_4R?ph3670w?*{by&>v`qUaQ)}6Ges<xT1S^XUy
z78Z7oP7i^j0V-l=8pCN~FFeK~*m!tcrz@=ir-!=>JWAnliMf{kiGegR5k|(`?z$&W
zo;Wrh$<nS9)3_zMg{Y2I`<!jJ3csMDnwNi3K4k}dhr_2AnLKy@mg)6NVR|oq#PAbO
zFAL&2%1IBfIfMvQUn~SJ{Jz~B%|y*fZ|M&W4-cPS_t=|0W8OoP+(Z~l5K2OzC5BD!
z)zuH0Z}#tQE+j5yT|MXAkrP9sbUv%ma*we|zsJT_SdAhgUI+x-Uu|@Cbzwbc1%k+U
zEPyvIF2@r?rcGp57(sC?+VKeq$%E^ybr*A<3lReIq=Iyy6xDS!G&B)O>LDX*?TJq^
zvWM*WJ-5ddVqODZBO@JVs@XK=<QgvKeQO-%;L*{e*^p!=_3Xq!3r$T1m9*U>FYv}>
zk-h-!XCc@1+xwe?PZ)Rspq#)<9-fnajuugm-NcTi+OtW03|tDYd)bPLiX4@6_WtAV
zG*a{`Y1jbRUL(JwuKT;2J&%7cp;u1%%^4mY0k*%;pze4iLrO*TNE%rTwVjDBhBhdt
z2oeBkUdv%uCmRdSJ(O4^?6+4N>2gt2(D(m-uP}qleiiS0BjK2@bvE_(_Wt&qtviZ(
zq1;^2RO{{AHl$IY|6=Q-<iW`%-wQ6&Zp>iS6)NaJM(sdqUtixl1qA{bE`EM~F){zC
za`SG8Y>T-6^{nqfQx)ZRtYH~UJ|XRfOe`8VweXMP6&8cs;^Y^jDDImhZ{y9O$ewUA
zQ~*!x^n2N_{QT(XXrR<?iW`bV7U^pjajcHYQR67_@bOjs`t?id3obBHV$=eIJ%u92
z{`_fgZ%09r3%ljA_IEQQ7|97+9`0|*c^qe9a1l?3#m+L*9?1!|qQgTcKwd#%)Ezoj
zIhrYl;qVRLW%V}!6j|fAu<s;@Vu?c`c!=Wbwj|}8B$BmrU8q|D7=y-F(tOPfguf8j
zZ*TC6b|sL65Q5$XePI)xG+pD^VmDO|N#>W4lS6I2y*hD+8Z~-x0caQ)FET&#+x-QA
zjEszOR&5OpQnhx_P)XPgF0Xe=Tq!UBP|4>xNii`dvz*)0RkqgFdBr>BtPJ$@&m_})
z_v@-`kwfVc3#6~_2L%>L3rbl<Ja+$XjpZE7H#Kw*AW2{OU9BYm_+(^x4?-4tRW`(c
zAVuV`_>J9C`{yW$d%@w8n~Q@BpQdgP-_uR5!28=_iHAn*62nvx&*oMt=%T8@z4BK5
zd`n>9N-4FtA1Ux!fm>4Pft`Vl?hNm6w_@1Pcprn>&xs5jjb?lk3@n?|s-^?0)Ft+_
z;x|1K_Zd6&$Q{1NgSVhK^~EYl+~@#R;H@(h8F+gn2YiLWj`5lUj(Zs%El%n?PM|Jx
z0#-BC_HW;QEE_mp>wol;m323bxtr-B;|mqH7FWGJ`_Jw~>$Sc(;LTX&{YIko{%jra
z{rh)S0|PtOq}0?skA}djH4>myuSiBlrrS+Z6Lf@tk7D($8MU{meS?EpjPHnKa>nv@
zd>TCV0OPh`^p6b&gQXuj*g264Vxjmpa3@hh$w2gO>*m^8Qa~^=S<rbo1$4XNbP2n^
zrJu1#P+Aur?mYoPufvys+s<T!xvpu~e3NhBVH?I5T*_mHs=$W;;1Ya>go46ONdW>u
z4{B^|{AV3bndau^-4e1K+WvJ0?14k5X9o-E*;|AR$|0XWyYJ6>kNkYAo~=ZH_F<vf
zUpDlvW+VLj8fa-BrJS!ss;ov|LB@3ADFqxTG$?P;v7VD&P~d=}cNJ{>Ewz-C6smeI
ze@&awQ4qe34j9KzwclVqx%EOqJqMF`Ha5}&4a-bq3=Iu;CW|88j)<q@0k={`88+jQ
zTyw3?DZ?ASw?{n!4zpIX8^>Ov04FFcp7`ZUCl;*&_bwQ5LdpiT!Q;^zuyg^$ajJan
zPnKeO;QbZo;QN0;&xxc=_dic^cEkn3%MJtF_tosbEFXLJeQgCDJ{*^)qon12`^?8X
zO+dWbe#YbSaH%TGX{in~Bm40JYUGHKYPz`pvuDr1hpBvbxpKF49|hIc3Ig&fDi<8y
zr<-cP*RZf7m8<g^N4Dqv=X*2hKHE&DFs_T=(X?Qf(yIxUMWKzm?i(7qKOIxa*tU=V
z=mw?cGLhEPo33-+0KXnJIk}#WPOWhp3hfJ7?IfdAUyYf60g0KFb++^aDrBtX?tJE&
z`RM3KIfsWcL=y8Z&UheX#3=TNJZCINg-~+8@kH5l`EaR&3HDA=@#Y}#p&);IspE^p
z?V%JvD&+Dju&cAP6LcR6z+yP<4s=JL^(z4_X((ts1GG`1CgEJuV1RtMzl(6+DJU&H
zY<akI1l<(t>C>3lSZcq+HXE!)unn1VQOXcV1PoTc7O$^YY4r#Q`JN&5<qvOaTH5`3
zvZGJaJlM^GA@&aJVTxR%Y($9?>eLnES=ETLEQixNLUCTGns<IBz(4G!2ULl=PAn6g
zI`JhTU7A!XpYiki!Hz_~%EtUOFyzaZiyfqjgd_GP&#)+JAeFS=?q9CVNIX)`mz;bn
zd(prmHSpud4-G9XEw;ft^&FI-*9u^?K)Q<^3W(jZG~XWglU!{(nf~UHQTup-pDf^*
zmX_wgiZA&1*686np)9D^jJukcm^dyWA!q0MWLUy+z=Sju!3b>5)EuCnZ?=C~cJb(|
z%{d2S1BNoMY~IYCM+wrG>)=t3C(cVZ`?di35O_T(ET|H4C{bNq-96@F`!hm9(B^O+
zd1hieHl0m=p$_<4?`|t8Z)LT)+8ZliKW$c~lV5ZX_L81kf4bIOz)mi^uyFS?iQ(l|
zPP#+w(qq%!)zwu?&|dc&4vLYHR&ZI&vMIZ{diP}TQ-Q90=a`S}2Ko&oUAzhGMCywb
zV|X2AYr(#sJTqs(?_?0PD39&&ux#s!DN&p8+`#*j^#56WjA#C@UuJvLRe-8J@1NF>
zs6vq}OibW#2+|aZEx8GQbDD4D^WWG@vg)67;J7T~|D|!-|09FF|NlzVOS0UdNOvgC
zPiuI#b$4NR?~<kz<|6=xV1yx1@g>7`G5MU4nxE~1OL6MBOH(qxc_vkrQ*p(rF`Dao
zG>CmsNuZF>-gmhP|6@%wrMM7AABNw~{aW~|0~L*Y45LB}BP{r3DXT5TLP6@=5cXA{
zf>H>6HH|h9@2bI(pv$sD!qZ!xlB9or6cZkfa&?<B&a;6;qkQuu9wzJl-n88w_e+OG
zg+h!pW`^~(%?3^eRvkNw9bt&Q{7Sn^<o3ZITe`bGmJ)+iSt6OdT&Jd+jxBiKno*K|
zw#wRN`<199W(Oy0KR33N8j&GAB73*K=)d<zVDt;s^CoDq?2Hco0^NR$4ry7(8Vk9J
zN=E}CSJ2)r3J%qx`c$2KRxK*tcshgj;l&?$P<lm=C!qAhgL(Nrw+2^h>ql^R{^5k=
zWc~N=mtE?JWZGs{bHf^j{?|g&R+mV2Ie%O8I}>`#&j-ilo;a@ctKhJuyqvpcric;7
z)p}@S`7}chx<Oq1q@Dj4m$8ssLT2-S`pve6<r{k7mS`HL4{y2E8?dJje?flD-TJ?(
zd?kVe$snWFXjt-4YU29^Uc1xS&j0prDDPv|jZK&F8m-9#u|=dS9g-KK_M^2Xi)OqN
zI{d#^M*n+d;eW3rG$h^91Z<gXj!XYnS`aMFJyD>wd@u-QwcEv)OhBE%4}rt4C*S>_
zQxJ7Aw8y`|S&7l#(3j)m;{{qK|G(1|t*C|M1~2EOKedmz?xTpQ*2dCR_`5@a#nBl;
zugJ8TW2JzwnrQxyBWE42xcsNl1)_LId3#yT_r(n1X-lWWIMpr};a@R=sv1ttsW_e(
z92I9cf53eNxIsBQS>$;7YW6u)H7ISY@o)Pv`k0RWYOZ%byIK|IT3_e1q`3LA7+F|V
zq8hPFKvxU>=qg)B#b(f|!nqVtpjsKfEQLL(+0L&kr;pX;`dE~s>bRzDOz_f~^vl?K
zS{%|n+M1>xH;DGlX60z$9Mtl;-@nhvhxZp)5PNy#kZch7pd@(vm^=em=VIJhPvEx-
z&kMr#7MOnN)+%UKwZC5&#oqWBn}y>mP+NwlhFZ;olU5@emb7b8?RaDS(1VCMuBnJh
z3^vg<M6oJeIGWU`L%eQ~+hMl|dsxoFDM$7luZO;)$k>TMYW`tS@H*a~x7dnOwfOV%
z@28&f^s8a5(PvLX+!T3VXwGPRI85YIo*%}in9+vBh^_6dTy@q;*xVhaah3)C4!_V^
z{V^KeF<Ij;_fUw4fq5QBdRnFZz<+@q=y9oI(Ke-FYlWp;nYN&11z%<#v?oC#%>6h4
z3Q<2Z>vvoo$+PBlvLc+G_m8J6v#hH9dCs>)M1%@WTBoCl*@s13k#=Gl-Jhjzg(TJ<
zggw6_$O8Mm;8I`FWhE{_ipwcz*Hl{cT{m+tl6<dE?d*-Jj%%LL$ybKLb@tklMf3;T
z8(b4eEY^}gnUE=4wbJAA)eb3~Ut+2+{<x9lzcGhw7hW}ZyP|a@`=ymP@A;y(I_^~a
zrZ79Y;BUjPD9s^p`m(JO)SD(;M<2(K4q~^H+IcZ-%g6mW*?kU{&CXx7?Emf+eHZFg
zmY13@{llB3kH{-ebxzZ-;_f1kXG{zZ!k=0x%u3ZwQ<vqz^{w()Z$eZc_);t`$@yLL
z$muNJ4KoIAPNb(dXZpLm|MoC&Z*n&2megqlQ+W(PPXaAN5R7oTkU#Dab#vgSRXl<W
z7~$1aH-jR>nd-A`@)5RA0eo1tRlI6tHgnoB3RL}3t0p`XP#i7HW(I_1Du~Q~Wm@H9
z*W-q$5=o7+0#^Bj*33bMao_sTUaY9TbSsjNR5kST0%%^_FGQm&B70%eS^j_a1n}%;
zxc_LvP0>KN`9g|yu{GJ3Dv_M9i|vRYQ;wd?Uq%h$SidW^Jt(tqF1wg_c9pg|bd9~4
zeQ3Y1b{I?SotaMzu-wrKqxQcZ3>~MKvYjL%1DfwX91V$m(V3UF3dQf+(jrPPw1pS%
zglIU<x<k%1h?rf>OIm*sP?D6~8Ggak)-}`=`Cg>zw&T^)k9THawJm?$OPx?y>~yod
zf^eXk7T_0tMNi5M<GG+bnmr19@V+|I4}Wa4cdlMeQJ5#*wZZ>BO%SoN>@Km1zs^2b
z^iIfgs~(XdmN~;9aML2<qwKpuGE#-X;9d^@eD@{NpUd&B)d`g*<f+Ye^QF)Ix!4y3
z!Xy-Dd#u8?VN|OAYvK7eLyNxTGI9D&KY9zxJnVFZfru|<%)UO`HovfdIS4m|TUj9l
zA3DaXImx@GvOyww?^kWY2&W;kS3(<M$-zh1!t<}+AfL!+rxl^7XX?UC+(z6r^8%_(
zYROHBpvX6QUib6&&k0)&jIZ&&Y2^!VO;zm`(O#caE;IKoOS5#9{@mF}S8|6;Xy_sf
z<~Mb8zq?Cv5t*idw={V*waiOu5SQPmk$L48f5R&B$!!YF2l$2#Lb4-xL^kWQ`?@1B
zDC&h#SRqGe*3>q)3put0utwcNV{>#Kh%0P3OS76sVqZywe1Ww%KXuD@!F3^9i*#=Q
zTBJ`maDAG5*1)a#3<u|~Q6{rfi7H)Bb@ixE7$71_uuS;A_!nRENSQLWb@cie=Vqn`
zhKp65*2{jyMyF`06s2M%M`(V3JYIqRQU@H!Joc=va<G{9=QKSVqEP0Xk+wG;KFr0>
zE1Yd|cU)h>E-`-k7|0Yt1)y=}S+ngdv5vO=BO233%V)k%WvCpsDP~#QSKaC(Q~G8a
z1!AKqh%%^OEWop>90TU(D@;$;x!M%@DTY}sbVjF3+qfl>_>zmGB0kR~CmrOykK;I`
z<*+-#cFygtJhsk}*>|Z3s}c9)uu4eyp;u$l#t<ES<>pvcR~pY}df(TBpvq-u+zvOB
z25+8vrm5nk-!6Z{%dT>m8tA)ftf#H`>ecuZAd2^P?e`vC=44Mj-xX_g>37zbe#W2^
zw8=}WEA@%gFu#tQe7Jg37+{2%)ac5dN9w}g=jO#-tnflKHHK+TXE=GQTrZj%vKwCs
zFVpFFu1n=K-<mHhIPUEq^%8Yh{}3t|Sc&5U7#WLyyO&Rvs(R|CMaygUjkf$EB1O79
z)++TsJX^2hS#j7M%hLbjldw)PA)z~VN@A2wH=QYMOWNi1x7Q6K=(IZCEv6e^v0Gk*
zb?vEeb)krdOF6QaFfntHI`~1b*CzUxaV#PYO_H~3tSGL^Jtfuh)K#eKg-0qgV-~tA
z=AhH7y@oPZ)e6kmidp|tjex$7tgsq2UR&ack7DhaQd#9s9sA~8zwk5$_n!Z~oaAL(
z;F$3jRv{?*Ks1QEwQMyvP`T4Or72SGHA;WXS?enA7t*V{FYZ!r+&|AMTZ!6gN;vIQ
zc|SNj<LeRbNJV&k(jA-B#oduSRPwSun_ku#H~E+KH06a#&cG<W+`x6^pu}Bujns}8
zobb_`vpQWToc(9y)Wmv*`wGL1^FBX=)(4^>R{ih$8fEl-J#46`DI1+Mw-aen1>^6X
z&oaU#;Q~T#5X$kX$?7`yjr)q0LZ*sDnF_1eIG#6Z_4!{5eWXbA4H8#bJt>8f8r%bM
zyF_%9pXr!8ZH!nDSXkDH+$pui`%e`zg%A(OhU;L>F>im|Q)+PtYfvH1bK#ZYlD)$S
zlG?K5Kj>d@e=p*9+|MEImF?bdp*6pw#YUD@kIVtysO2#rdxc+p3XhC=JkH2P2#jDm
zo|29hzD)e2JHN`r(O9OKGW8mFKX%v1PQGOKi_y*JO#QQiG@b9sR}bs<nWT}~QwmZI
zk7poQ@wZxrI-{Ac$H^)<31~w)=F7SJ66}gsW}_e4C{_anRio!RlO<fcL*fT%)$vjc
z${akuT_)C~QLL7}ySKNW^R~KfP-L1MFFC=lP}rQIGh7q`F8ycj2^~_GAR*m}PoO!^
z5Cemz9l+v(>+>noY5m~jQS6f6`%krd)enk^Su@_`rWNgleCK;nO(p7P);*>kinm+0
z)<Il8+;tc@yK5}i`;3BNy1m~|rkf~!R6~nspp8fd73hEk>zaAT5*XscmZS@;o~%i;
z&=AQ~U^75V6^gJGn{Pg}&3P)<@0<rnI9{gfO`QDN@v&n>mg_PCjmPH{OoB9m)t`)U
zX+jvqFO~<d@|lx&qZ@l40kTN$!Q)_|5W>Rw<38*cObg!n3+V!WdCYN{ub<FhbC}2X
zebe426+vu-_v|yeYT-*ZUk4n8*{OJaQ%*6<DJ{7se_PSW#Mn)hq%<}=L^xF-kd0ec
zcCy(9t!ZjeDh)Y3h^E*r^=onS)vfdGPHnn&gPoOJ9#RTK`mf$Cn>fzIk3RS;(|_BF
zYWOSi=TG`Aa(HgK#%m`jnXc^EVx%*AF5uSvCI$UQka?@yf$i9J=>8_~1tWY-y1$cV
zE_m;c%C~qCtQ6;>*!fic_77Ns`g_8nD@{fpO&m8xSr6^1tT!@Zr-TQ?_&Sy9_s_h5
zAVluS$oHqhofJe;6_U-vHS~kl<#H%*Lb^^SW2J)a0yX~r5bH6#bb>5Iej0qXkfWYb
z78h55{8MkMn!Ydd`Klt|FF1ZE?)Ajpp<3qTxHYeuN%B-bsBXjEiDEhb5$C%i)w`qa
zfZ6z>)_*vfVcuYtUubF0Qceh^y2||`n#8h50KLn#>O$2j|4&6~Dt`I-g*^r?75wP*
z#}cZq{k?J0E}LboghSO>p%pHSZz{8Y)x`9v+>SV$Fn>RbJLPw>RcI{vE$;hFnJ1cZ
zApjS5(WQaxSJ%tUu->Q^{`+P!p*nQ7WVv&tYIdW9$AFZ>?k@Y_;SUme8Ll=Dbv5U$
z`h^<&s@p6kRJxD)bq@U<D#Lykncn4vO0{*K8|#%hjU$`JXuzEI`Fd=JK7W*`(`BbA
z$DNAWS)lm%umgcann>WXzluugxvYhja{9i#4_$Kqu?o3=7%$|m{`jKqB;LY|B-N7;
z$k<UlVI%~8#KmnS@L0%UJGwX_WO%<Mep+FrISOXNbZau|kq0i_C$g*b@lab^U-$+a
zFgNs{O6*ex73aZ*i>{fwad)r*nJzkAZ}SifM);#lH~|b{75GhP?LI8M>1?DWo&0cp
zeBV)di@&m<OWp8ielynm#w(x{94XSusi27zW?pyS%$mpb+v>ef!2#aA>yJzss0iu&
z7O%RpE>06d%o;3|NL;9??S=+mW?;$?!X8V8TMeWi{}y)+{Du8S4Vy!#S<mCwugXSU
zJB=HDwv!XAh4hn5KHj(GWTy0`ly&_0lB3weF7)#hX1K7qY6&brxY~A$iQ};D9kU3x
zfAKk+oxgBbe7vUU&2XT^X=i~^K#N8^G1Qr<IGBWb)1K>z^-Ywh@ZR8t;SHmEps>`(
z-2tDgQJR?FB?dKXOF0W(7nvpIx=Eb*mI=>qOLo*B8UK!e&eD-NSO&Z&dSRCUgDD~l
z7jmytN|Y##YhcvFcLB@(W7*>1o`!*Px<ip~RrQax^!pXNDw~yAZ^dB?lGMQAdYhcz
zy}Phm1UGQGc7vBK!C7j_qV{sFzSuc9Zt3;J#_h%@e@d;bmAVB;{liqAN=v*qdyZ#9
zd{Yd>*zPkTzDVb$_aQ(yHu~lSHVANDhDN59vz8PHGQplWCt`h56tJ7lV-j!L#@~YN
z)cH2(Dfvy`)2in*9nBV0yuZld!9Mz7-Xyw4-=KLtrtA*cpLlmHc!JvCSTL$lXOzSE
zpIPuF<Ds;+-Z#B*zBb5$=U<YH@oC11<r{E0STO*M%<N(bMzUim&b~xH^HZ%u`V+gi
zErrt`47Vyu0#f#f+#|qc<7B6qMGLiR$Amo&cP+u)$zpp1u7%mf&R=vO{<a>MvDgtA
z|JK9R!LW^xV~88Q=C8k~7_Zx)7~z+w-35>S`3c!};P5)Uw<wlyEGj+ec-gYDPIp-O
z2^T?RaQm`x1Mm4{29Zocd|Z$8+Z_HfMeQuosoKE4lZL40x>AHnkygDnT}MirJ{Hf(
zfZqc{E3aR4gb{%wTwTV|S~?4pINV+}swmI9Y-pv>@!#Hocs3Is_pb|{#j52p*QhBs
z4<0A>=4tEBY6Kr}0k4%i4li}a4p@24`iAW@Jzho3ORv{=zY16r1cZW$?&VX{ox2wy
zZ>jG*+vE-gYAt7jyd_w9P+m~-ek-HhDA%3ud=mdlr$4nrFBgWajcW0}$RidxwhC={
zGu_CvnK?}2cX~i}5&l4Hj@t2*YMS5iXuW5j5*MggztyIpj}?nq8uYS!n3lq%AsU2b
z5wioBxGs$13Cz9`4HEEt(qYTEA3yHP?XtQ*+esK4@0B;PQ=e{+vvLpYvwF^nt<k-b
zQP3)PUT6;yoWT)``9wK6+Zdc<c(38oxhL$wE9kZ6?-@=m^m9&;nw`TP*Yj_Y*mT$4
z@W9?o1_$YeVEgIz57HN82C6y~yPQ!k#K4W$$^kM$%26hv^#tPNaKhQuhnt>#+OElw
zbql$0tEzFGznC(p_SYK^`q$lK0vIB8D~?+dRBt9KtCBD7TD)gO4Hdt5(eN|Z{w!sD
z{hQz6R27O;?C&!{&<fMbkaLa9;fdGTAL#l@vy76*d-g%~wDwE&MQWZ3B_{bw<(L7N
z=2ws50z3xhfr;77sj<PdlB{cM#Uj*xxSdXlsud6n5{Ayd*KW3iB$RrpIvVyl!j-Vu
z%7^b}-+tLPM;9dv6-gDyM<Hth#*|-$knbrSC=ZSe5h+w-1`;_xEI5#f^-UmjD_c^R
zei?@*5M_;0r?<Fp#im<5sZxy2Uv~HA14`juIGYp6co8o~{a0J5L?jGmTYOOf)_ZqU
zjwwR84A44{Du-^Xq3R|A%Z^H6LJtbLWK1vk8>s%%-Q^V^Dse&>fh92WD#H1UrY%xo
z#Sv$=vdiS0`t+HAvvgHiD4kPqR<)WtCX~Ui{4qe$|2;_gC$ltiBF%n}h^8Dd;C+A&
zCuX%E077v$>+OfgZLM4%-t=oJ#L=ia7%ur%wCJ~pFbG!Db|_RqDTc3h`yn$IM~GAt
z9Z9aw=FEeJ<EDZsR&$jbt7U|i`t+R<RDXH}hqvnYkFJ3?_-HSQ0DQ-{`~RO@0Irjf
zEcai5MW?4L#4<^ZRt>EpfkLCzOlQ(nKkgXel(QwDjvjs;)v#UN`Ad#g?NQoXW6}h-
zq6Aem&Po_`fA<hn9ILc&R>SbP_t^a1OX;h^s+XGWLz4jxlXjIwUJ|<Mn3YcvpaQz)
zpZy!8f!5|vJ<`5*s&2ke?Wh!Hl%UQ_`Sjr$i~hE<j)o}mY0HfpiL--A6yQ0B{&4cA
z7(&xlLH&pZI!@D%mId4bghX@Q&nSkUK8LT_MkZl)9j=eb>>ow>&lklNX>Wv3L8m*V
zKjSr(#kQ&q-`alg8{P--pHc8S@8-4=53cw58h*|))Yma_Qu3WAdhMH1z`sW=k$-Xc
zDAjX7kN>CTGvKzITc$Gf$}x4Pep0mWDbVl-*Ncz+6(Ww0H5!p<r`@{;Z4bBCTwtnD
zK=MMhZEx9mHMgebl?h(;AMbjm=jb+<r*19qt*yjaIDQW7)ly&!4|F+sx{!QwR}b9?
zHl40$?Al>2TJv?_)TXgOkbV516rypSyaf<-6wNvN%zoXM!Z^PNyYH6`SATme<W$x~
z5PGf@Sb$-A`_t#jmG5~ox7oq81zAl$w~4OY;f)o+{VeMXiL0S^l8ljAfbm@D;6uvQ
zN3(BcpZh%Vz06<fF=MP&G=^<ZG+Jfq?rO*(8+Ik}fX*Hn=Sl>#c=mP~A5`5Ps&1~5
zj(Y?cb0s^}mn8%iwW0d7+}`7f*NjPw8&9S@ILHg>EM--EYeew90>`~pIJ88X`otmu
z!XkS*d19~Hy)Zw0kg4c+Tj4H20I5K%e!V(PCO&AsJsiJb;O4~v_laD+m4UBO-=e(`
zzl%F^zNMvH#a1w`6wlnuxk=$oX)n1G8!b)(z(~r=sZ5Ean%gFAs-qk`Rn3J%st-kk
zna5bL*U^q+!q)A-sap1iNCs#ModOEOiXXxAE5luZR?yh3wSHPnGJ1!o>dNeI9kBa5
zDJ5uyl~K;nx!Wc1?ym>bEIbHjc|U61J1P%OBC+q@q=2e>MPdLYDobcs40>;oL`~R$
zPUzzxz8RGW%6b3I*5-aKho|MqQK^Eio0oMz6VDr4QCq>WUgPPyTnychCCJa65LK$r
z%Y$!aWsK2de`2`Cq+0yN(!h~a1J^D!PM|sOsww{Nr8Sw%j(Bj0dS65|39B{>5&Z^A
z9Xi&L3wP9xxY^cPNKKeY6Zu$+qc-qUH&Q^zOC6tK$|_X9;cnnktqJ4epv-O!G>A3O
zAhyW5Xq=Dkmp=Wp#fAW_d*|gTVT5}rR($)BPl7Rl9ez9StD>nGzHkfl5qC*7=CZ?V
z%=i64G7!ycx9}kNbW+0n-TVf-d4Z3DIQ*o=UH_uNPst-%yD}7`$K!h;K?tI_bwV+-
zOGz`qSs2)a7u()5h2SG%C7L~<IacR?g;Xp&J}8+TvhYwn4nkK9AY`Qp7J6Os7YATl
z&eZHGU^axPo4hInzNf~jFiuO@Y`5hN``xzbQ_fVSaML`*cFCPQ1=C{2xoL7nY*!%k
zG{LIa=y0=4@4BBh9lu;CP#-I8)_YzmCC#i5qX+CR@+($9C#4PG)l~B%roHYgUPv3O
zbFa*|@tnONRei;h=nnC}S<5RMjTRH`rXFG=%Ii~%uF#cXII*_1`d0d!U%9k2ILSm1
za&&h@%ClLoeETWHDl}m?y82Lhg^eRFP-CtQLuNEs$n0c(cZFe?zWOT<{j;CAsmvaA
zO)<Y01U~$3B;M)@&Z?F66v=yKX`W&x{jt7SbNwxn=BGOf05d^X+>CG9h)floDQ7kZ
zphyj@od!oY48Uv6r~;As%Ft_liGeDu*5SBCbPb)CWjvrCkB>`u6OLdq?Am#@bv%lC
z1GN5G;D1Vw(Q$Y5>@6&NEHZBX=GK$G9sxDklt^zD5&Z38inJgj1D9f%xeV3)@^{tD
zIq+4@RJ0su0A9!ES<Hr-=bQD<Us$6C?aoTVmLko4xLsi;uYwKz?+JiQ>m!%>Rs2Dk
z&vaCP{5!j7{nZL*t!O-2UdTsgU9x%TnIV<rBQBI+y<x5TY<{dPGUE&CSnt?R0zznt
zn~_p+8zRx4cW3<od7C61)wjuA#_?5~@OOmYmBO9H>E95*xVB#oKJBUSC)2$uQ_J9x
z5FrDevq4#OJA_8J&!Sjfy>9va1Srz$F34BW6wTkA;L|*+b2%Xb>zjI2B3*T?^$`oq
z{F1KFV-2akk|WfbK@C$EVUR0;pV#<OBbnwgsTTsSM*nVpO-qGS3u><h4lFBajrRKW
zJ)eBV+SYyaT$U4D5nwiiB5$Qw+@ZGN)E;()ShNszw?QxaPprNy8dFexPYQ6|+628n
zpH1%3OLqQu$TK4?JEEcw!9rdaOMZ~C8G44u&4kSXiG5=jefTB{(BcSLL;LnHvJuBP
z+;mO=fKxe@mg;!6hREFf=Y*73-4fYwucvPuk=%Zh5<Roxxr5YP+>*JlnSy{CFH}I(
z=b(rXL)LaJhj?Qu<mJY|7h!S!Jlh1c$m~2ZU%Y)`r+tkwrp#BTcHZ)RX|Vw3Z8p_@
zxoFo0_aCk_%d${@0SvHrdzs0g6DL;QW6g`1zZ@$z)VeXs2+t&&zbx=kpO!J`#)lCP
z#E4ywIclLPy)GZRtMwxRZWp9HXI&M2hZ2geQ*aBIep_(G=k`g}5p?I}@16(}PwfT%
zM8hl%mT~Fy6LzeV_y9!`Pw`yEOUHKR>?-M3U5zZe_Y9k@>I`J}>{G3>3ex(fJaVS7
z`J*wh;jykhKigcCi<d@bTmz3x7j5ubQ|^7<b{zM~-3^+|+jv)??qEkoqG6EXFyqP2
z!-5BBbTwG(!}G1#mQ4>Rk;71zNqrw5H;$bb>b`f)<~7+{_OXPaXE4uoYERBCLdSh{
zpe1K_4UL6iS}P|72&zqFgd#~E>Xj=)j@N&R$zerQObl#Lb3Y-X@oDHR)qNoKy;-c*
z^OxPQf|HZHYdMjAxRLAreAwk8(+ts|hL2MN<*vuBPg&moQD)93C!{?3qwWcph6j~p
zaG5@?5qXHlk{nGjd$3=51bqD#G3o9<1>Xy%`>{3{Xz&N$2Kmtyo?Z1d%6~DECM^cr
zaVu$5jE#qSzy8AsyNsqOg4W2_p<MUplTCZV4vRa}0ee*aJXlG$C%rX%x+yLqJ8!({
zizmfzLA6#(t&mhUJcTJ&6aZYHT62E>d)|dMhnFRhlB*lwn5XE}sOFiM*sfZRZ6byf
z$nfRLZduw8TP7U`N`*giixLw&s!slv=4Y98)F;9zX|X~^{QhkAX$G0r-%^pAduIU9
zuij&2{_=a1Q@JuuBiD#cCvYL;qoe2pxIBX`h1%LXmL$QxK!;YPQ853OVft0|F2|)u
zTc1b|j&Hy=+lBIt-H<@R{XyDNY<FZLuSZB=*Mh*oVI9kX=X)Z^;l??B{_zCIP0VtK
z<L2B}MhlMjremOzHlO{QC~4qtsdtW$;1Jc+yYkQ-INYOM2%Jy{&6f=8z0$_v`)L(w
z5k_!Fs?MuvO&~kybA1q<;Q=Iq4pOr&lpf$|Z{DEmeTGdkk*ECi;e9f`Bo9S@692)R
z@3Mxh<cSXOl4y|g&qaYU-?z&7@tnKN*dB4=E0rf!<f_=|M6_bQ2j9QqV*#S)i=8vB
z@6xU>m?4@G6sjTFWRXjf0tb+j9Bg4XCC-I$9yPUzgom>vu~$>%&mNW<BMzE4m(JA$
z*bM7-Qh3tWAZ~k7NVTz}A=|NgsBSy}3|Ux6i0)Bx<<?n!Q*9)c?Nr7b<;`+TxNL?}
zxivJg_H$yV#%dqVT#IoNo_5_%;N9B)t&}_P*(Qj?harBa-Su!+9Ip@ETrK%J`1*H?
zfkRmImMr)y;nLu%i}BeT2MpkEOnGLhMkFkJQN}k9dAD`3lQYj}wVe2Yum}63q}F-I
zA^oBEi6p_##dddTB(H8ZBlpqzJm@BS>4nzQ0~alv7+rO|{XIsk{>vX{x)+3vZ;McG
zUraap8%@06u|_;N8(Iij&kYS=Fgyb6=9(KiW#pvMN3m5fHFeb)vrCm8EPBrydQQ{s
zFPl^(^51u7{7p!6-k&WTCJ{S3ybP<sN%ETcE>T@&+Oo@pWXk}2suXD<aX0QTj369+
zkEBl~djv&F=b(?iSNQ<}NL|!RkoOgD&b17a)p(^U#?xoWglJNHwxc{OPK)ZydBmq>
zx%@gj0D*S{ofR5(ArqGpysy6^th)5y=JtJwATvbxg%3G(r;T9CRfx*CUJ<9=$?<@j
zJG%8Q$#ky`IWc%rFc&Y6k*6t*?MInD0^h<IS=pf{H<3}z*AZ1+iq)7Z-XEj0&2Vb+
z2r4!l55~pw><iW(0+u3shXY;D4cbDY=k#jqx=(h))RSxl_6_QN7#MUS^1;FNyS8Sx
z5azH*i?IcL;X=#l&7~%NI{p>G^YJa$7uDIt^M0ERQ8}n@-fb&X(1s>ZU^8sj2MA`W
zYH1Wq%;xAPH{~?OO~80Y!=FB)^>u?}FbRp%4_uNy+kHut+2>$Nro~y&xJ|ua+!&>!
z9w)J%s!0>_hi^gxH)cs1woYoujovkw+Ol4>aexZM3vj)}pTE7{5SetC4?JnbEs9-+
z#Hgxj)SC`}T$prFoJuf%V&7Y#QL)*VZiI>R1i>hKUZ1}|jyf1dG^mw*dk3#Eti=PQ
z6?~2l?tsODtA5v1JNb&|^uDY2;mZ&a+=Y?MGl{g?l??3!tNid!v?Wi7WUS#@hD*Zk
z^tNZ$_6v87N&Ip%v@u@2OQS5qYuJv46?;EqR_kk`!oK0U`-&#N|1+O@*F-NZ-2QC+
z&V!pJu<epy?%8stzxYAqxYSADyqSx%f3slG&rY$U$rrbl1yd)J+>?TBMAAHdZ|e@;
z_-Hl!%1zhK){)Zx8m}6fU=?q4dQ&%M*+M2!Zkrr`)IDW0mp!M5++CM0a1J*0Cd?u&
zIgHorBDwU40;kL4d@~itC)~29iVh3)b%Pd1wM`A@RM(4R=wvcK#1O>&$<GTVT<K3L
zL>%^z*_y7VQad%j*o*=f4@@yo0EQ{D66t()Q>#!G)}?bw@v#i|3iAR__$L#gQQ1+}
z!Ke3q{bAYOEGp(^8&PC`xM;-tR!;Wi#V+^S&k%H{Uo^Kij++y`Tub;Bx|PifXDThH
zru~IO`qGY1dWeq0r?Viuz^`4Q57ly5*)KyA-XQVP*?tgD*l=BJ&GVmm)p6N;UsK|x
z#dsWDpUwT_eNn1fV{yLegmG1j!7WY;m{!9PPYDt7P@7@r7#a|&mN}|pf-gbd#xDxO
zm!Rf#`MX>~CIgXH5Y4`CJYs8~Q;fMVx{m3;WcLx%>8^dYbcgbYn1nCnfcwH8BG4=$
zV!92#eeMx=txEZ7%vd(q5?x6_XHwuhHBoxsN~<Sl-hF*o!+rBEhEHP(KLCp!>ka)_
z;ronQrI_*f@jShTIlFm_5M0v+5+Rq0<$>+>^<CvuVKBXyU0ht8kx?EW&Cl>LpYB<H
zDe$w8s-&P6@p=XtZ|mkfR@kbDJ8!1_Z=3k5g_ojyquDo3A9XXw&lQVq-p=$Luo%99
z4K~k&wWF9h@_2Cj=?)K>3#&meR`4FwHZ;Cb_X9h~-BAm<%KS@%ETK1F=>(O_<+uxT
zci?Zl8F0h3zyXA2OPmU3)sEBtxxel_?3K(>qMh3MqE2Y6SyTn<gNC=-<3Xp%k>~Vs
zyn~0Z;XP2ecdnwupJ7OJ0Gq`r23j6^ME~WLFQ@^nA7*4YKa8JLp>_SiK49)wH?J{^
z;>PIWPT6!#5W-T9BQgKO>R2vEC~1&Y2j7m}RRceWR%vc|P9tN7u9qy*T~W1Ah%u5_
ziNq?k496P#jBTTip*n7z66v0bAcHRnjWQ=nz1A0Gm|}t*)xArVvGgx~KW|3D_5se^
z(B~pHgra$l4_~7D(o03BCkeEw8|tXVtmQHOA)+2UM$jo$epct*DPnYqTmS9AfZrab
z6)X0xT&5iH89|ykAcCb_0Fx`1N&K`dIQkTT4X?5Hd&XISf)S;EL0D;3!s5ZYn~L9S
zo`av&Rkd)?BF#;`a@o~7|DcgjV9NWY>qdqj6zO05EUG}~s2*?&B}8}4?WJPUkz|C&
ziYaSbM;5U5c+C+EIt2^qaAMfPmz|$KgH@yTC{%yVA2CW0TN`SxAnr=y?a-G@R-AN_
z98H5Ej@x<4k)Sk?NGq5{BXJjKp<p75jRvFZS8$O6J$9GLGj83B8KyC%NS5*D`$~p_
zz_#%CB}#QsL!_Pj)bJB6MR}gy=e<sGdrICPWMz7VU?ymaU-K`)`4p>Vd1w_rYet}r
zC9LAzNn}H+H~iHY_=#lnI`qb`d|l6q;v)DS8*rk3uG-A7%|ANl3>8o#8VuuyB1x4I
zLeZ1%pdPGnGOgp6Al*^N^40RnrQ1I%Qo@#`0ZBD%20iO|5>}dS)z|PPGD8y`0?Z`{
zF3iFmVlD_i5t<-4k6@&tg-DJD({(Pp=E3lSMp%bSUu9T9j`H)B#wa?HOWP!Wzo}?6
zeq!$ZZHl1i-z0?zZmtt;q63L0o`R@hv*_gJM>>QO54<f47Q)2r;%xkxNAC-6M5Y)&
z@uTIJ0h4#a*QGVjx9i_A!k1ph$GSmR2H&CuEkWWU;Ki;#98V!dHvJ#0r@ARItQ4(W
zB^g5rt+if;n0UqVy*8{2C6LsaSK<-P0B5~QN|naA@0klENN?Jmz(#7tMGV-&-(UGi
z%}ax&?BT`Sg}+NtXoy%6i)aRAYz1jTEM!L9mCFewNryU*=}l7#dkH|@Wj<+F&bAF^
zV^ymRMcwT7-LMYL5sJ3(&KxO6bdf(Z@(x~<1{UcWo>AoFantY)KE>uB>x#2LpC|hD
z+X14<2>&1$_5odTw9zb~kf8gk7@SyV-t310m~JFn8B(62p*xUoxH0Gy(@W5mOaUf|
zfR%(;psipt>NUZ$No6$5^7I|-)Mf&RNr>$rY~VZzz6&nhY7$RfZfUNpTHOK^bW>!?
zKMI#%yOZt_2+~kOrcflGW_c*M>6?rafbx|y1>9C59%u_e=*}x~QP6~t*lSn?7c+Gy
zrK(mE_~-?%Xvk#e_GL<svT_Kaxqf}sz^6$cf+9(Q5cSYWnD)r19H<j%QmPDfel%Rc
z^KVZPG>exZ*+NjH(z(1OSD|t7{E&{Mb-eakXP-wXv2L5o-mS+|7E;F|AlJ{G6wqkK
zDmcy@3e#G-z>MH}8iF665Z-2Ruh~kP*&4>nLi(vrzI6o^n`MM|!>IYV{w*@R?R^M-
z>XPofU876K!dkAY$)d-LEle<-iiW65H8^aEZso0ZW)f}4X3Eg^bClPIMUOz?+6=Bv
zOVlddB2q5gq6j8OWU~t3@7;Ua?EKEP&)d1p2TUK_<IGsf8}!z#;7DB&+sNliZ@clX
z$!*n$I$&C|oZ1sUPnnH+dewMO<j(LCZFz|Tv2o7?R2wxWxW~V91Ed%<PAsgBCOT>u
za|?|>>A|%t!Cs5o1CFKpXNo)&G8G>gFkwqNZHP})mlLSK;8UUw=lZH?R@wmJ2Rrn*
zPa$aVHPmlp8chkawey&w`djr>s`LsOW4=A%pTSUKs9koy5ve0NT0X=hDcGTa?YJD2
zVzf)MXx2wIb&}5LK4%n->ez@j=^Qwhqnl<@E0Nk@4I^fih2D%kXX+083cOKY`vVIe
zjT$)rL6SQWT0_`gju=8$IF~ncL2G{hQI)qN`L+!e%s5J)LG+pSEAldE*jkd`;=GI?
z<{^-rI6Sdm9R?X2!%j&XZ)yP=z5~CiwE_+cyI>8YjoZCfA=rH5ReCn*qs(_#rh`oH
z`G&7u`Cb#rxY9?FBi_BTdRNteM=rzD7)DsM(ekmn`ZQv9LIe3E!wQ9ukMGyDOQ3^_
zjYDv$P+jQw^@R3diAQj56VU{JL3M@Z;Fi(Lsy@b)ONsI|n8LcL+q3s~&YZAivdA?y
zYzEEd&WB(TuK@Ity%e3INMtou6=hcIR)}gL>FNn5y!SDjT&L{`&C@}r#?Qn98!ex<
zU1pLVyA#h_hv7@|(eU<Txs@KhsOKAG(9YJC&VBNVXz=Otl_Hrcwviu>X&Q6yH*5z3
z*BYkaR`)pnxI1{{v~Li8{XTRDiH-ER&p7(8B1{nE2<B23`_8N_LW`MU`>dJ<laKE#
zKkolT^|HSalfstGUrFXRm*Tw5&C7EvDwG>A6D@by(ruXB66W{bBzI}j{!5QJ^IbM*
zjRG3)Gud~2#uIkyKFg8iO&XeE4F}V=>m#F3>pcvR|4a0B{+H-moCf9=%S0e@8GFw3
zdCBU6HoPNONJHDyQvNR!i?i1WBuiHt8Yv88{jzcfE5}UA<YQJPYPChwF`>WD3_c{k
zw38x#67TBP%buY%No#?y){E&>OVwb}clN$&?7n=bqORND-qG>t)2AY>0!A2ihbqy1
zBazLY;+g;DRD1o)sdlvnTXpa#2Q2(6(P@TlZ+KV4;}xxuM?G<RArlN?O%7~UHR3nD
z1yj=VnIU7?u5|NIa9YWiluM;IBrrB~`1i23w)X2+%r6}@3eOB_5!naZT7MtAeclO>
zYU5w+yX^mQBI^>Nl`iXYRaG9q70U<%)5<qa9=)mMt0^t*+;a12GL%tsg9^YbXo*J(
z|NG_s_v@Bl7?$u#!*A!r9u{GZuU%YR{QC9l@89w(zsp&_NeQYEdb+dNq1KzYw`3T<
zaG|?1@AIauThCXawa(SkZAnzXM@t?AcdUA*?5e@E?}YxflPe8P`&|T+LQJ+b$hs&f
zC`3dz8!bj>S;JQZ6=Djt3ObgY1Szx%H1W~k*+=9Ae9qc6?fgGkv@Tve1vBUW7-gpj
z#Ml;J^Tvec$DMsm!lYsCe-|UI_Crl}&Y@;_gQxz@9bI`eESt5Tj*e~+#5h0@(Dc{A
zhJ;xNIK?InT@q9#k^x~wg=c7wIPgdLmi|*#*Y<zPdUySwvIaHNW&f!Dr!0ccWL)rG
zv-d<@o41W9H4z|<2vUdA($ao@ek=A}!-CD-PMq0K`^&raDGpHx`27FZT!a5LxBGw1
ztpuCfUlMorg2>{BBA7Y>=YO|KymM8l!-`<kV~zj$^QY|GcOzr%G-uwjEGcAsfzF2)
zBXK1+IOsFqSyoEahF<hm>HCxSnossAlF2&~sn(Wvje2>a^f(8<G$@O>{=oC47^<BG
z>Zw5gzZXaB>2YjCtd^*Oh3Lln`h6}B-&Lc$ZY7>!lnkUpTFtf9M{T3`E4(Ze$HD5M
zdG(Lo_<xGE%~t%8l%#;!J223QGUK!KnIu~|Rd1%J-wlLp_vae0f;pX+J44@%m3*j}
z9yd6ihZ=XKq)<ryK3eIydoVDhB9O%7OWa|!&};U)3VMXf`uy8#1rTSsS^R`2N)?4*
zTwMl1wW1-2mnfB_yq=z3)dPpbMy6~;{@x0mpwl8iV+JyJz~N?Q6g>lj<4pA)2z$27
zhNo>DSLi{Ehh9u{+2sy3u`n`jB1;wql6ZC+O!z>2j-1!(`-BY+7FNSncJgy}1FxeU
zEmv!dk&Tn7JrB^e`pdbxjGV3DxL8=p!tOTS-e9$X`z0Lz5E?qmXJEw3?!RuTv;7V7
zbs+XtmXqeQ4I;Bn4RbF99Kd@PAe0*}zuAE&u?y0Sfgd1aj4+fS5Jaj5p~uZ<oXLaQ
zbQ>E(sfsEp)PhdN5!4(IJG<RR?-LLadh`+uk|2Y%JD#VGx_UND{<>fSZM{)#qAo-D
zVt*~cDBxzV#$S8^<hgdLO!#zlb)`bF$%I^1%gy^WG@<2Yz1l|pd>~8t&7cXcC=z5l
zS-9jqzvfZ|!aN{cb-$JFcdP*VNffn&xM_Fz?d`2&%Uw0d!HM~t{%!Dd1oh3q_63t>
z+-(c_^=t>(a@@zVgDhzYad&lbL3^7BO1IbvmIA-yO1<~l_5@$?-<H4!5Xc=DWTB-+
z1p+RYzJQ>cK5P6JDj#{xiI9*Ga=hbzpcarGaBW?nRRq?;`60M}?T`CiR)QfcJe)Uq
zu*v5P#A`?0{U-}`0VfdWdI%N2*{z7Cm7Bag>I@?U!Qtm<H0<mS*QZ<J=^z{%0D{Q~
zMv!K*1`X!kPiw}_!=t(^E|OB@ng^s#-?P2_4}6`^l*5Z$0ckWY$9d7fV37CSo~=6p
z$wN1&gwN^b&$pk@-dfE!UNNNmy*JewUKl$;=Eu7vutN>~j${IDiu7ylLF)qZ{R1yJ
zz7w`63QF@?h&vtF4CFkRg0Le9vz@hyUTPO|@!aoSKO})9*=vRT{A+baCZ@V}j6)FS
z3Iz4h18Up**v#}@73}2hVu4VyufHFUS{xh5QBKX@^KC&(P`@CkANp`+t%K}ps-shk
z$CpeCxZY|F1EpMATIzm)XESN?LK-fA{KKLDAz%^@SHqyiJZICZ^ggiwbXo%Z0|M?r
z8@qjwIQ~rw93J&h|HHvShEKQ7W$osmr3HjWrz$K1L0DbC#(|Q@Vjzr=0nE>1glD4$
z2KihauhGgyiawZvff|GwcRg;p(JnXtzqtSrFC^|SO;-%uS0V)NFIS?Nn3zD|JYCQk
zQM}WwH^INBVh<90ybuokYE}se2`;WOy<p`W*YR96G2io95Ij5G8UvZ|M%N8x)2<%s
zKoHq0Q<1o<9F5{OZVduywYv?8ha`}vj%U-)H$S@-YiiZI|G@x(ueLmKKiwQXJw0_^
z>ArFexZgK=Ir!#GOqwqM^3m6G$uEuL5UYrd=cA;g<gA0|BE&Fx(1Q-|CxTJp;r1kv
z%hUk`BteZb!dwFA$wEKq#;?@2hE-7thv3(1LDv%Z5K!e(QTypikgT5&?3WPl7~T}&
z8lM_=Tkd?avI2sdAc?#0(eTePHIZkn4-ub-Q-n-eL5Pr}#um9>g)~%DR-WYDLlFXT
zWQ&TazzM3$qgWO3Cpb9n4RhUvt#0KN6%iG4;Hd*Pvu?(gAhMavZ=cWA210wCJv}$R
zg7^0qEeqZosj|T!h|5hMaCe3T{o&a08U&@2zyMTLnAVcRSFFjl#$!1IqH0m#xdPpw
z>7E8TB%ZkHo5ID@hjnGte*Ck}e@f9d6~D_r<I%j493CFHx>JH@M^H<oeMo%!>G5ES
z&<Tk5X&(dI_02XD%nft<Cs!aADio<-VG%(!G7RQ3r-}JaSKEtxXh(x0QE!sivqOxq
z8&zdDWB#*G83{rlH{a&A;zP&d2hIsT+euPF&@@(3HNzWBNqPf6P(FM1UQZ9~4I;SS
z10bRQrNVMJlALcFGyo7V1Vx9BzIAT~p~P;G?(gYIe>egg1a0sjMr%uy0oTy?x=4(|
z!@{gb5nW;zv#0=jLP0kKSzB~MDC%=+1#0Ma$76r?3Z%`uAD(~fy4+Z7`($lxO`!Rl
zRp)zpx)EE!#(}lHEqXQu2??@5yF}*O^GB@+nQ!@Glb!(%wn`^sDiT#1Q<c_ZbQB2k
zmh9H11}E_X5Vt}}dLoT^1^NvL%!`BPM1Z2XZH_FZdd}CGVBiD)I*NX_8j$g;(!;<Z
zuLOzQz*nHnXIj_WB8$P(9za*ii$D3sw1i3HhEvDh9mMeZb&9Zi-=4=e#9uIyjE`$*
zYNDopQhfKWKCx$+{pF#9UaFZcfAS!--c1O6;lCp&9Oml5^AsHC8@<7U9JH(GzyO16
z#VACP*skA~7<{ollzP((1}pHC2GD1Ua&r&UMTQsLBI<-Cz<`H(Q7|p{3Bic^82fVh
z8^^7B_?VONzo<rzWai)~iN6FRY0LF?LBoE%Ef~EfWX00cXUNA+eVXnat3k{^!Rf2b
zEj-_!gXFg*-$xchB@2{_(JaLT5<{<lYVh95N}vMcJBus82hlG#Qvf55=Yl^50MGvX
z`LqB3LEBqLRrP&uqo|+<M7m2-Qb0gDj}p?I3IZY^CEcK;(jc880s;bpq?AZWcej*)
zgmiP~@%#SnxNqD$-h0Qm`;QNPV4t)1UTdy7pZUzWp9Sw>w_Zj0_y(VIdIkm?euHrL
zdP&UQ&d!?<YQJ+b1gL5_KH1})hA^6+Uk|SgqdnzM5piB45<IBBau53f;@)*H^b4bI
z2p^MWmRXkiNaPO%uDUYgrXUbw_^ey<>x{{YvI`vzT$Ja*pTEamt+M|V5<uqy-uvdx
z>dkAVqDU#SA34SZK#-fAef)0XtGP;N{M~}W;cw3C;ITxgaC|QVhF=uM5APn9Rg~u^
zaU1`DcV}n8FE;w$xPgK3M6mLH4mqfF6od@Fs0(<YxiG4^;aM&D&qhpmuA!~2uD;G@
zxpz-(uuQv9|4GudD$Bu~fq{YP8dta^95yqxLJ|_QvzA1+Z)c>YJ~sUhuWavzhKAOF
zaD#mmArjJ>C(VlY?%jj8>(>g3>xIoaVnKq#cD8=H%Hlu-Oko*qpW-^r8{@?1-O1iy
z0`Ry(?mHhZFZcGG(2h{9$7Yfr^-ITP(fuI})c2&=)w^%cHKOh!H<wc76hul=jL8-r
zI{a#WJ2f@sbACepR_9dEa)1%uRi5=egvGd?aM?TK-70NgcneKJqe9@DQ#^ghhYtkO
z51CA^^pCZ~H0u&%x!+gIBC8uscO!IE3OirBe}^o*)epnq%`20}kPuoH5=qI`nwyh3
zwYO#XJ+HJN505X;zBncd?WWrI{`qR&(?ugrMMAQ?zMc{l_40RL=0aO!$}FCt_vroW
zMs+_h3GZ0&C3Dpu{aWr$0R%r&<GKaH6#3ToZKnjO+GN8i;y@)KHnz;|?=P(aZ7s}l
z4+X2Kd=EJs931eG`e17C7Qa>af!Uf@_ybL`Bep_M!&Kq4qO!8s9LvE_Hp+ThGDpCC
zJBNpn@M^l#>cDN^GkkJ#A$b2eQvBqTG0t4Q_vy*u*4E0($~x+xBqJlk!+YxE-a{qe
ziB0!WJughgG<@qNVV&XSdU3<a$w^RP;1h_c?%g-gUfuava!0)`Um)Y>0mRtD-~A5&
z#kTyS5%V~MC`l2Xb3*kpAWFY*nLp1N$IZoszY=sAn!#X7I4G&9Hx?Heqvbw)_@G!^
z-TM{%GrV~&B2ojM=L-iVCFLX-Z<1n;D$Db(#LUt4@k{TK@1UgtdL}j#rg75oW*X}1
zCkGpy!$Pi`kJFR|e9qiTbpLE@)Onw}1gPrkQ;?d+JsB0eQR@-N(P>!g);~L&(Y8=s
zQ?oTzlI78)7q6tG1TgrW93#P7Mn=X(fXG_N!jkOa%6voK&QkEz1PJu0>3uEwVj7!$
z;exZ`x>mY;8n6A!H*5B#9F*kbmKQnSypA2>ZdqZ&lWv1V4Ty7$wYR@zd}L*{4wy4f
zGe1b^6?jKwWn}>Cyu~j8Gs3^8(6r)$ovf$74G+yg0!nc?tE6aULUt!wPS|<P33L`H
zn8TVFwb2YIoie@!mfWA7nL>wX0WK8<Bm@PkN=)6&goK1RIXTD2$9sBuxEh8bjsVi?
z?Zzpp*DbE`c~DIH!qk2E!QMonm0@spy;cS#bDVr(VPV2u1AZ7Pnn-gtyAki(uUavt
zb8YL0N0*bc;H7;CSIL~?ntIk9$!ed9=gSR7OK}y_`YiY&X~dH6Tg7K(E#zwzyr{z`
zMnj{}<)t(qu;3$j`w?|NY;kMwT7ROLr%O1Yv%y+X%1yzC;U=IJ!*#@-(QB?Z(%V}M
z8YNe*T*=GJ+m<GOHHx;N=v<H_W<`7FPLQXCq2nGT4Yh$aww!Z#_gSaBSU00Bb7U#e
z&?FaLJQvb%b2|b+Lm`5N_C3Yp*#3@zfx#f5$Q88r`1c!9F|U(dvAB|+z}vp$Af6#%
z-jfQT{H2OdNMxj4-%m8OIiX~|9&|K|ymZ%DDl{}c{3zZlXcUA&#wI0Wot;*om4Q;{
z$<Cm=iuNi9U5F6vy*(a!<HBD*e}A3Nx_^Ttju0Rxh30SvO_Bi*fe!1~sLUcdH`m;>
z4P>RbF#i4FXGaI19jiYqa6RJhj^D4Kg`*L`C%#^TFN8yKgVr1+LWTB;dQlPe6Rq4o
z6%+OIy$kAo;26SzZ-V31gcRH^9I7HelTbg=Ufe)^Nv$8`9@tF|4i0Oz%b;u0lX!2z
zJ@jsuRpllI<?_mkDVfXGjM!kPKq&sJeALy-UV_TUO&px~_Gj>@v$K}~KZjPGh@_3V
zR?K`PbaMxd$>PCHFYOn!g5STWZ4pR_iSaWYYY8P?|I#x$qgGhR&cT6=g{2RxzQ9(u
z1$;H2%|(amw6y7(t@;|@%Zr5BijYx}SJ(X;p+E=0z=F?#Dd&(z3eUyG1)w&V56b%M
zmQc`TLdwqrqe0*XnngRm%>*Cd1{5v_FRx#C085ZvrwAK?nB&QWSh@;f_g-NaH+IAV
zA`|BG=;Xv<fm}VW?8+~%vm<*M85xM<R*ydu!a7h>Qv;b4XWf<cjZY&ZclAmaC+!;U
zlVO8IPjQ(sG00Fr{JYI((Ff{4mdOzj5f_k7%0y5d$E4`|^|-;!&#z63r>Uvg+}a8r
zE~x{&@f6hYK(s<yMuvol=nPa$(qMIt6ixzq15(703#qy__M9HlvekiXdwctEY6RMQ
zsk%qAy}iApSb^{$d|VtXEI)gDSL*jJA&b6mI|gX_=g*%Mm$7MS;drR%42bR-&p2Qj
z<X{<CQ#kV&WDE2G71rYeIZBk7s)FGBKnf||45X5R@xFN;7UfM`o~=muU%!=aZ~ymK
z3xopoJU&|5xgUWyIXZK4bAtl{5P?Wn*F)fhQa%X3oRfrP8x*F-0LlOwOnR~V_pcr#
zOooQ(mbpnuN#`f~gjj(^MMb+Sy~QOxY}nTysH#SVhlk5C?(FW0c%PJ6HfT{;)Mu?V
zrc@TS3Mz#{PV>0LB+wl@2OM8(nbBbAr%x;;x{8Bkc|kDw*TrAGgJcIL7f@=hV$zQ|
zP4}&hnL5fQ?r@oR@$o@;9uTQ_FJ_Idc{z>Tt>On$DEW|;bq_m**F3^KGdx@g^5m*f
zpb_K9g4~ajN$=|O0Vagmkdc<A7JNy2?;buK5h<yTsw#ZZwZU~rrHJTIKne79tS8D=
zK~V%Ue<=h|V0h?3#yMD#)FS*Aeec&oPXS$3*)IS+1Ij=WCe3fUx)g2qm;?m{@85R@
zOaNmb;krpxISgSKj6(?g2*~6lb0V{0a-Ka4qqyIp=?-}N>C^Xtfh~~KfDBYreEfl*
zaQFV^v?mC|fC$uYP@Z}C5WTbXvHSjYhx{8x+0I-MUxjzG_G+JYjgO64l<V)Vf5Zy>
zK!-~!tp*lAanGa~D2=SFEY^^G8pcO4!2k5Fq>zel^}UuE8GAI@>GzEMRpnsH-Z@vp
z*}&*%WvfKeorFYeD#5<JQT?_g9$wz+7F2?hAz@T7Odn8W)X-D<`Pj;K38JMvJC|PR
z$5uB0x|(eFZ*eDbaT?Xv+DukpHzjIc?2j5<yLweI6!eTzQEgvY0Mv`NVUdsp*@r@g
z?<^;Wu;R!53VAj-+(PY6SdWU~&J@_!otZ*DDEfAHb}kV3!DWWWBnKn@J?#BfOLeo<
zybiT|8pVD4J3+=Wku*v%&*bEOcEqtm(5BcyE9LN98)5}y?BA%Wt=+n^Yieq$_Z4+6
z2$_ulCIQF`xrTU;=0c|Dt?hoj%BSEc`(pa}y6fIVMhbM7fPpSy30RN4tR`@+`@@tZ
zgJErL4N63YwLAi{Sad@$Z9wp@u>&L3Iy|hEr>Sj(jf?Ahw4GU8yahy3d-(I|dT$XS
zq4D|wxE>Z3R@E&t9`eH<!^8JsH9<5*WL~?00|aQ|7AF%^He@--%qW9q?$52lmDc0*
z1x^Ql^n#3mf>`|X=g<87J^Nn|15~A@TS6&y{{b=kR4zezE<`I;kTEzBC3*R^$x1u8
zM{vgtr<*m`MP4B?!6o66^8~alv@h)d((^t&NMa)g1DC>slyHA<Z>r2vBkre_sMGuY
zMyi)+lA%khtH)sSh1%={Z_m!pfeKO{EIamoIWsfE<!CT<GttPXAg<ryv%QSFqGH%_
z-P7ezNUtDcINqq7Rn8DU2LU7zHnxxtpMc^9C8+VTdR3Mo3qGy2us3gxz$4B;CICoO
zJ88eG^fPPc{E%+0VX**pD)0j~z%}hIccUmo?x&LO?$xYyZc^6@ZUC&`(y{z=^Oskn
znn%*puBP7u*`45xP)`X#L?wm4&=`ldiMzkQ9|HpeK8{4(!!|WHuY?@hHt?=N1v&<X
zkf0z7Q3!=;k<V|#KAAr5f3t0Ji$*jtXB8+q5<12>`SY_g@V}b3Md%+9G;!NjgdDH4
z#l*w_B-E)pbAJbNiP%kU9v+;AwSwZ}K0x;Y96J2_x7v9<9?}v^%?F$bI>nA%iT6M+
zOBcj_06l|+bX_iPY<O=>-1l$%ez%mvz%;E;zZ~lmV?yV<ckiI00iN@X@!0ONkCx@r
z{kZ~x0}T86IhHy_ZbW8S820WZf{TkQ$QXnW2f1%-{~7-ZVqpMslmO(xp{NJ}fcq8&
zYg`8iXpJOti*5BKiF%*xVcftPx=n@(&$@u#AVo8%dN~hX6J(&C8yiQ1AX7b3UOr?M
z>n4(goBK=0QKJI=qk-=34N#D3v46}Kmu#32A5R|uRA)aJ0T?H6IB!$*YJnyK+zH;w
z)5GKW^XKC3JB%zWZwm4|egQ>_ezg%O31{IaGBT|I)dWEv$*eOz9Owy<BP7BKgq-Z^
z>sK}6W<8CKneY@qeG1$@n+u~Bae)x`4iq2(+}YZ0wuV#UQVFWo^`PR3-O~Dc&9n9x
z$jJX5pRq+M<<ERy!2qAv8>*2zxauUFoC8+`1w6$&p0N6kgJ4Ze!72xj4}obCL=wSy
z+<jd264<ia-h2HG7yHH61z#N>AH(W6+}-81frR9X-E95$@88!l9lo~VA=%<OEcl8Z
zSC@8V@*0f~4?CY7{RMK<W9C-M`+B}jr~HH)gyU##B6aSw!1v99MjjocB_{TOVSPZr
zE?h>#8%Gc+SE%inG9-LMR751jAQci5m_yz8@Q4T(2ZtCrMgSB!qY#LYh+7nVa(CVV
z&;}YgXtLu>?;4CZwU|d)-UVA|Nl6LB!`Sv`Sb-+3VdNfl>1N}gkn`mW_uGf`(Q<&4
zdQycnnAm#YLD8>Xadj25;txzR8wZIla61la-Dx6~t-=L-k8=lsr!wRq@$~eBhoz>A
zjgN2LsFc5^Bmy}{+{iE)b7v_iCoW%dC2$!Pl^TaPYGzzZkB<HeoDI0KXhusL8!@X9
zjyU;Y?i<{6bdBxpmVmmJiHi*DCLkxFe4oFQ8VXEI@&qL@vDU(64JPspEh1BujDiCA
zPqTyLxva0Y#@0%Q=KNA1s0LXJ7%C<Xj_n^^fWEnUhvxu2Nl6p_{INDSUs);Sg-ji4
z87Zwo`5gTAT!WI1#na!GopskzEJ>*UdthB8UQ?v!nsEoQ3@BGJEAP`MLC=HFtAG2n
zNDLB3ZJ%_CbJ+QrjqmL2Kn)@6w#3Zz^f~zGJbN_aAz~E%ec%74<rm-}NDnDU|LY^p
z$gF-8D+a7N;5nG8{QYCnx&80uLTHljTKB!fWf-F6C`3rmk^{iZ>*k6<Vbn}dLZZR2
z&I1D-{bNqf4_WgkuTPiJ(7GiR6|oOvpP_vZwRh~QW-d>rxq-2U4k-QAb6QbRFYp@S
z)EH<=KRP3M$0sI|(;aYTsQ&A(RGge>-`x#+z-JtLU7$)JU5Sm*3oR~QFU4TB`X9`n
zERd)9!p5c!Bqd?ccHL@QadKPy{-J-1_!r*dgr5xllLB;OOW}#qa0v>!K~iFOBr-U+
z^q*9KkNN6rG#|SnHOYUO0UtAzKehvUWv=vIxdHh>GND`|#m)b(dBy*Iax&whU+B^i
z%L*!S1aF&XXC>(9UbCyHsNiB@5nu%Z<^}-cA!ST#P+`3aiM1+A+1IZrqV5j1ww%Z}
zA6T%POiWFyok8xBizGDb!-us7Z?vIXs5zap(b3k9PfJ6I?omnjOu;%H`(h0KlcN)m
zmpUgjB##;`w1$U5CAOm@zvPR&jgj~MFysibVPy6@i|qgi?=Uf8T)$32N}5va2;d9&
zR?a8i_WW_hExrd`-IkdX@VElkF}Jhx1-P+U9vmDT8VU?#h%N^#J{Jg)AnFBF(IGf)
zP~iiXNQ)~K${2b1!ML|!-FU#|p=5-qLqJ2bIX_<l8n(pj+Ao=ayM@98;T^?9316RU
zl|-)ut}LJux{Dn3JUk>Q??Hh8{%dP%`?$KH;S!Lz6$jreO3ao%+G612qa1?j$Kt?*
zGzH^2hI-Wbz;lCi=f!;RZHf<KXhYQhQob`(!1eL*flflW9#2x2rmeBD8l)(una9ge
zK+$B26Q${`{o=ena=10SV%Q6Ukth4>P~K?a{wzLuMRNLIa`~MX6~aP7CIIbJzFF|~
zl~E<y_xqur#KV}a&WeWsvT~jFF&YI)7b+aFsAPzj|I1;MvtdY-(?yR#h<9tMnimO^
zAYZ7Ra*?l|2XXTS2VZeBEK|@@l*#J%`m_p|T0T3*Qw&N?S^Z?dAi~Fi;2N?DMf+sH
zjmo|00H&gpao5%+#$NL&Kv^7~e-?lmaM;x`IMl*KBqYzx%^gD_^lU(&3J+Y~2f0J5
z@`+2R5#+=`ZUK=9o1CXvlYoSz0xCMdBxUF1jMx>RebV@Mi33zrfM5hNlp!C0xiSqN
zJez_C=i_q%=~Ve_9w8xex{s<X03;UI*H6dIGw$ksnS*(OwS<q44-+<gv%5f@Ee<>_
zlpDIbyKiA)ws&?K)O&&WXR*UQTUeAUpi2og$ED7MY;{Zj3X)f&7%=;<o^wFm2Zpb)
zu@SIz-;44n?z;3FxHPc|30(SRpB%Hn#!Sf$Apa&JCawc;1PtbQoo6Ks=Rezq92gQA
zCxD(;u3hg+6&i$O9co8fob&kTB>*7->p+Ez|FOswH{O2_>q8a<WB4{KtgF4f--3^$
zli%fG_aqFam1q#adokC|sZJv8d*H=ET2_aZ@zH=67o>|2S&NCe(88~wI15L0L&JK<
zl^%GQ0!_AXnZdDnG_)Cdlq*VpotT&iwNYp<fTM)Nikr-^_5yGWkPnIw+m)SNT!I`}
zd?z~q*hWfHo20yj{tU=6p|o+|g%<7A^_G2a;DB|63!S%SrfU}g6F#<4#aXh`ItH8r
z(FUhc5Qr9X1TOAvQMYYytx9Ra_xbpS%6@tu|L2=+Y-~Vj6YmoP*`(sKa_c_|?4`g@
zJ{OR24${cpYUuLHS$5FB_P)MR)_mH}{1(a&zJ168Xb4a_fav3+qo2=sj>dV=B%5BL
zQi!uTLGfolqaZ}XqX8SIKp&lWiJ$=H<%VD<e7Xdh6rgH*bad3$ry4Ey?1Iu9NSI2L
z6X)~1xVQj}1X9c%fGaSrN|^><L$gTwN3-C8e}r-9?dW*%M-mO~E+Hy9khJvl6qP(c
zLn~AK-{g1x@BQ%qKoa#ymg#TAvTBHmi7^qpZD{aCBCqPeJ<t#lF%n_b)z-p#+VlIt
zhGG&*Ol31wEzHdYK<s;J>Tv*`v>I7ZOKYpcda8skKn_`H>0#ef@Ly#wqj+CmSO5Rl
zEu+DZ{cOcStGx?ktxB43OWgseH{07omVzJJ0_CTOw{Pto9oNUdu0Syk*2o|r+_gYR
zJ$SYDAx$1G(6O7ULKPY3<)Q0HOjJ}GS`JKFu!=syvWH;(BLEZfc)PiH;My#rA(h~}
z8Ydr!S6W&MRrZq7QU^!Jg^u&{bKn&8P`(uKC-K{d0B?EXelG1mU6@APE74$ReIM#u
z>rgPql{o9e+W>lQn*>aV&kr0ftRb*0;2=7m@n}>B21)~31b3Ap;dP{%rwLNLyFWm&
zb+*Ab!&3}61OU=@)8B}jzMNP?sD4$6SX6wUiDEL?*j@l7F-0G7d4A_3%NjJ}@|elV
zXRFiVJ(Q6dk*b0@K|_AR=r#8^*~?2ydtxekC0`iE1Q-rfDZ3|4gdqT&@z9I%)nY)!
z5GGrZyYf@h)1dln!AH>@oV+<x2MfD;6g7Ml;SjZ8NK?6uk#!Y7Xnr^NfDyrK_WU{c
zdBD--CD*QKG2OX?1D}R86&TTFd10sDs=B&~X=&YeAs&_k%D+#NJW5DIQ#AbI@^tnx
zSsn_gAme`T*-t!;N4mOWei%0a>c%H0>o*j_1Z=xls4Xb!6g}31lG)?ORMKiPStTV+
zS1uQTiUD#CRLUWcwYRq;=mL@bc^b?{MzbiTYtVRxdFk%x2zm47rK4kkp@m@_6eGgI
zQ1}Y`w49urq2UauO)ojP$A#LnYkw959c(CAa~ahG2Bs`4hoRF?CE@9bO-w}bZjkT-
z#{t}nTw?P3|CergG5V7JzjOiq_gplrCDm@v)VIdqLlc4W1Lzzs(^P70DvO?O1+3Nm
ziyP%Olc?SRE)Crll!I2uFwBl(e6(8!WYpryN`rPSJizx$iy|Qn=)r-RM!|ld`Y4o8
zUI(m*q$p_#RYrrE0!RagiQdRl?pn8V@cm1Ri-{!AU$OS*5B3tc-0n}cKrX<HCts~d
zdJ`II@XaYNGP0Nbejx;wWhNl4=3e+aumtZctJedM_8%u+g7!+M+1m+un8)62oyrO;
z3vQfCqKD6UZ3vv>ApPMIaYrUqM~Yf?VIio0UjgpCHK?Tf*^CqLqu`HR9jQF3j}^PK
zEzw?)ei}Hug2sjWO=bE;Q7=W59OGb)QfE)kOu1D;WMrh`9e*Pd)MH7WTNVis-e~(v
z_aF!mI*o|SXMh8MJkMM^;Lm7iYw|bSx&8e7Ks@@_!U8C0OVg{x8P%d7Fq+$gyNu?)
zj!sY8nwzIkCC|fIQUrQ9h>F0WA3+kwYY+YsTugdg-0;|I)NkJ}S-ch^Z2ND18m`~j
zZ{qkL3SJmh2Y};$LEBq>Xb@;C<xm>rQ_>)6sZ%W&2E}ByxO^z)lw@5)<D-g`$AH>O
zLa;GekTJRx9=b6f1$ofCj}eK_-G%P^{i$zrR$pJckuL824b~i7Bbhvg5oo1>T$S5#
z@@Cv*Rb7~E_HrpRs)OB0z}wuCD7^`1)y9AcbHGZvI6H=|3{+W&^b56f2g$LogEF|~
zAmxh>LWI(4;nb)iLm!8pzP^mCEbPs&S9dtWfIw!egQhb>0IiM310^RML8Za}cH(28
zWvGRnScHX70K@^-gkx!G>AL^xl$oKi{`)#gPN|sx$`W%*z|~L-IWUTfPC-5lM7JhR
zmQr!y+hxTl4Akt|vA}WX&hwv9bigPZ8yn|1$fX$K{>w@vLtDc6;Z8gebf^a-?EY8R
zP-TX>1c!rdIhgXFVu;1Oq9qh&;Lv4)#}XRs{BOTkOBZ$D0r;fJl>tr+`UMIGS7pK}
zq+=MR@B|}v-9+J11pm2Ir?H*g*3weB>(&g#<=WO(0~q!D_q3TXVpzvs;)m?)x2T@+
zV*H!mK8K^@<6*&{&-{#aeSGSXsFO@e5_?w!bgjFe5PIh@p}lVb4?YX*B_&j!W`Kp3
zo+>udAi_|o_Hu{7-dC$e)Y84Q_!ml?E+`LqUgaz=j}>H0%4KLhg)j<geEJ2BvNAr3
z@W*fSo}f#OjgNOH-g}VMZ#`Mj&FAV2Oh`B-FIsm3)Jkb?DytDODsth%kn8(F?f|<E
z*h40d%=`kKU(osFi--I_3m)OrPc|UI!nk@xS`Da(<s~5Rl;!15Ks4LL!~__dJxD4H
zzd2#jIYBN1O|3FmB(I*U6pvD3U(f1C_$wBpqb_q*MWq)wnR=KVh%S2NFNR5tyrNT5
z3Wi@u9L@O;45$b6#V{#QQB#}o=mCvV6`hOPfnaOah>-wFD^Mb#4}i>TsLs>%wdCCD
zYJ2!EC)lgw_T^EqB^U7OlOWcPWMN>)f+wJl{@K)I3Y-@r^It6shei}to9OH7qZpM!
z0Ck0`BQp{J9lsB)2|3Ad6$q=_Fn~Y^=~yN}LIqWCl<+(JKV`T~l41~EOy`m)O>wKs
z6|@)9YD7wdkAI;5$8KK5KZnf*kePj=$78VWfw=;c@P_4s&mi;c`SbYr`0LlNgTy>4
zszA60YX3#Ku&8J)xJB@{=@PydfU$rths`>4HN>F#0mKHN2b1StVF{2vlrn(~N`v#D
zZd2t94GZ^S-w9|;7^;fUE`a0#kPK>b2k2IVmfVUDENhV1Fvx_FiF>&@Iq^xW4O4>s
zMz$63=#_iatS!B|+V?9_ok=dy5OYf4hNQxSm}dYGczJjfnc&`F`wfupZ{_|BMux})
z>XaLskeHZ>2n!zxksUJdX!&etM`DOrfJ8|Y@IR2F4adtV5P-n=0E@$j-MDe15_+H5
z*r1N9J$3Z1rsfntl`D+)u#OR30KC4ow6Nfhmv5g2m4J9NNZG6CK0rvZp9i<l&vy>;
z>o3YDpnHG?+VdD0n~6j_OCfwKBydvmTa#7J-<-feb0Y^?CY+B+ukFFM?(7B+1qKJh
z9QKWl9s<*-sHpf5k^S)_SV){gVpZJW;2;dqn}yyUOvr+jRa9J^oo^u!s2*43Zy@5Q
zh&}+aW@cud)PYSoj3Cfd61&d-abE`)UjU=8wL=ro2fL&MW0U___`B%f4wVK-?-hM1
z{zoePRzW4W(KVDmD&yl*%FW4fSP)AE!-b7Ufa!l+?T`(@M#OdVnche&jlFLCeU-0@
zp^zAYvHL<F9xO)L2&%VuA6VERN>>lSWK^-PEWdahOpA#5EL_pet?1;m2ZXf@^j*h5
z76|)Iyk9My27VXzsevdBp!}JcnU>k)+J;BgHHcYUs2Fp%8xp@~++^U)%-D>{S_cOm
zp|S@Y92knA&skMv<son#*w?RBUhOP}sQ`AFpNSp%SgoeN-A7vdca(P3XJ`~y0q_Z?
zony>c{n(Hxh+-71u*Une!jgLP+jmGqJ3Bgn-RLmWf%Flae~uJGw)%L5jX@w%%~YYF
zvOpP!77`-FKL^y+)dh14d!R%DHwT?rl>F9T%FFMcJ40n3)f2oiSqbnPHo%!*SrLF$
zQfDY(Iq(sxpH$*rf*c&yfW|4pmqWSgtK4^&q0i-Tb6Nyw%77?;{|E5FkzykW_*78^
zFxT^f;?S4^*%wR)R1S*u%k$+$?-%jHF9EQ5!4^KiHJ!j#5evV5;UQsNtj{(yWMpI%
zqYk^LPoGLkzB*nKa=h*@RjADn0JsuLAu~lMf)#+IUZ-Ndil2k_w~hX+Hdxfq?0{l7
zz&$2kqT&R=sC6iN0j>lh3A!g8folW`18VAr8<U3%krD^{`*H2h0B`|X+CDtIgoRLH
zJ3Rp|&vq9`j2*XHpr0H<O-haco%1OH*94_lNU-YR%e8*x*;4~+3K=Pc&u7q-gf0d4
z<Zm_(AUpZRGWKopGqCjgJ<3oBH>z=755ij;${U3IC%>|wD1sRcO*8m@x8*KG9`FH5
zy!;Sr-yi?r{sYgmblo*hK07WhPL+i(qX&_GqxJvVFz~;GFaNt;2d^q`Ml9%Nw?<?O
zSpu{;<3a(8{Q$6SMx`VTAXlva!$sCUfgT!3TG~eh;x<N@<6~Eb!e|lbNhtKBiu<{+
z(2OTZl_j8THI8pOm6ey5S3p2OL_|bDpb`qlVq#(<B9q`s`}<4&VW(8+*MclnR#x`+
zDOxSt?xsKLjR`=26B83qLjo3xg9L*8CKhBv6QX?msqK50A$Y*p9~>O;DM3JhiVQ^m
z)(F^0=w-9Xy(aFy!z*sLmZxttamO%XTz##0=PTrb6&3MvjE{SU#*FzXmH5o*5lH%I
z+5q&cuc4byIhP#{HZ}(+qwnwA{P_(8c$)<uEGgvdjk)`YuD7w9sxt2YQXmOsBEVc!
zEY4qDRs?#s%^rT2(8(GC?bXrnMRj#`>Uq}xKF`d>g?l27R@_#5nn=Sb8N*miAcgnR
zcykGb22WL5>{Hto?qN5TatIiNQ>y*vGqQKyK@|Zt3_)zu!3vR8SD0}a6^lOt-a^n}
zHzE9J5q@TR0eF#Z43A=ZS8fLWXvMh&PkrPizUPf**t`1;_oIAqF5KIloLVv(eXQ>W
z2-H2?0u=6-WCYXm|JZ_3H$n9>-b^n(yPF%ki5vSc_vGz1d7QkKnp&oM9;}}=XW2Vb
zVM3d>ia)RwbFOtuGq{Wi4{dul6nz)^Xj~R{=q_eiKb@OiYh2uHcyYI-jx}5+OS?e9
zQ`cjwBnN3VH<LDHa1cJBMhOP2T>w@B9NQ>$(o?clhI`EHKc)>~e4F8QBt~GGxAD09
zIQVRX3m@E?JzU31eLx`@>Yg$BZh6vst)23qL+57_Sy2D_zL1J0<%h3dZ-(1Zxqmgj
z%O7ys-&05gQ->9Z1j9M@@}s2?;Y2fBEZl%iB2pi$;nwyxuDjP6KH>oCn8{UAP1D`I
z<<OI+-eyaoFxoB3&VtG9g~y`kVVJ{FG9tOOvZ9G!>LpH|#J2d2;+1`mCH5}!50=6k
z#;cRZ^_t{Nm7CMD2zwQcrBb#3oL~K)^O;fSZ`_CTrvzjN_v+e`1;R_lJ3L;v?JPcm
z;4UqVA+7c@2{hU4+=FfW=BU(f&w1m_G#9|LbtVlh1qs|NCfCp*3k?YY&!%0F%@UIG
zbZkuO%J$>``2(oI$h0^KXRt2XyY8=FSoG-=HyQReH9nvB|9o<1QWdjdZ5m6+!1{hp
z6V{4IUvu3Obp@uMqn!7vLm@Z9;t6)64WT(ZM`m->RxrD{*;n9{?*E)3_8LyHL7hTp
z?#Cr#&4gY@#OK}zuZ;-?4+*(t_zUdG*Ae*GZJIT<<DhNdnWMTYsj-`1NANGD_}A&Q
zht)+0`}DbKy~MflKF>Yd5c7Y`yr$XDW~MqFZJ20?|5)pDjH(&nOczH|(*=lAZnDl1
zsxjXtj$K=~Bt@$gduGDZH##vbg~S^hBsdTEG$S8>F=$k{boSO*9<~P3$(X6qc~L)q
zdhPKBM<9YO-t4|Uo0x&)g*Kh^*WW_S=z}NAJE6`s7hN9q0aHQPO}0W_Mg_hH+z&QI
zzbuS3ne2a+MczDqc<7>Cn3ioqm&umP<1nN%sIYf^+5PX3`tILg1`m;TrrI*u`~}io
zrOE3j`Zvldi~7_IB1PYmSN$3pN}6%z>(>0eI)$7b4vRUXPdgTNq_4$C%JwYHbX&$t
zw9_YSpB#->mB)}-=6vdkN-tEdHqx%t@n1j18=iO1=`k%xNNq=UtdBQNl<7XsKjz<x
zXzmDP#$(VlZ&>K=Yuy>BwH1Hz(WJ50x0!O^Aze~mC+^yIMZZq$b+?-hM_+<9&s^Df
z`J0yxrfaLMdPAR8AezqVK0Y4h|3s4^?A-oA%c@@YwQ-eN?&^CYx9W@O^#?UsZ^Zed
zFU8Y~>E#rpdvVefec3qgUT&_|MQqNbbB_G>&7SUN?fS-9xjz@WINVE&{lKy_{pg!V
znYKPdfNk!ykV9qwkz83m^OXD3^{u}${#49v)KhMbcaHQrq@Npz#OnO6pQP{<*J`OO
zxtw+5E1;Qe#T?Ldd@+&ML@F=$`Xe%~cevI}$NI%LpUvj)o8rK4q_bpye&}F;8F}pX
z(!5&p=zPRfx*9{Boiv8)bCU+uC&#q9yRioZyD^Xar*PT~jSf$>UJs=c$zcm?_2P)(
zA(@q#SBJ_ZP2SFTFT2K)PmE2_oIAcCO?vp$@M841%=g^k$>%S=yNApVD9hKbZsMhd
zG~{y$?6i=OX(y0=CJWj*j1d*-{d7A+*j>tYg(+5-4x4vvs8^_$s#6F5W43hMZdXI-
z*M~dW=&YZN1&Rv{9dg2~yO}$2y2(c~3oF|u!X+-<#hcy;@y0g3!80Kryd)1=5NvGX
zPBkMB;-?RI=@(4Mh<syg5yVr<(G>RuyStC5Qx#l4GyG*9{egzC5?yB>A~U4a3+wMo
zzqURiB!}|$%hZBk6AK0ty#QlD<zMKybj^J-L7Dg_>{)Kw#@<v|Xvv`!2SXn$8_9y0
zW^2E0{j_9|c3qtl^LjaZP)N<zu~W@>=ZpWXN{9Epls1hrugCm|<Pb3`<mG&3l8AGv
z@|BM88rvey+u@Yfc2;#y<>wXyYu=T|;A?RDi23@dP!{hSxU?Ge3an*gn>|FFSFFq}
zS>=hoMrV-2ZW`7P;UR;*89kDw{PZckppiIIwN~@2tENrD)Mr)#p?}ylRoHv4xf3ZL
zvD{7Y8t`Y_79l@8l)2O^y3g{2`UdXr)nCuHtiwAL9BgO$!%rK^6`tRkS6209662;Q
zB%hEZFMHgLZ=8mcKGQ@mVl)1(BRPXg=!xk28jauz+e?9>(}Y=S8IIk*x)RlzZtVM;
zy=te{(=}S@>XI6VyTuL6PZXS;oM^}h#_9^T`YxV46n#FvjGh!8!=w3UEJ1R$lXufh
z-HBbi;3;{0W;lluLo+@0ig*k+wkdf~W;phPbBMx0=UchNZwVQL2p`iS|9mAt{VnI#
z8?$?<ZU>fThLnv>_A$~N3L07xg>pXOLRg(VZ`dx^vc!4b&Mj|*iQP~h;25d1Iz9Yx
zf<WYd;7j0&SzyF1vEIkkh|eUS_*ojK;^YN#*!NPKA8j_pnpuQohL@=ob8#KJZ&^-!
zYDh_v9;}$so-(TLbq%AfQgLZ6#kN_buyy(U;?Wnf4!p6(cu(rFa;4)zXVJ`5=2!ys
z3?5DH-X300F6LbJ>BsE7ykg9Ek2XAnT+`iWbHi7@-4$6VTI@?C%wIpfyT)WbK>quO
zN!rX$`T#5iKKJaz^3YpKtL9<bi-dnljtr<L1jqF{Z!g8AS4DNk#ORrNVTPTYkL`a(
zGRBTSC7UV!`lC(BW8dW<BVqR#nTKrN+nDL-m-#$k(L4L|QRm1_rV#|)rc)4}iDg#w
zz)$p{SmTXHS5@kD2wV&07$vt{DqOxMd>STpr4d!CjeZbv*FG#!Xd+maTLhQMd24ZV
z)0&#vmn%15@$I5>3dgm+u%~1v){kAWn=V2cwp#`=q~m)Sjhs#<s%Ik@?_Ta)qhiME
zWMkCz<nl~Y&e%OFNywFbN*ZYu8Nx_{gWmptqcbhVHdjKvR?kW3opQ}3Y>4KwIyj-!
zBk)_VGu1>fHx~~n&2~;0F3I?Hv0nH|O|;9-lvrS$fDy|BGKDCU>Ox{xywNH0YEJ`Q
z5;}N)HxSAHDR?*frZo2X9}lXgKBB@?r)MHD-?@zHjxYAI=@qhdjWZHYp0>@W+^#*0
z=y}@wNZen+QA@ZkS_(lNA1k4@yXaD(Kdey{(~+EpW5lvp-)ZlLY>8~RWBX)vLgY(m
zgX?3AES#;uc;hi?_K~+7RMHM2sf$gt8egLvRvMG6s!KU$`gc!HoT|Tg{B67DcaD3R
z<iyLKu^76<Q!=KH>_5a0x)<Bi5I)s5jFc>m+*SBhEXu;c5TH)!w-}0eu+^h&dq7Yw
zlXCHX4k^#csXB+Q!ujFU#cJspyLQ|<*OXgod?Bek5wGki-kS;Uy|t#?SUKBZ!rF@`
z9NtrmI_jm$PdbR-5Yb;*8y%Oi<WjRLbEP3kuZdO&;Q)!Vwz37nKRpi~O^dKjr`h19
zRcC0JFk-~4Q3se=aLLwZBfGe}s@iw$^WHTN2yqJijU*HhK4HPEN6<Z_EECo2FAgmn
z=-1BbH+z<ls=~^6G>~LEvHOy3?fdbj&!#-{`gv|q<nOJv6@1T2#cob|bOMF=%m>2k
z6E&S&vmL@z1u>7L)uVsNi6I4h24dgH9<F_OSx#7RpV)O%Ldci>HmUB;kqKQS-1<nj
zVg85(FAZ^eO;X#tvF!kLPFXJ;ZBCQ!US6pSL!H}1gEGui%+(i>c=FwDv2I`II=t^}
zTtsB}rmlkparRkR>bZ~?2&f`5fALHc-tQe~454Jnd$1n^x&jFG@8M+lqM52Mx(Vf+
zl0VEmd7Mq4*6_U|XZYmCqLP76qDtB7ZiLSKyVTnsIDau_(7Ku4a4N5e`V%Ui$;!4h
zQoSMY^+5|#yz<e*BN5L?!!a*fC6;oYX(~DL^2GY5W{Zg<n>eEyo3|yrhaaq-6?1`{
zw8>z7kCAfP<vD&TGv?Zq5gY!&pASS>M~KXT&`O?i4%Vor&=WIvcWITy*|p>WqHxCP
z`;Th>u8DA3j94`TLp9;k(}n;ZgMj&IZw_wk&~OP~k$vUG)YVMynvB!cs(w`|tc&_F
zsht)cE1l>MaUH5%aoci1%WnhJtzaD@8C4i#L)@-nCK$rr6r}CaJO=f05fH?-<?4?D
zbBD|=+l$0b#Z$Qt&gZ3qe^m~~F{p5KejD2{s2QgZi1(>^WW8azF`&j$-pC!sV}W~z
zq_0fPWS%xkmp-5>)69<<Pu}JTS#7w>@w8|ev&n-dWL8R}_xU3eG8wF9A+uJ0X0CA9
zXhFy^RsKnY@fcSP?(^kUefOikEhK_rS^|XVDzqgI6)!CmU=y+=ci;5tnFiOD%=2%C
zj~z8xzOD`y7M5pQA4W6A$xsT>(f0MWl+Bmf*U9>P%lY_lw!VBYzjrq7(M5fTH>=P>
zs8;Zqh})Uf=F^hj<1O#sNL_fE#_(^{w71oHo_Z23nitN{L=uYD%aOo)D-+1Gw%4X>
z$nt{7!$YGWJ+?0K!lIAT7b4f^YYo$GB>U>8)unn!L^2(Hpm4YoKfLaQprdMo;&}%q
zWnLU_BOwVHc1in-w}ID?KMiwEM@i2MiF{qhZjNqpp0QS#=lZCZ!0pCOcD74g(vO8i
zeRmBB#TwbDeoZJEe=maaC?Y)D>2hA8d@XnDz{1Xkb=LDNSw2f=!h}8Nkf(tn(P^V+
zWtPf%c4YU|eLnvAsj%;U&j)9F0(Pd$V+JB@CFjHP@7#Zi143CVH5gVDaW^QVjuzCi
z3?J-V)(<IfKLo_~Ht=1C?vJ=_%n`}$z_?NMNA+^FbaM4ou-VM8LA<K_L+${3DUBd3
z&Xz|Cy{SA_$G;y%AFE&))QC9Qu}ioJlhX|~xSHGORVZsLZpi5y$b~3$C^M%vS#<we
z^=?64v=6T2bn6|TpRi;_Q}9;Fn!6%%S$|z8!$*FW+V3XKES#oRAK)?PoKf!oBO!rV
z8ugan`drLpAeG$6C+%Iz?IY!yR~717jo!8#(X`u%?=TIrBA%@f>(n67zE8GHtNGzU
zZ4QG%{lzLrl<tl+PxO$?iw(A~YFJF#Z_NCKg+O;mIqiJiivsz{Zfo<W?(?Div4&!5
z+W1UX|9Jk`NUAY%I?c!G$)}ou_>9U?Z`PlaMJxoYh6#B)H2Yrcx37&i&UU%2q^w?C
z`_|!<j7;XQ-4-Sd!V|t&ITl$>8j0W8PM7!B-naG+`s<=a8zA4Q2@Wf6oCOxq<}dLe
zW6?}SmhxrHrMTJO+yQt&^JL0T1z&TAb+#(r$Hj6wuX!HuGL`7fU0)%O+%m<5<zHi&
zPuBhXKHN_^=&%uM!Lsc^PnAu+f!&0u{(V6KU7bBIuCv7e_JUQeFLX{uK9FAh`daaU
z^bK6;_ZbRF`Cc;;I=(x{rPMW%WZ^^#TB^i>p*aUpj{@2&H@yy)1a8I`H~6soH%F_b
z)hvF!Fo~X9Ty-2=_Bua5F$$M?q3CwVN#mDTwT{TVsH?G1_zLjbPBy(fu&U}K2mdCv
zjVf0fzBL`G&Db{)lYs=@<)SY4)Z4$e2<I3yh(*s%2iJy@3e{vwcR~t`z7|;%xkwb(
zzSj-J6RtgNJJvXLv11@Gp@=s-LJGB$4qo4vkl3_jCAAy-X7y*$op+g|*FAMMOJV(0
z1wr!$Mq4D!rPc0%1dW-5kdr7r-B7U(a~hkDk=m~fxd~nQQ2CBuy@t<Ot{J$$(akq$
zlzn1GAhlB{!drjl(OBv{YG)S3n4_`8nRHPU`1njBd~JgNeYkEeC-?38Lch##DW3>L
zW}=3<DWM%hz{vroWbA~hT5Dgd<^A|f%d80g_(+PmU_3TXR?o-p=@H_t?nId#yNY67
z;d#aOIctie@+)^IqjE_~uw9msJBh~UQ&hwa)OA`poRwu!t~M)fA|hO$G)Mzfow_Uo
zc0FBeY|QAqcgnVRrPmopXmqyB#wJ>o!w}S<9$HQ5>p;v9p#4z!ujP82{Z{{;^d;R#
z+v#)Bw2iwrL*+l;ZDyFIe6{c}Nq*tao3n{(Dk10BH%)i;ii>hcJ8i_6;+0LRsg`+P
zS0-sbqz`b|N#AL~isAZU|7)E2Cg(5Cw~yR3+bSZ2)5JIb5F^)K9{MO-;jX-j=tzkS
zZN|Ex;m7NKHfPM1R#T8wm&Szry?$TfCSwJo%Cn(iFW>Oo;FR3)Uuj{d#QDru-!lEu
zs>|*PIBmw0`#f^#I(xE3&m4gjG2s}iV6EHyvnoimX91JZE3<1-n&0^S4W-rU^`o~s
zx2YQTVrh@LJ{i!K=r`ERo(xA5%3eO<4PL}_4xnFq`l~AviH}_8KTr6<NO1FpI&C2P
zX*X_=F&Vfhvn65#ofW%62lBV)>VNeDs7g`pPYvG=%Bed2DzDIqb6c!^+a_i}-dDsU
z>&L6BXH!&vIEIo#aC5m@n<GqwT$Y!8RCJ_^ZEXtgE~%uG^ca>(Td#U7*?ueEZ-2D#
z;|9hl=f$dSlJL*~a;AH9U%TgBI<+VLCNB=dwX@pCRG<INLUvZrK^u3iVz!G*>7muS
z*U^#Q<~7@n%kzb`G=l2FnxO$b#)RRc=S?rK;>Y-2yj)xt@-MtgoE5xB9*)<|?aMTC
zMz{7snQQ$M(KkVTQWD}xT~?V})Za_3ljN8FJezHweBJq4{Ol++RG^gO&*Ym$7nR!<
zothL1H{DnG`70gM_jas8@r1oN((&XTU3~q^9h4*NX)rnYlP@_0^EQ{{2W=kq%CD8U
z9>VNb&nK&e$4N+tbu2a8_;JkbvO|b*9(I$K>ak|5j<rhV3N)wHg<;xM?<(R-94^YX
zm;~0bh9-*o{OsGt!WCd1bPwXHxPxI5l7Be4Ldj{)gWqm_w;6{oySR@RL0A3oJMFLD
z<{>rXE$p?)jUAO6r?m@j@r20;x$q3!zKsLz@bTl#r3h{1dO@ivcg-NY9Zg{hHhD!-
z46g|fx`2B9>ZJL~7&fXZ_kI46cvIO1^Lnc!#TUZAv-P_MO46o!-f_i>*=bXw*<tzv
z`2Oq8_?#c1iD|0$&C~NHRZ|#I`ReRV%yiW|#B>4I(Ov7RSha1}ZIdm=TTk_{_7*Ms
z8w55(YLe|X2Hq})W*jcL4f?vIDt%+c)0<<&ZEB|{R@ydP<EN^Z^EsF}uSwD?6nheU
zaJV48q8mTFdJ939srrVSicXPD@`)FfqJi17DR!<N{5M2gZp&Oo9|b+dzRGvs5o}y1
z9g6l8bJ_dyJK#Q<vS_jM`_(3HMV3XnfFX)-%Wv4sLU$94$pm!TVmq1Dx277L7<RvB
zw3pGie*@4|bSIbWUS8S*gS>2BB#VyL(AQ8g<nQH;8v2{0?727`3bXF2VR$?0!erP%
zV~&-wLG^^<wA(w$5+_HVv;jCY;e>L96COegn}aWg@OHm<Nfc`84|L?Eb?LVgb|BK<
zFQ;NQJ$k)oT;j6VWpiOebR|u!#@TY^&)5q|I|;hm88t5&N>4=)bd**FZ=&ayDdn?!
zi`<FhR*78<M|!By3D~ogz1RK}_RotU{Y8xQUHPhN1dzYC+i%iWr>zbMb@FURI0W>?
zEfR?}RaV+DRPO$;=PCZ+<VGrDYotZV1e8frsZ;nRDPWMTr>{*D`z@x9&UMgLw*QC@
z=B@|cV$MEs7)-XQ6{{kJ1$pi{xH+gpV<6%>hxzOzq;%y>Vl+wSXA(kPE`|Wxli#+L
zKH%M11E&}j@j=h4dNBy;<)u+Gbs2FN@4pZ92luYf1?*i9VUGPP?T|`qS#g!Fc_Et5
zjFzn-3|^QL&uBR6Y&Y_9C1`pnjw_2ui%>aR>A2m3bt8RyoENbtqsZvVPnW?Qg*b}8
z8tpgN_+Hp;a*22q4=JxBD=yU^`}%XOO}LpwyqQH7=a(!3I>vYMGaJ-TC-RM6Mlx9)
zkd?g{)bw{wxuEo&cd1VQ$vzUgcre0A4e1|tTgGV1rdXFky}@&1yWZ&lshx-F3JQKY
zr_}xEDvT9QGo`ynhYC5}iBwVq=&+sgmo}AQ1YLH)SKU`?ts!N>Ek>Wu9z01szu127
z>gmi&(Xmg=#8t)j3XlE>SrRz7{K@pv@FXwqIgSz~vS$3)O^AeuBvjhZMSRBey0eIV
zxg<;ZJZ8a4@_X{97Ww4`;NESYlQa_kLXY%ZF(ykl_zX!$bfm14<-*cH`)JL(;=@mk
zQccXo-^s<0as`9C0qU>i8oPUp$>qP3(xS$g3pK{gJVXUZ#9uj3W=z?8`s}yJwUYx;
zkDbqPfqS;gSwo(Yg{dNlfU5z0s{xLo4SHPh<1tq;P4uvvoQXK2^zEr%GshzItm?=7
zXx+JfQ;<dMwqRkqHtf9Ld)%S5(Ylaz{fP7ISJTWDYWt=;ROI-`+yz1%uZAbI<#!M?
zodbeBgS^i&(x2cX(IdH{bg>w<y-NIOkAaG!pq|Mx%CMDH0VTGmX)urICngK|d`h<;
zay%d)g9jSkJtC<8>Bkl0sM8hzG3U3_SvAw;1WWuRz9=2sV4J1lov1O>-lQ)-`!t_2
zduk54KmU7Jb8CXfaEYb;L}^kbqe07<b~j|7-kselA;P3uENJ1@_D1%MLrzDrJqPlQ
znQr{OxTj=6@Xqh$7Dp&yZB3-Jkh^pb&WHj-E?vNZbOv6Bb%1(GE|Y#hRPeytoISp5
zbFz+c!w9^NPOk4SfACqYEs#43oE;Sd!pn_h9rNNox6Hgsw>Uk)+aOnrC&!5N#Adc{
zenTAaU01i-^v}5Hb-Bdv23#A_@&$vT0e;cv6Ve%6i_g!v`J~A^nyx<i6|*C9D%j7*
zYdfGA5bB0x?d+T7Oq&0-*jM<DXX8;c!uLRnk-hTB=L%ir{+C_V?LeM%)sS~yK|E*P
zl)NT-B)m!l^m4Dqen|CqgnD*#e)V<RXulCbh|E*^6%HL6Uu#7lS0l0K^Kj+a$~;Qs
zxGfbgKP`|mA@v@y7HBQBteLwLBw&<s>~dU>mws-}9Do<G8^AN^C_pn?mofaU^m%}8
ze5RRb)5lC|e58U-p`$~Yk)Z3u${@Y6ieC005rOFZF4ytvJ3-PM5AMaL59qu>bobT2
zMr1ND_aK<!885ej5x>x*y(<4?6}voo<6y)!>DzPMHzD6&Q(yq%2gpz12{D=2WoojN
z`-lgzY6+*XrS{_HvYdv;#3xg|))uMPcpaYV;9+WnzNMa-n0pqO8F`1`oh;1Vd)=(g
zSkB5eOczjFCz?(~N#s>6_cRzEJ;I_SmB@lUqtkyL0q<e1_~@5lZ#-9sdgHoYq()mp
zB*ziRGpUf*E57wmH1_Z#8fy9qzNAKle0CQl@9aYlY9@#|6>Y_fm}eZlftkK-m`*2B
z`MsszrM;FFUVxOnAm}uJg;r;2h#y2uRDh4P(Py`ukkk;K_+(C=%%dslE)Tb4;3;}H
zd+BO*l%2mZS;ReuBy0wvobdoHecI*0v`OK9Y~G73Jr2&ffi}AYujOCQW~Y0_mh4Mb
z`9o!^TMlo&3``47%k|@mibi5eVOhxcmWElrVCv-A|JxL?zu)r4m?eImX7VZDTBl{!
zfqRoZ5a4a@$niYKRRo<5scgI%?rjN%m`Tj+5uHISvLKt;5q6HB3Qu14#&FOOj$qKm
zzPu1NV&SDe$;}?}TUy6QnqI$gy*weU#vwR|+?+YM`10NZ`tSHA-UgNWhrRes4<^pj
zK+KEHa(}PL|1To5SKNc^Los2NyIkH^(ZV5iiB&#F>ru{hFTd}_(^cL~OMm?d9=TN8
z#J4X0C_hDH_PN$rYN@b3z|g^Ul?a_0dGcb31KbTmW0{)yP+m3RRVDH;;qv2i3&BQa
zxhsdoJC7{6{@%ad<c`c6`(fGHv+z7HF?wlB%mssP&o?71MeyUb*(h1cp?HV4amdy}
zHFEzTg$0WVi@rS8tP!UNm_P7TSO^V-?cNGM&rdYd>-dzy)2u*G^0+G1i|yY2+^T0}
z>8_c2dl&A5p}<JEvYsI#nJ<~&Vi=?9;!!XEQKX~)-NhJKKsf2O9NJ^M=)HH=zi{yK
zmo=5H)*003$Hfkk+KKnHgDrkwJs%Hk=WB9fc_L0h{PAx0K!O+*1?{DWjO35%0_>&=
zyLBOM$vn;~^GERyv2i33OpmJ?Njr||TQW#_@R3D55geT~VM2Ff#<4zXj}C-ZsT9N+
zdDG+nB5OVI7%x0+`#FC;!CTBD5^QXtWALk{_f(N)@dX3Ry?9cVhkMMXr?de(J2!Vi
zJGdBUb1f#u+kO82!6d+cO=m01AhWky=+lW2MCeu0@|KqsWgE=#W|6ITFwH7NU+--d
z^O5;5EkQp3jeJ7h!pXY)*L}0dAeV%~)RFt*f3c(odz5iHNfo29FtJNE>i&$Jn>K%`
zx3TC@UEqC37UYu~?nk@5E-=8E{mh&M%b{bVl#idZ$c#P!d3yc#P@qg*P-yHNW_Enf
z6gt=Ip%5>Z^#04~Vpe}Oqn?*~nrZn7_Bs4TrK^{t87Yziy9;lO{X-j$HW?3piZo|;
zO^LDTE_t()N$mvu)!Drh2|F`8l5&w+Mfty@Hu}hNH`jNZRKQYkwzwf#UXAY&0V4Ah
z*YSX+hQ92Dl8(5)^2aX{t_9nb-ptHl6i35hbho{aGn7PB&S#tZN*J12Bd~dG5~JMO
z-+Q~%5w>As``F^Xl5e1@UoEsAE(o4wUO4sTx!7_@HukG=rwjN+$fZ#D<Sy03o25eC
zAmtv-NU2Z0FC&T9KZM6=+<NK9=th=s{*nn>$$e~oec5a7snu(|<iGu%TVh(h#}~!s
zE8XU^>HP|~@=X(03;3Y{wteL<)7#70nKW5h`>D6rir4b%SNg&>uRVHIg=>oA-(=Rb
zfFFj-{q$#R%6;Rn6(#MqKFU80-W|q_we#BDYkxj!rJM4-=xzABS2pQs7+vJwQ(I}J
z81-IZ{J!e+-jq-0_Wo(s$G^0E!h*6Rhr7Wuil`Q{y!;c9>EZjw$14h*Cx;vUct5UY
zYEJH1TEf<~^LF8G#_hGF@sAT;*)Y8Bxc0RyLzI`{Zu?t2{R96%N3PLJi{ab~v%ge`
zL_9V%*5juad2$_ZGEYxLXlOFb^+$S*JlW}NzOb_%O7L$Qo$qKknoFF`NA$8M=S%A`
zmjoC2AN{o}K6BGjcmh+Yu%y*{aWt!GXEdDlJSf?{IpSW0jpMK1Q*X0;@elzIqt)d(
zjS9!>4{!Q=2-G(0-oCV5jx=&Rk?qwZyXp6;LD0LRc4uvpvQivo-SB)>;$cQ1znw&0
zZa5Kfn~{p4o+v3)!bQA3S2X^VQ+YQW5TrWSAh7Y|WN$A}rRVX{V%N{0Q`|I!Y<lYV
zt1?&Ds=~P^`LU(G-@NVpay|=JhGeqhykOS)rQ6r@irof&ue07uLG#81+`DdPnLi_N
zXzp61-Fx@+VBbASej<HgNkSKNG=n43KOMd+!{*B5X+<h1;9J-*oHohIHXJVcclsW6
zU3xYWxTz7v#%gJvt$f4v+56)c==hu?m3Lv?n_9#M-McF(49{wJ_-94fqbvt}<f-`S
z)cnS~D1JGWpHI8Q-Ru9d20RxPosXNf;YZ$`?M6qwWqCZ?OLndic-worSM={uTx&+X
z{loV=8+B-2vL<)*h)zCMAFVGk7SrPK4uu8A2Z!f<#x(Bu)EpV0`u0t!<j1w;xmB)C
zS?rDzw>Erp^`c*LA7etIR(vni9gbgY_>JQ(Kg%9Av>MwVHMKk2a_LVis2=pIr%2CP
zmUlL=w5#`Z8hZ1(>H7YY{T<i%v-R7YT0^4yKgZ~<IXu%7HPWy5y!;#K`hT=_=HXDa
zaUYlT7?F@Y`<6A?$-aijHV93sv1H$uEXh)q>{&9hhK4MmEMt2LV;NhPh@@=M2oWOb
z{Y}qxz3)HoT>hAA=FB<AeeU~r?wRZUe7;=Sj4WQF#q*3tO<A-W)Dw^D!*+UPdJ013
zXHL`h6Ve1~e`s~LYo80^5)a$x$l{NoEjaA|+?OtQIunV%YGzY))AoG!f*m?`Is1Vv
zCbQ&>YY{e0bwED;#-dZ{W}`tom$)ebu^FJ#&D(F~5O%yEWvXGIW+U&_o2xe(nAj){
z1TA?OGUaA-fA9Wku{t8&ib)kFGKyRcY{jiltw%rO&Xf1;{r4Km!u2bAa=4GvuXX-d
zYSFyD;|^xMeeV1F_el+C%D?E<W|0zCa#F|L;Lccerlh1Eq8zg;8KF+a`=evy&s?UE
zl*qG!{M5U+wdqK-?jvs2t@?<gA@$!|{4>%wyd6?tWs=8CyHmt!cYj`JN^9c|kB@^;
z$*BxElhjvF2<2;20VU(*h6{QQj?O}qQLm53nzS7)3)va$mHe1%`u)8B>mapL(zk+K
zHrm+aJn^sy;<4FBwd<W0ayyatQ%sVdRDJx=l#8oln!Sv@wm@AVQqG}v0ZmNqtX{lZ
zA(PY3PQP^e$kylcC^xf;wA0GHYj+!_{XTW|v|Q1zcv$dB$A-m7?SA9UoX;!oRc&uN
z*|j8FS=meE%DHUD@rKWOI$xkWQ0ds5`xEMCla~seGGk{jRPwrb1W`G~g#98`a_;TN
z;VZxAKFUO>d$DWjk22iW@2s*%BQjlyrBTHX`C}Ku>b9FYXD*q~lGDdyb=Yf4zMc)r
z$g;FlS6XO4YG!-wy)xC;(bnQv^VR5R;h7+lwSst<|C^D>!@~Yuj-T_7W>3%vp4FU7
zLZ5VWP2$49?;3~QcP?p_6^E8r^5PTDPq3FQ`Ce=XsZ5`rnwqO=hQC(Q3QzibW~Kr8
z--&Enjad^OZkbI)g+o_2H-)gRrO)-K>BbG){iXVXoX__(u$7^C@$X~$kMLqy^y8{F
zv?gU9Iqhysn)X#Ciku(S>eg!|o;J6ST8G9<&3x{g?=W$m$)dl#rEtx&x&}eXPLD4B
zI{v{0rySjH+iO3EM7d%#Re3D}gkqzU+NUq;^`3LPKA0IrcT(1pGEDB!Hv_B4<eV<N
zs)y}E$P;j}8;uY76>=rl*N9klIoEMmgY4($*LJ<8Sa`FQCeCiw^#y{LfOv2?i6K5G
zPqO|g=*cHqx16>^K|tKc5D}Sq2F)1dBzt2itwCcsmaxhGa;$50hIcQ^?N(7Ys_KlR
z1b(S4?<B_u7-Ij~>U`>-uI@5MI=Uvk{=w1`GHYH<i5CKeoZP5Zkw~_BCf=9cwq=eK
z?k(S{!V>QfKdk1Ez|zP~<~W%KIV&>!GBuEiGESN(ZO2J#30nKA&ptB1x<5D`S>_ti
zxpc#?ifxNO28-3VjaoKL3rKOH2!EB0A&T9hELD7z_fd`1$j`IrM;N3zKB^(jJ0tOB
z7;}4+61}4;?-?|l$}PK_61<%`k0nH}5D*7n`!TMP()cGI)o8sMuq&KDhDKsPP|a3-
zu^!@fX$nb}5~4H2ikF}7PAh4)5R}lQyFE2Gf(#N_^Ge;Jn8>+h_n_mu;fr#-bkt*0
zo9z`Uwh9?4UdA62@{`v8<Pu4(U=vV=T}MX76)j(k=yc>CiMf!4%+60OY97;_5J6;2
z?w4Vxv)JJ3!U>e%=(L=sxNlePDj-jU%Q-0uBXp3c3YmCQrA4n7iG}k<zQMnmW|MVK
zJ7aEkc-;3=^jTPN?oVN{lEJ?@Iw<^ufyU{=mWU=hsPdwGgs60+ql}Lp5RUMKFdV;@
zV0Ri;k-=kzMt<T}q~e)+xgcA&mEpv~n(|%q?N`29j?TXJgP92@7~HG3C$7tC-JQs(
z43$2ir9B88L+rTm1hbcEvcO>8c~KnwkNvafDRYV9`~sV%{}T6~=~}RAf4lN;;L7%V
zc&y3g1VT>6)8?`A@zLR*t_1irMWpDE0D*=wT&}pJ#r!~IXpwl3<Cb~KdiVsUdb&(g
z$0q0*ydH26>No3=8RSaSR2*t?p!%=-!(lExM-*LL368D4yoBCBFj1*B9BF-$moGEm
z=&1@u8D)NrM#^loyo4|2M5JNG!??P6qj~K#L}q!VnVBvt0e6XquU<mb1qtx4LEV^a
zw2HAfU3bnR%`XX=L^`2jBV8uyE_v-NM>;+;n^;<EvSiX8m>r*WK61(7#Xr{25v?F+
z@)*02bdSf>%;#hk3$7fi*c#3l%W^Z)+@@ASl~<dmxJ2=(a~E?Q7H1w;VyhP?MNJ)J
zh!J*4d|%i3kiNL?<7l~*5EX<laxsd<o=W<alE*u=*v?9gG>^yL5I4065?rdNW=yOV
zRz_sjLcLg(weSfZ%vw(QS!-(0O-?Tn?fkJ}Fl+UcBPV=jR=ysKH8*>Gm5wP^ti0x{
zVK?g;Gu=c3TXOtkL!2-%>`CQ%Uj|ZPBkB{MMariueHN&4gp}HbN|AILlCQsYG@)WF
zGh@a#Dis-%S}FKA{(Xbv4Wl@$sm;PfW?VvLs4@QyyD|;oOj%LUt2}jCh0UWs<5c-X
ziz~M;#?vt%Ec5z`OI{)C->tTmm#pT~*z7%q?#RZ9)?&K*4-&;YBY%g<QulMM$nRU6
zldo_X?Q`L@Ufim@v(nmGE}I3{m(E=}I_@2nr6FkPSBlZQCuK(`oQaI=A83%Z7S)RD
z4;eQhyD17Ig1b8{?gU>yZKNS9+9rUy?{|*JmW(np;<PH%(<~Q+)@2bYoea5@d41`m
zdvF5O2y}|;K(5locf7K)@_E88NR){A`1TqS$@x*-W{)S4Dvh;%C&phKF67H^&QJPu
zG9>tGN(<;M&3tyB%w3^pQgb_@C1DZE8)Lit#`O+CV4^!BB{jwDU)G0pcuGHAdCjoI
zs1gRV&(Y1^;|s@;NJJVRu`$f+hCH|UeJLj-vm<4JFTZbJnt|(&yBnqeL66<gEQ~6)
zuvs{b+w!DE4+scJpVLzec}FHr2j`&jn_$OW|NWH7-sX!3n|hPDlAYw}=#CWG-D$n;
zKF5x|N$VWFLgQsbTFzshi_%Q9gou%BFF^zni9-6kYzR5_%BV+#D(3F&;ZwCG&hE)*
zZGO&-%2&HI-%1kc=I_(Bv6#Ip$4Ync%~Hqt)vc$=DnxLWe@<h+j1{1hI-uY+H9$V0
zsa=Us)ryNt&=8Doo(}6;cy@N!3hS7fs->fZ!xX){)3?8uv{KK67O%K6KV3EwbQf0&
z6{9yI2^GQ1Ox<-u+S0td#LOm}uDy2pDfUr$S3Qf8nKZLY?^}iI#WTSr-_DpZWBq5F
za}mY!iyq%_swZX5br8HW((D+w{NVM$!Wz7*Oe-ha44Jby!7%DLct*99oEee1qrZ7C
zSlut&e%!pFPEVlJSlw^NnXK7D>I_~>S$*z7js1y*vwX}PXf@Bo8TFs?#70!o26^M`
zGX6I?SySM&ZQ{G0&{E=DLqYM#(WOZRZE=LoXtY&&X?d^w%!lw7C$t<<<|u_Bjk99m
z`E9$?7xCn;v2E4=G@>>Rj!J%?N8lcD2`qQC?`+GTi<^2S{O(fikkz+mbDFLaW{SzJ
zOyOmoy*4!GUWIcQ(K(35*F7?{B?ugGa(zlVrSeXx*7$5n0HW4VBt!`xg$?P{bR~K^
z*u6c)fp%vQ?Ym;;^FfhvqH0&BaYFU+7y}vEbacG1m_XW}2cDq?3oT<3<aDtwG<3TA
zoFx)oX{pSqxU`j??-__7d~o-{M9|&>p}=8W_zA?l>ow0JoL5%&F9msCxlCGRe$R^`
zE(dq45jV+pjO>U0NGxP+<0eFTok&Ch*$PLO5sHa3;mxEDnMRN%H@QaZs^{}Hy@4)n
zo96w>9sfklY|4<-j~{O=(EZ>IA{+PfzKnY>+7gs!kQw?tKtx$zL@<W58osTGLu2^u
z^Rw<8QEH1r_d;kruPfL&DpX*25N!D$?c~bM_z86a1{vn8-Bk1Tl3p)-5C^Hs$G$2x
zF+qi&eVB7lCK7M^^PTS$|NXP)74;vDt&Yn|m^bZRv>@{@QBastqzLcjB;Voq@G|#y
z<}4|e0aG@_<=EV{Y)5cDea5qi2YELggTXw0yyDx8v@FdyNq*SM80Xg3@EXs%qP@<6
z{qkw~!?ovYc$H5vbjD+K=CdhDO;^2l!)#u?WxUY&zynj}F@xY`Mr-}ZN1zAXkK1Y9
zLMrQ9xE73q(Euo}l%A(9>|vKEzSmgG{XL!8V>=xFvsI1#>)l2b6(K75-inEIh5@MZ
zswyv6S6KC4<|2&`o>*IDl9dkTLK}%>I;M=}<N=oqi{kV1hb~(&>axC}n!hIL^0zr!
zsJ<$#B+P&wn?*(>VLq^hUMpRod3GI-*Xx+$rj3;#9N>|IE9rtU`spPu7{U_Z?p!H7
zOTHorT8PMvIG&-M^ncFA7M^a-EzFOuZbDUop-o5%FHVrA;b*1!hx{1q20`)W^Mwuy
zc7tcntOxbeZYG}4EX*)WFR7>~a{=9Z!W(U~l?{z2M8Q+?w3^($3Yw~vD4!NvM}=EL
zF?8sG29N8SgH~a@2TqoT*S%XQT*S;6_r+;P-bZp3?aBUa7SwTQmbd>k3rEevw2rxP
zv4XeRTfr_`CX^w?*GK>BOJ~OYMwl9>M7@NZ5>`|v=y6J$r$$2A|8}72$PilGijeJ+
zME8HX&Nd2_wUeX{JE9c#A7pcpQtCfO_zTbfb!E~PWO>n#NovoP3Jiul@jK9g>j8S}
z8Q|{<2O<hlbZ`)o2-3*!Z9`@pk$<-&^AJg>yVacl@Kb1Bn&N2E+{y{qfrey}aDUC+
zo#&x>4}X$Rk`CLI4fc?YppIXh5hS|+xbik90sdpVaO2;qu<4yPo)}RvF;dh4Y7$~R
zfMeu3d7p2FluZE8E^X`rXit*F?OOspK%dE^%LcP=NDlb<=4w2MNkGA2X*mJnmdb0*
z>2tJVl9D~F_D$ZAHD{WQnZ-EoKJ^A+B>ed`U#oW-tf;J9Bw8bp19{4mtNu<74u|tB
z9V?155x-{UgiP`)E54Q(JgTUu`1xif)DL`Y1t380{5&G-0jey3V;6~_e7TY%t!p^}
z=v58ycR-jUiU`?~=tKbVzU_p-MjUQ_`TJnn27I#}QwGZa6;J>H2R$AT4q77Mt~oPY
zUk0YUtgLhgt`lr^A|fuprU7$H3|&KzsO0%Rle=4w&gBP3Njc3lOcF~o0HTt{gJ8ZH
z#89*S&royJXm^l^fh0j0grvZ60gAWN$$gY6Wrac|(e)1w&cfj#dLS!1yU~Bu9Dh|)
zGqRfKGilRJMn>6dpreTdL{U;g0tI5svDF{@VYLiY6yzjET4j3x=vH~p4_M;C&+iLt
zXfPZhih!ui?*stz`x2+K6Lbi85eP0IOXqW>jQzj>OtQ}m56=NzW^O)e=hZgh<3tKY
z09!JE&vxko?PEYbexIr?FYhDnwEq~r3|1O-Ku_c7`I#lJ53o}I6Agmkx!>zSU|9rD
zVqwKskmj?ZRlZ`t`3-nvGM6elsb#?_V`Xifosl7&ke-zl2(5s_;eclYEA>NYS)G<k
z><9|*3hhA@1b9$Mp&kJ7wqC{6^(1Q!fTNbDeQo*`Vd4ALtW03>va=Py3kLY<1w44A
z|73R@E?KF4JGj34ZRS};#oWdhG46~0`Vh?}+%?<+u<|lN{cuy;CM){&Cx8}F=dFEw
zq|oAwC&K|@etqMD6<^p=?`lL}x*%td5vTJqaCplE=o%2%al5@;I03{Gp9z0{_NaSK
zzZ9|J1A&~Gzjz(^vgM`5z-bfln`j@~d9(cuu-n|hpN`?D0L4_{GV$}1u|EPyyk3tH
zci84JdoEH-09pBc39K+nX{XR@q!R}r94q=;mg^7o+FAbJV+BWx-ilv|#Qit0CA}6r
zYk@X+9Za$Xe0Kz`Q;{jQu#lvV1e0HbI1x-d;Gzd5K=4Wtgo-HqcA4DU8dBb%h<?4e
z=+G{W9=MPQPNS|a5JxU%y`QQ@YZr}>0!$#91ct+DE|s682#vMco-A=2K7ubeMq1**
zIdYoyg2rS(J1B6!!{}cv)VNjJDFe2`&TKafGi@xr7Jz5qGXe)y*uI5{>U}y}80zpz
zW@bHSrw>g&@b=qK6Jz6W$gF`j&xY6lB+?%uDFBk^jR6zp16s}s7k2w^uPM1fP~q(G
z9N^lZR;BFB%x?SMI*vOM1`HiuQ=a8|U#e#L!<RCx|2fUI7TChiRxeHjlNJEsdF!=k
zI+D>iPO?s1{l|zlz?#azo1fra2|~z5+a3UTWuS%~9%<ZiVcENdaS9CFB}oAlNG1#m
zi!*asl0_L?jTIH^fUEvF`VCgASrE6L^=kEj!ErVIHpa=u${}7j;qU}rF$6pe{E`=Y
zjU4>o=0L+MU|^nGa#6oz&^2A)m5sTjCHT~vo;-O1y8=3T0l3^LTmUQ@oN1U@yU1rg
zT`T`3_*g?IEOQOK901qvZF8HCm`&DGmaRnHldTJ?fi(DgP)FjFVNiYmM?0wU!D9t7
zg2ktoQtoc`or6k<+c9Zr$_583I2Obb(z8hqYkT_+DCqiersn2v?4PKG+m4a6L;zv`
z*=_6~*@V6BZs(?_GoU7c)n*e*gTj-Qkug3wxvc{ncDMazaA{FdWCz#|#3SDNIC;uK
zS_rh<^tA0!Ah?Ubd6<yd3%{HIS<DW?bO)hZfYmp6K(5XwQdrJn+9jyH!Hm-GQ!k)!
zXz=`NtqhvdmYn!kcdTF9RpfE4rt)e7$j8?myx2>x1xA(YEJ4$0S2jM9oD@MeK0dVq
zBsA^N!_`$3--N}kyi=cr{1_0tTtto4Rl;q^3q))n8aW^hroX~mj&~PNIzxGfpqjEW
zQg>7T^?sNY4H7asU0{5Zpwf{*b%9j?;cFRcJwgFrhMFsK{`}E)!5<E`<DN4l$K>Ju
zHazA+h!QoEgzTUvIlV=s6dy39spP@n7zS-(Q&TXYx<KGVY|q0?ePKr6y+46|rXA8r
zKw38U+508i@DI3CiYC;7q#DW^MEVfw2KHdRFC1a7eNVMLxy%I!T&JpqoS}SGf*+IH
zwtNocy3D(Q?A^X&ciIhZG>MiKZ~t@!ri@=m1StvJe4f2{;SGKA&Ye3XVHeBZl+@qZ
zK-W{?RzX3$ISKlq;l93Ri2_h}gab2;ve^dtRf_8F<7y%x*Kkju;kFnUZUJW@DUNB9
zh-z@Raq!;;Tz`9OOTeI?K==i!);UeS#M*}}k|cv<))LfYH3)S{`?3H|BpJ~1*kr-*
z2fE)&FDocD=PX(Xf7Qih70ktqx_$lqpzC(*$x#9+4%lTZE!#lT3MTWnLQc}g+aROf
z3s&)L3<Yl~n3ByH@2jI97Zj+27v3Npu3bGO1wi^x-Pv1ZS961;qFfr0PyfV!<64Dj
z3@8ptD_ji?`yrfy5kcW8UY#44bAh-eC=FeP>_cEp$I$^`-YFbPzBMwVs+N|PP;X#R
zfANZd3(Tz=;t#c8Pu@C+F%g_vFu!TM-}%`KCJdn1=zzja5~afb0Cu;~ymDpg{M^4*
zm_{(#v~CY6ld>L0OD}^m0H!rZB%SSb=dVLip?;);!<_4XpZqtaD)jqXg~-VKNncLj
jac}7FJ?sCS!5yhnjDOfe%U0bZZE2u;MW<TpM%4cRwPs8T

literal 0
HcmV?d00001

diff --git a/docs/images/flows/07 - Invoker Create Security Context.png b/docs/images/flows/07 - Invoker Create Security Context.png
new file mode 100644
index 0000000000000000000000000000000000000000..bb655e0e38e8394b3aaa024ada0f13c2f21c2b4c
GIT binary patch
literal 43568
zcmc$`WmuI#|L=Pf0wM@VBMOLggEWXBAtBu<(%sz%C?FuU5J~BdMK^*<EF`2`8W!CR
zdwBlOKG!}k&bxE2qc2#n?wXlj&CK_6hbt?};9^r?LlA^3`$kd~g3xLq2qhT{75s(!
zTIe45f$?5mMiRQc`=8m89}hv)kgTM*x@YRvtc5Sp=oGZKrZAgkH)-ol_x#8(hu;eO
zlQ+TrPt?K0=)~w-|D^VjK5U;*vkWUUv9eUrW9NME*hao64{weoANrHQZQbKTUp@Nd
zbtCq2OVPYv(8b*IWU|V_94nUyUjmCJ1YhFUSK(O*`~<)3uz!6<`=5{MsCnK0`4%fN
zkcs<$4y1b*@%cZ8Dc}Ep_pq5Xdq`rv43>~^w9~ZPIFEsj-j~di&&^E1Yprf<ynspN
zi~sns9{GxexjDOj{a$+znqq#HW~pwA&#C=*nZYkjr;{z6rrD=Yo|F!6*c%@n9UW2m
zpDpYybY?M1OG(u@%-_uU?3#ToBI_m-@#KV>uMQA))3u?~bFsba$Z1>EdnCd5MNEtm
zSc!JW$kB8H+7~aX<CwXV6`+cM+nZj-tNaXqRmAB?nL$%TX|7?5H&o%g(yKS&-Wi5#
zUNu=9`T+yCXo3VLRcb$!C54=xo{W`4BB!lXf8AY}#*v7eW?8Apefwm0Ud;Dwuk#~b
z+Xb>XM(pM+&0eM9`ucSK^~Z;~3AI+k=086XWHH)L*KT)F1<X{Mbfwu(@oE;k4Q7f@
zPEMBU)_^`C8aRB+Z+~^Zmf_;!Qk;hp&!B`6cyYWrZ!YK&phX)p`1V<~=M_W~()$-Y
zaGJ13f2!bND5+uKqAUTe^yi6MJ3VV_Yw+k90XJSPh8&240+noAzG;^7=D&?@Hg40v
zKpbZ3D=h}nl|+w;pq$*?KPmjX%RTYtRp&o2skY`?ni_Rqy?SMDzjJeanZobjzwtL$
zHlAKEtsnGF6a_Cf1h1-UyFQr)EyYAfueP5R;^K;367Z0xS4wZT9xck2iD^Asj0EjD
zuocX$Htr1TilN#aFQ1R2lh=l6BvFa^Ulr!3Pr=RPbwU#~mc~l;`0ZyrZ?4WeIy$<$
zyB9h?^4m_}L-dNNXDdlYt7~f>+f%%(te?#$&kxs<G(IJ{ZH^tU4}CEH+Sk_?7znv7
zwEA7vI?TT`?;{gy!h^`k$>#%Z{Zv)sdQ2PF(tR*+$TEj4N5TntEc$UCKEw!Ya9JzU
ztFvzpL;+*V>}HYSv(u28n(8s{$4^7^!$l_e!-s(D<ME$Af9@}J)maTompYA==%n!3
zA&0WNhLyw&=E_c7P|pO*<+i6)n?hBE%=^AJH#hgE2^SmWGxpXyEpc;mkChqN)J^+6
z5XbudceaPdHbj~CyP`^(piADx*lE&H-rE$RG)1|MKom6SU$RBI%6NjApoj=11miGL
zWHP9;Pctk(opJ2@%9U=mGv6l0z>se>oCggSs^xcdNXTsjp<zl$NQl%SXPfGD(;5>s
zi#3vNuMP(c+2(6(k}mR>x?+-QJX%A~3M*BzrPC4jY3BVeOLv`NX4gcEW}9QBNbH`T
zp4Nb4wSMs2EqNBMyK`wIc)qEkKALRe*WdPkKXynMHTnMiJ5=F!=|2BNC5ntof~|MK
z5&hmhajRis`@G`oRH%CEu(!_P+7+=iS%ng~cAk^-Ty6t+I0`i*<D2W+e;Qc8@$RXa
zh73j}etX7m_1E<LU<FuJ^ykm$f%hJeD9Z)hUVA_l+N=*heo$>R?!<tw9zJvzN(&7Q
zwN^YFe2vFu*z7q~Z52!nwePmw?y$RDo@^U5x}pSvAhEK#sw$VJXdxkiO0ztwWn=*S
zF!<hsk<D}et9_YMO_2eygKpY*`nOX}9_3nywyOhq2n!2qugb$PbZe$zSSjlI;@Ib6
zBmd5xr6Ng0PbN$td;$V-CQ;A5%*H8(3}3k4<q4Z!?HSWgd1K@67g8Oj+@i-LY7a<Q
z>wVAR7Yt%e4t3L`<91WkIu-AJj2i{a0>6xYBK$YyO>B#IACJ_@RIJCG7bb**@!`VF
ztS62R!Y3r8ML2skP2JxAx7K`M{TCd5<r<mAi0pP<>rWfV5Od%pgZ_bQ9kcx$U<$&Q
zxQog5B_l+WepYGUf?Cd3Qxa4`Oe7=2f&y;N8FG(6yub`}TKcUbN6M~WK%ZcJqQK<0
zk(&hl13sPebb|nTVLie~OZ(cu;#UMQg#YN#fn=rmpKs#(uWA|-g(MA%Zm-tFpurLy
z9x<OajZe1}qkc2ZUWcc^kwADY?6DLVM`82goxpvt4>v=Q3~;Hy%tj}B{Cjm8U6~-V
zsNW?etTp&LFpu52w+_#wPLNy!M3Xi$raI9P5vYN{Z`I^5A5vmLYWa#Sp=BolsLE|?
ziQ|dxH%+I&T9BeF@87?NUZp+V)&mA}9+b366JnqAZPL`j0xgglD?B{B%3{C}bg<v)
zY@O%+dx(tBmJFg4bVi4C>+Js=Ha8jrvk<#J8V1p)F;d9)j1#)r4Y;k+W<|zbU!J11
zj}~jSUG4}E$Q>RW%#@EV{8laG!KQrJg?rjz0Ghi7qM&g{2x!HCm|&V>`Ct3I$#fz2
zEzi}yWIB0RiEfSc((foHCZ-3Z?0o|RyCa2aIxCbyu2|4iox^Ur%@5AcKG<h(ceZf3
zaCkr(*ci?ShJ6Z*$Dr1hypxkwCi=+WFwDS@har$*;IKFHb|)$_@^T>HhR1zt;&5$1
zMpClCg$-Y#K%Y}e8f%ta;?vqRNE5y%Ta)rIR-Fdt70`mmFDx@x?W_-ShAd}nF6cFa
zsRbyb!LS4Clf5RMGp|Bv2OV^}k)Po`_WlKhL!RCJ`}ZM7<VfMwmG3eC>Ei>nCE)Ec
z(Uh`G+Y^;0ZT{D+B#5ekmwIy&y+vC2!*>pVT#izDd2V`jw$Gwf_Bk?=rI_*<V>Ish
zY@gz6G)OWE887|*eB;gVzbKrwZ@ay@%+AjC(`qu-n(w>+uV=IQz_oK{d#0i4;+crZ
z6}=L12>wBc()epEjf#g)gno8)t*xv?JrO2}`1s}fnbz*|vgzqJ2E|keI`;4#y*fX{
z#pnc&Xykux<`#Z24#F72^XDTRBve$p$yVn>g=!44ajA-HpUHVdl2{_RZN^Ge`S;b9
ziZqHDb6dQRK~_Q7l(+C%4pI-`imEj_^ZLxU`hn1Wp#QfmAmBLkn+;4iS~pba#ikUI
zRDDC`p{mzPo*QyxW1=#f6@h$hIwBl@*7%>sIL5y{m~T<cKMZF`hoCUylbzYi`P-Yi
z5ea;WZajrp0tsTJ7QX|KO|WP{j@KZa14E9}Nh#p?FU6rX*6bYgaE9LrIdrr=J>Ft0
zA<+R`8W*ZE|8ue5MTL^7l<|_XD>o-c<aEXb6aWc-OZDp9x2H5_Pr^P+XM1NiGO6V?
zgTR!WoZQgRP^?wH1Cq118mE!JwL0M#B8kHYSjFP6NQbuT+O;raV`Ip1xtl=FN>cLY
zAO5>$&o+5b3A=B7fBkXG-A7k<3K%U4H8ZpI(fW{C;&79P1I#QwK0aS5!@h3%!Gj0+
zZ&SvqER>*6F)^5dqCO{3`(668n|9~%(?CX3ig@Bf>AnZD&=)ho=g*fxU}>%?YfUEn
zN1w8MTk=)N4f*2(=3`##7alwM$J^jk`B{z-eCFXN-_WA)i=NinO>34Lin=+ng8~eM
zfsr+M(S1VtS3ON0X(C>#QJk}lZilRI{Uq-}^%mK8MF9uLKylwtwhUU}bJ>r0RCx)F
z<q?N7j=c#?t!zw*v-Z0n^*J25%%33YzQC<TTvind2_KKJZiAA`BdHHwl40(n(njoQ
zOeXC&la}FZ=(Ejx%+}?E%q|)g*7ZGG_y~cr06AX1>mO3Hw&HCly6V=DJ|3-n7a~TU
zWC%DdZoAfG5VqIZrLQGA#P=d$px%PBA~^d%TNrbZvuwckIS_CM8Y~)hk~@32Nw|QJ
zkMp_{{+?`4qqXzT`z~qxv&irp%M?cw#|LGFOcaINN-wcngGDl5N~swF1}Wz&J~<w9
zh$LY{0-yQu?w?ny|MdkSgQAGvMYV%`@1m=a#h-7Zpsq_(>~hivmE9~|g2o#i-ZG=M
zR&aq}>gUg&`yTW#AQLcnrD`W_Ihyw*933k_JwVl<uSsJFVqBI~Bq$+CA3f@DN*%In
z1}-b=@NO+XwY>GB$m?)5i;*JgH@GP%d5n-ZtswIg5D@5=)`A*wd#Z*-D`KmO7T70J
z^x4(S;hA~kH<%ylSuF^<2X?B3v(CWgj>&^S+|?WxbXpAY{(J+x1g3kJ_^~s}KH^KP
zW4ydr&(<>Z%5_=mH+0D(kXX;aUb~x(9CZ1$80e59X+j3Y@S^|o7mG=_8Q#mYOi;SH
zZp2;ojAGFo4TSw)^OS#*5B_I9Bi9ZJ@4JuRAKeAayN?CvcVlq(kr@S49RHcm{QrGe
zy>sbXrrd<yr$kaJL{iskE7g0^G$9bw$%)fh@f3>&nSn1cY7iA+<w1i}RY2c)rZ#EM
z(~&?crHPj_yiu)d*VVt0+Ni8->Q*45F4|YuO6Wl+fi)1@{fduWfmT*mHm+K?R62XX
z%W!*Mc=lDupk1LA*EV~IG0CVlSwK;{o%Gj(+-}8uo^81~(tw;ia{)g+)qa@P1EO}b
zSoj5RQntifFv~IJmW`9dGS)d!tiz>o)w4ELXnJ7$Rf?D3cSe!(CP7#l@b0&oi_Q($
z4<c_a5e<K%SHzM>d(vCBu!zeaNeDzQd8IE2gc&=ApnbP4{r$VT2|r9nefZr~p<Eq_
zaW7W{E8?KiMUeMUdsWcwqf#0QB#!@rB8nOd=?W8`We*uFE$;d6V>5!so?w&w>O3<f
z0b5Zc#kQ}D8XY??jt1Fid3l+Ln7BcoJ(VFu*-fj{WXb@mleI{Y^G3bp;6E)r4~?F-
zG313AErYp19|BROTgsj!pQap;|2P!C(T!ImZ#I;(FY6oHlF}%PLkN>hL<wVrJj|gf
zbTn~xp?hF}gPGY`fKs42Xi)4GZp{A-%WC_X+Hvn=<KCoa#dVv-$@=U`v-TbyEWhnT
zikc{%4(~{inXCK>+RsNO@^>WcZg}$wzGI32y(O}{1w!ABwex?w6Z>}tv*sL@S~L-P
z+wk!FKnp&JQL6uT*6Vjy4Ya+)#=ZOz`tip9q_Musg&LF4sC$7M|DP6)_;GlN3Cte*
z<Nth1{D1rQzxE$g{8_?8A~$F@YsTS$T^UDGYT@UI-&ZV#L=#k+xjAbSEZM%m{Y<~q
zKa65?S`dQKX;p1wDy`7xulkg|<HA-tD!d2ToEnOHGIt#+#hgap=dytURdwIFrM+RB
za2M#L8-}Ci`S>X%RoRM_zTC|ZMQTP!wCQ{Qwr)Flhsvwoujj<ha(gk{`~r2l*7#i-
zV@r<lA+|w})wz$7>GTuq1cJ`%q*Q}{WTPDY1xqox%cV0;lPz{1f5Y6PSf%*JwGjQi
z*oqmi)=9|Se8*SCE58fnmzb^!Ddwy)r1g}3BbQww+(d1Mmy#;w5ks#&=`0J<(~g&g
zMNX>+aaDC_$VE_Qt_ky1*3X--5czr@C$Lk;5x#(OvaDkbPHJ)g2(jJ%;%{4CwmF7r
zD-LR^FJRFu=h_+k`6}~xqdM59=ik$zk1-ikqT6^M=rptIlru}0=y)##4>(G6nmDMd
z*~^E}0z1ErKi7QospTozuET?HgAaz+M-I3lJ{Wy{Tg?cDI=R(P^fgHOpW2x@CJe)H
z_UGguY+QnurzND^`HD-6pAbXP<%#X3+pM6P<r5g`sPcKw*16!r__;@Kv4#b{rEr!c
zPp<2{@idOzzHQa1+qP`QCz`30<vFE-J7d4B_sz1>Z#i3kRkQqSb09@xF?lggER9DD
zQ6%h*N-r|hYWE><G@!gcTRf{j%WPXoY_OwX{OYtgaZ(HJw)zG}*!(yOzcKbgWwE%E
zg4{K0t%FxD=Eh>qFijB79Z$t9ylow*TkC9h^2@iB>*%=BAnSD$p_u-+1a_MvlCTwr
z2G_|IOC3EmN*<0<y?{Y7$^jeK1XUk#&G-q=jIZQZ$oyhSx}Q9+%*@w}1Y2gw^z}yc
z$nu^IPsz!~#;ZL@_qDspVVLGG(7UV>oG+bp`h71p0<n{Wt^6yEjxfwjI~reF#Z=1u
zQ3oe$R|O@+2$zpdgW4-ZjJ1opBerrPaG;O{G8ipRaeZn6GxWt}-}5_V5pNj21d$X5
z6t*&AuWFi~RUfEI9b)Viw!o;&+(h(CV@A89g0k}<<X<Xbh;s5bI&=lfu|RwQ$Mp%0
zfRZ@kzeQf10ms{8IsOV`p|q*g_jR+gy0=r%i#I(iH3nekQM33z!ynOnMyNb*+Jg4B
z@!GZoU4{6BoPU17><DIym#Kct@7EJwp6;`~Veht-EtbyZbN<c1{S#3RB;^jZUm5vN
zSKSKa4-t0YcP#4_B4~!W?Y+wx$3IM0pct(FG3t%<F6ENMO`If+A#tkIeeF1FX@zvz
z7KDkW`<gGr@rFu8>vApN9qo`kAtxcmk`g4vqpG8izOh6`;_(-d-cD|LZJy>dqy~*-
zFYo%N{|px@rKzu9HVIW&KEN$AwChOWE8sPE-0aD?vcs13L=J^Xx2*0BfnzU3pSQlI
zqk0x{lZ>98EKnUQ&hS*o`TdW@HllaaHP$n2N~E!FB&PXRM?tI{szr?O_+D=4UPndh
zD>4{<m})39e9O6DlGIqcgYy+rE;fD#9MzaiDwa5jFp!%SFC?Kmma&`t@@nPM_MBWM
zh7wLfP6pG`e+YFq#HD%=LxD@YA;$L+l_jspH0{ElHDPsfvJP<C>X>9FFths@chT=7
zryrIgr{Jsi<C2MAyejO3F$ix%oVy>Tn(*kmeoID^{S{-KI6!`KH_5x^^Ie?e&)C%A
ze|Zr<uzJ;CpOF^E5`jZ3T42b;1ph;0)QEHxFon9i*&9<4-)Q?dM5Y2Q^bzAb4yqj7
zKi`Wa!75!%xK}=Bjd9v5)57Zgb-ea`>1mOuD3${xd0{o5ePVJ-XMGY^c<E&~=ICE=
zYxlBLJBWEMXcrlb7{rXLJN2@EG<1A<T&|5;)*{1RHtVA?NcJN5Z<UmCDW`#d(D7Nr
z=Tb}#=P3vx6E67P&Md}0Ia;ezTEG5}?(sm5d1bS7j1IR%fqF=LfqxBF5btJPH05P2
zSAFzLPV>#m50RQr{7m}LtdBAizE#UD2`%uYi1M<PDoXfXu5w}i<*o_Chm9*26)ap@
zIwMbL8+;TIGKzlJvlj7>N5U7ZjC(cGUeiO4E7s<^jiPXIHgWDkja^~StKBC|d4uSR
zUm(UV8yu1ch{#<2>NB*C73X{3(4KA#Tlc_-PO;(_of%8EoOLq-mY+tOd2EZm@a=oS
zR8c#I-@LLu>5xQ8b}}gH{;|(7xPzR1b$L3{<SY?&=-qu)v9*yn%$afLjaqe&9ymf4
z{h8&T4F9@~&5cR}p=#R(SC`nh>2e!1DU~@-51486*!qVN0{jr=hLK1<bTUaPl}8zr
z18-C?<hR0JPm|ubWy)TY874rVwyO85D=Z>2bqT_PQS}baOG-Zud-il3P^3|NSlLHl
z-|rpZ5OKda82dmPm^kOz$fKd3!7;H!Ev@*)yBf!q(qf|ia^xgihqBzy_?>8whX0j`
z#q?^;QWk5Z7S)iIK;+Brjc2bCRq%MRxi?YXEoVNRJa<=2NM&b^Sah&aN*|~_q-fcy
zIJUO3R-g9$_jA+@^ANo>_6v6&p0f2wchsizl<i6N1JXx}HgygpExW$3F|s~RN{zC&
zeM0UR9kn@IX+5<$%MJ4ZH@eqCT+cQIGIkv6A*d{8EyqmY8S*!lE}`*6#P)eFwstBt
z0Spa_9=CK2qAcGY5s}CzZmfIjSUy~3u)R?3Tgoeir7&A&hcq>85m?G^!9k!6(zNVW
zesybOGcfp~F;Zl;eQJbcA-=6oo~S$S5cBB2UP3SDDv&3VBG6fD$`*e9Gi*yV;p+0Q
zMlcgSpZehsdC@<4n_{%~(=N6LG6ATa9`;TdhWQ&4+={f=P=(j{5RZFN^pU!%19eDI
z%^8-TX$1*1mwpo4Px+W=TGb)?8IImM<F~ziX%|nlsF(QA6dx9KNQq9{N_XXQ&r-(j
zY|U})<R-4T6KjB<92W-?=ZCin_u3S@p<ah_Qh{2)*?R%;kz~<;rsp^eawxj5KT%|p
z!Pd|>!ZOgsZV#p_zJEyf;ocu_qt`n`E58l;yG~uEXbbiM4u9DCy%CjHClr4S7M4yr
z=J_ocBh<LVBI0zM1hEjP5Q}BCcd76kNs@@={(QO4A!?b$O2~rLb*RY2bniCWrQ6pR
zt3%CK&m_7%#BQBVB6wK8*Jkp*|17mmBA|~AapDl#-e)#NI}TDwrOp-JvcV%-?^A*B
z^Xgh|-^aX)?{DcjX<?X4ttnJ#sXzVgdXk!6X|h|nHg|S0$JdGSFIzBj%Qrz<X|a>{
zw6-wKcTrp1yr_W3!+vO(M@F~J%pqy41`X}VD4^}k+TL(FZ%9ZM4ceXtdrUeinpZ8k
zYb^%Yhb|UZ&XQDQEASN@pUl^RDyLmW(+2K6183RKgr|8c@g>Ge=Dn9E!tXkIG<T&|
z@Uf{3YxYo+){<lkO#v*EcXg_~NM7<`s${<Zin)McLSNQg$Neen7|ulE3M`uOu(A8E
zwI4?8N_ZT39#rHTdATmzB$b<w$$zpMXRP2{TRf=oLCLgOTdi%5Jn1O$CP@8Ng6Qiv
zsI$U!TYc-*`Z0%Cvvm4m>+JOA^88dW-$uEu_Ro^G&rprkEM>Ou!B|De#FtJPr6@}N
zKQx44L3J71l<!9T_eTf9l@!TD7iOy;BnemB50(Yda9pQeAgB@C0XHohn^d<7EeQs)
zX@U3`7M~&qQC`^_`uF})c&%JAN6GYtUfgDoA{h5a4UTwaFwraG29qi*Nc-k=)lE1K
zCDSLVb_BLky;962lgkK47(N%qe!4vjwl&}`>}EuqteDFeI4_P#Rgbq1X$jYwFModI
zaQ}AWySXt?(^#H6WSCIe&Aw-IZnPPbA@GEV=&bv?^pIzuDIh?ds6jCS1#)&ij8lVu
z7I(_(m%z&IX78v79xE8a+@}!j+z(m7!iT6sXjs?m2ae-*Z8W|lVm}qL<z~$v!u+G>
z&&t3r#wU~|+Zl3n)Tgv|V~$-~%p39#pIf4Cbtbo?M4ts>H9GrMJaA;Mro|%hRD;OS
zW?3q2k=grj<HS7s=zJyvLrl==D8$N&l)cVDqx?16wvE!9$zV9<Ln<m!<Ei4^zL@}l
z<TWxq|3=-CQtD1C4t3LyLgk~zh&oa;!R>q2wRx*=jIJxTu72UTg%86xgts014=zLH
zH=w<X>0PlGrdyf$bGp^8xX{toh<dGI4Y4_Y)G!8_8!3muZ0#DE@mKg?O*!JE;jsp@
z7f^|Ii`jOq3FPRI#5WSVS-n<FXj5KV*v&2zi%{V#aIk^8d;43y8ottgT6T{S)OxQc
zde1NnrMMzVx`wzolw=WEd4odJrx_RHez3EzUyhslZN(h<_{#?=-`T2&Ex$poDE>)-
z+W!)71}z9z7d#<*SMSWbw8CU0xB6AIr;81yq4aQLyw2r=9p+d88rdzs-TO`qH>Fe&
z;j8nyPxLeRL_SLK>jj)H(&n|lN~q419VEWaG+z~TSF9dq!^&n#?0J!){HN*Nd>Er+
zDYP}xXb(Z4>&+T>hQ7eu!wH|OV81)J=_C#@7F?aWH~z@NVT}5(d6mPAcOZ{6U4~-m
zW2)I&E7!k?tfe#)1|#vWFJ7iv6cayrO7b2fa3jN)VLe#8>~lCFv|nSgBs%w0%xesm
zQ8siB^{i<pYUL-#&FOR>9{tPH<?IJHWJ|3|FEvbCT<wfJqk_iCkdhl=ClRp*4|!we
z;kz?Mv&re5b8~cu6gA5hGC2BsUE1ZsdsWT9`!Re^H-D4Lh(Zw0nlDS0w81Mf21}Mb
zUAqu#q9(QEo9*=RbW3xt$5eiMb22EVQaVlN|77MJYT$V!ZVE#SLFCCgKS-8n@lH_#
zXPTQq-&86c;oj#XCL$8$LlQG%Jbt}cM``eg%I+_P#K?QINvXoDmyzU9!80|Tmi{2r
z_U<*KX%B9tC#@P5a>_;cVQ*WkJsOE1fdHmUeT?inbRiyRcB3Ag2Q}3;MDXM8&~!T=
zl=iILP4u3=`;FZ3EOKtaRXQISQ~tCXPmANDmH+CaSNX_p9vL^;vPk&B`?Rf`k)2+I
z^*KH?m$6UFaStXqSt6lvJnn5syMcy=Cb21CiUKJ}w=6m<Kf7r;-^;$9I^GzwKJBBM
zoq7(om00*Ab=7<o7$Hg_XH}aB?9a9m#OG%Xworiq%Z%|KHNxF6TqJ7y#J&TG;Kbni
zl&*<o+SgYQ7W^wF-qx;8(~nFSytQSWhW1a=81k&;TotKz8|wwE5A#u>=61r4M;$PQ
zlMy_;2D?ru3_pK(h=Zl$e`^5*H`~gcgU2ktK$%+OBu#Bo@2h_{j+bfW*Iq34j`qc@
zu}(Nr&pw*%Q;HDr*=c5LipGiyHx}rqNWPb_!m2zr^U@<l+rM*1Enkhjt1Aq5eVC*S
z&qOWd4+=yP^#<!f$hy=N+&IUlb2&c$feX8r|4T1pZTrrhVQ~Dft}wj%+w{e_a)w@3
z#OcmoeLvB&A<QJZG%2#3FkES@^H|>>eCxj)^u~Fs?VgV3nROO?8k{rG`-Dm^=BH8`
zorXf){pjmiH(Gj12s$Qe`;Onol828d)W#`?0+)UkyBBjUW3-7EI@{U4Go}4N7p985
zxkXe^GQ4>O_O~R{`YBDZ!#%VQVWqQ&M<%Don{)3Ecg_u_#<YkUP5=0p76xT-Oh;_l
zj(2z9FS<6gp0&xcGLRkXLhGXqlV#;~>!{CWRB{c|1de|t7AI%;HaIQ?xw=Tc7UQZy
z)o_dG;}l`A6jYIkaOe{cf;ZQ@uT9Ea)@-^tOpD#lQIfqAa9h3VanS)4ui-zaea96{
z_X>EKBet^6p>~%NZ!ZBzfKpNX-~8?AGK1ko2q!B_hYJo=GF`E<eJYmp`8#qp77ITm
z((;Jpm^NyB{lyFAFAA&-|MoB>x?|*%`Jhk5#HGYKN!g!zxrydiKQVLXMj(v0Cti?%
zy};`hgQ*7ot;w3}HZi@$ij}6ekb%_ewztADq!Y=J$(lVx1Z0zv#dulDtDzJ5{RTpw
zdDPS|f(ffZpfO}g?ql`&pqEd8T9SFY6El13UwQjrK%^gz11U2TcIYb%U<T?|4#h$6
zPVX)Kv5A0N{jY8}`zW)G9#)&xq(UVP>P(lf6F5^X&vs%&@6P_ZNoOSggE(pFrj`a5
zDVdvZAs3fteBFq)Yjb`Y<f_8G^j46d(TtS=JMXKgg-h-8?YciVKJRvam$wL1+gz@G
zzIMr)KzX+v#&&z-ST=^=aS(hl-QWG=6mM&O)Vjtg>$x1gxQVG(EO9k^{<gU_NLpbv
zSgL_r)n3bQB>%wwO}*_Ik*BTKm{t_KCUdo&-Wr<wcrSgv!c8eX4R7ckjJG91Rmy!z
zh&Kie`e5kcuvWVx=C(U^GM~ZWGF3KEbLQLMj5{4eBs7W8QS2eIkG9Ml!u0C@Ss;>_
z^lW(10V0avSZS5MF4%h`r=zIQ`cA&(E5Q?j7iNElp$g9p>nNHxBYI`#B&e_S6+*VE
z8&dg-x`&MEp?Y7sPQTNp{PX~;vCnvVHI_nFN3=ZtGyV6ciphnb0zHNsIoR-XifRcg
zV{Hu6p6>f&HdN{%oUcZ7xW7`-hFl54;w(IvpAAHj&3N4O(q6P%9?!|DyPq^Ncy3$}
zdgE4GlF=c0zYuWX8xDjEF$;@%`Y5=npNU3gM_ZTzi_{%Cm!Gt#LjOR=S6yqEhHQ8C
z4aZ}X6Gfv(L<+g&FjYr;2bf8a4J7yaSEN>4zv-VGIjUc`85SYZp-1)E(zlNtWw-jZ
zfYx+feIbIdfmbbOiLhTzsYx+v=#TJN8rj6i#0v}+oAT!7MU)V(#Nv5CfrYyPB;@4#
z7a<m1qSxIQ7BAtX7?t|kp+*kT%5Rm0B^Wpl%FwKu#~9c9;<!u)!fnQtt-QQ9<b<G+
zV#17cna^=j_@AK!<?$6(VeltCJ$FH~{I^du5)9lYtvmz_PzUx|D|;1xttk8YKL~#G
zJ<OAxZl|!Sw<e{jGWARBpDp2p8MxJ~(*W+hK%*oFn8HHyx&tf}=2B}*M2qM(QHn-W
zeD8&uXh5a-<na??f2Hhh+9dd_8j~u=S~}v<G3@I<f%wcJm#lPS!K9Xg`sbPI-__Ho
zRDW#foBd(`V({>|KP>{WQB8byJC<cg54S#4fj)&tXC|;4)EL;{46UP{Qnr*ZR;yf}
zT~2ka<Y#an>V)G}qXkAy<2h5LO+B_ss$yt6B!_U6d^7bB6<42Krcctrwiq+_)$Dl2
zXgCf{wUb15A3xQ()_^qf`U>oUtm<sTFMigCbBJD#w7ZwhsP#8jxdlh$y`20PD*lIO
z_+icG@e0<e-FJWImbBEI-&#q1UwaT-yDfGPYH6yiUNz8g*t-ukQ<JlTs@4gNd;w2Y
z>MN$iCz@``k}CR&K0%;ZLySKoMhP>!2O}H}Sg8*eHWpCf50HxU2@;CfLjS{o@IY;U
zpoI5yEdS|lb4h&!>RWG@zy;k<2#(mPSS@@TXO`ay<M8?IC?TLCc015HF0aX`jC3W6
zLS|&f|J-gmDWCI4#^72E<Qnp=yK#uj(TN>4BUI4M@L;qdy{f_z{M*T^*%!ZcLli82
z5Xa|;@D>n4`i;KF&gKizADFB=c-$5p(_l2{6m%iJHz(~AZz4+=_no)~9&XwoWNX$^
zeG1YR(qf~qtA<rMa?oCV2<gt6L6E#vSrYmVImYu7)8nKht6@PkCa+7qv^sG3KC)#H
zx+2DQFd>*34|i4V6M^y}OfEAqhBvWkb`)QAV3Pss>#fUuE)Bn{vj!7<4{QAxP%^cW
zNXCM3k~)jZ`XYr|=%&bs@_A&iR3XGZSZtDsrN}H;bQZ!+JCT@NDcHkOW6JJ6evdN{
zwLwL}h|>O51&s=sbp7{Z@rW1!j1GILb^adMae^6Z8-5wvZrM|R2DR5d@u`ZW7U9+&
zq;PRAJtQf6Dp-G7-J?{m&)roCIj-tYl?OZ-ME_YBibb*XyQQ#=b^6;x+fq}xD9?H_
zDBU>*E^f*zl}_ZZw03_69J@QzTTMUxSbAnv8A6wMf{Q|Pgm-xO?a<iUrio;KDc#R@
zrfNJ15fPW+RHm2G1--joo&B9zAGmixVUW4yOev6@gf&>KcezoeRZlsdP9Q}Vy&?%C
zoo)Lt8a~p>nd$T<6CEP_Ez0BAp6Im8HkwQuIc^d7CFKbvlVKEoG=7+I=yn&jD!b`V
zX^bB=K4y;1nU`M24HH;ur_q0;V|+c2x*y$B?&VDVg3sQ1@UzocTpIE;9%&CS=y`lQ
zq<g&d5g*3Minu==Lz<Uk_EY*E3S_K<Ef+6P=+h*`u9JT8V?2l;>Ik+@K3{sf{D%hb
zbo=BIc}@C&TU%VOa-dbBfIgFmEDXoLV(A~Ia3d*m#KG?Er5qKRp5z}R-@5lR-8Ube
zBDvPTKivtjI6Og{zll2^`7#%8<Za!dolJw%`Ni*}BFT!O;lXM2{=n7d?VK0WwyL+j
z0(xfwsk-tzGKo(@hhGcI%W)~uz_cF0$=Vs-6#rM3x9oWAr-e~QCVn7$%)rPx8voAQ
znyD?_sI$#D-Yj;>5sGB)0NyM(VyMuJ60)6ukCUk*DCb@!^s&nfwG!%tL!wPJUJhg2
zqycu;B%KGWT|Pe*bQvTlg)34hc#QmwM`&*wh3qf54YSABQCUv%i{!#JpAGyB!7M2M
z@SzU}(MUNS_EV}f*}@ek`=#SOZ9^98w>S)(sb6)vp9uN4T3vrNEB2sZt;{lAMVGa~
zx^SPYL~Q7Mc)CvZm^eK-t;v09hr?gHliZ{_?A@`;>ukKgAC5+MWxny2Xo$UZUiIO?
z2{7AHVu|ZF>LVMed)wJqBN;2^$7i>_DvB7}BCeJ`-aE{ScG~wOxG%A8UT-RNTx>A=
zjdEi+*EnrTCAd99)Wdjo)!+fl76&`Zavc5=+7j?ow1|FGO%EIAOm$@Co!y9wlJ;wY
z9Y0KSfjUtk4mq4I@6~2hOym_8gmwSnd$KXZglsPK!t7to1#9TAFE&mY%y3rWf~|w*
z*whI8FlM+eoI2Sv7AyxlcPOz$H=np_L4)gT*c_G3VG9!T*VbKAY#*Pl4>cRl3Z&)q
zbob8IaBP&j342hszQ-w~byWXTghDOA_{CT-Kl{zwcB#^EQu44Ba#%*&vyEemMwCEl
z(l?$Pxn06gdvivT5z|P>NW?J3>p0bN+bORc`Dtl~&wfYer<%-gLa?XYYttEYv{lj<
zeSA)jyQo0_;g9va%iemI3rU{2GFaeJA+7LyZ7qi!|8VJHsm-DI)^p5Zw#|8X$d)C5
z4#Ah{QFS(fmD1U2a~pdeIew6JQ|FfdIgIz(r}i@r-dyWtrY3Ez?N}h8TX2DeR}{r-
zPn9m^o2i5m8x^`h52UBKZlfUYtEs6b7ZcgPPsQBk%s9~fs5z`h1qbCdcSpY=tD2=_
z4d4iI;z=9FBvt0X8n-1fXu@kRl?b24@@;CSnf8t)k}hAKkK$-sZ)`p#^)(p=Bp{A(
zEPIqvmCiNX!C5l<ZPQu1FbBV&n<#lO#oy4#+<dhTp=2xOr6y?Bze2ddbZMHOw%}Px
zBk2&0-l2V1rYtq2mqlmt6=B8Jr&vY05+PJIM@jdFe$tqwTal$tkv4=^`~7nl^e!8s
z$(4##;#Gat-j?O+RWur~F!JEj7X@P+hAC|B10GdIjiVryEYn(2b7Irn##Fvinm5^a
zc@c<j9;2FHHk_x(!d7aeOKCo>NPgrUU#Ygi{o(EMJYd+PibFx?Nq*Z1P^|rqdOTjF
z!NSR@oIR9q-bWTPXi%=tg$wB`7Pn9rbFKyRa?DzBpl7CL61xRu5&d%}n#AT76t}=B
zWFvn)iWwkacdub1|3TGX^q%MBowlJmV^_txeqTVHRlw6k8w1+dEt280l2FPS$;=)-
zjzr4_yJ<<;1=N?Qh=Z_yQ;mU+VJl1;FMbLY_~dL=C&oSF*_zAN@}QKfA~x-2Z~F15
z81J*Wzz>y#6rW>t<CA-eBgqnvTvy+Ot)$kX+T4t0rOKal*d`5QzY-8<L4pEHApte@
zB)Ivr3)t>4OG;ZnFQxhUF5HZ)mUAtORTw9z(p&yT=RtH<>P&Gyb`^(nmLe4yt~yg+
zLjfb4hEv)h9GrnrNyvze%SZ;}%T-^?&Ka?EZBPw1kVh$3BE%HIuAOdNDYaVKyLN2d
zsJW~MpTP1NxuUCJL`g#um^4mC!igt)oP!yYa|0b!xDoJd##1=&ZUn+ml1ww94>Z}(
z#&rrC+l5^y!g++LIf1!Z+M(j-K~^j0X<Q4Z9(Nd7u=PI0hi6SCURnn{YD7t|smQW<
zWR#`Y`x>;rBqA$Toq}_CWDY3&Zck{I($^bob{E$2uZUEe?A~RXIi7+JeiQqo)ob<S
zI-hS_Agh~Q#exsxmsJ#vwXX}&%Bn?r)oT7>mSF-aWi9GQUYYDFaKi?Zyo(8BaLGvX
z=PJ;nQcn9>h7Qr(=v`JvB)3K#h{wjvn-5w{vGGc0qg9jfVJlLGUjp%?`V~+-#k;U6
z!j{PMU_}4k=>!qF;dDL{FXorAay5rK!i8XjC|I2b!KUxMRJg->*@f{toG26%v=z}M
zUR+Q|kE>=jXPS7$5>^L~<#a2C5ekSu3mGB{Hi&)(wlgKP6+7?iQcJo|6)wIPj3sm<
z^Cghr4`1T_%q2NUaU8@2M?6d@`W|NN^~-EL8LV`ZzQ8z@nkmWT(tTeO_Abm=$B;!1
z1z0`8#`A6X<I1WM>f{aqmHc{2WSWeZ_@d;KM1w5$FZdlcILPvk3Ctp!zV$vI;JROv
z>da2LhKRmFuRu(3M5Vzg=lv@2C<j>Uf@c({lO@Ouvq8v_rdoC;Vq(X{?{G%#ve6Nj
zCxa1JgCz~^_oEvK*75}@(YrHMrB<a{gy_DFlPS=+<pg4dEeMFq6H9$T9l<D8YFtF`
zc^6LXW}cZq>c-zpfC=`oQmK<^De5UTCs&}Ng1WeWlHtZ)5?GxSI))>lXB1g9OpnL-
zQ>iOcUll&H232XoGhqm;%VxAxvZrK7&on;@l`iDFx-l7y&=m&(f*h9&yjk-P=$_$q
zHdY3bHC+m55K}s`@ztam1DGKXSs@+|Hr=b|7$J1k4LaIYZ7P}V>8ppE@jGBe46mbl
zZP%RT{ib`ZoN9_q8)7CXUJUk>-+|#M7t2zLdeaz)WoV<W|1dKFtW})(e4a1$@cBiu
z_S@!Y++qLqr%Te#O$TzAu~(*gT1?3fFM}LXGo-<vfUeW=bHNh2>=Ry^<qLIl!vulj
zG9O95cI^D8QmD&QFDwj+USP-(yWQiZSw-)unv+AK0Nv9=P&u~nFy6yXc+^o48-lHy
z&W!#^YiqGaS}|LT_K|XtKZO@ijp86|a8e6gjM%eD9zf$yFZC%U?tl3#($ywCz}DNs
zif}LgU73m%96By@Ulr=C*eN9oBYaL+&P#+TjZt<_KghUYli=@RIcn$rw@tLsUx;!k
zH;*3HT^(*{Z={KYw}^CC!0;w$u#`H4pjz5+B<ZurPD!j|Gi*gN=v%~aicRt(loRjn
zgYHZ+n2FcEt}^Okq5zn?kE{N*Ii)$lx@YV3N!io_fzHG{6KAAc?R9(4L{be#%5zBh
znx2EbTds=KoQclinJkuxmS-uKI(O*ZdU(aS2|eP0E-g`)D70rA{<!nN+Vc2wa(ZQ5
zmbzwy0@iEo3`^|;m!LEK4-!~vzaKtYbmB{x2|o6gmuqHt)ox=S;n0Fb<2u~Dgrgs+
zoVy%AchCVxQ%c^*R^m;ytYA_fl5MTKr=cB9>J~iK?cA(X&DP?}yL{0<$70j4`_MCS
zOHbZO1?&5?y4>>qg$wz-g#7FmB8E2*-L1vEzP-CBOLheOQrr9E&s!J45+RpV#(Q9?
zo-wDr%mX_X`@Z_F!)hf{_5!-N$v>&I-Da%a#@>mAqVwJ;Ek)`O<>Oaao%<9p;sW-H
z5@Kc(Mlet41v}={_s~Pez9%>b3y}sE3^xj>FmD<<hZyhPB$wUkyp?&g9%3!<2;fV2
z+>;<v9Q5w@cH=1DaVh@aBA~j0Egkr%-m&6dF&UG4{^MYLiCYCSa{`IPe0>6p|3mn8
zZtmrO*iP^;1i#4ff4*-f$fIO}duO!hIq15{FoijU+{jvc|5u!Z@jF8}GnF9EH@jQ6
z5+g>4g)e$Z8)ilpW^C;!Mty{*n*Cq7l`N23)i_Ikb*6k8X8f#=_teq3A4i4gp7=k3
zhvoF*>r|OxUH>Bha{&S{@0BRd75Uhuju#|7PCjfUFv^CtBiq&=@4h_mnQicByz73|
z`2Sv71zfsP?-S?Bn^+xK;&Z#URd_5%bBntsPxOpS->(&bBalS?vV37(qZ_?M7WQK=
zO1VbU<i96dfs=FfA~{z)U9k}GxaU%#-!AxN1zitZts8mfk<J3dNr+rVY-o`CDUUV{
z5OJ|0SP{<p8X`MDD@e=`YgfW!FtGYj`s44PKSM%8lmD2@#yNVTeGdo}emu;qO#HDc
zA{eAh(^38#^`t<TOVCwJaLr=gls^wYqCpZ-THHJ?2Zx8-?oEi5tc0SERdElIzamLF
z44cV-ppt+<g?y!{q1@$ph$AIKg!u=W-|s8IZ9+eOEEYu^iWtfTE4z7EnCRXsg70ao
zaP~b@_gfm6rE+9u?nvN}8nb*sAAcW07w1e?@bdDKl9GD(@ilCv_ho9_bEb&6FJF}F
z>}Pu!=l@h$=)j24#p9l54_Wf1{4uWr=!@kGR>UG$mmHl<i?Sjv=<P6(`oS5gd>kd_
z5zt;(a3@Gh#_u?6elCmCS<nR*?1U&E9?PJds+8n(Znz4$I6E&cE>iH@>)*AY=`(%@
zCr+1BFtue3&>udR{cHI`pcd%mI{zOo-b$qNwsAB;KYth~_m0;BnZNS80H`Q1FtDPc
z0to9h4B70hZ;R9#8s3Wx6xR)RR^o=-pzPQx6u;7-e9D3il!Wmb^Ji)XsQueAUk~2a
zXvWY1eF&mRrn1-n0Vf%bZt2)NPIL?mO=~IpbhKk@hxa4W>r|@`e^+CxA1_p9y#q={
z9o{IhQO18W<{=G<#RQ`tur++JMpGv42Llao5zvt1Ok!Psn2r6a8MI^TS;BZH=u_Wb
zRN}=IsKYn5-wb=AK|b{9BXcnkje55F@Luo&0k8|?!EN0tI%V@y)I0s@{|8dkRw*kh
ztB^0%)z!=en?RmRCF<>}<KUpCs`^*-bOwy@BSJ!!B858Zkr8ZHgpWbxtlOdY$<{ew
z?KEwZ6Zffp76$-02^ilH04T6aP>YalwNq;Vgo*s|ZhgKjz}(zCR}*M-3!1GZBet9y
zMi}VetdAc(;`TmT4-O6nI&A`pXezNCLpuPP)mV=P$Kh$Y+RQc{<FddfZ9~4GVLtS1
zX?@G0S+YJ}ZUi1pTvhcEjcHf(6NnSs7|4!yCn}d}#toZh!!8P>-?kW|+1~`tIhONq
za|2E3a!O*+<GGt;7aKZXAV1!zx(3Wc^U4%Uj78Vem%e9z_~-Qj)ANnjW@i=VliuD6
z+B-ZvOdggj<Yqlu`v3@saUDGxQ8X;T;{oCfTyg}kY~T<8u3W>%W?KE4F5UyZd(>lo
zP0X?*Z$Dz*>KwpuJZE44s7lL7T^+rU(8Wh8|2J>mK!Jc10iygCpou0P9E&SbQFDN!
z@Gph=h??~#08w)Lg5wOh?8;OH9GB{4vrd&c051eR_uc`FY)74^cX3o~y4KESI4^3d
zzo}t`UnJlK#h))UuU}s6br#tY0|R+nM3CKGbar+I^zC?0Mb19pz0_{@bOPFa9h+Jf
z^A{Af&z_BpgNHpaZ~>Qko5IIS5jF7gvIM|ELTtL#)FHs<PB(#;IuxJVV`m2RuT9O=
z&!3XTqu7vIo<jJiPrx6xr|Y!3l3(6lxkz*aUTj9AM7wekU_2V~hu%H_XaOLfRn64I
z#6(X#gK*j%|AmQ(DIYfibmGUG<FEJ2e;aD(m5u>&Z)JJ;g~ObPm{=RI1mvqEtstnv
zX1omO-y^cfsHn=L2MX`q++6MgLP|Zp8OU?fMSZMmrlx9a0?t>Ga%-DAQjl)czCQ2~
zO)uWpPZkh8Ju0_Cj{n+03x3&P&f@Ng)Q5bzqoxdefV3Sb-B)VH!8m#!{^1uLKVOXG
zfc~X<%vDa>J`r-=o4R)zmQGw~5#7X<%QxY1Dk^_=G^`}Q9RcL>)eiH9cKP0|_k-U7
zc&gp<#eqoqN#}sr?Uq+qQjJ>cT6jKSG6e(#&VYU7J|&&!={>c)xRL1wPo(FgRWp-x
zdBs#Spn-yd0<`YA_R(O?R<Tf=3I4dtNo3$bu;Zmv3sA;`JEd}&{KgZz+M9N0vzvt9
zgT~5@GSbui0j7Go324KI&>j7#W#s1u(4At<(u=dDm^+#fSj#ow^T4P+=6u%<_#l)(
zP|up(r`ciFEYTjSb1<5(6BHB#?F59{M77m0sgbYK)&v){{x=uV5&EFcVScX020)3D
za)phFTBAFE`D`cJ;adkQ2w?7nj~+E+_W>{ocp<n2ux(MRzd3;X+n#IDn{}M2cZv}?
z=sw$D8XX$6pKW{s;>hpM<acBophC^~M{WK_Iw--Wid0inNKPL%CV4)c0XU?`9r1dQ
zlam85)Q1!=x^2oa@t!sV{>p73oRA?dJ{~Y#>-p0E9Tf+YtKC+M`**0*Hg@so6hH!i
zjS;hGDx?ais3gF3kH_>JywVqPcM>uV(IFVS!JWH`-Ck8GrV07?lbpVUUEHGj-q23i
z@};j`A6bmn%_x~b?MfLglxvOxR}NrI3W|oT-vek5n4<xpm)LAKU4>BI0kAhBYiqi$
z95fjCqN+?7K<ZWv?Z60BR#v7z22_pP!E#S7Ecx3vYzP1^n)3kA@c5e}i=5a4m@89m
zdiiJ~h^ixr`3lK@0l*n>dpQq$L5t{@5&|T2!*Vg7lak$OL6=o@OiaB}&10qX75zq6
z+3PDsSy`qUq<j)PN;_~Trd(Ep{akay2r8f_42m_`bYP=&z_K3;xfbaD12D^I=pCC1
zV%m&`*#1vK&_`ukc|w%YSMS-A5Ooalc8Lx=52;?_KzGDNoXk@%(~gk)hQjOif#WE2
zAqD00-kYU>)i{5enUFvv@kzJeXSZcMTLy1{b{Y`H01-{}&h#6g^e~aLtJvM~fhk*S
z^`!~(KYP}(;8^g$=V<*qpY-)qCSUdlPxDCHflE58LE{T*>VLpfj$HJcPbx=lNeyoa
z7;^#9lqTSmb-6t|c%a%akO99)RrN-WFr}{nJmxB4X?{CI29Op>-v}M82N@3lch&{B
z1@^wUv~<^W8necaSs#Lfon2h6%lkOTy_>+Ztqo+{fxv*60>#8tFH3nrr++J--4qca
zVYZ><`Y|69Q=vw&CPkF=H6e|pN&^3!CoMB`5g0xtk$rRsX#W#+-3r~#Njw*Sh694O
zvCeKN>lZM^k@21R`WV0i{%a4ac;9w&VdL%XZN`6$;Ane6G~Mh~b!Xhn^X3V<_2Um=
z%;1^;MFD95J<urN+HHOCJJNZeB|1FZYP@U~;8Yk8076r4n;bo#tUL4mz71Em)}nmr
zTMwS?M#fmf(89A&cx6q5oX=Jppk*`JZDwg~>6hBbowFMmZD5u>10pUUq=<?6J*A=o
zS@yPW-hbM>YF0r7&?!Z)aOGk_21bCfH@A3{!P@)3wEz|zI`HRU<?6ZwKE1s|T%x(j
zHqg44;o#*Yl;+)XNBhXi$^sVB=VWVRrop99Yw;F<pXsO4d%p5aZUNQBt$;iSCh7~K
zCnzj0Pj^q%+zJB@*uJPD8;lGcG}x1h0r!j<0dNlMotcKj*%28kKUbeh7@OY3iD_Z!
zfn8XWSMJ#2JV;t3Y`O{H-?wiU0KzSN&=Rfn{{14L&48Bxj_;_OHs*}!kIn1bW{Ry_
zN#+_BZP-fvfkDyc%cIu2zDa&z^%t1E|HTG_Sk!(|!N~0XR>oRJK&wp5(>r*!$A+=E
zWaZ|3_YlCL4)d+E?>M{RTZW#%m7O&J@>+m8nn~0E7+>Ip{K*Q)>52-@^fkOELd%8=
z|9*Vn;^L}PyVvCuf}ey~Ii5m*9QK&cwt!L2*Y^qp<`$5<P|z?+^c((q{DIRyLwg12
zveWJ9we*fROrnneUV&m6)JQMgzSfSA6lo+~FwCQFj+Y1gYe(@=0VHX$T7LAnCN9Mb
z0pGKVNn3Zk3i7Dmz4q3YmIZ5ciLIhK*2TUl-_vn+is!EeFpq^YV*ug=%-Rq{dQePg
z$31uZKE6-!!g3HWao|+|OCT>|U|?J@&A7Z4vrsI=J(=|zcqF$S0Rkk5m-Ufs<4NfA
zckYNo_42CabPf>dYa>j*?(9nLI$&W^3?%ntVUL{(<4zEE9a<+f2AyxOPR~CP&?3i5
zn{39}VP>-rOy0kjj;7p5kBR~v$P7AgGLkXk&XGBdI{;b<8Z87W7OH?NC-5qQIyL$(
zClDU*DkT8Wg92*FztkT#0O)K`z5z<{8(;u|16}nC?*iuYx;vKE=XB?-qN3)m8K2D<
zYxL3x-ml?&B|stOf^clTVCVp{gKgb(2Eft4sUWaagK7#CGjkxI0{CCEOn)+8iE1Fs
zOT)l=$?pNcX8~6HL!P6>6?h=9TUP!0yG&)MhfB^KV*C{#?)KnUfJ6hAJh|L$Gn#yR
zyf_`7TiaVl9vd6Gu(06Jay%A6%px5{QDZv^PZ6mHOgl+ru2#7r0><Vt0N<Okfw1uK
zc4rz6f$hBnrP`@P${$#KJS_r#89E+jNbFVneFWoj2js207Zz+sfSZD`I{8Ivqz^ak
zaTyTJpHq=cTfl|Dqzid;t$MzbaC>+M$AZHtxJ^F|Z?GQM&+J)xA1i5VPsA&|^xADX
z^*@=kK*lxYtlT6{trda%2~5BQBqLD4?alnOuLC`P3i<_za0bB5dNrPa(r{X1G(N*Y
zBUHa^t){u4z!F3_FgPLu;3XKBARA?jWAiubbMW$N_+9=aR1&$|s!I3^E=$YJt(rf4
zz1NAiGmgx+0@Noi#_Kn4x<MVSz+_Nm{uYcSF2;u*QwmY<>RJ2z1TfBo5#@?0po+<k
zd5J6=+GNXp0pczgTkB*(dIezaF`_45pUZ-`EL;QJ6%ztiP@CS+a4Q^dKPP#^G+SvR
z1KuCtl^zor32Y^OH(E_D=Belu7}_+&{NW8SbEpKdp4qY}U)AStoks4?KS1Y#3FK$#
zr5xG#i__iRR{epN59xQsU&3Ed7lnp|2&DDHAL8e_f=<d}TwPwSPb%;jcA0MRsoM=R
zw1~EFxa6xJnLV|&E;OjL9LlP%7jTOQVMrl`Z@aj>)wvD{ypC}bhr=!ZDuV%F+MtX>
zj=Hsi$kXlNA-6pNikZ`ek5rmQ^K@(+iEHOe(`!f};H+A%uGPD>J892C)?FKc$+H2Y
z9eLnu(?80C^<B7Z6+M+A_Sw7>|Dg)97!*}V3->|?mKx-=dek>>;V>L>Zuc$i(`miw
z&FRUCFvgmIJJRu`-^EPqiF!S7tQJt&wEi#Z-a4%6ty>#jHX=$R%?1Gx5G0faT~gBB
zAsrF|(z#{PB_JS;bV_$AN(+c|OG|gxH`ew%=X<Vm&ih{1`+k3Y>yIrPR{iF0&N0S)
zk9*#;(_M@ckcWlED)cAD9b4p-S2q1|a&^pQKIc^9KU}v3Fb@OiAdB2|aplSbkVFB=
zA9hyPx<)rY+_1mB^hr}i<$}|4^bJe~qlumLWiUW^kk5&RaTm9>S%zSJ3_`^ipOcZ2
z@)sSQ5v&@3d|;PwetRR;8!FjoTo=ih9o72V5G2Q|wxDJNCdIMl;e2#V%t8D8WVCC_
zeEqj94OMNOf$SVa5u``h?0PKIEvgKo@)$zmt=qSiH^|f|=;-JkLYiV{-~Q-F$sXUO
z<LSPb=y+<ugmF2e43HDNY<;A35nK>zAaBE#W(f-xBnIK4!DH%QN~HwOP<9@stH9>7
zGN-K>@DLe7$ugsUP^j7|%xzDQ?S)E8N#%#8fkTaw4wq11{(yO2zB2sJbEQUtBdUu6
zAkk7*2}VpgG2cG&I6Z`lDzCC*vPkcFR0S3_%G}F58qJ}FWDKo5B<kebsM{Gf2%Gr6
z^A$G6O|YZ)hyMN~iV;rxfSOtlTqUsiH=kBhI$m6?PB_1mT09rpTx2dap^t5sdGZ$X
z8O;MEUT^x_e#@vpxq;Nmj><R1<z?9!l^*pEEpZ2QUZwRDF|vrv1(qwdrQQturV{QR
zzn3sY<+o%=CtTs&cpkU&ou}t0!6X8r!a^(u0<q~NM{@<isfhK}UpN)W51(6iAuBww
z=SCn@uF|n1p4!odi;KcyGU+C_w%*7Ly@vR_oFaT3VHygiD~SmSalGI+#N=Z=bOnAT
zM+NUi{k{#1h7gD-^wZ#xjeZ|^Jf&j@zl8pQ@mT;C`d_)55{Br1y(G}z0Uk<k@kr4B
zrr@F9;>SCPwa?`HAuN&BEkZgog@U=<Qt%^i53qw-g)vH0OpHq@S@x@e?w%q=z1Uq`
zT=YuxUE47`ZBr&mp6`qSs}y<~n$%0O&yp5cgXr|WS6YmuDlz)qp@@TNrX)LLj{cHG
zI-+UesSE%heQj)Q<M^Fz&CHhI)ei!XXTyZP*EYAbxHvoGBD3Rw(h=Mh)+mTh&4x;Z
zF>Hm7nwlDFw~DUTchS+J^8HY7-=v1j2-VOI{0yM%>;0vjt;<fkY|g)xr)nKpxw)%c
zNHk`D3+%tr+jkOhgTT9xoD8^HV1Fc;vU6HOS{glJVT=47O8()5dzGiopICT#dAYb^
zGMAt-0nY0o;aES6<Wu~hkdWIL7-0Lcov&UBb*&J@;L&}4*z>&k5(cZGp`nR0J|sl?
z-c?uzUHSR>fCfLcbhXZ|uQz~61B5FaB&@1R!*)CX)Ytv@iZ446VAn6hv)#{+7G3H+
zzzN8neE6@l16tUuUQQ|Cvb#L60*PBtP*9ps)G{}?2e#F_?k&@O8%en5`8zC9i7_M~
z04zAn3`7TP^@vCipGTctU2j~!9!mOnd8bDR(t)eGy1J$7zVp)zg>ta6aavtj(RA+t
zUj+zf+8GLvKsCu*Z=M{UoG22|MYewr19&7O-wy$EsM^jXR*Hy%LR((`8OG86nDv9e
z8ZbSn{)$4Opt{0nRT%+9D}=Thij`VeTH=AK!21iBi_HA~%@EUhc6Nr3kKgX?SeBQN
zotmn@I$R7@sfULLgpe;^zC4y`0@IB`xEB%`?BEvT^n{6tiG~JA9|@*T9#981St&Q+
zWbR_#y5(ac7EH|Me*A_y815G22s;?51q5@eUurf?)i$?%7VR1+_DVXG!IB8@&X8>~
z;7%MQ5wlv#fH_1j&3Qa?GN4&83w?MhNM{QLNuvdrH7oL4!rQ-p$HK(KYa-H7ELO``
zV!TPs7$rfAck^qB^Nw+6a_s1*t=*+Qu%n6=r=6Uf99XnL+sKHCwF2ZDIAm8QxggaY
zU;e7Brp6#VmQPdIeLAZ&`{CB=>MABCra3=(?o;&oJ1Aym!VCDOzZL2D7`Q4D4r6BB
z1~;%20e=Q@85w#MEj|6h!U8Ze1E)@aOHuFO`+tYxU?5i+>iCQ8PS%^$oYEXv&*k6$
zGyc@ieU+w|nVHe3H!*SI;{2cyUZGXz6pn*ON?HTS8>ot1@TB79jazh{&R)Kc2k;20
zDsa}I<Kn99s0jy~tOBiSTbQe0(1hk|3bm?fzW4h2_!t=)qQ4$cMUeaR*n&r;05KeH
zPD4g%sBX4(18lGhH~!Wdu#+(?+N3<ThEaKxkInl5Rr|ES#%q}T;1tqt(=saBvt8Hp
zN?xF%M(k^eA533Ws@TB5z|GCqva&rek6<KTldEdJgQB!}zDFu#NDT-?Lc)Ps#|<zn
zvV^YyHOb*x<<xfp@TPJFmnbMy(B35>tcp=vg&sVQ@5HF&5e5j`V_DCN>4-f-z2j|3
zFjBAA(LI=cO*Mstf$dHf5@KU3&be|4VXBivD?o|`65Yba^A4MFxFR&G5`Iq%b4LxR
zdd`gs^8rR#S=r7jFziBLFG70qy}g|p1p_5AOwMlD26i<*)zgq4xA?7()P|3Mf@|uA
zG2GePE11jz^RnXNYL`9py{_S5HJBxVftb?|LTA5=O*FV`W<Lbi2A$aetEmQQjOsT_
zcs)Dd7b4*Dei6L7bho{FO;3T)f_P*xvIgMkcz4NQk{ryjfU?T-3y+JFz<9vGfTQ7y
zO?3|T8yI?qhK3*R5nRq@rza4(iMAY@&CbqVR&_r+whv52c@VMckW*4x@n`{IqFMEN
zIxSddZ>Wh}Gh|DZ>UJlkIeF|x!^tODfG+hqrdZh6clGhlgK(O%w@flyUTKw^N5#a%
zv>W2>lfxwaz-EB@3L(SN#H14b;nm4x98x>8&Beakvt!T_9Lr|l>s-nstaEQCOwrPy
zd*>7)x(JQDjg1Y(S$~(yGTV2^I%>6TZQ{OqmoHzgtFKor&=~m3JuWMif}9*?#PVcp
z=EeovGTdYb2Zuchn9vu_PEHt9B>5$=(a}UWIDbV+_+&8z&Tv~n4Qpj(1vDoWmlZj6
zdR^TquB<SIdc8~eHrj{+eBr<es%vP-5k{~n*bKM;35meYD?p5Oc6Aj{ic$={@)&9m
zh4+Aj0*IInWdVN!udRW?(XU_A0JXps|Am5pm9}2{x}VKuFQnkuR4v!WP(e}g%H_+;
zNj`*1N3l6uq#PU^FjK8OC?MFu&pxdNt)XiJc`?rWl`SuGwG2XH6y2+Uw7xj%@qCik
zwxZJd!PV6jVC*hHg<kXWu%A(npF@Cnxd!GaiQ(b$a&kDptM;0r8uNJ*yX&5dh%_4%
zHe}bT<u|>2)PFeL2$4u*GUSVG<f60P2(=ni_)u5^A1SAz;sBW5CD9*e8<>>@rxc)J
z0Le&6N(P073W7TdpaS4bf<+C~)YLkzfPKt4K;T?Iy*nGYg%b)=Qs03CN{EgIbhHD+
z>mWBqZ*T8dr8V#w$55!iq|*_zwhx|st{l(^gCVFn+Xf~UC4048UPmUG$B(yRJ>VNv
z1CIL+koH@1^8l_?6#jq{PxR~#<PJYSzYCb$VTa)zqCs_5_F+dbVS&fFnW13D9=kkH
zP>wECUar;E)$zgtc=d|OqNb_}>Lj3PJ~(oFp4a*LwMHhqHBt{ug=>gvRZifw&qW8}
zu~(WBk{C<<IeoC2t#owScibc-B;X<q4bvZ`X&LaB!<fvhu38-B2#3zX%o94Ai-fO;
zE_xv~>}+klkd{`?8(44_jFM0mz|!OIqH@f0y<{52<~$#z3YF}BuNYPR?oUbE>bjO^
z#5}fhP#K^Z9Djd|5K%?3Mf+eKib9e9Tvj9y+IDx}*j4TwCx1MC47Y`cj;{H%1kIFF
z@Hr4rHtvtUg2rGHr&&Z%dKFBRU0qm8!99Qv8cx=0fygs9G7@kZ4#9DrSf<<oe!LzK
zHY8?a;+AozgY^lQ#3oX7E#(E7svVZ5;NdTCh@e{#7h$-@0Sl}^e4}+QVP08Uss=Iy
z4f5gkataYKhCyxs#~m;^i~_pO1>h<MHF#?ns;guZf6}VnhEKb8<Hjv*<q`77=I>>)
zTxUbLV8N9_+yye@<oK8#E~d401E$92uP@PhN<zKQAF36-1Z%UUr6rhjT^$|J1`P@b
z_-N(=JOgl6Su%;ob1>ndU|QBIvm6^77}$eaPexq)127XXODS#KN=iyr*VdqxID$$0
zK~-I;+8pVhm-h;0EwE>NU|(jJrjqxNnVA!6jT`o1I#D|szDfqC1L(X0y~O2v9Qxn<
z!6iv1{>ei@K@UixO}9l+*QQYKW@hyDp1FnO>dwMYNk~cp7My@#`qt6{R5(!3ISXg#
z@qst_@PXL-i`;DI?vJ~b9fws_RdvAmU%8HTc)U{R6K#y=JYi05_YAC*U{av{=QcL1
zo&8~60<qpjrFQk7iaJ*lY?)yA1tHI)IVgxPfS|x@XBmIL8dwUL0VrSJBtiGlZ8qw;
zZvptwLnBxw)Vmxu%RTKajd}+w{0=$ykJA>LC~2_$gMc;()KWE6lfdh_ySqaRf|!Ja
z2XHo;q6eNJnhkvqe0+WBX=%Zo4?4<zzP>OF(kw9>Q;k!G>;N#~mtefe58g{I#GKNF
znw9JDoq<KWbLS4!zV5qQ)F><p-hSXuPVKFfKWRLI0S^~9)CqWo5i8``piv;`ygdi>
z-+=iZe3@m+`sKyPd2Hv)X?i2iH8eE#!fovAf`Wp^pv?$u53%n}OiUV-#c<I_;9^kk
zpp=Cx&j{7au?>;Pu!YVWTm%Ld7EtI*(A;x5ShpnEflSH@WHbyLscxoUL)GI@JAe+r
zra$1fq7NS`Xkohxo^*Zf?JqvcDe(wr^;r%VeSshkvk+dBGqj{pK!5b^mqAgItlVWp
zzhsb1SkvMzG_RM3O@J2$&LYpU^pb3UJ{UXJ?R4`&-BY`~d_&MdNF}vp>j?4<xc>d3
z56Jq0wl9M~J}}m0L@gqZ>5~eiC4~7;wuRWwf@HY&-l_wXGHvMS>;$Z4uEQ#CR9eo+
zz%X2Gm*pJQY@l0iA3AA}XX#es2+j(-OQTkQ|2%}8zormbV^V&TS~SfD>MC&ODm0)<
zTI}rTKo=-*JJEO<T%AJqXbZ?1yhss<IM!+{s|F*@y{<vD{Tvi*j~j6>hE**S(+-Bs
z$&&s3{ek?3dKkSp!6M7*^mFcOd;5C3MH%<7QHUm}oA^oY`y)`{2zH!j{PTc7k_Ze1
z&}l->+lD*$T?(!?3k{x`l1@Pp6cG^t{0tQl(O`cu0>OC?=~8F67+P9tr`UQK@$e^j
zD=s^!Fca<YZ!9i?pA;T0uFdhT*{kf<M?qMKAEfAeoRX4~lZNn85wDt`Li2XO#sY;~
znDf<)7L7<Xynp{Tg<9bAtn;qAVXV}ksr=)IXaHL9?9H1ud7e}Fh@^;73BxD}IwD|2
zX{dN?)8+5I;{AhWQ}D>h$Xs1dz&SFQQb6NS!R3|r9~2A3dMZP;)+8V~NLCG-O}7X{
z9@`5`U;hUVdzBjyi_+o&{CKEU_2|)~BKSHkf8H`bPMC%SkX8bZ9i)bM-spwPe_o>8
z+1>46YiqvD5O>$@(qll%UdqqiwJ82qFgn8c*hU~}QJOxo-H@F$q{$lwb9;Lmh%ZQK
znW1+ODI^bASVUc}dS&_jfxmjhEiWIvCU4#0@7XCh`PAN3Cj2B;3Ybmwtz3SJ2Iu*S
zYRozyk+?WNgVnX?QZL8Q$2k$0H@BckLnY|;Veu&Q&Q*Bc=Ujlz=#mKxMi*c{SXx>#
zF*1TTluqH@pyq-q39C%Hl3r7bWgPUodf_0ow6tKl?LneHpQXBZNt_A6E<ZmQ=O?^3
z`a&Yx`}?WU&;9HUSZ!--3tCpNSQP-i!9!g=7T!3Tp3DBt?ZVh@nzVn&2U8WWI6GJ!
z!6zgHXHGC~HL<devO`~%Rn$c&`pwEr;mu&KLYFfe!X^;;U26q}5~6=7iZF=}lIN{L
z=g%<Anw4!i9{xjMq&Q>VxdTO^<I1N9`G1&;r)MAX3<FcIV^c~A{6!S>=a*hlCHWC)
zsj2@cmNL!4#rrXH=ZszYxX>SKN)OeQ^Z+=erKhC)3Sw=jf)(=Y*)s@>y{2>ApK@j`
z5&tp4RG=q1vywiv;)7RRS2zChQCVm_%O7sV>wZK`j4BMAjt<Lrn##9~B!8$D{_uzh
zyy?z;s7jc!!~TP2aYBN<YvB+XmhT{&kJKN^<ug9a3;M_x*<pXaGXlrXXq<Q1;6I3%
zq<2T_MA8)E-v3+1CLalv4OlQPdjPEb3k@z+zL<iSR!a@gK?scD%sW8ouz|ioXqOG{
zG@|tXgdg&{PV|S?;dKC1n#sV($5#v0FvN@k)kOe%Xek144xyo+ti@$*br6U=^motq
z(J8DfEmh1LxbFSTl#Mh*=`pM{WexKatMIZi&cIZeB!2ZNaZb|P)WQWSuQ*A|HM9#2
z(4AIDCD2+1KWD$a+e<IHZy{bPzt%NG6cIru;k`KR{QNxp0M3I&)n|}V(X@J3JQQIP
zX$m>{#m^lb(JZ<HG!GiWVF<#-)0G%OFCkYUSOfSBSjunE5NAWWMC@Efs1ZWY@hTsN
zP6zZ*VD8j`t8J$P6;-kzk!jqgpTiI%N%``#vx)f}EcEoKscE5{2UdbU^4is_S`BXM
z!_yGSG8j7Q%#1(D`P{hfO-)Ptt+!X6CFbPh<UTz;X04Htk%+Kxn_&r{;6k1HIGmZq
zMO8qv<m6goN;VVJ$~+qeVYG;+d4A|Id)sRo92SO#-F~;pDxiVW$(p#p-F=8?wXx?M
z%uG!M`^@paJ`Nx%fihh<GmA4O_D#)ZJPB$>*RsgA7+nt@a6Cqeo0|RxIf-lncW<NT
z1w_}R#XXm^lxN;xrwl&C;3o{l|941d6#s_*xgZ8MP%8_uA`tx;FpbrGKv)pj&iV4Q
z7eGjeTwvt8qX?lW^#-uq3iUQXaM?RH0Ku08oY*)wJP&&9P&>UaP3Cuo$g;b?|H;E&
zjhP-*#4OoYCQhpXIsq^@PDo4yyV2PA`1r`kQgDtnF<FG04%cf1w+$NO5Y<XcOYfnE
zM@M<Nxr;2cndZ%JwQtvjalZjl6ysI+rO%8OKx4tPk?mxZlnsysfjpSb0k#9!F-a#t
z3Yzu3?d>`1-HQK!Ghv$E+2$6TakP>Mpv&p$DacjukdUlFCjs3{SimTEr~<p@Ptu&4
z-a(8dhmdZ1#vM9V{z?@vp_W!c(bC*pnSL|o^av36>MR;KgD;iL^2xqFvhP_Mw1jdF
zS~CD`p>ktpV!{`sfZ6x8sR?cQJSoi>CFqhYON@u`ih6$en%CgQ@7^>hz@RWD%x!^e
z@b29^5X!(jd?J3)6rsCA-?OvF%MY9wusQ7P5jgrft*f)MJK!^&GhiMdOjE}H=Ea*U
zzE=@1=ZlDLBQzRe1O&k98Nx77j_?4J*)`}S!BwJ6`hNb5c-WtZM+kh`%<@29U#4_W
zSXeRujiYFSf2#cbjwmL3s`ZtXcn}a!Q8j{Z_Rhp_u-`R}qh!+;24xvYh6Dj2!CGH!
ze|{O^CH6PWR}G$|MGzdJB{>>T?m!y>=2O%7GN=#k>VJd;*O2x4zZHOZqdcJ;u~OKH
zUqDHqZ)i9NBZ02Hp=QAhv8{H4q(&e40J`yD6bscTv?OFH@el}p%v|S&6X;AV{`&QU
z-{2pznj<ikUOJApP7&N=GkQ(a70mWdv@4j^pzPSh0cp(s!9n3<15mTSfB$X?^W*G<
z`>KJDt}C#omzQ0jn~@os8et4~<>{-p<^Q{oNGb*Xsi1^f9;W8uiA~K0A`i+XAi&CP
zX3XXyFC)q>L#p_!@q5pOkB_fh!}1X^iYTpD9PAzCvA%Ni@JJ`|SC^ITLV=Y<2|6Cd
z5N)Wt<O$FMl;ajq8)8s{dNr*#dtg~isA!#I@NCr}nE>(Gd^*&uLk%3E{+tm&gn0Q7
zC~2s{Vd8>R%=8?O4=HY8Ve$0oXP{O<DHRnTe*z$C9|jd_Y>-wQY;ENfGyPjoWc&A^
zSS^@Z)1!7!8s-j173BFq1zSV}5RM8|M39DI2(3oe*VZVAiMh@DvjHl)!K{LCo}+|^
zRAP)0r_C+S1C|D$DG?D79+I7d1H>JM?6GntxA@#n)+z}^V!67$i{x&8e)$M!J#Jp!
zj(J;8PtWOBso*ycjfMY0DC;@59JeUWr-uo>g>`-f9fGc<^@64hO?6_!{DM}OXj<{H
zAaiG+Fio-A>F)^@B_))fpR0=tz#QOeyl1&TCT5!X>g9S?zgJ`K?(U{Xxj{GuHi{Yr
z2n(>?9-u4G^o50nKJm=^4UJ;so}_xPsE6O71FtNe>>k|ErxQg#E+g`h`ueHRCVlks
zDR3^3ZIWPp0DI;Uy?6xO2Q=ab2B5r)e8?0Q6@L$0l|1({+~vEY_hpm#0UeQI<4U|n
zE4nzPLG$|o#};NC)YL4x4gB}-`(>IT+W_hE^YeqR4)k=vq?umo!zS&PS`q;QL5T@@
z`XwRS#s1B2Iml!RIZa=`g88no2O|Upy$@bq2<Qlb0A(O=tiQh>u&RslKs0w~JcmhW
ze7q*ytkw`RF^mVStap>}FpZGnz!LcI{1WxQfk0gSAdm1G44bV2RtyTWmgeT0@iH<p
zAlk%9(yn*02fNt3yu5+}OLtde;)NHP#zXn)_)uuyy~_nsy^<1kz1wdHuX}%KY00#i
zfmX;R<M2x<dwedtrt<Q=aG(GLRd|3d0nRJ{Lt!72`hPf_Q{p`~>Ti(31Oz7P%yeFy
z`opszDbd`!_aKnH(BRVy7!pG#(=5RW+ACh@AoIV7ZDI2ow<JLUlb(*kf%t9F;B9Lu
z8cb{hO#<jN0~sM3$N8d)?i#frkQ&ULI-p2c{|ZPsG9m)xNTB;Lai-!$wgD>+l?b5o
z4j4zY$Rf-sqr4g7%O1Ll`JW=(W0?}G|AJxHyC=rSA&dj+;($cxs|PY!ltbvO6n)?G
z`!@d_o6DkOAHYu#y{Lhr0F*V9F0uBl=ubsH?x~yxh(JzG9%o{KK*$b2IWs;n0g!ck
zd_0bq2;t?I#$b+SGWhIubaX%$#Tcd1xMI}#R@NR8_c9b3=jZ1GW5DH6Qc#4zFlsQN
zV_v!K9}uW0wpF=6gbgvz2QDzh88G@+b`FGBrcc-k+{gdg1B74ve{CcF>n-wd07C*{
z^`|I>^4ClG5q$l$;`LT|%H@h2xPDVCU>mUA(Pivs=Krgv<-a}+{{2_qlOH!OGv`Je
zZ?tc(l;oTWM+5u~Q9#)VzRhvB<}>ePUHVrspDM=yZJy4Of=rY_Jg-+A8`g6<26VD1
zySl%>FOi|Z7*!F+SbY@TrV6x}{fdf=OgFT%;eJ8zgIlDftvv=rTYv8*0Lmb(f!U=3
zYOr^dmwuU*N^x^amon$cF#x9p&jO|PoNcu@Enc)Hr+vC?Zftbh0`7ej0|DmUyLSOE
zJ|gA?4GbjSKR7YGbDq4FTHx~2dqq;*1R~Ho3KxGbkpaV3S*glEfD9P#*L&h+tU<$p
zl_tl4K@FXy?rxd90U`ii^Yc*2b`K3z=A=QBSQP8}bEsy2-a~L+?nFWJ=utRxl*GJk
zHS*)rfYW|9tb5_&rg6~{8H`aKrkpyB9up8po12?EJM;d$9%ze@T?|CXSN7=-8`~`<
z`M)pu>S=soy!F#U(onC;ERHBZn7nn1pEdu|UE}R|US5Qkv2c!3har2q7{c_bGG3_M
z?OT2AZwKY6B8@d^@R1CG`mm*hIBD@FHBGp`k$SNje4%(=PW0=TiSEHg&t^ZIE{p3J
z&WE8lUhtID7^wu;GfoWj8*&atzSj8aVvfG6Ue{4DtKspdgAG6YU(ep8XrNNy0Eox-
z1c*If^t+}w=VWICJNdS<vJ&|bs46K53A|Cj1m51>z*qw@1(Bue<Ue}Mp%R=dEG&Qh
z^^`u+j57{;bD$PHEH>yfFDDQ|JG?t!BOYEx69--k8QIwk_wSnkTZ-nMH#cGPaSS9@
zrzC*$RT3F659Fkzq<{-?aCky(I9cZm6)E)R3JWSTBx69<`UHw4I3))y7_qm9Zm88g
zo!d`?{uv2a;5Ifqpl*X#11JC@S6fZ(12Fnf&nG1{K;naX7zmIbU%wiFJ__{?XcW`(
zQ79k>hX<e+3;F6~#3UIsFq{CDLE(XxvH|XgsKgLB3f*96DBQSBDvZ(I(GlqH|E}E-
zS}?lxE{|bD>c1!b3&0Xc|H496>Tgq1$*I{OTvQec#EFQFB_SZ7jckYh4<yBLZtv?q
zivB^yoVqaOP&gr?k<rnay{7yE0zUhnKYs>}mVb8>c(PJvKKo^*&K8p-XHlm|fI8re
z7!bFd{ArnkdLE8^0YCg?;69*0!Jvjp5?EIOn;Bs!G2wUu=Oo$xx5o<G85)k|2?+^7
zKbDk~1SceL7=Qo8{Yme})fAf|X$tg=>R$#2|E--J=ncSldMV^^R*sE~K>A$!=!e!^
zf-iccM8;!5R}c(RQBfh=VB2wGVxrGAV)zRbFKPfXpl<>VI4KN(JKdn2gBYC@896&Q
zN1HJ5<;%yGG{9y~NmEreY2vgrD6}v^RuI-1Hkwm-%25t@4Tc?fQ>EebrN*ffz_nq+
z0aEmNYY*(Y65)G8YMYs%v4FdK2h?)2Rp@RC^!bjCjsPFfq29;DXj1CT%ID<dfEEhr
zj`hR#BU*gH0?j)@`pX|<A$|XbqT3S$noy=8{YBG2HpM2Ssil?QYf3p95EC;56YdRf
zqA*R40T+~JL_`%1YZ`VzN{nb(8C0TLTH`Pgfxcv3EL!0<|MK=4bI|f-4gP#^;4LD8
zph+U+0Zkh*#T%EgV-gbhfenV%Lp@M)NJ+H*a-uc{gm@NE6ji|8!d|-%(vJN6RnT*l
zSk&3hOGHh$xw%2Z4fZ2-USW)4{7;CK%CHlmA8qs?5O1OA6@SN{3S*q3XD5vBIzsy9
z#o{GInFmn9v0T<VP}KFBauQ=nQ{3Sfc5yidTnrkmd#tRi(|5jAR8#=-x4E~M$ZpgD
ztQoo}gnAz^G}2!s4?Y*j8i=YyL?8+9)%&gu8o)02y3h@Q0~vreA6R;W?kTpl;jH`W
z5#i&PzWnm`&j}gYj8SlXsx;w;$H(3AT&#kEI?P1z)-`Y}K~~lx^ma|-?qFb~nALR1
z1F;(q6BklR5~w}_%+b-)-ywdKf_noyMeikOI#M1>%E-VOK%O8lMC;O_rQF~8unEos
zfw6}M`Rv7KfMH_t{pkK(Obi!bbJ&kzF<Cd#*%^cbhKX+F8t#BTU@uzUz%tB6<t30!
zivWa03#Fll46Q%tIh^kmdMb~I{ZBoEH_&7NE&w_a9tRVSP~(_RI)hI?G)XaT-<Fn?
z%=35;H7Lvn7#vs$t&gPS<bEhpKJ?0ZYyM!v3xo%>4<5V_-<77g1#?@$z-5lx3VHyb
zF|Dzg6$M@?N@+@gT?oO+HK-V-_wgEVBnm1jaAa1dtk78*Fq0rc%J~Z2`*3u)D7y|<
z_d;Bp8{N85%yLQ^TG_MTxB$tf8qp6Bq*fLeKjRzi4c)I9g9R&*fAznM08qQxDtRkW
zN3doeYC?*8xa;dsmPWB=58Fr@CM5oJtIMuK15_eoyVoQfDj6#tNm?n~j}&XBVy+Ww
z_HOvnOy1}!s?0+9=WJTOh}DBwDnuOFN>1x*ARWC_L_W&Zfwl&=bU;uB0gpsRL~3^C
z9ZW=u51QZmf!WI`069N6I2hp4yLUJ~$Y*`xhX_O%CJ8>=@>_TA$Vf==!s!YyV*zK0
z)0!{)Lw$$%hbz~8`SKTVqCj})y6-6m2><M#h79S5<}mYpDk~2>&v%kxBBQzCl<I%_
z%i3_jRUGeCNI-Y~u$KR)0<r&+UZ3s|{$UC;L*c+Xv`WnvO<L*0ZUs=uVEWJi%MSP4
zv<KuhckV!e0hBKsEW)+n2{-=NuV1{3y>MRv)x=6c#0QSa7W5^pq0)H+3ItI=oDU1Y
z2R^+A{APi)yu3WrUZ5a`dUtVpdh4eoD}?VYemHOKb(92JzW?FF2LS&6&|+wf<@h)R
zc^yq_=ng}-&BDp)5M;eitS48Om!Y>jE?Nh@6@)3^_>blPf6JKg#iQkDp1)Gj(vre}
z$OelCxL+W)OtG=B>RwMbJ;$D^cjf9V0nWDE!fhee1a$*`q=0$^uxjDZ3M6m>BBJQ<
z@M2&~VmVAG`5c1(2g%UU+?*j&9B3gp2oBOj9+k4ZJT4{W`qEPDyLXQaTChTANgbZT
zxA`TH&Y7PTcVVyIA!MJ!LpT8EX^v9d*xKqUx_AELEBahAXg0ja_(_@!;(M>KFl=f=
z2zyX!HeC*ezkn>2nS}+kF&@wrr$@ow29vqAaLDLA?d_lu#Oq%F^-FG69<ux&+)ayz
zi)?`Wf1m0qe1mM(_iaDS(V8H5Pw3PUJ~2DqIFJIl@jVBc$aZtr4lTPZc%-MpjKhcr
zHs-l6)-?AzkS9>^x&w~}LHs5)RL;?ULrzL?e%{lkUTAS8;;AAm)q*|{nL-720gT+y
z$q7D^lT;eEVH}M>TRB8@=Z6fiUm!n&<2q>ZUQpD+MgdTELJc0LnXZ6tZt5Et%+AbQ
zzeBF3qGHVBr`;+KQ1GStsS2zc&SI5Xq9e!@(iE3DV}TZgRy|;hbvV%vM*{$b11y$=
z1aiF{NKODSTup^wEdb99t3JwTHi}6#cXeTQHZm?QS0zuIQZ7dcayXPj5UYWYi6JOu
zmV}DmPkUA#3I=G-FC;l9d5%L{0O8d-gt?dpxTXYDxS*ykP#Nnleu^(HD@z5N7GPJ%
z-26P<_}{~WgB38MKr*8DA3$RswgW^YCQ?vPNMnF{1vcIqvcpzFIFT+xq5V;CH4`gq
zArJyRu^jigxEx_&@+QK0hn8^TnkF87huH)m_z|?}Vf&k8#!pB(pkL6{odN|UfcT(h
z{T=BT_2|9b-SHy5E7E;XxNu6V@|c618IJBtfQ>?+#|NgW0UEf_S?8Sjg$A+I1r|g{
zpvr=gfgu906$w7W%db=5cm$X7{Co?@*5}xDfcD}16_|*S!=a%+4Ch2Gbj1Tvfk6$Y
zZ>i=D0Eq+YxngK^!}&!~lOS;;AR{{g9!OMF6gGs9L;qLz;#f7xea`j>wv0*BD=H}|
zL1Y0*+w<qo{~PXKNQ{9b3{~8ZA3q>_EsH_L07dQ^j1F85)>r7$3(WVz6!0RIdpMss
z4tf+?I=Vd&>@hRvAD03$2GX9#b>9MdR7cWl(Y9v552UUG6#L<oe}B4c)rW|@bq#7`
zIGGR#d4`7%MWg{q!;?N`M7O~d0VsM5dK=)^B_$=}dCAd#GZoNK3#fx~98wMh1rYTG
z{-ZoQIM;RC@-ez301`{!ebAZE)LMEC?hidEgNqJ{XxP}~4-J*;S-L=(UNR4H7-?-P
z21$0(9L_+R67)Pjg_@rd@#_KpGTSS0?uQmcJiNRbIZA@Z%-bNJd}yMJ%DMZm_qBJs
zK?^i*QnZU$keGVVxB|;<#IF}>JvY8zN@-V@Z8FO_5K&<ufXy9%xn+Qk4+{%Z$Vq3&
z&GCi-11c*8F7a|)CR$hwQyr2g9v+~1(;6dPT=ZpfR;wt;UB7YTJ{=wOJPbiA3deoY
z;z2tY{nsA~<q>%5IK;$NPznQ;23s|iX~H?tB5e30O?fV!`meRMv*e4@`_TPDiw5B%
ziE;?xBSDRkdFLPEL?c~A^N)<0pAwys;qjl~Gu=b?=|eZO^7hNEHsr10Sr^I<aOWYs
zz<*)($?gdoH#vs?;FRv;H26D}!A<(+)0H16o`Oq{JzOjp#7kdxX_%gyJ-fMhlS4|N
z!Arx58n$$Z`0US=H+6DJb~5cYF)`MCmwiKltq3qfK>;Mz%8Ubw0^uYg@-)%rd3vMO
z;`6rXQ)=1`6>^k-<d_}f)`JlJv+UnKq+G-5KR-mmFm(0}??gyrpz3Nzd$ozvOq(W_
zYqelU&)fp+>C1y|GEfF;%*Mo-IkT6&?(3KH6p$d}uD$X;?fXE<`t=bkA<u94a13Bc
z$u?_+R%yjhNz-So`ZUMr@eGDQBlU3cZzasqeIKR~roH)3vK~K&tF(OQN!mAS^uZ-x
z1iIdL3kfwAU#VNjrR$tW;?Te*9)+CEo*Ty82o26x-DX`lKbh4C=aNPDiAgdk9m~K4
z0gNF9&4M4Q>}#LFCO**Ls_E!hagxUG@KPh32vm~#;;7TrizwTKLJAv5GCk;QU&Nlb
zH@*5I(QzB@0^AFzAw<*U)#Rr7pI!PqTe_Vvh(+D?cJJxAncH61qdkUj=w8H0$&%|y
zX7sH{N=N_^zvm*5$%W9k#MJZW8)45Sx2R5GDK_G%S7|5PLwgrQd;Ixr6Nrb2QHy29
z7-mHIH@0PG^Q?VyrYcv|?V4t|yG=PYCP&B+8od90T`KS{VR$4LeLL7Vr-oO`+}i$p
z!p*s4dig^51a-q#zTa*mHkGKmE`RP*oWlAK;RBld*n4?&0X#1!ce*;l$z?f8?@zz^
z-z5I~W^b0KnW=CWj3=4<NL5=ejyPpFjXqQgf43O-6sVLt;5@#8C`x}{>h8WaR?SH4
zTcer6=UL6bl=aQ_hHI45_)At~+s9JJ9$l6)x8;GqDP_zbP@@))eqtIJ%Pej6yNcrL
zYBq6hSTD&mJXs%F<)tAAo#FP_TNh$_bI|zVsd&^1-lzGP(=$sQ1-8E0pv<)R5Umb^
z7?M(}_X%ChKbCkDB<~c~F1}SbLuETK`uv{Rn{mIt@gZz&<<(SHo_qCRm2r<UzTZ4P
zBJ4#5&fbCD<{K4aDJ`9FL5?iiwVu=#_3&MfH}`>KH>hNpV4y>B=g`qaH>jrL|7^xL
z|C})LD@h{2!sOoaP}gK#tgc$k?z)kWwx$X*9m+hr^h0pXq;@}MtZ6g0CZ?p}ll`Q8
zwL!VWD+s0D+Q>H@OxlF(#nnbiRj$iaBawI46-HepELWYIZn$*%tY)!RJ8%BjaOh4H
zRv<(AH>6g@XH|JGP6gP=S>sJi>Ft+XQJ680eYAraxS_>MuUfgZFp%TzCy=u`lR<XG
z)u$A?re0j<f=X!rkyf8tA5TF&cfiqFNzq`uG9Hfm0;O~`kV|!Iuj0x6I)TVZO(|9I
z+D8?2hZzl(PiLM&<bp}^G!Cy<hYI|T0#2KL_G}nBSRVve){6dicGa&ah~zp;Su`pZ
zT2N(RXK%kT`_|=T_{`<kkpASe)S?)+8ZO;U)e-SVwbH_0g_nJ59)1nXyM7yi-8Ul5
z?rNc$fz%&y+Ei<4986Ts9uw@E@#7+SgM2$$x*_+a057)VD9sT$k*LfOy)M)F_=V-F
zndt6teSGk7(pm<#?ZVpEfJNodNt&Fui_Y3+9$c~;<~)5i`z2?1-R<np<_X`Q+Rvjp
zitE3%BxRD7<hwJ{*{aAakx`v<?}Yr7EVI@as_nT6YyM|6$1)bbm{YeFog(LR4rY;F
za+4XU>w&3ez8NIZI8Cv^3GGiYK9b;yaPXu5ki>zDWQc=5rIK`;{&Eh*QE*xbV~;GA
znirNQXpP07=KPBJ^;;|!xd|=5EJL8NFlW~`YEfD=ltT~$UK4FBOyKkQK0+>!l48|3
zc<&=agzfZ9wDyTKIpMD%qv3Z&R*3@J)|sXH)oPhD+=_BsVtN-1mwHThJbpZ&Pzy*%
zHBD<6H|)nn4qA=dE;JF!9#j;z*8Q3>6<XO7RE+u7$aXU7XYFgh?Qmgxl&gCuX)wG(
zzna42CqB|+ykz!!wUAoQZINCAkr<^-(fWYG`OE|I14mo36WiZ4RE|NkPuQa(-!a~@
zGJ0Q{#GYYr-|^`5#WUuwr{Q~xgNNQm^DeB|LwB$5+gY#7WKz%jR4QC#`zM`l9QEmJ
zJGY#yD6io4j6WjftP|;3;p#D@!;Jm8^{nS^=kJO}ayG%K&hpx@q4)BCmp1UeT<O=F
zVbWH5^0PlUf6s<5vF=20J_aMj9xv!Oi9rn`VZ^PaSRu;`R<RF)ml~em@RJ~ZZuaGN
zPKYn=3#X)6sq2%5G^qOoT}AqV#teZA&Y_D^^l3WT4GeJ~P2)ECd+boD#G+EYoUO6k
zX@BD+84IIQ83)Aq*+}e#&bMnT=5$1leFAOiy8OA*l5i9bRaLgM!Dm@S0p88mh?q@;
z14*0EF5b)8<!>67V`=q%ktgj_zAl%wUa9rd`<Cat#adnd8K}j*QT@ngVi@X`TZ>cO
zCeAKp?gGZyL1|~JLnl(|RkP(Js*5s#zvtG@2ZoAWu`fQ&YV&jple#FJ<-Bjxs9)OG
zuGg`qL5(vpG%9|}9?QPiAf&>zJe~hhZPim|U!tmAYh&%GK-7~<%Rb*9u1(TWWi)lP
z%CC|71E)#saLi##AyK-~=J%?$C~bL^UC*Aa)d~YEOJ5?l=Z=1;OzI(@?oPrN!~QY<
z+xULY3g4WboDD*xZC1!o`Yv+F=TyxgA;ENB<*+e)q?!Lc6lc4;jYZ#gjKH(T5xdY~
zJ#_1Z=fWHZP0sCHLqs;NNcc^89RiU%^ps>5-S-(=L!Xd_8Qkr;s1q{iet#FW`emoC
zAb4l(ckaNlt=0JN;V*n`J@@8Clcbiu`KR;u++5<j$FwNy(i_W^x!XBac;ON)D~64$
z>u~l7X`PBe?K#m^8=m)SWtJ{_3^VKe?3C(;j83Kf`scuT)MmbTZds*?a75e{_sttk
z;L_CZ@b$)xZ})Y%dLG$`3bcL*_6@A`6Y6CDzEpZwC%#1PlNqZbFTIJDHd!+JezS?a
z3w~E1kBW0%k?_G^eizD&@}qnho{Oj?-O$zQ6Q|H>lgQqu0S}6$>MhPL8gyq!Mk`Hv
zCd4|cQ?t+EDAg|YGKEhLF{9iV9DgC?SbM6N*52cV&ZbT|B}dmjSQ7}-;x686d@#Z5
z>Q8HnWQcsmG}B3QN>Mk;ASqd{K62EmVC_G*A1t1W6OTNzm`EUpl+U75ZMS+V-PE>N
zN77{1V(rPBmZg-hMmecCJ0=smJ2sC`a+EK=?|Cl?mt#CrJIm#y+<MWt@oeag&-?O9
zn@7YCn(Xj(R+m#Ms8PXGBsy}b26VRG;W6U0e0Q`vSbhYgKcTPRKT4|59?Mf?-=GxK
zWsc5a$c>)2dBeB)FD<|o{=$ejH@@-#b9*kU$<<#Ig4up28zV>TQTL=v`5is=2Ai3<
z!m<bxI(}vvxmQk)Ve>iezI$}Ms#QNJ4)<)HXtFBHy085?b7_WYrk>cj86C3<a~7Q3
z)fAYn;Nwf!{`PE?!Ek2L#qrSwes9*<tG>pVkqX?t#N&hI4~_?e+f}8U_h?XIB!~I+
z8pQ?&g&9ZlmnOzM_t$Zbyt%m2{H|I}xGvXf$I|2|m`-!cG!YX?uaAA{TUzzWPpmx%
zvJ~J?%t&q|`&e;yV)<>>gr)oVKnEFwJiTX0@Y6$J>;;`ZvaPp|#B<q6FLUuh$aN43
zPFh-w@^)ZQCo`W`BG;CFjr57GiS|mxHk^91M)rRaR3N)eon9G6AtHYRKeCV2xXa~Y
z?eDWIVTBS(yk!Q$o~#duUJyu#kp*aJr`Ovz`YeRt`E0h_?FyvBET4CcA?T8rb70Si
ze3xb_`YmuC`%JRPxihrbKvc%%p39i0iSm2XbC0)+6BNUtNukgwNiHn0acP+>h*vWf
z!?6AlwZ`ufHj8B&RVw^xA=o8Q4}&^bjj=R5c4y5yNz6)UQ%|ILVoI4u1fn%p&=JLn
zOtAklpIrx2Gu=FaNWoOy%CheDm^*9D?1Z+=pACMH@gOmz`$G5c7zMY8&b9>3SG!Dn
ze6Qd$8iF&UpLS-UQPrZNCph<Q<a;&K#n4`?Lr@k<jira%d4DFIXA1lG9x3(QRI$*C
zu$2N?$Cxs2it0)J_n-`C9y}l3Z$eEaq7qVqWTeA71|~aazH5#_fv%2@s%;slcPW$S
zC>;D&I&$$)VjK+>g)%qEnvj;R?1$thNL{`t{UJ|TV*7301uCA%kFs2@fvFH#BpW~Q
ztejOQW3M^$@B6>lcp+)|y|x&SEW<lSEtB!*1fd2kGn*Xdw60Yg;fp!*fDi$u=*LdJ
z&Kfs^QnODKR|urpn4MqWtqB$?X=&g&1DmSJ>i7ex8)1UlkBxjPJ$T+k<KW@WWIb%i
zVCwYDy#1<BWsZ=5;(Y4Gq#Xao+Ushmx{J-?%1PbR=1MZG>$7dylOAit+DB(b6U<%i
zdt1YIl4Np7Vp?Ujv$^Csr3IatzRA#O78~2`l2J*Wzw8Z(cRap+yt^e&w5WqWNn%Ls
zvhnwYd!w0k_uAVmPC(eaWv|lyLJ<(gXf;M<z1b|2uO#fWY-Z1pTFQR2tHA3NIPbu3
zvOJV_n|dzhiWqkCcN!G`-O>1=1+p?aWH;{Xg!XJEt|dub67r`Q?W_!S?uGA-)sScP
zm!+Njl!o10-QKLG+DK+yV|C_x-Jb5%mc*#-e9448g7<8D>YEUIAvd?FFE%D~d*_qJ
zi#D6gP%8<fxSqVt;GSF5bH0G4q*T*x!*o+oX2lnl<WO|R5z1pp;s)X%<vE*+7M#x4
zdDv4ph5Xd&;Izp6{uaFn*1NZYB={%B-mLtj=Hjv*apbc|<ZFK~^8tC?iGRo{X8x`+
z4$@<!Mt@)E#{M#G<U9SOSz-1l@zh_z^LA5M3VCx=9(TExLr5Zp)SPA)5>vcPj*r^}
z-DcG@kf0cEox>*T*4gZ;?q|l8d?jh?V^yAUfK|iZoql()e7T&iX4}pClT!8|iqx#D
zMPQ_I{pQ2#mI3W4@h1b_@s)Nrsj1wzM}pWkf)ft6dTO!pkTh>=;~Ce@J27i2BS&%w
zDy^mjJQip~`pTmU_<KlhkG@M<N4-PoMq*Pmier%Aj0O$eC3!>F)HHhHYD*8bS2imJ
z5A8b~Frs|JRQX<Cc+TT(s%hNE2McDWHzvh-f;``eWz}(QhzeS-jBkCb?)*x#Rxgl%
zCwt*cGjA?$6FVw1KQ;0|U{R(>mkZgpjuJ)&9UoT?4L`W3fliBa-n@Ajhq~wR*oNml
zdUJ9Ao~`%ZO;=kkG`Z7)WV60Ys_MF)7)UJVzS(rEh_8(gI@ZzoyMEO8ThNsUfh>$H
zHm_D@hDIz88q%8N@z1T-N4{T<dhSYQuNf;5uyh-d9TE~uhXRr)p0Jb7mQVDJXU$tE
zN*gZze#MiwGTjG_DLM*CJ!LC(Ra;)?+Jp7=q<z%}sU_3(<&Y25tc0)X$F;Q+`cd!b
zbPMh>krP)$`{1LTDi3xmhEHdIDqFtzr1X(G{ZmgpTfSklr-R$hQSb}vy6wJC4;D`5
zb`sh}JuWna6*9zgSAS;`@6`FVXWv~uoSQ0KyLi}RJ6dbrLzDAkN3$^O&}@iLdHr*b
ze>!iA)mcTl8NSY6C^!7t!Ef0F4lID5ypjj57cuf)sWe=R#ctgzQq9vjYV}gZV6z$j
zn6`LPKdpAnU}dUza6;LRm369D=kaL<hyp~Ko2@LhCrP-zwf9z(mAUPrmg>IA&(9?$
z;BKs0F)8xioQRVWO<F{4=+mP%69TwyCfohGNj*DtzIh<o+_YOzr0{l;C(zh-eHlwM
z6eq&H_SdMuXp4?Pm8#QXA^%;I6G837(2S|z-)H>PbBhyx&9;x3RQffvw(5`;zo%z2
z2jHx8Az9kE6Q0ueF(1uqc-5nIvsK|&{6wQGcV64u{KP>DYBs!}9qO+c&VTlJzj2Qy
zXB?y%cI(+(0XL~D7|FV`7az3$ot9H5yhlP#v^mDLrB@Goza7^37{f<gT)FX)Ea|!t
zBQ<8D4zoOcR702;)NA!xdxXu%>51kneCoNxgT?3-5|e{{_9#0s?Az4ezUT;;f0OGh
zWs1Vwc_U+UEzhh^*=*xM1S5$`FsK#G)3{!vaKhDu<*`KAqJjjb!~Aj_@AAc^VqO2*
z!D?KpA1m?TK8k;8>Z0;-JEN=Y&ScLU3s(Na6|2dZVj+qb?d6Ue@?rsX%eD6HS$)m6
znsLSt;@X+!Nd}YpD=K=(@$d0&kIgd;Z8*8s)bUqw9l4Um51H?waB`H8@>m}k$Zk%R
zN^0)>tse8~J>g`<>50;{t|BpyTHE<!OKaJom>U8oDT|G_jC^r#W9{KnhPljBxrP>`
zo9=(Sbmb{UiIusSj3(Lei;=NH?ZPDO@lkF#R*4l?af9_}Bu^IuefjtTr`I~4Cy+lz
zy_@oAl>3;KAi$e5c36}@_vsUIe)ru$%2g2!(Y}hjpOfB;&N~~dT}An7G7NDzO%eo{
z<=zF6l?|y*Js&x&LqmgIx-WiP3;FJ^f46Zv{bI+inaq1WvLNLvsJ&(u$W9!>bUr2J
zOPFV2h<dm9+$G^$P+f1RB|$l9X;{W-b7-QjP{mqWqFuRiNkOdJ;%SIBO<$QmVW(Qa
zTbI`ccak=P#chB052&Ud^9!XMOkNRt?9kEaX{=il4Z-Fat?^B2UT=Ab+=h&y93)40
zNPmALRG1$=a@WOMjrn-BPknasEHITMP>v>=9z`w~aoTP&)uG(oG!f2#Gz)p(-=cFE
zNgu(OUMI?2X{5#mbX3Zn%AGRQI|rS0_L~O%F+245&adO|C2?%=oAj&huB^YnkY}{K
zj@oCVBJLIX-B&ofH;T6-G(DAn+;bswCZC&TJ+ItmIc7TQ5IMrVnLdcEuiM~oa+;js
z&~2$!9Gps`LK``jOR_*+DU-&~<Zn5+alF=N_WWWaxsV-88e`fSU!=FvRuY3+Cu!Z5
zjctjEMW@qqv9HVMXr!=#d|%7d+WV7~uKYK<@(bJyQ<YS$#+C0`eZDeBwTmZo+$R0l
z%WHFey$`v#WLaVymd4G54STLUsK%=%<(j|hWP!zmJLZy5t??njL8f;3v;W@>R5E0J
zLTzD#?vgej>ic-FJ(=Z9Ci9KHu>N#?;#S)A5aQ9sRAi^b9A0&STCTn@o+vX1X<3-9
zXt*%7(Q30TU*xk_^7rJCQ6lS8@1+h+uhw21MsbNndepntu|HB~#-reI$W*&;t6*xb
zsnZM*G3ECDD=`fDQHJZN-6ukOS{IYa9<{A0XRZa!mBlNe3F53Aj~use+iI%XlTqb_
zc+X1&XDu#8wVirjAe^>;rHvol^kifXRPc>5oakQ|uUVXI(VP6vb(4C`@q$sASKMNC
zV<8F`IqF=-Mp7o~9la>E&QgJT$LBf0F?D7&Gq&+btAX=#BWy(f8e`4-CD6!m;{gVB
zBCpFulyy-QgONVi$(rg%<f+*-p9v`uh~P`8(Rm*eBbIHqT#CCtzYtzsN%K9eVx173
zWf|uS;37%#9JF!N&kT8g=xD<cTlHb+A`EY&2=AITyW4p?fg{(DiTlKPRSau%4(d~h
z^<Ay5yG&~WiDP3Jk`%-$N=soxJ(~1VqO|haW23x|1nY%T@@4Z9^SqDp4~1Q(2NK2|
z)(>KwU(@5$8MEjxF&6%4H;Nb%MKzzrb@``XJIdVFulRLd8Mw)BGWRfY|ICRQsZXcu
zLL_0H#PNVObBlG44)y(Fbp-_NZo6MJ6{pCP4tqRTI>?C!GrkB}-+6g^v{K&RtZ(T(
z8BMH2zFeoWj0yXOr>_M4jP*s7B!+Wlnxhq4M#NZ9Gb7R|kZZDi2p5^O)IVv+`2kBq
zPo>weKNgF({tE+9F^zBTBN8AN^7eIba^9OWbgFdJy@{^%wBzz6oMKAxY<xFR>Y9}k
z*@A<tII~r<T49XnFYiFMkh(bRJ&LXBwU(mGPr!ZQ9BH$3>Nq~31;U^wXAXZmKM?6o
zOnr5PN9Ky%>QJGdbDOF7BgtSkljjfoX<$Ko_NZ@bbqf>>T+6(enymLzm7jD*c(U3h
z^DNFK;M?B6EB==j0Tx4X+x*`&A|lT&Ee)2_s4!g)tNpaEZd0jYZ=`CLY*pKoM&vO6
zEH6qUknrJM+;>3)w78KNYIt}NPuDB$VmUZA&bNG@<3)Txus!uiZf#vm;NjS)<4Bu2
z?M`qsW{#Yy?klDVm$N&V(l|7tq1s@1iji?gMnCxMXx2TKPo~%1lPUWR`4dLh-{0do
z;&Nr2nnztX+C(tiYglFF-ZXG^Fs^v)k9*!jtv4Qo=J4E<9%y#OcDEdJkg%P(B`cKL
zdDY+vFULAp&p5}yN!sDrDTwM8-|EE+v8}hadT#%y)5@C`PTw+AvG_G2axa>NSW_`N
znM3L0d-85Rm+apbFTAsuaXfQ*95(LW$3a%gwBLM^G|zP?j1dsAu$@(_&+*2(B;PgX
zFSZs7jyBmq?oh&;Tw+M+iitQSVq6J2#<tUBo$+rJ_|FEp+?+Uh|4tSO{cAoE`_5me
z=yStqp>9$ZQAP@;UpvH;#HuTpxFrQeBo=epC2Rg9<|Sjs+%0b{EDk$k7BwA+^_lgr
z6ZLfWKX#s4)U}v!oRQ^|C5ln0!E#@6kBm2$Q8z}|yO)q7ene5fINrey({|I0)6EUw
zOx`l>etyg98HTb_QbE4iNV00vtt6A=I$hP9Ev8Dw<JK4MIvOQY4hbJga>7n$Ek7Rr
zeC@uaUHxg1l6*ixRmG(SlbVx;gXf3blIrEO(ivQ&KwZuw`m)T1Yt)>y4+V#v=)VxM
zKbL-+ZasN^4e76-p{-bZ(DtC&pH5roep~T9u8>UyiH0^-Znyl*sxR6^{;X!(>jG}%
z)SL#}x4$fycVcbFil}p)dQTLS)NsA{sh|B9`+}OW*9`)@eE$)=o0Y@S&LjAlvfVV;
zvi4`Y#UopSx2boBXPg};bPf(Z-M<Spz1Q~>-f;Yzt>ptAQsl*$&F|gk2Q;W3lV^U*
zml@cc-=){AkiES)Ss%P{ck=kO$HPLs;x9SWkEx)}$&=syc#&Vo!U+zt{3NDEPDkoX
z?>B4~VzW9O9+hl&s7{@lj--xlB)YED+gXRORK41m`u?Ljt64wrWR>hP;uq=8eud&q
z(MJcqA3Ldz{N}?FlCAh;6z#YA<IgWq@3yaduMY=*_+}w;FcR%N=QLZ7(e=S)$20%@
z2c&#lpMa;=Vgqe=9gFe}?UyFfX5C1UzXRs6dumU<Z{NMhca7}nlErBe5a6-3dJ=ps
z_~yr-4NVIXeFJ9g#o2p0BySm(tgRo)NN!8Ta~rpN+ePyaf4bCyft&ta_(<1-|339#
z2(<8>CdWBKF6zwrE_S@xno$bRMpgS26jTzU@xW-~J^P$i%tz_Yt`durkqfu4F`ONn
z*yno}?%R1L9^8u+IUCkzsdd$H63g@M`-F%qmkj)I>NdLrZfztGC;sN{X4UbS*vz>0
z0pva#U+1yAbzTqcUUQTVBjT?;pin=M>3S|yw`US2wEK-c{v{GaFu{}mhg|hi;mO6(
zbTzBcfs?w3vZy&8_32woUyLurJK?P#8bLJ~jDtkUAsKMzyu~_OLS!x~?^8J+-@I{;
z^Qd8p!FQwYdBztxHRZX3Czg?W-0Jp`ES`_`D~u*1BLBu2tzLY`_hcfT8#!1PO~QR@
zzgCao?zt?@+E6osr|D;m%c$_oA~Kel>4nY{YsQ}Mo*FfWN!2DX7p=zfYy=aI&Yro;
zk!2Ag5pl#{b+H5Y@FX6V?!B+dcM(a&Z=$Mto1NW}>xY4dI~PYp-T1qIZzLzalJfOY
zpJ5l1c-(TJc4c)@Nv^{e3j96=yjRPl6`n4eo`cr-<2kvna4u>;5*J_pspEN($9Au;
z)Q|pRp*iE=qVtutyVI_c^WNJrD^eb2?dWD}nP|(Yv&ycqJ1=tMsXXKd1L&GWXc1mX
zMHc(3E6K9;>v`&tV#c>$gwt*rZY@#N3SFFK${Nf@+S--iB2RV#?X3gTU9z)ro-r~P
z1gcexS<WqB^{_s{{fI#=Kj{B-Y_KlE>+p~bB{!a;hBW1tE3DE#8qt@3ay3AIJnrOs
zvE`Uy#lXI(EqM!y=ZUrYPyW>4n}j)k)$dKKUK~e4>TllUOBEII!PsK0Yw$ctI_1j@
zqu^nFKJ<Qh)VBwl>ddtD?=#&bn^vP2muHn9BTeP<!{n&-uRC30$)l8~M+Kq+$prb2
zcfTs)A_LdIrtTlQPd&#t+ZdxtFq5D8$)V&p-usiI_Kw?Q=ca7J&IO_48KTxukYYWx
zUgK9#R@LNS)2y=+_HCWTy!O?zlj(3i&QUTimdgf}-)b?guAy+;(ljzf#>4M@mp|EU
zzd2g_n*FmaDa+sMnypyUl9;j6J#eV?*Os+Zi&LA{o0YG|RyP)D@8219d?c$pm%w)K
zs(Or}cOYgDj{M+Fd`-XficE=M;$D##Cp+suiPuUs?}rR>mjC|tfNA_KRx(4L8`f@S
zfuEA>6GFn)3X4v|(240e76U2dm#s9o!W-Lx<zQ#HhY=x>EhndeTWnF;S;cez<VUfK
z6b4fKof3`O8c~)dN1rUl?Hgpw9BrI8(mK^?3<hTx_Xhg=^G|-QxVO40DGsW7Xe-+e
zhoS=h%KgOsH9q(eBqY61gTouI)~_<*S>!O?x<P6<@ybb&w#y*?<3deIbPaoOPG@qi
zbL3Td8;ee?Cl&oMH%J+2zR;tJ(`)uV&~`;Wy~@+CHKC;4^ugdz!LW<WD#!BE!*Uwx
zf&ZtiGYyBbZ3FOBc9JEsWQidr+t?x@Ta0YO$WnMSq#;XLD@!r53q_VBUVBo!48~g7
z3fV#tLyI+Q_Rx1tz29+sKfdR$`x(!@UH8LW=Xr5G<q1p0)AD!UO?N9Xh-5<*dkk=$
zqy5ODY@PUGmd`2Rev2Tbt051*6~?0dzJGumB}j4l8K|L$B?n$+L5xQaJvGu{uu1%@
zx`vdu=kuZr#o?h9$(V$i)3Avt>pW9fb2h=p{}Wr6K)28iJEPJ`Tu{IH1#yC4S0<Zl
z(Lv=*%Q$P(z?70(f4{-&g?1?w@V$G)Q2AcIjYD@}>EK}fn-tzFrE11S(|n4$_b^DD
zQzzET>t%(L8pmv|uK23i%a6NT&e@Z$BTThBgu9+{>_~;49<O!XbE5>ULG^2C<dbP;
z$2eSBl`{{%w<2DcEiqs_CS_1ua!biSw4_D%Rae|V%bo4(BTSrH=62U)LimnV<TZRE
z89$WmS~?_-Q#`PC(8aXkeKK>o$0nWVWX1c3YVq?cd3<{~Epusw9-Lht&O)2P_Yhys
zPji~G+L(3W%P*UHpYB8vGu%4jVN^E}2T(=P6GQkU+>o$HdkQauGL8g~a=<rUAUhQ4
zW-l#{9jqg{)A6Cg;#^9+5S%DCdv$RvZWLac&IQ%*7Eb8|@OtaEK>X4Dc!f~NQ1za$
zpkj5ETv&Z{gh}}^p;+>oRR2=m>=<(LgY??BuFAa2FR%%UqZv}D*6$f#Qhsgz%o5sO
z>CI~7I_VVJJ>{Sx{Zalvyt}=%%fipk&852zswA;Fd;hC<XXC$YU8dtpca07+w#>QO
zZX3(%svNc!z2M)Hudi@llSHl|Rg`TzRp-6CCWTdI@r-seyX&}F`-@|2ggEn5b~XJt
zI@mx4uiW||x?F<5fY;lQC+cDflC)_O6MUpwb8#F_nQYNw155c5<RizV+D~yg5#_RT
za&Ht$xGe;XFp0*}YOy=TG0DHOMmy4Cog<@?O!RCLaF{g}KO#etFoB1&MX4PgUf?B<
zg%&%K>(W*ISDj^r!p!BY6U>O|V_LXKH52pEyRrkMSCMEzC1P|u*I>OQF*@mUw0*O&
zSj)Vrg<Tj!HV)@3-MS=hfn`tjJLy<}>pRUDTB4TnX7M!2FkN`AljJlSf#&8q@@p*t
zt)H8y+JDw(;B{-OIz6+qX`r~a^#flK10GJS?~Tv$m8rVgG*~nPmz;QxqZt+(Yu&-3
zk`g7CABv1bCF6`Fl5r>$EG(f0BR#zb2V<iO$!YkQ@|O|1G0`2I5A#}(>>><FZ;$Ht
zIR->*-7lrVc*99E8pFfsynDg3c^_i>fiPh#mpz5ILYfmDK{3=$P}0_mMQ3}U-bTA6
za52iaO;$CqBjcDj@bM)#VN&oJ441TUTju4HmMo0|jOb=L@mN)&nN}Z!_d=C1Csc7=
zya>*WMU(5RcV$W_n|xrH^Qg;(OA!9Q8Wb)sT<|>8%e;oPOI`vpmpuF^eOBQXYjo)c
z7QKxqSGR`ci`QE&UwKRuE6If%C=(dT4V7x266$T^#N5MhSXSZFBGE>)TC)r2;3JJA
zvYy`99LGnEEr(ir9ay>>#U7Zkqg&fVe>~%Mijxh0vlS!3$R1h3oYdN#{#RhI#6J>l
z`y1y3Cl6V(Z(^Gns#v|boiW$YlS{k-T2cnKBWvruf(XP#Z@FxdMg<8S7W7^81m+de
z(uwtKwT@p@@dY!M#|Dw;y`jR_C%ugd3#(~t?%B({&d_71)L7rTNOUAV<?pIFXV0vN
z8}_T#nJN?(eIv^!nZ&Kb5GSJ-DNGQ=`erhp4YfUBC4y7QN^sXqjub{snc}iC#?ohd
zQ;I&2oQVnTr%J;MwrdVXbZ8=~d3ZQ6zA@#!8aHw*MY(m8naZ0_Prc0;G-MRLsZl<R
zGb1wL9$e62oL~*N$lxogM7q}>x|SjFWJ=^!nW$=-tzk}Mk?M<|G5rg<b43zEis_m=
zA6qAf%e~G$>)#Vk;<^7qw0I$)>%K6G?$~PJWpk|g==8;fW5nTgWVBhLzS~IW)r|Uw
z=NyvTc{q(^4PLK@99g0rdh(YM`NNsmk)5HQV8-DIX^#y-(b!Y5#x-8`kbj03@TRL2
z#~ojDs3pIc8=ol;toutT^gEMkXKy95C-bbC)&pORuZ32fu)CUPmi|Kc-y7ug;0ZdP
zD_gHBAGt9hyrNEF9<vJhFH2YS(=ONSXUtyz<+4$ttmcr6Zd0|kUaP<5K<a$5(3PMh
zlpXqIeDVc*Vv@l3FB>P_{*l1aV9YP(lsKr!<a{BMKa4L<o;Z0?6*Ate=wqXVQ4b7_
zHhh(I93C0&L)<Q9LmAi_83l6VjS@Dk5uFjfjOBv^^<U+(t@aG8sHy1Vs8^;8FBKrM
z&WZ+ZFLKwfKU?51kAM0H!9yU96wP7Ft*V~ZHvNj9@ZPQ!MIgM~LsMxHtC{v<EdS=!
zAu0}tT{o@Vo!sXFpEO<`_WS2!;zqKDPQh9AF^j_k@#siTM5)*T_5RW`Z2tiNurotn
zZ<IQgsdxU{zQDncjEtdYB*lnq^0zk*Achk5WfH7}BW>go&g=ya-At3KS2;~gKrS|^
zKhn;%O>xE~(P-U%ia}J<u`C(Y?$_!Jy>nn?s&)t>sa@2g#3!3dKl*M4SjzK99~=g%
zPtiDL;nUv2VZ?Y6%hx~c_tCCQsrj)p_Q!CfnHLjg=ke}UAFdO2>)xgwY{}gT+uRIj
zq%8W?T3T|^++o|le6Y#Vz3K8W7lR`=i(-N%B`@Y&s{QFxM7Y=1u+C-OS8S`TQSw=|
zBCWK-XArHcuxdy8E~mbH%HEo)%6>KCO77by#>-(}fCr!!g0O#{Pw={V;I>=S?Y9*t
z*qWty+J!^5hx3jbEgCvmTGrb?C!{lE2W&t!gzfzNd@q%&Hr)7Fp?6PrpPYT}-OR%r
zD%@fJ@WjC4#&O`l#Kl+CPehAcG~C}b;BnjO_fsO;vl_f>IP(3)%5x+H@6jJaVv^dv
z5UyTjq1m5L7$yaE9eqc-m12&<B;^x4sz&C(Tw`A~@=Ss$@34s{!mE;BIL(iiI@2o!
zix*3YFV!hOW6>idpb>$Iqzk)qMwo{sJ^xL};YgBqrO>-+nb$m=+B8}TNQ|W=<V_k|
z91aipar-;nxa-L?^7BkIXlBG$Q%cQ6>X7puYv%Dj8X<(6JF3BMcY!`>QKf-C+*=p>
zwW>dCoNjzr&g;)DbSmvx8oo1({k0rvU)p517v0vXZj+ABZjBM&(~YMq{_iI@6KhgA
zR9(l9YDZp0(1qT)|7Qs`Y3;2R#TcZXL;aT3AQ08-P13;TQm-rYe^fyT#4y#MK)r7J
z{deg<5uol6>h<4dw@q+XR`^(|$Acm;bK-g3ilK*xjCNr|!=jG<JOaU3gwfT)3F0r}
zaPKMV<j~(<Q3OKniDY!SV+++JzqioNr8~U{0vNb%@8wFoWtOe$q10EGH&KOE2*fJY
z`n|I~)HwNk3NoevU*5Y3IrCtMeYisC9tvec$;vi@fX>&>)Yv#^wx|G#M)-W(poC~D
zDGkWQLNyBHsUWalKt4A}_yp9}A%%XDv(`2D#S5>u4<w6=!TJL^<w^J4B~F}p%>!)f
zj~h97L9%Pay=^K;2=MbKj}5TrLMr9f4nQ@J)%;64zJaapCa7I%7ds&rSBcPvw6yfB
z`IZ8llSbM6nV2y8Lm)Hjl4CLMhmt~AV92LHgP982k>X;&YrtyJ`R?6W2Fvs39b-W%
z`R&IRByYbT_+0k`NWAv;_8vv|iC5u}#ttNQPU##7XF%xSbMjW@Gm|Pv&GrGtQX@-N
zS=kSerfjpqDYx&eR16p~4Gp)x+WC*Rz;bGv`oS35^Wj4~&(9gt5Hgsq&TUmpxm}7i
zPL-PgaEq#A10n~k7`1_0*ITV&YimoWs|Nv7nH98d14UGUU*W+6AVDq-S?$%Qrkj^J
zhIf2(1;C;>@h`bl*o;jF4uRCr6)-+>scEX*9rSry+i12^H&&2~6JX-+EbynK0o>Bp
z*9R0bkd7<wtW%WW7X!vI`R$uKr9oX;c^!%^%{3?hr{!?z(gftM%V0Ph2zGV?vfnb&
z(*rdqAdg=LR^vOR@fUfn^g_iIcD&SKCZHmAr}Z_#VrE_Cky%^}W^R|*Wf3(<<A*L#
z>%6#L8{3k!$j4b)0#jpzeE>P+Ff)ULgTUGZLp`t2?*oM<Re;(7kN7oSZK1up8@w$)
zVa_)_X5R4C(*NO(w!7f}x)7q=M<5F~EiDZkFh8M04lf>fy4?<kz3Y-$>w(hXK*d=q
zu`w*AfydxPw4=(=N#{ZM?zOFe%6*ngMQCS(x3p$-0X#Xa)+$H$<{W<UF@=*|iQPw^
ztpj)YDJbewkP9$BodwTrD^Va|=$4KC3<I^f>OXd43WTyS>YBSVrtasu0sQrqNCf*Z
zWWnq8D{isClB%1@&)~uHpY&M0SuZUu9k|_>cWxx5J!I#L(AH`x_f#gO+?hE`BX}pk
zzFoeRO6~!zhHgDI`qcf9W5I=OP;2tt#X2~2ANTlJ9&T<6l*4@`zeBCRlg6J=K3(sS
zp72u9)C__CfpV(c{T9Hruo0=7;*>8cZ#74Ae#>?YN_m(`0FfcAp@5g-h<bGTM&IIw
zC^6@YQ0qM*A=U`0_qRJ0EqeSoB&+|t%kPm2kOpY_oNZ*l4P23!lao_YB4szUwaUmT
z4yM_P41qpNwK@gBh62g?gnWVs5j4f%WdN9Ta}{`CVIlwp{RB~3T3UBCZ%{vSA3j`R
zcMHmD;Grx)E59dzAza+t!62;u`)r&x!?&p^sJmj`uc$Esi>eL)&uMd*$@$=GGGb!k
zjS0@G+qOwa4TjwQ`eBl1rpJtI@Nx`*TKC#G=TqHBfU5!7?yo@@nm@sEmER@>$ONju
z33~D=_~$&yy%9J%09#<=PSSqN3mkr3X`Paso=yhPl@!Awc)Gf%C`z`YfFZPrQd~?1
z<^n)nsB=Mpebl%+?+N~gAxqKp{EsAoOp$1jkUMA(wE}0G-Xo(v;$#)=Nc3H{BxI3}
z#i(N6C1p&~DI*}itHJvSE*%dL*ij|&J=r?IQ+ys-P%(+H)Yseavx@N!r1v9lF=U%;
z%z{vAczyj<o|BD-TB5%c`E{)Weq;PPm0&}x7QmVdUU_pIindT|qCf=%kUK7czPB@7
zX|7LmeuAp=wLgD8U&0WIvB4D-v<s$^9Igr2;F~c3+?e-Q0Hy$a+MTs(Ob1d`He{;<
zdO1UGfZ;CX;{_opw4I%sy8#r*(Fxgr8^b+4O%y@R;75(q4GKrzzI}_5mVQ=LG~o&H
zu@WFLxCy{lxQUOSU(H9HDi@6Z0)Azxm84;wGy+bZfL>J)!GNv<3bVMV0hL~mIpezg
zc-rTA@LWnf4;uXSa%BFEMT)6pS7+z<3B%eS&vdA05dyJog2g5xF+f)DxCaKFZmoXt
zVyREl4wzq1Xzf1p9ww<nAjjMn7l0>Uns^PM`Y!1AKGd*R0E&IZ!=tpcv;ig{>&7H+
z>j$8t^sqov2Z1IY;8HQnaIL?mRh&vZoL|)d&O%k7-HAgXk@lriDkebq0ssin5d`W=
zS>0{ah&i4A47}R!3$b;X06_wd4Vr`?m=TcLdDbnTwTdIYo&fHuD@*eigv-6%#Sl-P
zvk_(OaC(>>b_Q2VWhLNTrOD1|&&4>RatjJ5APWr?H0}o{|HqoLc38tx^|P+ateIIV
z*FHlzlV%61DhB-9-(8=R)FU%J2uKcIv|}^$5jGp}ZpmqBH$a56<`p;kZx;Wq6r2?x
zx87NU$A|bX(@_8<Ya=*6Z_2w|yS5Dcm#^K%&s`{3fN0!_d1wRcVg-gSNCV<fN6wL)
zXEy(cD=1hb<$`^ivb*3vs`!fMgrsDes&~Fr2iV@JXU^aLr2xsb0gUc!^B6`BNNc{#
zF=H1QsYG5p97vCp+){ERV5dR+``(~Hf#3t|4!kf<+~ud%D9hF*NzH)@7hdKB@43JR
z1KaBP!{L-&z^Od}{7gauvhD$91DH_t+9$dTuFHblC7BBYB>J*`X~6ND;poR%#>K?k
z`W$sU^yPSX?VO0AQ|HaV{lD=f#KmZ+3-=AoEF+D;r2FUk!#ac!%Qww>N7>t%($oYU
z4X|nN8|!B+<baH(UOsJ#T|ztK^e{uxl9F(QcYyW^Y)BMJ=IjM8edgbddNSdlKM5TI
zcHg1g2?M2!EKJqc#={P+`xk6;vsC<Ug?J*sbLG!V*%`He5eh^P>;L>6^4n5^K+OO9
f?uGcj&3^ofH#x3)S^j|=^;0o=Cc35Ce}(=BrHlYu

literal 0
HcmV?d00001

diff --git a/docs/images/flows/08 - Invoker Get Token.png b/docs/images/flows/08 - Invoker Get Token.png
new file mode 100644
index 0000000000000000000000000000000000000000..2e39f52a3d12efa8c19ea3032957e9f48d890d0e
GIT binary patch
literal 55546
zcmc$`byQa0_b$3o(O0BYx=}i%8}y|Fq`N`7yHh|=Qb}n6>Fx#*>5}e}=B2y2i_ho#
zyW@^~&mH6Z#u;av;UCD$-tXFLuDRxX=3LLSKg-F8qoEL>KoEo`@m53ug6`Kq(7o5N
zd*BnAZS7w0<KcTLaS`bD?%(&u>?jB#gCs=WD7hwW&ARAejgCQk4%yq516ijsFiiO4
zM&Wh-o(w!pq^GGDulIAY+V0T>uXw=dL{pKGMBn7$iO9L{QbY$3xIc@u+>D)!Kfl3K
z8#jCo`|)M@>SiiAxz=GPc`_=>Ov+IGVE`r^Mjr5IUcQnTy89m{9ODH;^wWR-Yk&WV
z(Z7G6`3c9r`x}g$t3*!hpUXPY{x@CbpSulV!q>esv$Fb=c!tl%T3Zbke|;P+O}ATW
z$Hv9=Ia>_U*Vi8%^fuD2v28If{}>QpS~+zY-?8xqK?aA7GQH@rx9af4gr6E6uJ(Cd
z9N9G;A0F1*Er~f5bhfs>6cW1a{Q8nnv#KEcgr1(0larCrsx=Vp`tr0n)h&sn0{umR
z-1aXiW=yz~P7peAI1$fKgPQ~7dOWInd$trY6%OVv=j9uxLl&^fpDZ(8W+W9Rb{~54
z=1pG$hyS$dQ~vYisCt*(CeL&G;VkLf>s=p&Bd<JGM;M_=r3STh!bp}hVdh8VCpebV
zRfR6QbFxC$?2uNiz0qL0s7ZekOZ+<wp)1>BoyP8>ql;sNV%EE-57J~)1(({x?)x@0
zG}ts>b5c^awYFwRCvr+iNT9ZIzl`T~+H4OaluhA3{~N+gML`j5wKr91q3d-#`tb?w
zix)45(8b-|FTSxDJVeF&?x|6=Kd$4k4X%LpS{{)yXjFX4+SqNrZBj~%qLyXi8<;)X
z+2K>0<5u-%dlB%*UtA29=APztc>?WCnxxX&gozpCI^vR&GQ<2Bdi)<@JoGh5aTAMI
z#A@^Pg&?(N??#3mpPO@&Twa@B0gsEUNO<gjTXJ@EbliU($D|z`5@Mt-=zf$_TwIJ$
z0N<*tlFg8*k{`3t6U#_Xc-7=}$<NO(iG0;Xol28hXVm~!zDUtDfoZznK*%4#kA1W=
z$E()D{W3sKJLn@TJSW9glZMM?&hz@>n9q3&hJtd>m(=G<K6Yg^U-iCkTwL6&b)1nK
zVyqBaSXz1sgWK7aDxeD<biSllE%H2_b>RuW?+Y&Fo1Q5*k*&6#g~-Us$%TY;V~yTm
zre|b4Chz`8Ds*#}Vb3-*lqr=gRm#9;*!hK4F^h=TF-K|Hk4!{V6zMf^mZpo%{M*as
z+b8Jg&N$sG9D+vOSSxMRsh(vf11XIjr?JFQ1|8wG{fBF*J}Q6eJrH`xOQFEgh;`gQ
zVCD_rFzXb|#Emuk+!i<A@N#f)(9)VM{QQuTlETBolgMdBz-_w#yyXG(QY=&t&-i$A
zR9#*D!-o&_Dg}D#&U*_j;4+8R-t&`b8&a<$`OH4BDpZt|nd;@ngk09_c&Jc`*>G05
z$-u?Mg-)}#*Z$u&Xkl^j>({TPU=_Z;6sMCa)M<48^Zkvr|4f71VXebjsMr$li=uG^
zl3qtRv1*Z)ydYz-UHN41AwTrHz1?~JPm5L0{{DW^VS!rd-|)tK%SZHhYaa8KF!Ce4
zyRb1rM)OGU@ZbRQU8?!<;|Fm2E3k{eN@>>GQ$nEx94L@X5;qcLHC3UnuA*K7>;tC2
z<96_)JU2QT3p!g(v;j^ZO)DNwgydULP_Wx{+3%EzjEvkr-kqjW9o@#~xc*(K%UY<g
zX20H%tI^+M`};4aq^IzlqSk-L$AoLm3-14Z{sf0Xt=@S%5RI^`tSo`uEPZCeq<R|Z
zH4jR@ToI#67Cm=(`SkX4YMGfPuX_6pzfp5!U+?RSzIe6{C&uo@2|fh^W}8(M0_I)8
zhG11CyWQ`R#4{!O{)lLWe-@DdryG_Qn4_32BQGz%)}QRL_z`#EWYG|Up`juB9vwNZ
zC7GF-LEp953(jsXcT?RrbAi<xkA|c`oO1AXzc|`hUpHNmz=g<QaDDy7*$2;`J-Y|R
zG3z>CnjweHODk{kf{j_k%liqq43?lcFz#ysFfqt>|F0<g)1l<wo9jzOET^OOLEt|c
zSZ&}@ye>Afp;xvGuh;wr2M0ksz=nELg?u)KGND&`KcPT<R#w&&kDc0v27dKem+h(1
zMh_RGNj~%WCINE8`6jP?mBQ|x9w`|aLC5tkhr=iYr>Ccne1VZV%RILxSgOP7`=4WC
z+IGw-i$A(EdEThzWAGDYYpxN5-1cs4WN&Y8?K;P=+9{4%y@%cO#XsjsKRU1W;!~oX
ztPi$UR^}>Z(+wx%9<=}djfI63ZSHV&whw(DG*wVgFjV*6Z9GkK8?9Y9+8FK;`#UCd
zdp=NhK6(Bi;(#EP!y@(|A<L{fA}GqJcI4l%;M!paVpZLf2%47xn+<>e{;jBBU*VnV
z?R{s0tW~<cz8+4@=hx$e8;l`%wlFL!WHt2TG5PO~4wIQ0I}kf)JQ8QOCd)Oet+f>t
zSY7uP{QUgDmMK&#O}7{?>P{*xEd>FRM8N$>+j()?rkR+}xnR&#DSs4v@+mz0A+*-$
zxWaKWB*iRndvz!%C`i;%X*E4&)swke+cT%^c4s4|7iA3N&Zsc*kw1mH&2xsVmFA<t
zYv=bLp@T_g=j5!<)H*zU`m~am01o5Oa%Ce0Nv#P)@tX@oG4xtKnnD74Wj;bv5DC7^
zSw9WLk4k117O<B?aG7-~rnkX5zZ4Jm+^!rq=c5V0G+*Bvdh%a+Jn{UWgpc`uCb$2$
z0finNM>RuF8AAvYg+wHU#CeYUivo@SOz1mJa5~KtGP%e(j9iJCBS+*E`ZW_mfc1`h
zbX!nSk`l$pNEpRWuT)J|n?1ErL+O1fy{6J+@9Es<N6*LujNX2sCSDw{U^fpF%TUR8
zOEFPb!JnT($0S!eCeTRtfb@4n(H>DH5!j~EX4-!&BZH~3K3OfS^*qm#<BXIP)1mH!
z(3z!ozQ?{VNgXs~#Saq;6BCA|nblPp2*Z>cAI7hfy#D4P@9+CKJ8Q;6GR>s-n_V2e
z9XC;18|Cfku&B#)nP55W=p&)CkTMQ=fIeQV5q@AA4GM-OnbIx$#J{uI6nMwYu`#D0
zNf}NPlJ2^hUaN22bMH-}{Ruy0OVn}5-(lB{%v4E?3(pDWSpLsFT;QH95^zt7J9+Tm
z$$ZgMLW5){+Mbm7cr(sKDM?8p^hY{80dkEaKcCOuhdD6kb-Y>}Y3R<1?#Ax^*miRH
zq!^u^;i<j7Jqij615QZmq8w92@%DF2xN^Y<>bggmt2#;%`oD7BVx(zfXrd`4>_7eW
z5?525+&cO7>sMstv-;U^aSqJ9VglEH?Rbnwm6V`58LdzYS9dGXZC$qIw&YB7P-9Vl
z2^MbeKab4<9=o^<7`wT5{0kfKaP*+oV~GU-I&#VXGioy!RsY{n_jTRQIe!Wern#g1
zXA;F=62X$0(cQ%I)}5~u0Wj!moe9CrgM%B?KqR<x`sIf>-7yOnx-d8_E#X5gF1gZ2
zx)_E30iN~G4Hpx>W*7E&z&DShNvvBSpi4}jus1-1EzUgo?W<LlviK#8+)>;eZJ4&7
z{>5vlVG8;I=PgU`ixv1dego>vH>5>quOqF%z@)E;RA7*6Wc>GiUxpr09Pz1@^jTUi
z;&d$?9H;)>O|hcmAn7=|Pjc##k;}|u$<-6q*L5Evg>Wf#dl|0~K`pM~*7GCf@+C5@
z!^mynNAw?qh7K&9A9qV^VOJ-q8j^C+{Q7PrYlLMv;n7-anay2{-q#>m5Po}Y|0a6R
z4<%qH_Dzqo%?9ymHns>Y^?ZtR?W<!??>?>QBYOo@=&B4c6;Ce;Em$a&qB^n7XDtU^
zDt(kF>sFRZ+e$Ow<2to(YK%`zb<%GR@?ppxyZ<FmBSeqhdj5CLXpSIA<3x$oCboxp
zR;1(sJ2_SqZr-jA$*aYGom}5{evPiMQ*7Qxu}Wh@zW=&MPEz8tsCxET;YA;F+5O_f
zdytgAbNNEax6bA=quY~L1tA?h<tneTI{W)HxwB2?dj-mE;%Uh^nb_0i&vXyz6=YHx
z?Kd&zOCHE9$#cR7^+O^SGT;r6-rA}%{YlDch~+?@<94E}DaQ;S+dOlYAHRRX^I-F5
zWHR{EUBkj_Wsa}q?YeqpRd=N69}gqf1Uj;D-L_B8_T6F=6R#pee79=HhfPnKzHY0_
zOc#BY&z5iGb5Lno_G0*PHfrKtZS!91aJU*rIl7-sL^L>sWaL-QcyChUS^G!0;_K&u
zit`;fuXEBqJ^rpkINbaFa{AP$HT81-(!83MELM>)->R=nk5MIZLRN^WG1i*pOvIBl
z&BoMs<Ksq%jL{HpF=m4Ntiuv|eWqwhL4|Hoa+P=AuHd4TYjQTl=QcOh#D^a_!!JA{
zx6IwouUDd3mTe?hsdr~SU<)oj)=+%aXL~w4t&o=~C)2ETG=dP4!5?Pgq&g`77;?*R
z`+3FRP`xZ>xo1dMX!PwMYF`daR4QHAaRNrp-ZP9!-BY$)5`s?H$=a4jlMo{sv|b{S
zzBH!5AUnv=S&c3NqdfP^`AX#6qVj@g3wm8n7i^65+Hry+NIRASK8V#yYe0>{DS-tU
zLJ(Y@T?+g?y|hydrYsp^8j)*|fO#({BKgd1n=1bAbB*7EGsO=1t6@?otjDqUy4Jsl
zijS*&?Y^3=uZS^bERFl7On?C&EL)aS_**R%ODf>TLqTDCRMPa}X3i#TS7<RgMpnAV
z?RaB{<?EaBwccB&o~M<9(fXs^v()pq6`Ozd9q7UyiL$(Y`&C&1;q|z$4oxAJa!r7K
zAe^|$anzx06*Jl76Dlh-A=QiCujn{IfNamE`_>TeLTRctrrDCVRM@p--uJgN`5W)A
zE$!RlMcGECB&lbUiO(N$nh_mu{MxM|?q43s()^6IFi9Qc)$H#1nMcV2MImc~;ryAw
zOvUcdcWeAUgH|em%RfIb#-9Zf#9`TtSSZN+V3eI(!yS!J&tDn9gdd}JC@6|ov#%?4
zD9AGFHa<3O($1goIYJaDJ2*>ypx`xBj}!@7F8Pek*U6fOpP)P#8jL9!OF5|j966DJ
z*B3L`7}f>?N~FIWd*4Ad9ZL&JnMf&J@OzOKs?XiERQJe2()X?}TC38NLi61MOdnX3
zDnw$h=+M<X4#>in5q_Fr?3SP`&;C*>Qn*Ai{k1&!7OcK#)%RUxTO~1$R>T<%+jBf`
zF4jFXB}lS4A>U<8L-l*UqEbGBN$%wAU`-6J?_W2}CA`wR3QbK(O5od`)M5GBlImG!
z+d8(?AQ+%*_E@<M7h6>-uxzTWAThm<{Qhg}4+8mWR!7I4`lbdNRfRWJsy$ST-hw1+
z%tl4$OL%P_hrGiftxIO=XNz&yaeW2t>lkH86YzQVU$;N^Lxs?_jg$!Po9vFZ3w4gy
ze=jjSEtSe<enODZjL3Z`fmKm(ydiGziGk>C?a|s|ep0)C_D8|OhSq!hPo9LxCfAo9
zx>98yQ$C;)#OW9sO2^jZs|x>&a;RIr(mQ%j=e%B-I0IB*aj*||{=Xi7koMVeT@~8(
z2(0A15Fx2?bn81Yit2D4cME(~Kw$W4FTCa(S^lW=O84mcdT0ORui{Kb7X0_{WR?na
zhnWmXxT#6%V|^}ul@$wmH<>NLuuHX?Xdk~ohSYhG$NTJUqfFPnj=!WesV3>#M?El5
z(g1*_eIbMPv}S8tYr~eCUqD&{!%3&{_+AI0wGUkn8Q)ghQc$Hnp8IW!!IDnA!JbVP
z=f!rj>5cy3!H=d=6~aC<e%Nlj`a;RP%odl`!@{7{gN|L59)I4#Iq$D4PW`cu)08y^
z2E4gTY{g6?n5>?wSTQ*-^N-N$ME>9sx|&)b%-}rJOAGxoYf6-U`X`@4f`G-EZg+HI
z9k+bV@*<&dEm7>;Jk&cN9od3>=@oU=!DrY3JwsVi)0axVV^$lOA$M3psf(2v?3iO^
z4L6C~!D#JkPr#sb>L1luB8Rx03RXdeVp+?Tr?@+(YjeXMvc{ziJ0JC>)w)Yf+s48l
zhh@O8z2{uD^3xj}b)17}KL4r_U-IO4g7%I&Ke(OaB&=+se_b1;_Yrc-eBEdE4qemk
zJ-wHf($BAo@tTUg4P)gE&!l201$Is6xF^gjwQJouc<IU<5S_xf4jk>!`2E%m-15^@
zC!$)<!;$k$-P_Z)ES5#{cDwT|nokd)G6$66c=8gv07-;|ymFF49=$M#W-v4;z!*O!
zR?aalwnYPNyx!sY8vk`2C-MH3WwPo6agOcDw64B_{8Wb79$SJhnH`U+4mme`bPhH3
zt?i~)zmiH5r_0at<_R67mRN3AeWaH?aJMlErr_m%@3DJc6!z;HgG8YAB2K!2mcLi`
zdY}Hj)&Tj=jLTJwy3q54-LVt>MwQt@E7XB}kmx=r;&X-YRDOW&%FKFf?3^bD^7ns+
zo(gfCwYdiUwg^QEko$-}o&O}lHK;;QSpza1|1AQWY%p5OJ$e$Q8@e@~e_bT&!#2f;
znr+7^I!IJJe84-<5SibNg)Od$FT=wQrwLwU50$(;6@tnbq{=9s!I8*a9N?Cd2csDz
zq$j)CscJWfCvC>0CdiCZ3ME{G&lfQuHWMG<j;r`1p^HvrJ?X7JvrR7~Dl7!<sp~LL
zNWsz|-*k1AHa^)ZI!2+>qt2Bs=GbqIH+g-J)6{Rwn@Ws_TUxHCWG)ACuKZrWJO7f7
zYxk#ly%ffm@y|ZMtRr*|dH`XGx_P)`DWbOK^2~iPi(yl=;vJCtVx();)lrOkaP)@{
zcd}CGxRR%t%LeDL#m5~{>7z|j<#D^8P2DHGb;b{Q9-S+E$fgPYjE?$l3oFt2!ccyP
zQfGI#vF~;Aoq-K96{gA%a^sxxI#kzj^9=PmT0?0@-&8Ul`t}n~LB2GS2%pPx-Ffu3
zkH`+*{MO%j(kRxt#OvZi>o^FVL;T)6tZmq>T`qC4+>r(rcRJ0jaJaMhbjEhkfH&?o
z&Nw{YSgE03DwAau$AnJNHQeq`-gG8apFKhBu)<1`T0JSp(a00^*yv$TYT3*PZ{zMy
zCRy{H-B!<@4`v$KO5B7kGm0a9*Bx-K@<WXMN@V#ES}l<pmDuccDz8!2aQIh<-5dl)
z=WCAx@p9ZNGT5(A;&s*G%LSr5l1uEA{caYH8Me34&o^Y7kI3cY)xuL*n&P^0uD3!c
zB@C#gzwslwM+vp3I$VMe8G5@Q^?Oi4R+P{D{xL?g_CTq8C<=_qB0!E(<bgR7S@ZY3
zp-TQj+P9heKTKog*jvp;+(|13BUX+hX&kMvA3$A+r<Q!SPoZb^PG7d&Kte+}nWpP8
zb~Vc<xoo61CP1&Pb#B7=Es%pWQav_H&uxTQEZ{-$0~M~P@n^re>wbGm*X|YEYqp;8
z=Dlu+s9rO;T~~5F^eaz@p=6=@4MD3{en+AFVd7+Mc@HeUX1<zMNuvJj3}<0)RsKSe
z%!olaQo67zYRfY(4r?<D4T&0vKMeT=_g`9iUtZ=Qc*!}rj$1gC5M4$HKs;_S?%Jv*
zq<4Mb7L~d=$2viUom`1!*j*+9vzs_DxvH=4%DJ>$j9gsG3Qawli^=EWtqws9y}NC1
z=0#LqeO;pNXg=7fIBnuiaF1Pcldn03J*cmI3lNgJ5^E%l8qvu!`4ZZ-dea1%8?Q^%
zd1~FBDw;#SEy^+q>D0rXQ9>@Hg|KQN0)F@I&c~z$lQkI7#mQStDb_+!9>y0OR2e&)
z#|76NOhc%;b6nc7ltHsYl}<E}<wS!?PZJyTCtuS86J=}c-pXdUCIY)4*01+(Lyx})
z*L~lahATuZHf0x`((qaXm5ke|2GTA*R?V$zduyYB!3+Ot;<}2{iOj2C@1ug!q{|nU
z@W<;a&5<Akr)4I$)fy*D3YD<&SRXB^r_G*KlKo0x_4wFe#4-K|z4z%%ShrnBgo%vR
z*bh66i*uHN=2rZSuqOFJgLmXeI$RF+Ui@gnq#M$(WL-HtqUF>-{Px#b0+JL1P3(sg
zqKPfkl7*)#xnWp3E+FZmCMO{If==u(!$3|&zzuy6CY*L0c~j|q2o<?XzEw}Za1zT_
z?>T+g3xB@fLD^aZV|drehY?<$e_B`nc9wjHglwR*g>oZvVY0qx@4AnQj)ty|%epqh
z16mb0Yi9iS==<MewK85=UniYX-FVD=+EukwD!RH4spA|IoT%t>bM)EDd(SL+Wr()C
zka~e>e)*xinY4Gr{b9^BE5g$4>{Li-#qxYCo85r2jxyh+Y0uCH`gYn@jh?Q&(U7+^
zfdM~`k^W-L$a^sLZ8e4DV$uH+jTAMV#%iYScBz=Nhb}dsU5EU`+$5KSXG5qk$qpKH
zj*Q&$=7w32ZDOE9NloeMce9RBsC?Gz=4%HR(TjXE??LPF7x!y!GA@g8O@0`Da!-W?
za?H><gQz(gLlm^|1zI==`_*%9ejk?tYk97-`}p*D3yZX3=`2%__z}|2?&E1!f98xK
z6*(FU^)#blx%|;8r*ZxC6A2*~9xA#YUY?!%`CKuHDcA;)7uOj!`i8D0krYA+)k))*
zgO;@tWhkSLY46Gj!dk=;PfeZvKzi((lwIVCdD48c=)`}VUl)V;dT9`G5{9I=-L6d+
z#zHqj3WcX~_aN@03d)x)b33u%Lg}skV1t(NByyOcLIcfLb!}-UT*waQ21=hELk*4m
zK^Pvtowmg?9*NFM_MNM=uM_4Sq8M>=)Yd<b0|mPwE(N5=g9H7XJ&ZS$upIyG|3U;a
zz>QQoOFc#>|DJD?z_SzPnZJ8s_Wk&T4u}X9W0n4F-Qr27vWeDamcCdI+;hKM#yO9(
zP|3Ait>sunntk2@zME=USf$Zz{9#<#3t_JyftkL_q{^uW(1IIwCrEp|l`~XKBj;xB
zQ}OQ)l`C7S8)9kUHUhRgSDC$?a?Sb}PPMZK+fsan>alHe$(nRFQGtRD&K+x!G)hE_
z@SJG2aZA~TsywIYEGsR&M4T|cd!CP|oaG#jepfd?L5yKQo(+wG7#<T&PlZUCA#T^R
z8fC-#4XtQ%PucV9^h@y@UhWu&ovTc(lV%>Gg2KxrMg%6xLU#`fl0(fNT4xs%s+T-O
zq>8tr$zF-?23XZMZ_cH~Q*<?7xoKHhYP_L~B7z4Q>qtgkUHQk+2C}WYLhHkgqfN|J
zoBYB^hLlmi+h-)d#jEqAdLQ=mN41H~uV1){#ACuu1LZ0Z>ih}H*QG)R>%LW99!^?u
zS3z-IwyRq0@lxkv^EBZGNI$7y>>25%Dpb*AATb)@uYH!P*IwX0@psWB6xhENX`z!q
z4^M*@2CVAm&d+>!BlN^FDFYx;&F#qcm#=d_n+0Zm$i_z>xCSkQmSZA%NF*R=ufVc;
zSqdF#LbG~UBArYsy;Wx@(+C7Ngi~Xki#^jsw#gcP>Xl_RmRxV)?ev=0{%n6MuH*w{
z<0fGPRCZ*}6<06h%;j^b_}n<+ls8SGl2Q;&?5O$ZNOH<25!jys_bz7fY}xh8Uk<XY
z?8s2$G8wzqwJ{465cF{`ltwLNhza{@?RvCrl|DjfCe0+SD&5p&f-y7vd7OEIF^7~l
z53d(o$fT#tlU_8$uTqzAfGW(dyxf7Epvla#_lw{@A%?a}uE0&*AqKf4HCEq{`Fv}f
z<>e5wTGRCH+v<|8TauY_3r&@?fQLxX%}f=dQ5MI7-|yS>xMUc?jMJX43{HO7d+tC`
zl4T@y)%F;aviGrsCKz+8Kbs|$rFa0r(s*>5&34=DTGOP0#v;%xTkW>0w1ZH#8>$a%
zNn8xo?I)z_Dw<*_JnAUA=4Sbt1WYPtBblWl%jV8+HS3mss)ux%;B=b%HwWpW_8>&W
zrLO|ToUpsg80H0&$a*4S*oJCQg7JV(rA}?ibE1Xg9mI1;Z<N_52d$}Lj+(ys0rUcX
ze>?VGJ*93W(Hp^sP|er)rK|kC-T;YIp961r{u%93(A8<85KUlT_u#$P?;J<MwCW`a
z$Ib6OPWxo2noAj5t)dwB6pq%N8+tF1ELUx{>*=jp!^xNSmzWS}NT6%ZR|#5hW}A*W
zB8=10X$1C<=tHMM<jpALU2Qg_THbhX{}q-sF*&T$bfM7gXQ<KA`{N;g_HCqliTQDw
z;eN42xRJVjUpiJ>9y?X#Ty@z;s<dyj)CWvDeUCBfyx1xzo&^iW$g90CH5<ue5%yr3
z{L-Jpjx3r~sAj<QET#=I{6bmdRs9%50EwbC)5p@gg8EIal+^rZ#nS~bCr+VGGhh0l
zy_29rVd2)ScSP5zYhsopY^@6G;trlM^XcJojac|OMzs37H|#Q2N@mibk`AvJWzXN{
zuh<x_+!;hkrO9&0BiHr$+eiitn`Jd5vMTu>tt#*7yQ(#xm<4HLF*t`zGI4Xq>eH0K
zR0gfTQmnWY@ofJW7r<|!{%rpl9OfH|VknP=oKK@>7CS&k7Npo;VLi8=xz=&-XZP}~
zxxX&5tVEoVL?7&N-!Bn)g5zF8$(0scf-ZfZ+sf={ig<U9IOW;8jdMwr!OVO9Ez~m|
zKQi#b)79ahXw+=DGWj1VKKPP<b??I_?>BeEUrtEAWJ>bjfu;m9+w)*!x9j%gY$P&v
z3bojk<HXZkv?jX3jXxWf5|N2*V#nK<kscgv5Lckk2ohAaE4}FI&q|=m+BZCR`3!0g
zb^W0_{pG5+ydFITN0gSk)2E$2gJ#kA^SSwth$Ek3ikl3noJNY~gt|~nb2$c1`SZ$J
zT4sUE;vY;^iL|i=BX13Mrk4_AJR7vf+JvprN7<!`1!LWh3eN36@1lwS=J4p8Tf&F_
z6q`&(UcC#t9=m42>dURrY3L78B(xDYReFXjwOFX3h_yv|K9;T(q*put{c#$;_oR)P
zkF@;GgL~fRfvwQqukx4TXyzy%O@bZRT=OQrUm}un^_WX>R%kxYlB-#@@%R-^RGK9y
zGhc2;OZ9*{N$ttavF*#`!1?mq&au|<vE8oTn#jy?GhNRzUGFiT76n^XpKnji_g>tu
zWJ@&@u$HUQY53x^6wv*Z=VCDyvb`1?>$|tV(DhCp%isTM{u_66nUQAi_zTb9lTnus
zFE>Obf<s|m&LcnnZXHE#MPXDc58&bIesQ`v7-fJ=pJB^=i&|`1<_tLjc&08tb@C;9
zlm!!#Z>L=9uNhQQ=?|H&5{+wgtBD=~NN=;cydz!Puj)$gw~RT(!7<40w0zcOu!d3`
zeKu<wpj(c-E#Qm<T{z2@;285+$Ngf@_*+R8GZwOPEE$PK>^G~CGjdvHTCI6tMQI!~
zt1(zx?4iJT+s%bOD#W$;R7jQ);=esIh(PU5=C)`&cq&>R{q8xOmQsiuOOz$x4{G+D
z`&oO9J_LE35cgNxd-F1fkFVisG;7v6ZIz_#Hs5UVp+9PU1=*4>ZRQEd=A)5IzGNt#
zwp-pD=(-F-x8y<;;s%C#U3ZUKJc+YTc$GE3M}9vL1An2WaiJ>tGC4k34)v><=L9l*
zJ%w@FllBiyMF@t6*{>*O=`)Ku8p*L=TRO=J_kNCP2RWsr@eW|dv<pA`m|=nvhz`I6
zU-RiXGkQH6@nCi8fwNQw*>OP2>~%v0wAURnfPTJqyl->+;}oTtL#VLV$3>pEnBj+7
za5`<mtV15Ch-Uu0mX)(-ZF`kud>)&>_<`EP(Uf;Te(`zgx#oRVeLNLn;-AvqR;IoY
zkD!LV;veER%Z*2ag?xFm!L_3Y8-GJBc=SK$K(ARs8A9w9H-F1W6Q!T^Z)K)@=yObI
zIgH&tH$8aiPrBJ?zVrcstj<u}QGbD1_fq{~@Qas06yZdX>q#^cL%p(1Y-eJcG^row
zZ&~ym=YRN|NMD%fnoO1(415)(M`@>|Y`QookJ9l>c!4GQ)n8mzJ;Y(miuY`&ndGL~
zMYq<Ik&Tt%TY7X}C}sjx0L{jybUb^+-(XF*fONcIW3yNx+rJu!nv&|Qa38P82M>6K
zPSX0Z8m{-0Lq@YeD}LN&(Xol4xOjn6P`<?3g7^tE?MynD;OCU3Cu4wxJiU0-kaj;!
zb^x7CNEcBu>pn%CMnmTFk-SGCgKYGPu*bRE2DFfgn?iDBx_aiKQqrJPcuMZ5OoCh#
z3s-MbNJFApsf?(m7G*owHu2nZC+#<vQ(%Ki=!lC?(|A(SCzIauQf`|cw!i7p49E9;
zp+pdMFwv0NtlitM&h^6wZu&(R)Sje#;hwdg)!le$pb8`(#=BQhae_EDN$d#Z3_sG{
z8(bcYx;b6i%`P^?M&HIICB#lwC|zUHnk++fwkMluD1I-SR3dn3wFH}M4Z^HbMVC)G
zw~{<vHMw*Q4MoQQVCYv{zNRzD6_1;Zt%z1fKo(?6cAPMVl{3>1r@2_B%wNDnd#Js3
zvfsfp1#5$RC9S@z+e(WQJxN2V_Kuhu??_BHl`rWk`@zqyl)0}rO4<MDOe&oWMa3vk
z;VIoAO|C-WsXTUPx6N0k>2HEgmXDx6?hiUEKD_4^%Z#t&HbTr*AkDrv$Plg|xG}cA
z`S6mOYn$77!7-)%W%Szm-h$@oA?;`FXUJq&(4M<ZkuQx<Rh^~5RK5Wpl5acSYns*`
zgF2+2kt>7_mSQ&Zm@#9~_B<{fEk{LG@8{gzMjUpF;zW=DH*CigF=$!NQ|$0uS?gWS
zU{1M)Wl(tX#ZjVeQ34OfZF|yGiLuF8CPD}uF`g%pA(y!|S+{n!>V<EdxN6+8D(>DU
z7I>z<U3D!kb5&wo-_K?^Ta-_dMeOhX8~M@2Hjk}VhDv2{gpr%S<aSG*qa^QNb}>n%
zr|_r2O)+AqO?2w5d5(zFnY|Ixw_77>8LP6XjX#nS)6F#8ie{L7h!hb9v<Y^wSWO`S
zP54rbz9|2m%5uYlh`8;f5l>$`@RMV;l~6M!AP1TLLGV^b2qnd4&t&x;xCdTNTM-hW
z^(zeDEd`!LiE@W>kBGBNd6gz0*vuEnPCKj?(e?aFl3FD+i!{xq2^{`5@{km63fkqJ
zky8uVLkScu#<UHz6Txaa*;;1QJX^8piDSPk$)ejAvWZGnZ`Mk1)-;}!14IR<k+E7h
z7NjebF#8kfBOGf~*%GHn_(0Q6;s!0KFhG&eH5r%ux61n}>^0sk9Qa_;)c2upus&Gq
zy+QpocCpI2phb2UH#S|n_AJ=!aV(=|dt2Mbpdb%-_XB>}JzsYCu~g<WVu*%oTOGwl
zBcu%3;wvg^kC~E&tV-r{OVO&o{9>7d?hkl;E{Dn0Bzw6Skh$<=GKLbsnL*+2f+4)h
zEWOxqp5d?SB{9qMH2sb5t8u!^-m=kE&WT&?VIwDIu2YGYYh*M_u8GQrGDsCDeH&r>
zsn2ZZ#aZqr*W02PA0)HJOT?+}m=or0-pJfn0uH&jcM~$nqTVa>Dq<ENW|@jTBL+>P
z%Jr;DnsI&Rhj2BS{GkNbLfpQ6zseGDZ6&w(Gi1tAi_jaaKD7{g3i&^HS0fK~gN*?!
z`Fsw(D&)Pgd1C|vFM}vg0A`^$8Hfe=GL93B$nkBf7Gyo(h@gF4ci&4C9LWo)<OaOt
zwG^$5vudmLD-?+(Ld{;ROlg=4QY5^Cq4j-{HjE8s^!?bPe9{hdh1A7|@7)?1cnaET
zLEFu*@EfLN=CK^Y3r_}t$pBVV^E19-yj%r?6nl>aY7=UHDb8%gbg*lfgw>G=cO}E;
zs%H*hA=T}3jscK<^ct*UESBNp*n7c?BfK{7LH{X_Chn^Fo7UWc=K3LOhL+YG*-d=C
zY8(l4i^&jPXHvm(#2!!VFlZZxu`D=8Mk8yMQVI=gB!PoAl}udZd_DTVBVu8L^OO?Z
zz_1iT<rKGdvl_565w?b@g{2{xTDnAqJOmR;*r0AEXJ=Uf|EgcQI+V`;EW(%@KFHoT
z$iOV|LKK|iJ%tYzNE+-dRi;1z>G&(TqyeDZ9D8-sFeY_Q_<g24H<YUQc-a;3`l_c4
z-NLzOnzf61GltxQv-H%TY5#&G)-t!AcN4RXvfl$FC|^1D9)zh(A<KnSIz*<(p1+I(
zj%Y~U1f<72$n2G6qbsD9v)Yq?MqC`_82Q#TA?x<!0ZFhiXw>T<C?(Lp7{Nc;-v%>C
zfpx(I4`%;eG?p^l8Fgnmy#W>?Sw$?Mn!XQHiX`bP0S$V$WYtgLun6D_@xk8hB3FBJ
ze{f3s?BjIqH{~*xz8tkVvJgO1d>tLZ4gVx*5NXsk32V)D(n%vQ@MVo)kTUmA?a}Zx
zR=cy&@dNdA)01!v#A_I>Y2dKOM>BzYMiS9R@p4$A4p@COx&Fp(9Ido*u3eELG~Mwb
zkYV7kDXMpOE4}r&JXQ}v$$V*h`pkM3CO$}%MiV&R9qDKx1Am&3!%k8lnXjbP9j9G*
zy24IUMngy4%77d%d_fKU%v+w-h<F`1yhr3#BmT~9wu^0TTdLN2FHFHqz)Z!7PvRLE
zM8JPk%m@BSp{XY_N9$lQlHzgS0Z2s}yNnVqXyOir7}`p(Rl82V*P$3CEUvR|?Aj>8
z{$O37&S4s5#F~Z5VF}wA2{Q@^kt^j+!lYxYFm1}fF)gi0_{H?~EW2o2pGklmdxrhZ
znL{n(vu-OKWM74zXJo6-SdWCH3O-I6rP7GAB=zF)R3g593vQ)h#t=px?h&~;jg?|n
z+M&aQW7oC1WS7lbz+rs{)`)J_n8-vNm?&Gc#<?G;nS~F3E<n4#Ui1`2C%QLhvA3>Z
z^N7h@wnh518h0^!HHBc-cWySoL9lBz+bP0znVh5xq<jg8Px=6N%<17O>FvERvN=^j
zu~zwL0*+8egXE6Vj%G*<aDvmnpM-)<01l4d1&jLsP<h%fzsb@PfXN{`9J<*elpO#V
zqOegj@I8`kzLJ{LU&#UpXja~<ie=u1)|^zZlkoF}|BD538jjh$-BxrArGyIq-!y0X
z4>Ky$AIJja?)&|ZSR=c!h+9%uz5C<=<_}kO0_3psEG2VA(%!++2<#&jy!nw2IpD_{
z!m^GSWW9|!H@^ZDpU}lC(7A}H7n=VR|4vEY`ifmz5ld7a&6Nl<Z<oOFKg1aVK%7zO
zidOjCCoHe@J$KPsMyw`RA(uPc0Pmp<{hOR7^M%hlNCCCDqXyq>&2@|vC09^ZU_NtF
z2F=Yd1ck?qD6w|VID&&9%)!<I5W(a|Ejs^mgAKT0Lf}WVBvv=Ov<3U-8%ELlnw~y(
zV=O0EAtRN?fU>8fqw~=JO`!@Ks<1rPsztzN>chl;Sxt>WkF%*}H6?R@GanAJ7Y>^G
zU58?D3~+m|&a7Cb{rOw+B(in!3&mr|P`znhCVIfSdV1SAe2Ke=%KOPz%okGko)%Vo
zDa?3s4Zng53twMfOH)OOWwc}vz(!Ro6W8<P(AIkMfTcNToVXT8Vo)7!{~=*%6mrJD
zbFL?bu2AE7cvgS?f+zN^+HxDJt8kidSdCb$0)C$MAu1~B5eyK!lapNDJcHu}%ICgw
z_sRhb;O1tZ*ROq9%NTn83Q)pErT!TyY~|mPUW1YN&+xPI6o3tlQr5!6UIL1h2|K|P
z6ckBG$t~x4n&8n!9$-oe3BaynVPP2^Y>Gm34zc&yC5dIQ;Gt4Qbpak2>cf;ZvxN4$
zsr>&A0Jv#zSWg*2SYSGhQN0EOPW^0A5}B=aoB33dAKACQ)lZ*3)zs8%n$CCe7zSVl
zr{e`Ka?2E|Sg;d>iM1Z`lMKDiA<3T=QT=GnV4{KzTnZ_#{_$GNz$@h#1v*t4`pjyD
zZx)prL9J;?1UVn*&5CrJcNP~HcXvriNOZg`>=fEnYkw!!h8d}^w0O9_y`OfG=lon7
zJ8v;bUHR2%`oqi}s-(I|{T-o9rF6N#Y0c<#nuM$v&?i|#K5}o=C>%o^148m>-3#h*
z|C4Uh_X%P-<T-73&m;Kn^SsH;c$|%H^zHH;Z47;Ma{do90(0l*bP@GS+~I5I1e&?e
zS4{&55;P<nm2;dOjFnpebMF&xob9G*U~N#eJ@dzd>w;bHv6YMI8Nlvi+cfQON%}0O
zt)$vif=1oC5cc$+oe8V`aJRAVWC_;b;QAk0;}^pJC)w-2dzrm*o&5?5`Eqv*Jx56q
zV10&>3N<xUpVD%001jsr{{S^5rLuCOj1$cWo#Q}b(bQrdQs%uBJ{M~}J-ywz#(ZZ+
zjzew4Z2f6(Je$wO26dy(?H^%`mF4B=ghi%m8ENA?xrK7h8?0{hAmQ^E(S$57FRzXW
zQe7pbAD%~TxVnIcddR<vKwOR}%4*j;OUHWyPWSKMBK|E42*fntZO727K69C>Fmvdr
z)GSnicMfKVOEoshc6D|6KSZP3-4=K&ElnA)HCvAhQN8<yNk|BE2y=H#fA9N@8R#F~
zJD?qJ|GCm}K$hPc%IpEpNngKk?J!L|{-y|P+*eUSVa|0a3{c$-03{iag<}pw${ja`
z=yqDKb8E_h)?jjS5=*r28%xHBxTHz`o<|svYJB)L;tX+^0FlPy$BzNeJ(<_Z+}Zgg
z7@HmpTzPwQ+6-h6h{^J`N{eyh{-jAj_-zfs&@3Di^twPL;<g1`@N}9Y_43vF-6k-}
zh@t+o{iUV9f1_L9@+KFlT-XDi`_a)6Ag0%PdDy_=@K^@*XT-#45MYG6-Cmz+R#~be
zm)>X-qZ~8cuOW2VItDyip{qUN`q?=^rI%z>qnvThF7r}~MsYpenY~jz0MaiMN+M7v
z8iE6U1-##HtSc>c9sLLVLhpZniV(c$bb8-sNeq^&GUpAEyb9p=SDFnQpY1J@dY>%<
z2a!$U-rw&a1saDnHsjv)xyH*+PhXyFO)4rW9f8kp&(~6&>%F=nDQD}P?xqeXy>Sfc
zLyMgLEtq(CISt_<A@ud>v-K`O6G4a?Xp-us5=mi{qEe{w6h2~Jd3gLoA__*X>wRuy
zX<49AC?hFZrp5rh0&13@KVLWM%$FL7uV9V?6@d(l$K#~H0UNl0fX9iF2L18L)%hW~
zPCkDW$YcNm9Q#2U2#tV>Oc0i(oUa0`^<kRYPpWY0eJNnycUy8+TTYghl$1!tF?F+4
zDWKi^30UOQ)i%Wnx#{WY(Zc?c{`soK*0Xh$3Y(eP*}#Ip^~A-*y!YF1tzQ-&$Vpj!
zDto!XnWvyn^9Z-kxcp$_Pns~$xhUoN_d{A-Oyq{ZWBV()tfm}quFf;vlfQh~YbUg+
z>1VT<<A+=?x2r*P%a%!&bZT*`F|Xk(H||rQimgsB+mD`Q1K+1ptg7Qcl-<CIhsw}H
z$HJgl)qC8dFn1O`yQ0;XA~4<2u?8I3T9~okA$Elb33@9fg_tPKC@a-!b|fJoadUIC
zt`0}k03QF^O$H+egS7#WFe%+9kW1V8{R*|Gtoin)UZao%Fu5J-TJ-S1dV)1;Xl!J}
z2|;{T${2J#-EIclYry+f=|%txZqL*{hpH?mBa@T87JnhHA=Xkn(4p17#M90EVkWf`
zJs{Kpdlk4w>e@hRGq5gLXABblGvEY(zl|k59Dun-7a0}x2%Sjnq;S%5XCyZ&D5&FP
zdwQ)e(PeXl7Fr)GoIY6TIo+BZ2C9)CKPc2=V=^TRrzWSy3N_6V?z9`u&d!dGj=2w?
zJbCg6jbH?5W&nZwT|BE1AhLrmmcvQnw)^{qTv!MA&`PIi1c`u53O|p_&J2*PY)w_>
z*9kK^;lG>w>PQ$f{i=Iu>$^iRqCFYNN5H;~-pI|(1yUrpt<nz3V|U>8;CNPvDl0P+
zH~<DQZ-pNRFK)s44$UPsRHOZMni#u#D<0@~j3!auyB_v&X*V-icVzo%qeI|vxeVGv
zb$zZY<uk;vw_J_*5V39VCEmS5eewjT3R3vp$}GNizY3kTc1fO`R3En^<gs7A7S}Xa
zqYDR`GdYe(#3!KD>IKRrAPzb$DIkO0iCCy4BGE|&XA0EIJ4igXVpMfLgAK*8=7;>m
zH6@P1Y@$RTwUvU33Mk0fI5<X~Qg&wRWs`YFw}Y8<n@}Mj&QP2~2cf4snzq~SFJQ}e
zmTg^V#Phs-DID(xbQpGacDoISGGOmfNMJj57?*E2);+;xiuS6vU4)a8l7_UUdoEA)
zA0x(Ngj(_O@vT+8t}mP*Zim%Sh8}k5-HFmxD}SIjfni|aips~cnvdk%scX={bQR)j
zT=)N?6Z3Mb3K;i(+h6KXb;)tAZ`|VyYL$1Um=#mz487C6boTTpW})J<E`!O@j=nL0
zGC66;Mcl4|90r|$J!k7-cV{PA0L^y8>72*s&!3Als~pz)fi|XS8cq9f)=tK;{zWyP
zd9HwB><Snf7<%$tg?1(ef5uyVCR`S|eg-%>P+56jACIH7|4=fSwRb-0VQvNh3P=dL
zk3iO0!vUcMu<wD?2CN#dwemBoT>V_K1C$xrei2w&Fh>&Vux~icDPlY#Ya<{aASWjW
zsC%Nh67A8w&JR{DPqq=G`Qu<;EG;cbX(y_&gfB(o&dtr8pPyq7ypylyeB<ePl_?eX
z5RJeQs22d}k%*$A4a)7FYVz_hH8pj0b)BpRjtH^}{{Y|R3yC2_aWe@K5fMH<k8v*^
zL_<q!S8ra8pqtjy(9rPoY;c$a@e}wcZE-U7B#6*<N9*#p)81esZf$LCq92DaH~pEf
z0s^Cd!d01mja7rvqgfPm^qr|n1lVp!3m~8ZsoD?L*~;;>v@~K~N4fB)MH-cPf2o~n
znACt-?f<drq<{l(#sU7rcgSIJ7iBfXsVL61z`sF)>vuz~Zy?^?;Y*B+jQsLt;e^Ij
zNohnFL*Qsk(?-2;tSs3nFVd7gMi>AV<<y5tG(I4VQp=|F_Vj4hI~QhWn}~?~21<??
z|2`S81MO~BEN1JDE6j#Lz+tr*E2y4x&mT#0$@t5fiS-84kyjh2+7uNPqaq{GN%$u!
zEmW&99-SSJ>uQtwFI=d^8m;M?w%w&*pdYzg>bABvkTrAlMy-YDroS`v6kXFDt1Q}b
zyC1FF9aVv-<$b;qH%h!&qThNlGX`AbKc?btb*PUG4#Q)4-xiDw)&z)>yqCX<M}N+&
zQdLkG0vVBwl{K7HND%1aP&6F0OH}GIZ0~H9XYuoH_~*}``&{jJ0Mq=b#f|yLULX!x
zf~f_OdgqXhNIJ!4nFZ3G;;aF+nfE}7fP143R+~cNsFmv}snsO2s)~wAraQ>T>)!0&
z;XJ@`IXTDND)+y?@n^v48Q1mMPHM5_WY(xyPYWWEl$CYiChFe+P(6}j_K=YSwG|T{
z{ZLysuFPh>DN8yL9A;o+AA<$40_hn*EJ9988a@*@T$=l@-@WTyYz<0QRp>7B1Ujla
zr4M3Umd6mm2{-!3XnK~GTL5+?gVQI^8nEV>vF1ZRBqSw+yA16~7}@YpM~U-NQ&SOW
zaYo`pR!T;#awnK;vo@JbQjD1+4~aP~C&21vODCSJXGEB@6BxbE-9DZ$hyX$&OMo9h
zv_CmID)??Uj%<<1hf+;%U!PI;kRRl8=H@H=ksSGrjScLA(t@%j#TF(muxeoU@7AuR
zC^AJd*>u!<fRs-ylVsb(c#P2=B`b*k{CT<0t#?9}_T2^^CAKm(U00M9SZSak0<pEy
z{PjnBT2LF@>BN9oZO$E02!QT2(B}aR$BKsvKEGZJA_eKY+^{PWC}fM(O5bme<O&C&
zE9WYmR=o(+2dWRCTJ!`d;&5$%PnRC~ce-fE$<8dF&&?Hx1`R;n2K1^Ym%GhAe}8`l
zH-Zd8FDsBJ<RjSnsynqE1T7<DW9N+_QL~1TX<+(k%c@d?4ibJ>Td+3wAEJH=37M|4
zng*ba%W~pQvNrw`Btok_BSIn`dqa8oL7$t$)TNFHW~~}q5OshujiGV`fH9h20$#^;
za3@Hsr(mgpIQK5+Wp2H#3(K>_19Dv?BqW=rb7On^gBrV~JHM}=sR8B%l`k+i_*FM)
zTswM`1A6e_f#den@!^0FDOhrc^igw;#J+SIUfpO7;O2@gV+@3{xxS!~1p>)CkPZ}@
zO7ZDhBIpo^oY+aJw0wftyY_eM2Z#RxPxj!AEulH`HKWD)pEO)1Emsf#K<Rop<1j!Q
zp(FnzD+^#@;}$>ULXAqgQIHWW!2B!4EXpT=p^0#Dx%7Ve0?DmPo(m{&=n4aiKR1~u
z10wrm#Ogrme1SS!_!0mw;$Z|%$D7LPvBSf|x5vdk;89pmmsVCd?EZ?Z5%V8t&-A*S
z9~iA{gT$KRb)v2wJ6@pv91H8ms5t<te?1GY<UxM?u2Xz^e4H%cQN_@c$YrxLQwz`-
z7eN@XclD%Y8H3Nsq>1h2TqO{Sq7!oV*0w9y7^%xhOK*?n#|^F07dO1G)Bs9cyD%{j
z001zUhkgR|AI%NW=Qgpu5n;5E8z`Lqk$!T%c<~+xppE#LdJejxs2>5D@~C;GhSmG`
zf58e`kSVEJi<em{S@VI#YX9^J=HK$ls5?4{#J$t)G_l;j2&u+e%P8XD_!!{b1~iJE
z1AqmT=wc=<on_=x>en2Bj#lBxn5T;%C~nq%m(kM^Mogywd~i4@PO7YPyX$l7;A{&3
z`-<0Her&7P5)%sy3JS6x*PE2<*-0|04gU#{5l~V`dpm88bh)w31HZ<3_Do^U*l89m
z@0G^5zC3rw7fj$DniZy{*0a3T)wi5UnpT)_j^ahbZx7{Zgud;p?z*T0(WmmwQJt4&
zVSbY=C?+piK+S=x<Jxk5GUx6k^kfXD8tL}5`Ih*V-s{5OiYqF`I<q;;>kBRa#RZUm
zx#GlVom}>a55#{pwF$7}k}wc*Bh5*lG2Lz1L0YzDZp;Y*oeSr!iNywnw2|pY>YzIE
zUS3%N`rawG**1aGx_&fOHzZJg?9MkgH#~|NX+Vq@U)CQ2O{8+e_tr(VN^@mTPkw$^
zO(036dHK=+Y+oQX2H^ZxwjpSSVZS)=nnBl%ssfb(2pT|Ne0F|5>dc^=@%{S(2t95a
znQ?R;&GN}QPDZ0?a!7hWObQ?Yy~m)laFyHPDkuRj&(CQiuJS_^6cxb+AjHBt>U<gT
z?OoOs+Uj=oe9?kp_>!Tz^<<e5_^Ze1PNUE54Zv}y>w_6t>B2A$EJ@`tOxAbA^w9v%
zX>O_-g4Y(rRNAj}M@L5o?wO#HD;*NZq-pIu7bblNO4sAnPoQ6*JT^-zuaZB?frAaY
zf~ro%az&@N^<X}3-Sp9D5AS!_fsJ|q3ecD!6B|(Th`j{DzKfi2>~65zv^E@hnVE~L
z=e;jMk>_%`Gz~u7!3TtFa-~yDI6Hx~qvH{%VlN|nt}?bFw1M!f&gZTrA*T%=X74Ej
z$;1`N&8I8O6sH%#m|lVZ^d|A?Vm9xJNsym2($mfPZ~`#%Ztq%>X}n87Z{F0@R7s2s
zw4hjLJ)U4B6TKMF?%;U*zv1l+qdOpz2Yk6h`))m;Y9|!(_H?t^RWvs@2SLa!MOIQW
zFOM_76}XRiQ2s+uP=k;FyaJ@HqNz%y`JK%?&~RWg>A%{@PCatJ2Dm3WDoW8juzrS@
z<GGdp$GiEaH3KCiNaZl;VKBA3&`n3j3y>!H^3ld{|0E8R79I%+I`li4(`stQP88G?
znD!tQD-_dH^6<C;ar#PQ<0F7U0=|G@@BIvT{QSLv0Vqo^r!0zRWfM<ve$Ga85qo%n
z76y}cU2hUkdD)XWq3T&X;$=xYG;T`Dl`yV3kmH0nZRV~<Rdsnz8vzPcu_N7)ZA+Gx
zl<e;B&!RDJ55><ERN(a(&_z?C{5FLSf!AdCoBqF>9H0Q{PILfxr8@*5`Hr?W+K!)K
zQ=&a^`=4rB%qc=HOW}<vpc4XckZJYw<>{_&E^>ar^o~+hM6d!9h>rDlouCAEBwv6!
zs!a#e!LK0EC}#0<?@Xwttci!>?Sl|jD^n0(=)VKI(>-I_zoetf122aFd+c_v6$7aD
z)wQ&==8}l50X_lC)r|mPyUbx{u8~hra8B<P|K(PBBn9nZ1rQ=*rmN&97lZO$1a^MV
z!)#z+Flz3kpb**i9?5q==r#${{$xwt#Q#72hFHe`seZ#+fmC7V|F_>@jqyk(RZ!s7
zE4kuvm#qo;b9MoNM&Ll^mAtI12LP_i8Pj72+S?9Va?+=QlF9K7Y2p3bjc~fXxlTr^
z3CH+fX)nwem#Y_#(--rEE9wxUK8!Vr!2?IAt98vWT!LUJ09tI6%nS|=rt@HT2j~nm
zQSLA~p?Pk<A7B4d$hV@R0_e%<2z#7lPxkge$>vb+q}5>s(h5MWx%zg5Z1%tIUY#N*
ziWjJ_9=lX?X|oByc`Co#!M`1$GV{^AWImUBKf$nN<>dgxEO=f6B!Ki2ynaCkyuAZp
zC`(Y$gTeo+b?}evL9NelIcCWTx&>X}1t}n~0&nMY+Qfn!5o1;W2YH-qZOk=#fQ4h|
z=~ggO{V`GJL@zxIV*EgVKa&$>7g$SvfYFS4Vz<F{00iF^#o^;XlfSgw6$M~fGOJN{
zk#_w|pnS^b=hWz+5(SXRS;meyHJ;6+NUanepOTQ^zS<iPD)0iO;vfvtCi@jhqxYZ|
z18*7uEg*We42PD4-SD!{NI$oOyW17%^gfQ78>v_M;mvs-N{?UnZJ%M`;M`TSATxlT
z#Wye_$nKypU$E2%=nr&a?n)U#4)bNskptfUM&savmN;m;7=b+u+FiNZuQA~{=ryTH
zwBV&XmQxiHkw034Zc`gQB0}<}E*~|WXz4vnej_Hrg8ASGX+R|O3mhqO0r_je56n+*
zTVGE0jF7|(9R!+9=2jT^*(=<KKUHk`vyK(_^U065_fD4b?mf<>dExh}wRbndD~WBO
z*Z8&d{noYX@i|bg9jkj-Ue!&PyR^*ToK%BOY?z?<F$ncE^`he9n(FGgO?KcR!3#J-
z4aP=BFyVCc^c%AvI~HnIhYQMj0)+Mvo>nLA(qy;vaMle(<oBg&4!u=XRiLKV0de8~
zV(rc2v0T@%;ky(np^_vjWl4ohAu?oYpiqX)WsaiEGi7K%N`}l+WQxooX{5-MDYKGH
zp)wP`<JMYxuf6wrzxVs&d;ZwJwbAoD_kCa2c^>C+9Orr22y<|NMc{k%=+T6Nb&<|&
zW^u7-u>tNPWv{HAot^icpFgdAq%kJP#@d=;t(=R?yjO)0e=B&Ik&zL#>j8d#Hg<Mu
zqrN^q-1^US1msmzHn4rcg0QW6>9cNW+G8o~_7&hrV`)*(HokbyTV0E&TYmleC8*)n
zTfY8Q!oU?0P+3`7HNBerHC}sEPL6MT=~eyPId`w@sy-aCqfk1Ydd(V5l(yDkJRO6y
z{vKUSfl9WvdHMNvM~_l<3J3}cva@@;yO^5~rKlu+`0yc*WmEne{?k16*x*PGc<YDl
zrKP1IvB%`(R)<wxGB^LAlQDE<_+Fm*bvXrVZeJxeUx7-3czzDs?xIjTDC*{BAyLs{
zrE=AnP@#hdfg7Gp)o?X?Ec#m8+Gb>CHh=pLCgIe5-m8m8;@d1S4JJ2NAh04)KY{ZE
zPngxm$1hOTl$UdGarx8Z3w@}*NzH~Gw&`%_y?ed={SKgdvd=y>sb-$@)(5b_sE#Ly
z$YS>MQ<tilw3^eO-txTb;{z8)1w!^3HvDegnl<%0lgLy$y1Iil-r)RO+#k|53Df?v
z4rbc(;l0d#iP87(-<M%nkQSxJ{CK&e>j?z~R#w&!4@&lp$1hyiTguAJEPAO;u<y{t
z@)V`Kj|mC8OifM8b9=BB78e%*zfi8;{b~?0$3C)Y!IYXacm?740+1^cyg9N6D5bl{
zWS2&|nwyiq)wQ*?^$zppwVXA7aC&dA5=Fy@52|Ay<BHRjIfLJ<;>J)U4h|4a&zw-#
z^;Lz%nxQo-J?okCVm9FWsc6ysCr?CpdB0=i1PE5}GyLJ;FVeqfBUGYFv?y0DAO6~=
zhMMD#J$trn+0xS3$aVIy=Z~GMC@I~+*b7^BJONI_3d{FTo|BK}x?V1F*JOMCb3p2X
z!oq1R?&4V+slHg@>fS_UPRv9|8_m=%<k`P}KOdipLgOASE>ipxExq~Dq1(-2@t4z8
zsk-|5_^E9E@?kfv>LnULw@KOk%(Tj!6d1T=VPWCo;(}D>?0{IR!!r$(Q%MWncOH+#
zSztA^GR_km_fjvVzpJW><Tt)$;$pgmbCWcOQjCtWa@^B_Gx5rZRL)LLAd#<2l)S(H
zFc)hAOp@9{b%G90VSaw+lPiYm>dh#5tTEe!it0KZ5Ne*jLx<y)Q?`0Z#8m2+rRs*J
z_07;rlW`q^I7`25F)2(B16T|WQ)iV<wSoFrgbFk>Gjl_B7q?gXGnGA6@qDKqgdgSp
z4%T97ta}GDvzEGgva$Thh>D7?u4j)QE6*NHh>JUi#5ggv&FU#BN*tAyt=n>3K;A8(
z^-)F!s(|1U^QGq`FAJV2DmJ#(Bv)-qx^u^z*a$8kVoCz&0P3~I1TjDhck`V)ca|2q
zmlj4##%f~3w{6}W0=^!LVai02_PU|5F=lXSC@U+gsU>wJr^lkA#~7~jSYcpWkeNA1
z^(pMtr#cTma5jqw-=m|W6Uyc#evI7a78cr1QSSO}0b>Q}>y5z`u-E`xNGPsuZfb^R
zry7$$_FhEVeemE5ps%s9@u^d%P^)t>?%%m{r<j=7fdf{c*P+<d`Tu}Q79JVtF;Ne5
zf2{lPqe86Art01^>gqyZMo>h9#W>;A>C=|BhVARuuUM+cikf+5cXNJVV+I5SV1rez
z&lestI%K=MS2n__ab+Mj61d0%Prtv^(07w7tlM&TlXOHx#DL$otrxb(;@;qmpaJM&
zcoDV;N)eKB%~^68D+S5O!oa{Da$;+uxn@?fr>7@mmq$89{D1uM$F5!1o=vWO^yJA5
zaw~4s#+$O2vePO?FidNtCGXOuOCX#LvOl)8Ok+za<%zoaNN**GVq@G^P!wM=vPjSI
zlMn9ooAUB!&>~7%Y)}&+j7(2Vysxd*=;ZK@lJsx~O0cb#jn%zZ)i+UlpPCKhhQLRt
zF9u%B*A)=Rjf#rG;3wQ{z+zP{MpU=8;R1U^L>!ya)W8CzZ57-z6!h?6Kc>)hc65M5
z5EmB*cD!I@6dV)NRbT(9zrTNE#BH?Wkdl&8H4_)(FtR*=0#tJTg9j(4r^gn5uzAnS
z&qs!b@7*E$u)w?xrRfu$%%5#E(r-ZopHx)j(RuP6Yc%ryeVu2nnj-<lTC{B5WUBDr
zpP!pM50YhY1mG0v>jvo<r?27AKDf6w-VT)730ViE(o;Xbs+wpq>}5Rj%x~`vvY#zX
zwg3G2bNx0UUiqeHdIuR98Nr7mO08YD&M>#t($carZ1LB)5^lhT-SYIwfoe`2i-7-&
zrxcdF_KAykR#jEKdpFpadZx4}PkzTh50$q#zpK0c8luicW=`zh;wAT!Cj&wya3?VX
zN!hf-O{6|<BLhR8!JD;xmbL1gk-|f34SRs6I$ByZ_BhRT04{L=KU)odZ>Z1M2)^}#
zv9aAi9a~?usF}>%wy!sP{P_ujhL4+@8-Bvd{hW>VlbE|SjX7BHPe&6f(zjb*PtSdR
z`}S>6<<XrfMm<eUO#y}p3pB!PvK;qVCEYvf>+jM$Q+ilbG>fTkSc0RdSb?DVXvTt$
z?Dc)SbrOTJKzeT#FmZHp8WdfJ?0D3}w7I1PM5B6(X3W_$XBxuv-HV(jhxROFH^xP$
zD1jWnD^>5_TFIqfHb;)U_?T@tsJ*ye4xI7cy?d3!CmTVjC@L!2ZZiS<t)+JmxSf*$
z`x6@r$Qa-CRs24gcp4(^`oP$GXkO{!Tec8!)6WoRp(K7%4zY8Vlq3kIp_LRA*FSGH
zChBgE#;SZBpQQ*rQAkGWfk&jeDcMayxFzLEYjQF$Gcl3+Mpf8>hgLDsAt49j-q}+5
z;N}qoFB60!>_4cN8(CQ1&wRgBdY#-f1hMFs0KQ_km{<uEiP`af$$EkQNg6V~fk5%5
z7mBRzvo3x56kiENkuB@d>E$Fr5PX7yG_<r`nCJyGm6=P!Naj$2@Kn{%z=9qWebaMo
z&p7!L;z&rwn&01opkM&>z>DV3H{q4S4Z!R9xjS8x((%gB=<s@L#P8hu!ix$|{N%}#
z>({R@K1D_Fe#C^gPhy*hIeIx22D$83494LOInifbgn!4$Ft;EQbVQ5O!PXY)<{l_h
zEl0>V#$dxII+mcR{kIArFtxR}4_b%6F&Mn^=&<9uK7W520LI~+<X=h|7#O&NbhjIB
zF2y4#FE7V+K?gLqvJ&Ryt?Sity2Dt>AFkN4f&A;9GOQ$rpI_dQtnJKazl%a8si}h?
zWWDLdGef8b17}4=MQvG^uYZxw!C@LK3nbCdu&{0{UGOq=J0vaws~ym6wkv)ne5{r;
zQJE6&%jDhB*$M5fufN|ENa@R$2Nzqa#w)$@l$)zOg2_)FSb=xLm@W^Gr8S#4X6EMh
zwNGZL%m2QQO1=_VzcA8pqx8fR_3aOS-*p-jBo#0KbGrL~e~4#{a&skv-0a-k>A<Z_
zOmWMf?D;7nEp6YSLz=m6D8^&m=TdceNVVk<3vFbzN%mPC9t}Ek<KNG(Znd_ywxMBf
z;?Y3<XG5Pq=OA_?2K{h6ygktL+&L-9Z_b`FQ-}WiV;|%e@W~1aRJRg_hKG?!$QSNC
z4Gkri_R`h|bQo0^Z-Bc306YETN4*_ALDXgY`uZj(Cx?bIhASrT2;BJsJ7Ay)%Mjxp
zc_k&gU%WWdqKU^wlHXF2DM}po29Ja&UY6fVIQODj1o)Q;!P@e^1IRZuWuK~=w&UTw
zHCWdJ0p;cLSEb^H8L%xl-x}rIzD-+vg1mvRI&nb=z?o;TBIDvR0w)tsa9~--31g@m
zgo2dc|AcdUgWVkouN~tnr05nfWh^{A94NY&79&dQ4lI9x&miQcrlusUzubt9j?T=*
zW1CoqyHU3ZV+q^JJUpP+X=;Z5{TE2nWVT<2Tndtfj6sA{8M!;e0bHk{v<-=_{@0Hx
z`p4Vb+H9loiE;XPe4a5jSogKHSwQRL&GURlZf@tAii$ml54%Ew0LRp5$B17@_>#Zq
z1LFu1`V>gpOfT}w@%_`jq+k;k4ogTG8Zy_=XaRE6Xu0B?Ilpc&$JEVDTux>4=FJO?
z1%<Azu8<9yckH&%Eb02CvVsuz#79tGJI21t`~Lm=z-F5^-FwFR3mAeyZZjj})DxL$
zI}f(bF_0{ZDveOuigzT^X*6C}Ju`VuCC_~!aV7Cx7V+V^6#Y$Eth$}_c#q<Z%n8M1
zcSf=D^ZWw?3v+XahaVR=_R0-b@7PS#QQ#?^+sWy-y-(iBsVFjXTVRFF<;$>Xd@Q)6
zed!XnoC+S_eN6qt%1An$idq9izQ4aess$4h4zQ9oGvCi2J$f`=`3Z!>A{`z^zcp+d
zZ+a)BfIqrWli7APAqDdFe*Fj(-Kh5l&rgqaqt>eJAE%(8z-Cy(2JnTj?kdq;UTy;N
z)_+}Vt|?uw+Nucg^t3dr|2O^Pz?Zvr?+y{i-^<9zY}>YNtLeAapo0(3h&}bU*&vM?
z20&uQ^;vFiuC<Ezv3$b{T4xpi*hG??g1bs@C;gM6BH+g(<4;x)1O5ie#ULKyswoNa
z2Gl9aoDWW4z%^)VM}~x`UB3JsUm%d>kimruTQ_f3J97ritlw8SgRn4hDW*n7!04G6
zq>6gjx+rSY(86NdmMsoF&sRvq#zsZyXlNXze)s<UQ@4403ybuxjcKfS%qFI$M+>)X
z-h4$Q3Z9pSR|s<0exO6V5HG=bqI8H9xniKIs;Z`@W^SIQ%=x~$T21?gbo>l93e*KT
zIiIONx=S3azJ1JwqJ%66=<#!U`r(<7u(18YOn<u}`FVMVCmYXzfP-ZKd`YroSWHr}
z{Rnd@XL+qk(U&h@jF6U*xxv4F>nIXnV>>cVP4WDW6!lG*0&m`YS6z(=e(A!6yH$O~
zv`yMxc}#NgG;!S<H*Un2YDXr}#S=7+cSXUTUxVr&W~@KFQSo?<p3&4iUM6VO^%TjV
z-qhoO{<Dr&+cZ}2x|pO_C^<KPvAB}Ocelrmmcd++eHJ=X|Iknx3p*FrMX*WYde+D|
zSYg3(kIb`EI?hF9n<_L%of`ShUy~179^7ZT8;`g`l1}i?fV9}epG_bzkeY^HbSD#W
zVLtpkr3ArB3ikH)U#*KG4y;+V(plyoYHjH<BSc%P`w<bOb?atw!Q;o@zki23&B^u!
zcm!ivE5puaEV=%H=cKNo5r(psk@2<*?!955RkwSNT^c734~mMfKO84`<WwTu^4`xp
zP#C=^+V{ygDm^9T*tpH0@jmX@-E6OGYsWBM*C5*wk-P}2FmoMoZs!$SR)X+NM2t2L
zXbS)M@gp|;>({Tb@FZPllr=x48gL1hU`*u%%so_8RKE*bsa!ABeXQ^eC~{!Xsi@=k
zxEx(ghbd2_amLTl=cBTViZt_;gu^=eZ2fI6wdVM|Qdx3|4@=GSxQ%L>n}=r+wHC@i
z35<+H@dq`#RBYWUf{74Gq#;Ck&%g9WVP!sc=Iq%42zaJ7EVmNASQmxHu+Uyl;0#x6
zuBOex;8|>emMr}xjGn~mx-eDyyOQ<tl2K8)3qbtS2y6FS`RDs5V-6R^#l@ADMt7-k
zGDNr)OB#kLj9QD97h&a*)uP*g!z6#mRILh67-BL?b-w-khv7njH%QTR|4M?%5wS^%
zimYN$@4tQf7OC|DY;-V5rJL-?J{yG$5fnt0!TS38+=(Fj_wP>!rpG8v3|{3CgYnL}
zIYSfM<aFuiHF|5vpzzk9Y!nt11s-ks=W>t56~zz>?Zcd$)AK=FxV0Lan+ss1!OTnK
zRQ}AANCA7(ce<x4L^PzNp2LWto~aX#d4wA_9O;fvSiaXNEL-6$Iez>d=>E#eN|Zx_
z*Gn&ddWp(p8#6Q0p4G&F<npC)adV?~zjyDRmzNiU+8-Nl!VRJoi<O9bu!@Q*3(D-_
z!#eYx7$+<0{_6=`8?a0}i2g2pW@lznrVfEy#URna50|>0I?2n+Ls&+&iNEUV>O#ph
zJ~7eAqRA81AZ%I}Q}_No*PcBOpFML2n+h9V(ilYGe_c<QkB=NgP!KO*r9NIPh>X-8
zJ9A-)1;rVLLXV&x1(P>8SOoI5nlCXi5fPFf<!=oKE@zKwnEt3}eO=u-b8}IV+!a!>
zxrK$@uyt5ul?t5`proRTjEHc@Wa|mbOP3xcB^jgA@$q@%Y3yl<N2P_qq(e>VcC4$2
zym-!iyLP>N_wG0sBZ9r3?5^#BExGzZG}~wRb`S&Qh@_yle55}?x&`-wMH<x=sHvf`
z=k77Vb};&^Fg<pV)IMq>ytA`pVvU{6I~fgQ<32=+fp&m%8eXLAxNWG2u%7nHscgLY
z1r-XPkkIJDeO%<^<fN{>UtpleQ0l{ErP!|dt#+A_3fqhM1q3KouKa#Of~Z@g<Gc({
zOOwLF^m-~>NpSg}!2EvzK(5SRnV%xO5>sFi@pVmx_vGj2GsrbHH%|?7O)$^fttE)%
zikx!gf*}`H#@%B^1_lX9rdO`;$*DlXA6V=Gu1?@gLw+_jw3lozTbw*FlnqbR=pGhA
zT*MNnh7~}KiF()F8&!R4SFOBz?7;#pWoT$9Mkga&xrvla@s-4mK$wb)P5c431YJR7
z)?~#M3WDkDGICIEj;jnvOG^Xt{4wi_4fXczG2`0i=H|M(I-o!4V?bYlfpoF8h1uDy
zg;qP9T#H@;ykpJbq2w4>eX%~Y@bS=1S!tC<kotnA8mzf_d5zW80k!>LRT?y$%}n53
zpzF2UNl8h$@~S8OE{3&04Temnrv1RD%Cn*H>$pOp^u7c37YqS*3|K_-n1Dr~b8y&a
z^z<@~oBj<-wgx_)I=GUMqU({UBzWlojnmT8*Rbik{#fnz#{A+%*U_T>KmBJ292OvZ
zBdji1S;dMuj0XLo07cKw&kwdiFs&Djjpe9kK|2F!vfq2x<<uXIyU_RbYeZzEsfo$0
zH=n^5n%}H%Ya7B&7#$^bX7VkeAVjoMvtf#9wTZ)cro8!iMs6+m09MT9^nlgHG6Y9M
zMYkQgHJC~;D>0HDi;oJs=3<v-ci7n2ID0oXHdaRpBP!S4<2d;tX9$o{c-OAaU~QUW
zu3rfNI$nlpo=i+k^wJ_Mv~28q_a5g7gQ!04cv$*IY-~5KAgNgrW4w`}CR$su`k(#!
zS%q-C!}a?Lwl5E3-E*?D*}PdmXhBsbT`_D%aQPslwF$7ZvvV@snwfFr2~(h+Z2?&r
z9zdT1O@PNtcI+=N0N7av8(s7B<Xu51hIRYZix;1;fTn-`WQL~*X&ck-G1&QyK{g93
zE0oF-RBK8Svrq|<*s);YepHMUdQ_z*CL&@R{xBC0?fJczNvPZ@Q2E!?)Yyh7QlCHU
zppAjdXU~d^!ku%w^O;+u`^`*?HEj5%0FGmePvzv~$iH3Ps?qpT@jma1rlv`765e-E
z0X2m2hlPeBV}E#v6|nK<gS@=pF530$Nr4wK*MKf}dUDp>z-f<+4a7Oemn1Q;0#$4V
zv)Jx??=brt&bE|`pME%2S68RG#Y}`NT@=!GYI{<<_Z7(}!#|8^*K@GOLpeT1t-{HW
zrlRK1g0KQ@3%R?e=iG-<HH(%k3#3$avYN3yN0zy(S7WtI@br!kv9hork%8F=eyHIi
z&DLx7S7PmZ3fmdzyGq@1CzrAO7QOj}>F%<b&+A|Tool%Y+zFbWgqq+(c`tlmcb+Ge
zWpGQockP0b^X^_ou>eJ`JmL9?K;b&@9Bdf&4C$8w$Jp4Yiu_nD@sH{597_N!7@C@R
z0-G@uJ0#>nxbV)MJ#aw*8^X;1K=}6kd!ug!4r6*~CeX-C1KQewx{>;Vxp~lur08k`
zOG~tUWCH@i<X+DW<b>OYY2N5@IDtih;zcd?;!n884vC3TtzLaR>BDH&-0>DiDBM`{
z!h(W_>&*z_)mDV9x)uLL9tJ-vi)7xtI}z9$r6!Q0mDL!4yOXoCy-*Lr3ygrHgM-Jr
z`=1E>FB|9I`Ni7l=+Wz6i#|d{nA_t(`Y54OhTg>XeBEcgh3l-;*xFUsP#3{cR`TQt
z35A7(>|x8TtO4hUsoUHK4s^qzxarZ{&1NQ6R<|#2@8WtSe}CbFB1>61GBRFZFM8fn
z61)tUkq;}CIgkZe(azmWNP&H5&z?PqEGVQl-gG?Nb#F1q=<y3W2|~)Fv8m}e`^M@i
z(z9JaH8^>;wi(ZXJUjq<WznCKh_gaK_FUu@7RK=fEq1pSn{p4Dn3zzmT4m-TB}@=0
zFAjndnmd5tCLy8MvKM%g>Hk)YYBXt6?{8{pIm4i)qQdvRbxt{~>f4dp6|`VbPApe~
zb&|UU`1m&5l;z;y&~j$nvITSA@u)`W76<Bg-%0@2=@OZ9RMm8Bk-y|ys<Dc=h-@d_
zzy3AqO`fp*^whGu?oPQJIIE>qUQq#|Z2j2+iN*zE`?810+gTF26v0Vdj7RZ(H7=tz
zcpC~H&>Ww~XR!&OP*%pE_y7(9)8Tz5Cx;(<KqA)4&@k7kTSEHSa!HDs2Bvg|wLahn
zNe<d;fqml|ITfHJ0~(mNlTjwDTeVVHSa?n+<7-bu>cAi<Pd?bGP`dL!Q?Q%Dg2*=>
zZOy&@BWPnaMM9{u-N%C#%_-%|+jo^G9--cQ;DCdTP45p!T3T8xEF|lOC|dC3$xOlU
zp$M1(;M77`+{>^wRkf|Y{t6Hyq7|OZm;U}(QM=0S?y}6x+w`ZAsyfX6sjz#Ln#$(=
zv8@eF)T|<xJ!|{1Od72IUNpk@fRKkJ1!BCl$i`G!dS&nOl?-SJh>J)6&^6CZ=Yd>A
zrb<v~2?^5kE9w<fL@%O>H>c@iGdRo)x*vD+#ful%o8ll;0J~IGgWGHuW)D$3=au_E
z6nl<6)C3JZYIAAo>#x|n+5h<CUEfb6hwXt!seg=*&qL8{oI{6F0IS&4D>_MbZ$-4I
zK(RlisQ9bLi;kL2a$(|LK*0LtItq@=cC?ACVM~+`0CjI1H5Vwk$O{gCV&Vbk5WG7a
z-snZLpdB3;NC_PRwf*2B*oT2{y0IRMMPI*7@ULM5C#(O=)hUchR^Sszrr=i}+AEpN
z=~z_6$O}Yh#c>#)t&6<xeEfK}dJq6e?D8NGsnl<^RX1=WrcHkMhK{5EPAVAb{%2CL
z7L}ANgHY!8<}+5om#<&#g&a*&SFJn}cGvm1Ks<*r%|Y{{i4PvUZfy<E3|c|N317zi
zI$NoD<;Q1rf63@_+(YjN>tRRb)|b6M02b8ddDTBgB%g}b($V?V>CkO#WaJ8SI3Sq6
z7kR8q+Zn!R>0&FK@9-kj9;b>Alvhyj%dw>-JiDHgN$D!U?G_OKg@p|zYkj111OHuI
z(PS!f8j&$unc<In??fX{{cr6=)7zt)Y~ZR9mg{ic<mGlcvEOyw6bCrHIx?it;uw|`
z)c42@804>b@+2T{(>HiBUmIkvT)7hV5LA~!sK>yfl-G-}+y*HE1{?VU*w5tpKL}_3
zUJl{6e(1KDf}c2W{Z(p4Mx(ow;3oT`l$xhFsRVo%_BGZ;1M&*oXBy>}0J9%)+6~B@
z>7$ecljZXFx*r~nCbq_wmfEO8HaIzA;!#~A)7GtU@`9WOdUA4c0c@*jXvoc70i<E~
zYvziQQthu_uGJd<P^6T<C{b+EWarMU>a(8X+0;gN!{jB;mZq%=3RTF~AVGS1dVpwe
z${LuNrL=O3ip~MRV1<n?zC}J--_+MqcnYQgPz1C!7YRb<Mrr8+><s!YBM0;C0gR!}
z!Q`m5CzX&|QfAn^VFNg4c1Ax0FS%VC0xO2U9ym_P{p&s*F>zE^H(GXA{Y4Pi4(HDG
zJnyd$fs?VQxOlD4OHkWg#da336qvIjm7}Hs)0ceD5g)jkOo=;Cl9*33ZI8jIe2ImL
zGq)1hH@<^)&;UIn&1?b!0y}pSfddpo9W64y=d<HVN-bS%NC{vs&%H!dqD$6I<m>MO
z!gHy&)zwLyX~o5DfKOPVO;uaxk6*d+Bezzfs`p3C!1N6;atM3FWvaLrE0#-&iLr7(
z7esatL~#+>NlAYkKHSmV99rA26wdz#8(X~9J<{KW?2pn4)#b>G_HL(sRyaXWb-UvD
zpNOn~r4zjhmK*0+5Wb8^SiJPIyEcSXZKhte>#o^3%YwRvtz(@f8v6QW0Dy=Ct>9w0
zxH77!2JPU2xS5|niRXkq1Z43>uMOz4QS6RrM8P<&h9`?a1wBS@59{CFKDa5(+7PTZ
z5aJf<RnX}s!mIwP!jV4a?!E|DAQTe>mBCG=%Z1rUcUgB=S4?d`6(uFO@Qu<a=0Vzm
zXAB6a2Kr|*#W_B7%Y3eRYYdKAA)EGq-dwQRC1<~ED$+T%r4m{fKJxJPS_I;kFAZ>0
z{c{}{_u?=p;BU|};y8r{h7=tCgFSIfl2LnKh_j<3M3-_@Uc2rZnV5VyE~tUEHPQ2e
z0s=-&%^1E5D1MkHHvT8`8J?DI5*5Z*HuN}RppZqv^<#ZKP%4jhfg(?s#nxZ&S;WUm
zJcii}hp=RyJ&a}{fLHqha~L?J`8Yd~W$H{QJYz0cSe)TxIGvi8n7I4Uq1MJmLGUtg
zGN58oJa+5}ifgc7sD*!ykCS@K*jRUCqmj9JF<LgdJ(k2dILe<t--(Etoa{^gd0=3f
z<fNiw-nPvO=TIT;z~GC6YmoJ!tVqWL-)LNt_mTbq2|u^>8vt_6Mj>G|jy`pQ*?<&#
zEG%+!a?m{^0aYCp7)TSiS5YrsRJ~nv?!~pG>7~VPpeTLEPpgd$vE0D6p-BWt1*wy4
z;3?9nd2$QINOtQt@&Uo+eL7WDz(!Y>mF)pge^OFk>cg0|G&Jwuz7=tu;blF0smXtw
z|EmUVm1EpM;eTami>*3bj5|<9l}>j7AmGrfLzjC9x5$1}dNmSa1d}y28xB=L>o&MP
ztRg6JuuHYXJ6qggOa#K3X#dj^RVHI-V1RnIp{?!2SY_W&9LWO?xVRi#8Nd%<wCyK5
zIG>8IESs@Jcz9}>n$!-d!iJ3wqFBKX!riVi)Y*A?Pp$iINyi^Mb__R?^f2j9PEDyZ
zR+{Gu2<^MR(B8e+TwnhKayQQT(z5wbTwDx&`GeKi#myIm#6Sk+eyqIprvpl3T}Gd7
zrPJ1Nhlk3U85s{8&?SgNszkZHG}P4gGTcf|=8!(7uFlwbl6@nJmC1LeRD{=6J;ur>
z6DtYZ=l{iXdf)l{*#HU*aDzjf5-2y(oU==_5kbe;(K$6ykOOx@HogsxYI^+matF3L
zYYFP<d-Bfci10wI_4qL_)PHA1yai8Kdh3}>_S^v^!6WW0==Y}Bb}(otH^0w%7M2Ar
zaK{%f4)h-@%*&gw-i!h<dUdlzR_L!bNOX1Eekb`Bev#-CJLw;v<r0cKDSVsxU>dw$
zN_b$N?xfo4NvpW*HkyH}y6WxQ8I<DaCfmH$Cr3RIFz;4^XnPV$7c9R@BYs%3(HOC>
zJ!G}Rbol-Ipd9gH=irDDxss5SB&SJj?;8`H{R3Jh_9%o;j(Y+4yrd+bieB=7pZNHz
z)g~37{a?SvKZ5sV9s~+Wg?y+|d)#`F_Mu;vZMjoPF6YQVZIYN*y8E>W`&d_df>>B(
zN)n>rWFI{mfr^T4q36^W0*OlTUtH^G9N5>95p-+zSs&^={kvYwzXIbzvSRq>o*rdY
zRgzOW%!jLTVZ>Jxcl`eR`SWu)K20M_uc<2>-&}=#<3S-I7`o=Ze|iNN4&n%EGX7&?
zwh{9XaQUDol^K$B&K=M=Z)~h~`gB6aGR4c(KT?xWoG9jHG4!gImWZnb$R}7of)>K2
z!=W&wA4FaK>z6Ni@E0SB!J(u7)R7OJlPxX6?CcMUikx5(!L|i)aR}$O{VZYwx+?~C
z3grltBfcT)Kf;vi<Iq5>K3x{HT9`sQgC*`E(5|tukFRe*e*WzIeAz$25Mz)0)_g&*
zF<nhf`A?rBnW@{!|D9K!lVI|`W0{#C0Ko-57@Q<#4B}c=*8ArvW-``lC@k(tFuu&~
zT!a|vPI_r<pEop&BatBFgMh{S0+i8$0s=68q-JHs;<mwT1cu}vT_&f>7J!wpJ(JT%
zV9f-({=dlQjLm6el_f#tM{W=&k*<(vqv6Pb2;=Nr43+?w4LKfQ;qv9nhK7l<yWlo3
ziYm=5hsy)(MO8<~FDQAn;?q$>{_x@;`K+O()k6=4qoYXY$7(g(@|Q1n;gl!XRM6uE
zn`3qLNgKpNbIrz0_54p5OLY!HUQJ+HnvSYD_%C!6CxcK2mJvn+)JqhHvVLQwSeMa5
z)vb1$Q?qC$e-XULFx*Cx70hl!;i>)~juB<tTeZF$N)UtzvLfuE*luu+k<t<HAJnn9
zbY5In+H|#Y+cI*BlQ_AS;B_Qb_j9mF%1CaJ*>x8**8%J$QLbPhkKy6r>#rUVgclVF
zSxz7_P<~6u0DUm}UgFN(xmU`ybVQxU@@E1PQ6e6b(1_IWJ!6iYII)p>6+DilZK7sb
zk_IZ3QUdqW1sdv&0T^~oQaC5(NMts^wmlFa-4;$ST`IiIz!tn)T)#Z}p~kwzbsysI
z{``>$%PAL^5>gufQ_HqN^BB~@0@@v~@DJ-e$d9RQZEKsGpSS9GLVCu2e|`n|i!Acs
zK=gM5x`1T;{fn^WUp$@tN}i%vQ(J4A+xq7(M2b<T%A5t1Lk$7yRNkK{ewYiN>_&sw
z5!e6Qpd_IB4u#V4yVT|v6#R5N{I~CW9kyK*(D*QtkpD|2M`nDi%=r{OQE)}sMMF`K
z(<iC#x=pAH@G3q<UP>TId*S6tLPqlS_ghT<|8u0ojn`j)FhBv?)LF4bbFO?Rcktxb
z8Qgb*W)q09SD!emjCCspN#+wji=*>r;(J+Fcjwiofs<^)$99OkG|634Nq&lFydl~)
z5I`$>2Tv}$Q-IUZMFyiY4j0TtHU-6#oLt_~;ff>Qemi11!3UBZ!xe!Q4jjb9p(ZOP
zM!z?oF5`ajLDazYLwbO@2b8G3XZ-Mk(u2p=8TW12<Bi`NK<UKYIi1>AQ)3B+@Ao@m
zyT0qQb~Rlo<)OTQL$+?c`ozS{yiCCh;vHcLtMkdpG@QB$uMKbxX%UmAS-&3rbCYlv
zp$Py~7)ogsFi)bau=VT-IRQ!NNAwzE;mG7R3~`xzz#muvV8hI3uxf3eJDSC@P&K(2
z11mPI_2CcyhJ=7Bn_1X03VSiLVFf{BkKHp<v&z#wVQzim(;Y0hrxN8RxsyG`>-f#q
z8P8qLJ<A2U2H1P;YPU-wZtD6iD4;3Du1Y=cAOHQyBinp4Zw{WR5?n|LdKbqXyap3C
zmkmUZlsT!{ba>#v1S$O;3+N~$gl}NqzmwniL9P{3X=-2yrB!^!gI}h%V#J466LCvD
zqzS3^`>b#M_2CTisS<N6{~s61|8*t(`3Dn6EG&k#txAn8EW`|6Q*YT4_U+rn;!<c3
zot@DYy|9}kJ$PVtL6u~aAo;^}V`5T(rc<n!jnWvcBc}panm{KxNCRpbO7?{^34(Rm
zY!yd0+Fho9=1eYd3Yl~7^L~P@wivE&>G-oxF2hUp3p@zaN7&BN)6=(ZYm%P_Bch&h
z_6Lq5eDLrgXd?JZ$u?SW<C*5Mz`A7HMc30qf`YchmbJW>m$xrA>p3hj)XSSnFTsF#
z;Q|aF7mbWmN%At(#MqcLz=MIo3lgB25QtFqLyeGSB~gCCBejT=U>|BjJpn3`z>m;Y
zSKJ3M0#OjK5(MM6o{*I^Oi?PJ?dpV)*}duS9#hrP;o5i;%IttW?isQcuTa{v1vCrw
zjL$;*R4<_Rc?n_?WU_N1&<8FYNDgyD`lK?bq>dsUA>2ihEwb?Gfi(kCLqS(Lg~nxM
ziRJeKEQgE)TT1>F0DHjyi7B{Q(Hz<b=H^zyoDC}>N_uPvsVo*rcW|1E&#zKU@c2!3
zmkk^9hliH)?5#2YM22-30))hkb-Xt|F=PMl1V)88*I>7HfP$<%L%Cqs0};vQeM2?@
zvJ0m^to$&-`Uj+Wkz5tN2k`&o18Xp4`S}M+OYKLrQdNig`=@bRuX}q>4BsMbsSzy+
z-+Tm;KNLdoq>r>5iK7EEM5-!)BoPo$I)6?yD0LUvJVc$-Rf_2~=xD6|m?C;RHdY^N
z5coXt;)RPB592(`va+(AH!$6T)z^nOj3Z#@9n^?oFS4EBRU=RkW|joQ%X;tKgVU**
zy;4>o!NKp*u7im+xMj%d-t_Q{kw@QhF_w+jh>-?vQY=FW!^C7}Y@F1ZA{vZF2P2~|
z=pD7}dOA2VqN|}%Xg915SGfHnIgADX^$Fc#2CQ}f8k(gv*75EngY~(OaC=1a8Ty8W
zwSb#LwR3Bqrlbz2RDe?StKT_X;5=!5D*<CfkWNT<Fc3RAR!3V~KqxH$vqg7!K-Yyu
zI2LnZ@abTR0BO_heJCTVCD5;p1^M#TD=N!qg5vj0U00+N1K-2et(w}}?HwH%%AB^*
z)N>yIeYQ%TLHPy%WdBg58ebITp;h`pYY~<vP54fb+g*aUoTDc9V%*Yp3D^5~?mPxo
z0KWhF)kL>q1;NBjuET*x_=XJ+mHJV6_w}J}fro8mVd+PpM@nctT4mx79F`MntG{jE
zGzEF_-g#+0Srpm0X@>*^&XC?mUt&(I0SwX2MNuXUYcW^AZ5C%H|3zMUfd|?OUOm|N
z3OpTAx|xZIlb*WRL*5DAjx^Jt;AuXo-*0U%5v$}&b%IaU{r%mLkdWx;lS_))BzT|{
z%O86`s*`wFby1WcqPIz?ZAEt)E(n<?8@)uZT4E#yEFbXMxiaz*ge@hAo#&Td7-aui
zSU?en<6AG#(FG!ZJU%<4jl_6n<`x7ed$=FrenLs`wI;f%f4m50yiLdf@?`q--HSbq
zBnS^6Odp+fb;>PQ@Ksnzx!_d<w)0gADyXJpzCTxYgfv9H#zCf}U-S3hAW;90@03)U
z$k*R_CG!9O%b5C4e{cuO8IvWdnw#xk-`K#z!-IHi>vG{jYDtM$U<JOu!tvwvA5usg
z81O1cllSj0qE{Mh0J}H5t+x`~aoBTlE!HwDXrFs~=RMr;k#(DJk#EU{5OebaxO3oc
zfWea-2>{7ZgOdUL6SM-f+bTdm!wfAuyMu;_ZDx>0UtqzKB@_@M7zC^s@#zj5#4fdw
zGb$?CAQvD}UHA2+?U6>d>REFct{tgqB-&~0_4;;Hcfh=m&X6e(jNyU@-wqPn6=XAF
zbzoqiNiP`B5E<Pv_XSXE?U<6)y|n01{HC_Hw!Hi+e&l!SR)RMABZvF@w`|;)gC6G<
zdQfr*+Z{EW6u)--{}7z<X3oF|&zFAGdMq|TR)B1aWU%t8RI3CSAYWg~a`~o0{WAB?
zwzi0>zBHjz5rU~{X}7w_BXPm5v25F>prY!Li2zSHufrR8z!(1a=)5Fl^iR<lf4*?s
zDof>=-Eb&;o|$K!D<g)G^Bo`rA7kGred8Fr^Y@;sKbycS+&%Uhk@M~Ao14(A!V_{r
zO=%xy=^@56w8J19av}-2i@dR*Im$Ar$!{V<SIddU4<5}NBb2TX++>bJh{RwSSJ-@D
z#%|!oc!UYWP*~3fI#DHwgMLN|=mn1q$m@<SmCDfa@^bV#pgi2KjlK|&R|}AGbxWP|
zJv3J1LrUW`OoI>TJteyYupdy!hn%ourSkR1$Q3L>47}@VYb$>I_zpeT*kA7jYHz&x
z>;QorVSWkYEU=>>qrkc-xJ~VPPC>zKe}A29gEv@GpdN;YhS1Tzk6~?7X8w&^w?r{8
z32jOw@d1v3b^!VU5$7`T#oroN1u_sk6=|_Xg{u1QyDT#P6iRcnA{^VUUFv*LP6f{u
zXb=`yX-r8$<Oa{Sj6a|elcg_kE;Jw)%v8aigB+w*BJEXef-w^_D6CNiQWT!T^*U~p
znfK4p;ZcGd;qRXTs?O3<os*&X)GC<|^s>#pe|Z7OP`&j1V|zP7et}qkc^9dTce`sp
zy8G%=N(}^IJ$?P|#HV;iUV2~i_+R*{u&97*M3dY>Vc}s>)F>oeU{mJ=jER<TL$f<x
zO7Y5&JS@hR(A6%J@2{6@vffRcb2;t~JIte~UV{QE$bb~2Nn8&adK330_#M)?fpaI!
z%#I@TW_FK|j}g!w)c9r~sesH%-&ex#>BSOR{xewX1Q%}k9jq5D`^RTd={R3MO>=k0
zbI=CHrlt*r1v@)S<egHu)`Q1Lbu(Q_OvHa0UoW6)MJH_V`UVzCQ)46e8&MGv>QyWI
zc3)e@v(8p2jFp0neqcpCAOs@~xq!@N;=A^Sxeb;!6e~xhl`2nw$3@o!&=!`_&skRx
zT*I>DJ>kt8JRYxTbLGl$1%>_l_Blh`!(+voBY)}3Te>g!0%#Mou%`U!S4Q#ra^kUa
zGIrRYDEa;b&3R{S5{=<rQU0H>_49f=!ep%vIA^?MIPTSN!`Lu0#4l_XGqXB7Q82=p
z7>LvzPSjl|k3hbK@o23VQ&snowE`>?bz?_&(|wRGN=!6_a)Huk*~1ObIQ`2$Yw((A
z6|IM<rK{^ySQQteLZC(83vEsqXE_<xE*HxLu@Q4R&>D|!yHRWxVId(H!`v`O36(N@
ztJ_;h<9_HnqvG4-l@Ln@AxELs#niJNbgmiYwjwfu8)o+&KtIAUkM}L;${QvF1M%JC
zNlD4W2M?k!@$2c+UkG)G=WZ}5ySRwCz01jLm@GZwEWdR*dp+OzWpvaXgV10t0AmIb
z*0@A3Mg#W$9KFRvED6|($ahOhLX1#?*#wO@t(hMA{J(FkBmaa`-xht>yYvYa`9D#=
zl1tzmuZ@F)(#exeV_LsIgqZNoQBUTqY-tH|e*gUWpJ|b13lK1NZNvyXmy1A>;4;yO
z{`S-5j~9g?L|PX)EC1DWzynkU`h17DbMOx}WO6vGNndjX_~*ljFmvZyC|Giqxi+jX
zp7#+DF*7u^M3ouT^!2S!1mI<41ivfqxz@Sboo=MSYlpkCUDEw2aun%fe@<M0u^vw!
zp5J#yb3dpzqB`(=rhzGg2xMRT`{CIcAf5FzcYvtt=!P(c)LHqDP2^uKUWO))2pN9@
zLY_K&Cvb?sDefM1YPkbIQcy?;RWL~~c&;EdOHt8*eam+y_h{huD@8iLf0Oj@o&m|=
zurN&3QXwr3=cM-jyJuj>JTwCAYv6?6)Px3!VCOynDnbW_J7WVZX1b<$3Im$~ZR*0{
z`^ocIT7-2CK7zmh0x7%@rcMk)`Gj`U56cFBJrel1p=*5<nWmBS;(7l5QDAL98ZQTz
zy9lyKs_0q&z`%W=d|ll~!#nZF#mSz5xtPE}B}c~@5N9wYrY@5%;@;#h-t38WwT2fH
zeH*`-BDVjVP2<m=f#URng3yE%+|iiQ()sk!>K|Jl-vMG<kL9;)@uLUTw`=1~$a1!<
z{gSY|%BrY>wUZ3!UQkP)d~hGM^negM(Bms?c!G)X-$L7s%=f-tqgh&y`jIOKr{M0w
zn#2EYl9tEVuJ+|m0Rnk0rObGK!dG?Q<oE9wSm+NKS9TX{3J*%KdVzWUYWvY#E+;R~
zUjXkAs?qPWuG_XnqCl><>cB8DII~u-yc!wVj%EcWZNZyw45U$+#dDg2O@)IU;SsC{
zoD?UI9aA3ug`JI5m;Cf;6d#4#!YiaP&@6x13X90@N+>|_oN1)l;l~v>MNS47fMU9m
z8)&7D5yTALn>btC<|C2o3FqWTk50xbA4~cG82OL3{a;9Y5FOT2Q@^dPm9!fQMvZ2o
zfQked1o9H}K}?JBkv<P1*V;NKH5JgV8P+fR(T?ytcj8)KGNqCZkD%~yCv<FU7g~l#
zL||6I=jm>bz?(PuczN-zS)|DWQ4r+_^{Q*o+??4WwhqJ~fTIf&F&vdO0)TlsQY`Fy
znDvyIl2YgH8XSOm1ULNsRY#F7*W=1Ox9{|p#k4k*BwxP*Ko{iYz3sEsy*~8lh?akX
zG9?qo(9jTSE(PkME4}jYT){uDrL8>}2BE-2K}RPFWW>)AtP5Bv;K@w~`WO<<F<F-g
zG$H*K4}J4mx#dRr{G8KZq}H!l6TiO--<updmXuU~fX^h(1;F-002nh|sjk&+nv;)|
zw@0z9AQ+srID0>=gLA7$=h^vJ<d8@_en>ac=%Q5kSHt@}#DZ256aUTE*Z$vn5q)(i
zPsp-;j}(g3gMSM}_LwAwg@lBDbd295PM@EbH%=Iy1xyp_o~Jm-AhVJfSdaY_N0FVK
z4b`pNb-WtoDLf;J!a!HXYd&iFE!*Yyxn?9J7{LDd+X_!hLxZNFgzMLjN=sieQ3$)s
zuy!?07AOHdQdL<A=UQXXkxPP2@pE-|sMo;pfy&a87Ciue_GTw=f`%8yw8Ot!+_^z~
zKz)L9s?sJ2ru_f)X84<|Go*o!P9<28W4AXD)D}j@eXrp2SBwz6+2!6FAdD#oy=cO~
zSCFPQ^mP|gU8?xo7XZKnZa_yI_$M^5eF*r6Zs&vAprFojsY^*oLAcS=>q4+Y%VstZ
z%Sd}6IvI3|ZQ;;(56L{&hmZ35tL&VdTbOFe$?1qGTal5G8jrN>`YJ=vkpMSDnuJ>~
zq)r=qd)l>YVfgdkT3kfd^r*^<Lr1QnQF#Tm)4#lY6I|>tv5*zIC_S1r5eQ+jfKdX1
zOhW+7Yv5;KHo=!Czr$Is=8Js%{FtIQHZbsge0&^zUk;;D56Rbm_Xel7e$Wg;-XnWb
zp|F6d_{TQg^8aYlH5vE{IC5y=%+nZF;j2=-1RLPapSJZFpH)QNHr2qgta-J6oA~0o
zfypr3F&~@<Vzp;H`k4O5#HYN(y(;EC6)}gVu~YCY6p*|gFYo1^aT*iU`k<o{tmIY_
zyzfc%Yr%9G4rdKB$jIOZNJ$af>!}E-%K@mKQ`Vx84-9NUuJJsw;veei|L|$3O*WTB
zr#^ZF-$p@!J&`jhH61qoVBHv<7aIlfT$xNY@QwHK{^cA0`IljjieF~OskDNq(dpoK
zMvaE95=&$|__x%nZYlE@RuEE~|4Ju+ImW3RR0kHVnOsmFF``v%zIzFRJl*>BtcU;o
z=am}+y6FAhc%#$ox78bN0CY-Q0!F~_h7dW`b>P{I0b&tInE&zd{hZkqfL$skDhdk>
z7ABbUa+<Vzry26y7o7VPpsKgRNhIEg3Bkzhv##!_+AS>h_dYPMV)I73!}WxeTesGZ
ztb4c(g%0$zl9G9`v8N44^c@}VMg0CJU#VtJBd(JpCBz&uLk$zYy}A#S@PG32sr<Wx
zYYJ5hqKyVPTzH);UcUz04U-@Gap<K1mk`octvsTqw_W_@|KtsxPV|-u@$ig-#&ngC
zJaj0W&vWPjlrF%R#C8<^7#)cXIT#PSG~hRE5=TJt!5GAchsE+YLj<lf>_n3H9gn5?
zZh&_5Vgm+wKqeQ{*7`@g!>Q|ezx($f36d9^7|w_qW`i__%8}ZjjSW~-Z7nUNhfJBt
z=AGQ~Dx4Gp!gGov|B(wk*Zs}~3Z;L`1t2@%TiQppX5BjNXRe1j!8Zk2MuDF}uSand
zR2B#o&hv?Z5?Bt2+t#pQ0!Q4u6-ME3F$$b&>-A~y;SZ|<Bm969Vmv%pwgrNHmb$u~
zXnY#HX!{me*xpGo7^DuRCyWJ-{OI{O3wj7n6u-&X{V&jU2*k5IqXe@PA>q`QfOr8x
ziYCxR2gI(B1Ao)}$E;5yAz_apj)@*Rgvlx2@Xby?d!Ptg$_%)A^YFaoX~;;cP~T98
z%+Ji|JaxQ#g|SFy5yP(BP}h>x16o0-+2G^=bHVP7YOnZVsADB`%Q^uNPf`{CP95zz
z#tOK_moM{@4fKDx0>dkM>$lA8OQlWHRaUMeXTP$r=s-s}_hMx=?deoo*oyt{*}GhM
z4{HmSJ850Vk9Gqb_~*XHCj7fkz~9Hp;Wk+ala1zeEB>BKFzx9yI(;5mV@?7&7r?;<
z`2>m#9y=OYEWt_l^jro=Mu33tuGmY5XUttCMRf1%(zi|r$IWVO#CMzI+Ky1|4=!G-
zR(ca0H)Ml3c3SwUYRaBJFSp92olZr^u2Zc=cQu2C>MGgnI@voL+39cX^!DDUbxeBW
zF-vF5=${LGmv7#A?X4O#J^d}Ww$#S7#>rH^>*;idfB?1lOpg}?XL4fSXz8@x5&BGh
z4={b0R+p07VDfEl4AYS>i<m`Z=7u3S&~4>6!fjY@+xFfNm2KRL%Ps2&DX}=teS(4$
zD3wHP2kJamP=IBDPbKW`-E2@xFz6Rg$?%b0Ecb=ElTjk|BlajI?(V#SoQb_Zir&k`
zU$f+_ivYWb=;%vAk>orn{4M0t7QK-_NjmuFVV?i><(`sIP6Pg1g~1M-V!12`EE`CT
z*bmS_)igAekpFA+K7alUSXg8~(neNgaC+1vTYkHbJ~Ial*Hll>=c`A1O4w?|_c*s-
z2&QBg9^NSsQ~&WcpdJzBNUj?s6$V#KWXRLM#u`Ccnu@+8O?qz-MhZcKD5>LRuEVpu
z=g^_qa?#E*4@qe=q;(keUiq$1FFl1}SQz?AcFPHOIg*NKz&F)U<4Nb&<=%W4jSalp
z?Ka&B+>U!dM@N^H8wUCt+0Ytl45@`mxH(6k?EJ{530#DkB*sFK+ct57iPU^@_d;oa
z<|B2#Hy`*6DF|C;G^t=p{L*Z#M`IySJdABv>Ck{jww<*=(1=DjK$~=H*HwZLrSt!R
z*>#|5F=!usWr`e|Dy{^SSw1klcBqo@tVxEZ1VdWO0gyJ+5D~_lwAIz8uoI!G6zCeU
zzWO~yL=fKXDOwcdqM{_99UXvUHZYQPM`i)qRA66eYdBnd1N$3L`}yuUP_=X~8d0s{
zRi_heJ+xW}>6&~=v6AKi@)bu*Y6Wf5T3XEIB5;cD-J3dfDaeXZ*yR^~Ye@i7dKSd#
ziJD;8A_x+*izXJ}SeSYNeF|jF0?c!d{~)KU6|`ISity~)XO6x^ZYFlrj0LO62hDw7
zks~76PBi+Rk@?~R<25fY*qFC(-rTe+`(Sc)c|{gyB?aB#xR&9<OYK5eKEH<G-2e4!
z!MP}WcpJ^~hxeo&5I+Dj?)CNC%Ew)S{}GS8=_3x=m;kI-^+{7>o^1{n$!@>_>rd)1
zESomH8i&N)J7QnbX&K9Jd;${J+#qTa43xRtqU+Gq$|XI34$C#v)OCZlnC+Hf^?oKo
z2!O8%jm4#UlIXnD49yB$@}iS?&J>Gjff4o?e;ySQl8<Wnh!-Wd&J$jCb|Wxbk8D+u
zLG$)K2_&zUmnM-m1JglDRvp0<fRfST;k!q-YZlvHFfsWmLnqF#WeYhP_s#3q<dhAR
z*JR5gz+pIcWo&F9{Tzk|lJ-6CI>_=}Sf#ksJo{dy!#`eQ@let*DVydZ$OG(Z<(dS5
zpn!86ywknl;EC%imbx)U2=kD3-TF)-1G*hCK|!a*+`Z|K(6b-c^XN|mb$jm}12c2l
zGZ;EOz}2r~IfC1Ki53x5YTJ1xN;X*)25B=~6vjk)%(r*bOM?=H>!KT`N1X5Qik$rf
zMrGBJD4fB8OcQen4X`^lZoEcc`R?5;hVf_a4JOBfY}@8Xul3AzcCvbIc2<)s6n)nI
zS0LFiZymwdJ%nL;X)rVJ3rfL7G%~Y6I#7HHBbmkR7kp7@iAL9qH&<2dhbb?+0#ugN
z(UoTo5X8t%xG%w=x@+K8BtLn=#3tzU^9vR_P6M#SAX^-ilKV{bh9CV<XUX*B8Fz7?
z3(?iLw+e88%>wucH;n<8Xkp}SuIW#YT?;Sv$u=>iJZd%-hR8hZZ_nEl^4L-%QVeg{
zWPHg(4|2VGMJ88Q<xt1NH6|)-Thf`oZlGLnxUVlHJiG`lPoNf3g+w{&fic+3JIv4Q
z*bjvkHS=LBjL!OWzMdd1-@CQ}w^!^&KmZxv>&+(o7l$UDz3UKKFry|OgaGW!4d7Z^
ztezkOfV>b)#dKhJE?{<v#l$}Z1OSKB%?>p2P`#jtVsK2V6_C=$nc3}lexeLyC>S{h
zJL#$;xF2ZWu|YOLFOLVveUzWz0_L+k7KVMc=zWJLGOO#18wwm4L3Lq2!~COI*Prh=
z4$kBGJ^N9<4XqZSw%*s&+zt%1x~qFO&uoL73f5?mi4!&gV!TOhOev`IFg@qJ!om*N
zX4LTr24Ezgo97oCL!%tgwj4F=cT$s`zJDBNMjemAML1mHUQ`q*4<MIATtQzDcBBXV
z?O-!hT3~YA!DryD_478)2{~Sk$F>C09($8T)Yc3$qj6Q*Mq6+SIQwyxV2e;g|FYSy
z+tQnyD_9*ea9`k;LuF4L4-uKvVNG(2<eU-f>L|ZYYChZjSnCm^Uy@-tC1IxUACa0>
zA=lg2w<c0J>*}Y=1o0&GyuWF6#Afu`V2m0gqX~bw$Zd-u<L#{L$<R5V1vf2t4wr?W
z`0D!6yX%>;{YZ;Gx`hi)&*R#)NFC5K^9@>GFbyX_tP>}PoH((zV-cy_l8217qIu{B
zKgGMw0u5Fmeyqkg@y`U8-yi?+{~DSHZ|;d12o^60!tA;g6qJ`)S{_)eM_io3XoNyN
zSk&t_lQpN=x*@xZ@`?4ZaRijpHYHY@kV(zRh`n|kYj6feF>RqB{Cf=A8G|kd^R4jX
zS;Pzw)|ezdkN#4<B}6Qaaz|8j)wH?X5vvK$NOJs$XTdrCaI=W!L0fWqo8@BN%yzH@
z@NZziWHm|z45hw^eBB~xHRem&4t;zs<hMcQ2WR|=Qfmh4NTc?>=2^uTD2D;EF}?7h
z*oOi$%oX{4Z`!Us)S7(i*cYOK1`J!#PLvEycdMX;lhL<-7Ih7Y8reuP6Y6lNF?LDQ
z)qjfnV$z&qVlFtA;&3g-v$<kqncdXP3#uLG{L#bhcJd;)b$nGO5|$tF!W?#P&Cn+4
zS#XwEa9>1tplEV(4xqfq%AKB*ZhLYiF)U02)5I|q4hj^BiJnu?;WQVVUSwZ_?E<GM
zH?=f&9SDYadFur|bo0P0+-cu_X)<7}ZDb0~ykK*8dy{8^AnwKV&rc5bw^p~g=$e+<
zmFt(Z4yQ(D;NSyfG3QcJxXs}buA9Lmf62)~iXCnf^|0Av@8QGAGk)f#n6dBICdusE
zyLa$$_6ow%zhO|7;mwG>LeK=JexKzE1vY~;3^i&VS|Hc{{o|99Cvlumna2`*A21n%
zuDp<a79V5-Yzc1%FAWCQFM^!&R>ngQBb!@V`Mq9z$I23mu0bb00u_`qdo=kvmr4Mi
zM{M6LH;a6AJP6bBZQV9tI>dpqk9T4YBrIlwwlL;nk6(Zt6~`KpvqYfk4Sy@G@re;4
zjX!Yy1&4-qU8!J=@!<&@hK;5TR|uvP!D<*cv&uT!MMYg*KIjXK&0u9ZEvF~>upxJO
zW9FQ3ZY!)sKuKjFSi!2KuF%hIv76F1{S{*}d{}vi1N1EVp5LI`w{rX!3@8m!y`UPA
zbDU7Yh}<5oPprW2=Af@p7`no_Hdn(+^dx)HlZpYFp<!W1*#=C^RW-t@YGYSt00NB=
zCC7<!b8sZv)9U6J-7G9D?6lPAuFL^U{0ycqzg&$01Jd_Gol#$xh3K2UP9KUosAtsw
zyY}vV*U*UNwZr9GcCzn8+0p_X8v_eV)ZM%BoRxsLgJWZ3)<um<@YD?L4bB=QZ<Gn*
z;@;yQ;FBjK^spE=7gtBAOJT8-o6C`)FVH@R*0rChC*@Gmmb<Fsxq6KIuzwk!&rg8G
z#zGW(?&$euHX}jCtppg3cX@-$ZE8~FXuy;K?JpfG2+?b&G&x@ZB1(yY)>edPNk^wc
zp!V>+&`@9c%J=WTwPfw6xH7bM=&~VJ#hTC75ku{TW2h0DT4H<<^=sfYt*jJ<C$f7p
zZtq?m9!v9MBw~P(0)1Z*QBfHMty%h#5y@Hl;}Kok&Y~64TqttQH4(?}=SKQXs&Yu%
zD%xS?WMxxe!EC))-QkBX-n`}Vs|6u?k5@QRP9Lio5r&dkBk{wa?W!Yp*i(5XFlDt!
zhueA-05;_Ly;%|-z|$olU;}9vxZa~b+9C9SekSLwhw5kc-nzz@IrgY>#2&}AsW4op
z*_wm3U2CoMqSH}6F&oPsmI-~#b3jbD%56RDbIz@?Ygh+gm3hMkHd6J|)6)}*4Cs9V
z-}2c<I5;W{25wYY;K6S*@g*cD%Rg*j^NuLm!hZa8<BkUtqVt#DpE{^0ejwn&)2Xeh
z`h{<cC<ssWmAer@?RQpL!=41`7&943{}O5?n0H2yAmOppJ)#l}z7bVlRZa%aA&kGn
zfb)YR-`WeaAQFMu#sA_|yqK%UOZ7Yquii{JtETpb7u_gt(RazLr#XUkgUAfM@7<nQ
z9k`iMkYJP!LNO4qXbgF>5WtN;%b|^i-&$XojLLzgQdbY{e{{OVrfm3IA)i<iQ^18^
z&fJdVoqa<pL1t9suoH~Bgnx%Ty92x{W~RVbA`)E#wTm2IMOx_&nm1z9A{h4nC_>xD
zJMPp<%wNRfAwes)3JRh_I1=I7PEbZ<wFt-q<psGsvc;j;tbW(6gv_$ZcGyu+s*`0Q
z;uvBlJ_{Epfx4NTJc+g<z|5bhs~53)VkWU&uKHl$2WG>9*}4VEzS9uv7zSO)D<zn(
zGbzDD9WOsB=Y|i(PlaJJAdilTI9O$~Ctx`SuYcXmzFx4)(`57@iRPCP)lL+cWHljj
zxd%@N(@DtK)Z3d2Ck6~e;MoKZI1Bvc1+YODMT`-RCV?@&3zigVV!%p?xPL#z5)OC?
z*f8_kfba5lQp05#%6<W)AZ!<%xu#0MH<QtoIT?D)j@3WCy;r3-iK0|R4~7^Z7K&07
zm8dS^M*M}rpx`uAL1!0Q>4zF4q(1WrV%L4@Sl`|40dE6bMHVC5ahEVU>@CjsLD6gl
zpfU84ynGPi7}HXOG9P#)h#i^e`7jP9aNqVZmE%I(4@yCsEOd3MeG>JEv2ei9euHe=
z_aCvhIH3!Rh={<Oz{#1yJs)uMrqf7%i)HC#^RSCm)*Y?N>g|$5oY!-vbfu#R)@Q7u
zYp!%mwuE-*^ca91N@+*4Y)o+QgO*{k?GyDqtamwp$)(r!qNB~Nn<kJ%f`F3Isc?r6
zh>*ppXE91i1vegfWK|T0CcI2-*~(MX(->Yqv=(#Aq$)_JxW@#OAsbEZ<zTja$NjE$
z{s+yMb1Ucw;t>_k*Jbtp&kC1>R?1Z5bLGB(3J1>#oB>FQQbUw)L<H$%mr`KH_<hV6
zIYN)4q|C<7;uoGKSHUOOy%f2PsZ^gKqPL4-IvNqDNq)t=!)O7)Sc|FKq~pMBd43^x
zU;<}YRa2J=enM2QBx~S4u>L@kg}uFp@H5Y^UgSIegsU29Sj=P5_4=#&u59wpg~_3?
zQt3GJMGlPRsfYL2Q-6Ow%T*-yQvZQ;>wt0N2w3dL3miy0`}2UfHZg$4J+MvAq7510
zDL}sAueT!$8tyS<UXUZof8cgJNnPI3PWC0yy-)t*Yb!FmAt$Q>e~hq_{((9!602%`
zNK;G4xdPatKoTQUw@EvY8RHXlbJhiMpqU&c`=4*Kf;RzvIlTUxTOfb-`_7a9mGYNQ
zj%fVL8(+7Q`r31iJO?iBL@&n5=-=LV!gd3WXl3Zz8`drs#rT(p&TIwF@if*%8`4R(
zmLoevq=VS6S;Hy|rsL~*p-4MX)`~09$?Bs|mUH0RwQEti;eRvKhmo_;%?s-w8ur@6
zU^yHZz%TFu(A)`Ai<Zs^jST%NIThxB@{2-Lt5$)yI6`k0p}yx_p2LIcrX%Z&Yd0LF
zz97hqy>L9J!_on96%xmv?}fBvyw#e6h&$L=!^>oNE8%Qt6A6;vT@=DWqWQ{}W4zi@
zRNTSGgBr~Qso6q}F%Xl57Wfwv+Sh}b_4BhB8^F3sv?=L?P;f_J1@S1}-uDGlx>qGj
z#hPnz^=5I(mUisNbGQ`fS5;hbCXZ_Z$Z&CTLOlbVo$p|ahgOfKS?L;#4+?7AT5cmL
zf_dTlj|F{OHO`}aojbVc)k*qQCmV9O_TNgtX(UG{+kf8(TT#~9@#T;F6hV{N{CcP^
zC(TCnUCJx+pbdY%<3a4l_uaZipKu`}fz$Uq3Zk((@~h%pT=I%T8pF<uo^<<Ge`TF9
zU2RM7si}-DSR~@hZ}@Q7=za}vE#N9%o{WFa5+w+`Kl>jDPtj#hIesg}8ez{Di)@>4
zEdMRejm?=;8J2a_gsZpOBt0V|PwUa6w!7CwC3Q=y)@Ukd+%Kk;(rCVYGjnymTg}D2
zcU+EyS>NM`isXDHD3H`s9!ohXTij_`(s||Z!(S6V=8>IAF)EXS!WK}>kPg+<LQXww
z7@oviQkCCNz8rUxX1aIP)h(;8_B-9~6>Yebw}NOf>y~Y~)+S+E!0@&-Zup7Qrkaz%
z=Oe;TM<{bv<$SXh9Y3J%J|m;2ceAARZnxn3YZi)68NOKXG6&!!U;0(P=Z^(l9D70#
z+*wr|#kADc2L>i~e#%SQrm*)52D>u1Ugf-X@L++*qnbhU{tu%ZwVR7vTNPp|1k#k&
zdtY5oh{p0n4v6l=M>lwRH-uVpB?+Ftox^^-!ltt1Yf*-+#qAggKl;-<q!Zm&UtRwD
z%&6agZ-c)tx7?W|_$hNs5PS49<<1T!E3Kk19kjV~9XNoKgc3OIzl6&Wp4*z=Y|^D#
zRkX#{;LhbXy)$P{G_37QW7ZgdS#ndYwFB`nC+CA@p<hDEsXVK(I9yAH-=5#s@*3At
znw%WW!BCmQ<rmcWjoM26R2U`|R-*RS;bCeb;&O*R-^`@A*0D~M@0iG?tkk_p7kqM@
z4a+i*Gsrz`7(A45Cu7AxaIs^;u;<R{Yo};7o@%!+KXIY$-fXe8Z;-Jj!<#mTl~jc7
z3Ee~Wc2ao4{gi7S1{^$?Bp9#koAtADGxcH>W!$}MvMno)jINH}%pPT5{~-87-iE$R
z8h$d5i@z<!qHAmnCgbq(3+t|Ejk(7<1pPXpozvL&%J)vMMRZ+${VOC9LsI$jiEPiL
zEAQ;AZD+ndQ{R^RsJ{N&{4PyjooBPISBi2EwowtDk`FeeX!pMVw8$LvI;=A4=qU}O
zezhjO7a69>x7W&0UlMa1d^`BFZHKtvuGbZB*}NI#QVaa{jHgYraBuh{=^59MW?4bP
z>59r&n{79gJ5Pj$1U5(Kiye^cl&X%6UATWn%Wm?;ITjg?DPB3M3#)HuWNgSCPp6IH
zvMDxFRWh)8(wAf2l4$sHl6h`sw(_Kl-{JNyX46wc7YYu&P8zN~&aaq4#AQz~&rLZh
zq-2$IziVFG^6qKc``pc!1ojT5{^+Ea9(LFgRhcDEJ<FsSvFpUXD06qSWJbjx?o73{
z#s|2?|DVd<JDlqOkN@{BafmuNvdTO}c1ZRfCtLO`dxh++j)NRB4p|{&l+m&GNJ5<K
zl})l&=#c$=dcQx{@49~1_5J7j`p-PC`FuUc<954$NSWBLscJgjQY#d(cnJd{4AUYS
zgcsN$C%@zNi&8%9&+27u^nz*8bMVZ^e081PBo1`)>#Vf-GBE%Ct_PFp->|;hJ&wJk
zy2mP{PLI6w&3`m(#izK5rVq2C%no`ia@6%!M_v34S?NO?m%>Bc7UDy<c$|2PdBm$t
z1&IETZrq}_Qf~D<)eBh*S8w(u?0}4`aH?%fQ>4FQ=0^?WSRR&4WLf`y&EaU!`)-HV
zLTCHFLvI@`)$_KI;m60c_-ck-Y`NI^QR`M<tiIr_9l7RXKWR>0?77Nd_w2$9TbPCu
zZf^UV$X`WDLzDAE40XOwZ+YVC+Q+L@*3BWad!G4LPetsqy!z@Iu@<;9=e2^0Xj^(~
zW`y845jjDfraJWGOH!6NxoP0S*i6^#@n&`>?T>W!c-Hz%CuNgXM^j@tYV2XKqozk0
z_I#pt-1e4Q#+Z8iAM#qhs81-!_9G0>bj#waSqaRtFgo{Pv07lbvPBBK+4Aq9ox#D!
z%!CqKeVYEfjb=8Z(lln1in?cS<i#Yg0h7_(S#KW*)R=w^O%7`D-Z7@Q){{G2`b{-K
zs`@^MDl$)i!^RktjCT^s=@KGXP&SApc2W6P%#P~uXr6A2X#zV6%E1YKO|B=`RL2Gc
zGPOm~cc+Y>Jc+S2mWNQl^BFmeJ#ZDTVAr0i#|z78lj_0{Nw&L>%2JuRka>a;#+(E%
z3f8EW@S90SF@p;+i^ZWoc)IH>gW^t<Z>~{O=?1VwTM<T#<0^#9QfeE{OV1i4N-jLt
zd0^a6)L-$vg^N?j<C3xGB8%z{?(^+bI|us@WG>u?sN70259Irzg(AG7$wCg#Iv8rU
zeRE}%e`DBb<Q+QJcS6p#2s<1FIRrS0Hqon?q=4-Vew?AuY|=@hjA?nSU3Jr}O7A<{
zYh5mSoY?*CTRc3eBJr%<R1@~C7LC=N%cR$LTLZsl&&#$lQ&qg7xh?gS>EegP_2pTH
zDXBe~Xql;9=a$t6T-7G$L8G3q;sx(nLlbEW1wvO<>d3jDa}p0+4p8U)t+gHVR3c|>
zi~+p9e~b=RxLXgSnyTMuQ4nMjDp2)nZhssuqcgtSdVFw~E&*}&vorRQ9m3b!Sh`Ro
zLAaQ+f~TGuA+IV2P9_l*yc3oC4b6kdRV!^1kh4O{f<fo~FR5@kb!Y`ocP;}<II|;a
zcjq4aHAJpwM}$Ib5ysk>&gX3`v!k&W3#y0T&d>rxbEB8RA7fY%L{xe7Q9Mzp%n%F*
zq@v}yu2O=MeQ&l!!upiyiMMA`NGC)Yvk;$Kcl!-yDhhh+awJL|YZDnkC@uNC<X!Di
zcx0j-|LJyrf7Z!V$<rCuu(^|d%<HL}V$`9=$=Yf+%W5CxY`P=DQvmmdg5Kk*q}Gq`
zBv@R$**S!&dphOT+(3MsiWfU#-|(^HPRd&H){5CcSUtxVu+<wNM^mA?5qOb5kYT3p
zJ##+4DG{DTaxMF}=49P+Dmv3betp@MyjxtKo=rW$8^y=Fm=$8lsr<981o@1ZUoa!q
z`q$H7-lrkyMNTJC8JHOrQqI}yEW-9?HzSf-%^GFOwT%4A4kt71_a7nBhviGb_*F7y
z5Hyhj%BH@XAvS$M&AwG*u!@tv32qOV0{stWoF3`GIzHo`51!wM6yleW5x?j0B<R~h
z5I1(8#ZgnoMx>Al*QeHB^cNqK<b9mjf3Y9r;sq%k$!N`cj-X}n+Qo>p{-C2}=!6he
zZz!l}x=aMl&NC<pUXdqN@)WO3%bRGp+Pr6|08>gF+<2*THdc^%NG9E#tH!}T`0Qfi
z>Qzq6bf~~$e<clR0mNb@(`R$KqB^p0TIll{27*rDGMDpzv;WAd)u?y<`z?IjyUD#X
zHmb3$?)@sBDA(^#B1F$m_ARCT*@TbAP$=(47mtqADQjEfkR!YjQZRMcWTcIPK(@Vs
zc%#Xyga@}+D5V6E6Zdp*Qa&D+xwB18C0}_(-pE73A>Yo(QqAbar-sRdOw)!F2Wj3^
za0Uf*J(^g)b?NHsd!DKfZnM!qxtb)c%UGkCg7C%HH@K8()1RQPk8er3i=P>BDecD<
zdfBTU;g}BCJ5^A`X{~2sYVA69r5(IhdEeq@hlj03SW%30qE#h5h;pQ<o>B6d>(s~T
z`*(XC*;B0jkU93K-QV46Q*nCtn-~`ZIAEOUti+!U*Tir4onEKOWo08eAdyZo?b&E1
zLF)d(c~-{0t1r7->0(*KCUmmMFYPDDA&z1<ukYYXc?FfHiN@`#nf)^(Pdod9q{22X
z$k~<?O(6gpL(cR?VGi`NTlCF=-`_K%bh5l7*p*I?(zN^(2o$^;&ypQB@{xyzjBr(Y
z7Tce%{;_+%+~_T1m@;{ckM;AMby(=(f4iu1coDGJ5*PXq;VJGN#e?Hn3ppz{eJ>w;
z!_FqO)m6wELV{m97j#P<bjOQ+m1<=SJ<ojoDx3K5&c{*rFv>4t$#Rgb$<WP`$2!D*
zCTk90O84D2f@j&HanSVE-*;XMj!>p&ix53UmOP)x3h^x*lt~^=hssBlThK0+N(@!R
z+JpLBOO@%_(Eguy#MK@mEHj<dE9o<9lc{5<W05#Dh?0%SI=?kxM;X2K7L%x;Tse{k
zyRSn<BR2$NJ6(7esbAds_P+mgiR0q<>7S<N9xwb=C6XHL!JJu0j^RbQ(Z=x1?UCq(
zW~lCTU;2*kn{O4S11A+oom=Lqa0+>N`>x4sA_`k2xjn_pKgr$vX>2()+juMd(Nd$v
z8ke<eu<JqC8xXI&yHXtT(06c)hPv%{fNB$gaD-YCg*>60-&<ahJcKi8E^W?_rD>l!
z6KgVg$dTh6x4t`0_Z=kP<}pbg)hf0A*<?IFoCtH)`tc+1_urBfnfk?K88+0c@!spi
z8$YWa4!vt!On$YQ*i~HWU()%oZl`SW%}{JrSoay5y2Yec%ijZCC0nbVC$B%VpolmQ
zlpu(T)5YYfr@ruUJ^iLuaW!XB$~#Msw_8Tluty7pUV~i10=Kx-w(~6PVs^*wG=iHf
z==@{r4K2+dm2iEJaLSCaO8O2b?_`09al?oFAJvRV>&unT3N*BZxoM3{)2#m9(&8$8
zlOxcX5;-CG5<zNSZ#h#=HSyR^a(|wU|CV`$PaG*?-LZ&^|3}#tv%JHPc|R4~mz4!o
zfdsY>oJwq|r$Q%+>$okCHnd;bKX99q+W**ku@S~U?fQH=_3K~vA;(6^nYXOJ4$s{l
z>3!%Qv@T@wx5`obLilpI|Mq77ii}x<(`i*9Q{XZF^tw{*L7WD9RR7k>2bt>_c=>Z2
z|GS`iL2Oyc8(`<lrn-J}fEjh~UU46dk$19osbD+>85wrbdsci$Ad@|bq6ub9KXR9V
zrRpi}(^g<5g}g7v-FvaRweKHkDBd$pRxH%;(3g2w#3cWrs-&qbFP)hSh1Jx194fCr
zcaBfkRkL_^d@wyV``7tG)DF*(mhC&)V}np6pZq->OLe#3h^K&fd)?Bu7k?_th12zl
zzrmtsp_3NeqUT0pFJc!%VoWJ0cfToX*u+6oO<S0QD@Fj6gI-BYx|>zZ8@Fj_o*wCR
zwugv^6;=n;Ecp2=={vZ~Vi|QhI>x|!Qf6B%19t!Af(-#ZS7BK})t6Z4<ZpZ=|EcX)
z-Wk7J`u8f-_XE;LzvXVZ2@%obzYsHFGX%CKy0R=%LvtLSv~JgS?(u6fWDl1`#%1|!
zu7&eA9na0h+6}`NKHM{S>#dhkmnl;5OLwKQ;kLe}>BlLMH|^q-U*&alJdLFEj+)Y8
zug?q(+&Q@(-T}!;S#I_3|0=dva4{#kQNxOgm>Dyzu=E&7!rxeF{*#XUq81n;6-$!a
z@>5^OW^ju(0~!N8-d(AB78uKh+E#5*dahrWslSez!a4U~Rx6@Dtv`Q%!iIW;yGM#H
z7DT+q(UDLQBA!%;wD{HPV01sh`zEwnFqTEMLGOn{C4%QvJ#Aj~$DY{_-+Wj6p+qoX
z?WFUs%@Xy@t-0$gRoh*6US+#&F+ANHGH=q``^C*f(iv}Asg>IMwov1?P=NbpR=erw
z^XO2%pc)mI+Qh=Xvm@+9q*!PsyO%6>o>|5^s`|UjNWrww73<vGihG;`{L&l_GX>`B
z2658owPAO0f07~K<{IC4q6Z{haFZ-~$kGapZp>#=3wW?U{3;b($*e`$G&>{M>gt^v
zD}6JOT*2B0X-%#PZBfl(Lj1{l;%-`xhdE+fYKJIpZSJgCD?*xgXIEl6<#qAu`Ldk%
zS%oXcrl<=0#EQ^juSs$uKB3vT4%)R^Pj+OoGDWu9upy~i^%E_uY9<SNEdv>`%U*+W
z>D}!L@WFh8eaA?T2TWySj8|G~Y||f`W*xcr7|MLFUw&{7?-fH}`^PskPF80iITw7!
z90>uhQ<yq_^ZNOV5@fy|=4~zC9H%Kf5M;pLJYS0?roh<vPkmzB2`Zn`q(4?>K%Qx^
zkLkKqp1%x?WCKqcci5G)W%WB-i_boMs?iAeLl=%8J5emSW6D71GVd+z1d<`|p-ZHD
z=~(i<VOT%XNOD4QRL+lo<~)A0uKh{eS6;_PJ>EYh!&OHavUDqXDG6#)*=??C;WfCv
z;;gy8Rw=RZrR?hhB*$&+nLQy}hr>E=IZUa&?&K?x*zLX%DHW)5Lk2wXnk_7;964C|
zbL2T&XKYn?<lmE{RH(dL%LO}c>UyTzSnlNUlw>c7Nn$rnbdp^V!V+e|9nE*G($wcp
zu)F%u2bQxNr@mY9rnyl0Ik(A<y@+p6OO&?q7}qS+hIBLk+fY=-eU!FhYAep-WAdDo
zRU->(SrRY$Hu?{F>^#0@kc9&k-{F!Gf4|0OM?AAr2>sZxQ2ie%?`7@u;RM*#%b8Pz
znJXQOqL6SWyz|$Nnlzpto%EwU`ty%1AO7R<>#+6>?<?{Sf472f@@NddRgiM_jf>T`
zG;6X6_U$(O7#ZE$7EI5XL=$>yJbBKeEC3}8CmAv+jZdN*6}>h<MTID2d>FhOq+|18
z?(99~;3&&8AiiKhJ&f&0Rit$`X3tT{wr}5jZ12=_-T7j$fk;mGBQaR+x1^<854|wI
z`l%|Y+KdAcpy<(b9PlM9)TA|#g5!e>87+af>A|(Gx_aEP?=X93<Q!&zjq|hb*R5b<
zA{l(A=+iJFHWZKD@L%HXPt8$rwInQF^V$(J;lT<GbXTpo(9OT9HiFORi8=Md!-TIL
zjHH3C<L+q~yDHj>5JiH5b~p(uN4MP_vc;OUZjI9=D#zAW?tHq+jiIu(F*a_*i_Su)
zKKr^Dd)&nfQ_(gm?Y4(XtLVm9;Mh<RH@7P<5`|wIzPS6^EAEEjzvpV_J=T|z?*Y*t
z2WCV~b`4(=39^7T%Sz;LPp<?lFJ8Fu*<3ww7o5D6?fGJ|IS2pDT4jBq$0PC<9bp9)
zREBH90-gt(VvEo#0*SmzMTXIAC^J6M_5rt+gVPcJou|mJkYU(M=ww#<gNxpqgw5Ch
z96Y8>;cLcN$vOFZG4jGx+BR8TvKS{Y4PP{{E(-~dytdE7)!>4L=WrjY=-MDab7;#n
zA^~H`8+P1L)!cJ=xOwmrduCsX(^)zSIiKrzcV4lhSe?jOHhE3q1y>mjwwm+9taGi_
z3XD<AbZd!0R#1{d6}@~dECGHo&*4nVh8YYwZ+|(y92<Pfe=`C85~>R$vChq|BV~cz
zqURA%^_YlTN$T@|rmx|+t#Ej=UPx?k3-rRcVfE*&C8^m)Gb=Ku$CK0LmDrk~dT5H$
zxOtRx`Jh}!hk@LDz*jFdy0o$-cR_C2g{&+BVMauG49l-^&n3sSR<T=d2s(<xpVQs7
zH)HN*Fg=-wf=(u<A52a$?Ta&E>_(V;7}MMhdwxu9`4D%ImOOd#Pzq5AZ;y6Wu@1;H
zCRa(PYg6-(aMFKdR9Zc-G?nskTvhw+VMdxD3HhVV{rOk#$utVL&#Q+JCl2cP-ZEX7
zv4@0f^i37WT2;CP(cJ*)hW&%D<I+YuK4zK0yKR_$-Qh~7X&ar7rUHK%u3Cwe<{wPQ
zj132bS9mN1zCZ%$YH-?dZH|HCBVCt+Ybq9U2=^CDZ&vJ>Q7z_&LWPxOCj0Ep<no-7
za9Ixt#ae}g{3kM3<v*-iMXgBt4_}D84W76iZcLrjcQN{1;JnZa{BInf@-w+?{K*aE
zC9(EF0&<k9lz(8>t*0p@)>oc-&yoQt&kGKTkd~pfWaIPzzb~uQZ!4+_p5P1A(7za^
zKL^glCYs#9Z&APzdtW1&x~h_`M9{y^yG|$C<j$}DL~14_-EXpZcCWT<(~RrAP~@?)
z!)W(SxYEToe_HNHUoO1YDdr{7oC7}OJ1teUy@2S8ywpD>d!GIs3vDTPL%v~9bbEf9
z;l0~1zk_}*1%vYpwIMU(k2b}5J$y3JiaOw2Wp?v-J?4g^n+t5K%M5G~?T_N71G(iL
z+TLD}kdgVVt)*#w_j}T1Is1IfNVNys!LLJ{{TK}y5I|L3xJ&nL(7o0fI5`d2+oLv+
zEQML{C_}vCVtGD&4QTr=5P*V}yi&^7L}?$oQeak-r*C+pbSN`1Aa*L6Ok)sUqvmSt
z)jfU&MTMl8x^LzG5Xv`b31WDNv3k_=N`Y>Iq`6T_(D}Z+LvMsRvhAH6L%MI<<84$H
z3kI&0en6N@h*^dqf&$wz=9w@4k-Az*ijz#_-b3H>cw}5E_Elo~v%3j;loHM^{>;!s
z9?i;)7Prm|k8T)CcVmv?!xv;#tole4F`RGbTJTr+j|-x-Ro!3Ya&9~*+z(*Vv_8fg
zCGc=dS+lC#Aj961ewL@!HJ6EkPNs#RehRM-e&fFvcs_c;j5?P*-)12R(PtM6ypfdz
z=i(f=z^B+b8C|hv=j&N%4Go-cc`7w3aRIOlp@~e)aaFzjN^fcw25ykyW0)0P^W&C!
zba0SalZXr(3x*Bxb0Fb+*j>I%tiZ3SAkSjnzz~VoQ2OVA$mTsvK&Unf+6xi)Ozorm
zBuG?2&xQ~LYYcpi;ufs9+$rNNA3em-(w}e&ISd)1eElNb{jQ(7c8Og_Tw2z(^;Z=P
z&x=Jj6(Ca5)?bozW*mJJcqY|}N(a?^>lIM&!L<s*A{GQ@YUu;U>8?)<mqDY|;$Sf^
z4$PL-;tp1SaK8Rruye7s@@H5kFALYrJ>)17CzE7m+e>Z!K=0zS7{O;YR@utm{JU|n
zH$;RCeDO+Q%vwyo4Duh!R&^7q?RFCOohB;hCuE%cu2_!<^{j*)apk<ULnO1cE7)n$
zZE^N{Ca+8<<^|#tvP5i;{Ath>^5r@&YtXDh_R-N`up_d^@impXbV&q~^Ge$?a7jrf
zvwi79E^Y7evsM<ADu$;#d0Q+4=g6yg7Dt6)KjbY}#=t{x4}CbN(jVva*B)hI?{ABF
zk+KL&)?=F+6ul-!-#8k)7a`u@U7)unVDn3Wm2y_BR(zyGBq-GucW#v=C>ll=CK=G_
zY%}J*6$vcCB4i=GA;L>pg0}m!vn3%Y1SJl&l0{2v9fLqJJ1YMO`Tgb3E`+7Zey8m|
z!`{t5c7DPB;b)cD&=8w1ufqGasFk8}RZ#;I8K)vLcb1#Jj4IP=w(dWfUB@?e#ohUH
z934t`m=b<;O)0wNuVY`8;NlL0;CTy07J2BzelhO((qKjE*U|&2e?WO$$z=LQVf9`7
z>maM;yt{T5=6u~A`iQ=GQxM_gvnifkiwZpIa;Hy(H{5tvbUSX~H_O#Iqto}R4X1Tn
z>e}!QjPS-$4v%<z=;`@Gro<P}fa9pvyy?*0sJ)K2jsPvSM<~kawPJ^9uVPEIm}3|u
zTs>?>Vz^>RkTyechVNRnDd`>LQg#aE24n0-`^9qpiI5=1`)?)$G6nwfCFdlS(^gNC
zIr%;kc*X;2L>J=<rhUuzKKj;t3{4c^5R}8f5<_yAgF+Av@z+>T2wgc3touS=o`VkN
z*6AYEV_B_IvA<{izD<X<QHQaNduRQv)OsoLWOEg9gIBU2>%tVFeqY`ZY5W~#?w2=C
zwmezUE#(?1pp`j2?YhfIC$XKCv$##S&K2mB&ty?EDIWau)yj%SXh5vu6D0HRoS4To
z=-g`418IE9$@$TG)9II=zvBsz+Sn3psN9p7QMzuU;9!3!$lrz_;SfyrkE>}%XFtE3
z?@XleOYvHxFigk%g(6#$srJ4P{bS85eYlHvpZZJb>}V;Y;SH{85EV#%!JQG)FEQuk
zB~M`HH41mty4ZwWzVU`yR$1in_xG`?rsu7iAatW{JXy&j(@Ff57$<Z5IXETD&swV2
zQS9|c+t5O%H-EkkDZXk=Ii8%df~)F!nKLrl`?F~{K;(nfud_O4Es+y;Kw-|MIrlYx
z9mJ9tU+ha~iX~CUz}S9^<0|l7(P*`<87WTTZ*wLF<<C}L-b``J|HIPMXL_d4=E!RT
z=Q)!u)`}}j{q`9w#P7<;?C<t433*<B)cLw4U!_(cIln&xH&?SUjyJstUPMx7!o@6#
z^q)BXA($4>(Y?hpBa>%1_Td-fAcY*6!aH1jS@8Hdc5J)qFA<#mD>LeVv3rm<jCNLb
z=(e0-*FJhCH*efIk+Q-5R~=N273E;S%vs^Hgws~dw2Of5?bbjE*Q(xlibsoks8^bx
zSp-{7yJQpC5guF^qmyLMdod(R$s@^hZL*cA%#Ii<gY#7U&zLC+`HV51;VTGF!ljer
zq2{Tf``e84bMH;-l;<Bk;yz&NIdwc~X;$H156-1~q~q+2im&ZZj8B@feT;KY79HS`
z0}BE}+#%nC*7y~m@)?~d$EULjwX7&<)9M8)@)fFEeH+2|_xa8%__@W(S8$$;ryFyk
z-53T?-*B$IzVNd`cO#p&!O*3yE!*=)W-FuE!8QiF{|NRzl&5(2_<_hy(Cl5R&e_TL
zfpsPan?KH`3M^yaOsqxc$DXMCi6SF+ugf?I#hL7GJxCu7sXeQ*sP*0~L&=8j{JE;)
z7pt*KrB+TKF^Ul`<RDKUg^~vQ7p*S||5R!e5oRlydb7g5$td_x6Z)5`&{N5td??)^
z*>FV}dv?U^_6p4TCMzPmxGKDQWwE)OWEF>T*TFQM1cuG;nn2S_D?emj>=Jc@5&}DX
zL;aOls(CEQ6&6K7Nx7)jsf?0LcrT%x_!f08?i1v`GOsbGb^c)gaivKq?m>pS%;*PD
zEx2m4d!&GwLTC$P_Xp{(QgCd(p`kV&OAou&{BE^oJZVYd8FfkL2N5Dcq@0IX5pK`9
zXHSsBdl}kBD?6CM6U7&3tKt8$G<V<`R-RU<$zqY3nf4Td29ptbZ!!#F#?GWx*WQD<
zqy}LvFA2ZQ@ZkXN3I}Y{uMah7S7LD8uq)oTFjnRVq=Q?(yk||UnP*m~X2vrv#LP@-
z|9@rA#fJzXQ1<&ck@Akbs@GKJXuil2&E}g9S9@}K(vIIHonJ{Ua&gNaYII|icc@ra
zgGal<>+XzFci1~U+NWz{UOl@ll7CR7)--1I`?Z~jvX(gI%z=}$Ye&a$Y`U(}Ew1$O
zbfie9?4WHiU!yFhs!u|GaY-w_D)-y%nz%+GZ4Zfc&Lon(`Es>Dp}jk!?3h(B6sj(G
zg0wQLL8H|QoqPDSOFHMN@&$<~;Y&VxQ^kA}J=ZfuY;&h#p<o0vN_(xDiQBI}bMy_n
zSk2xQgcl_kF$Q@pYa^MRd#=N~^M%5ldfNyQjV?>nDVpO+)Y>J=&ZNp{v&R<9I7}Zb
zS0qxKjK9G}pM9mcWQ7Dd5~$*!E(e<#U=Ids(Rau4P>VhWDa-caMWyRWS1}7>rN)cY
zpEsIF(BR!3sHCIepEGR0q2`LQGHT=WJE}zLV8EWUf>-dMV>@9tsq*U-ncj_=*!A?i
zD=DRBnUlqw_j?^L$G@XvdN6V49>V6hK1yXzabwD@H#A@uYzOm2!X0A%LGz3z(deZt
z*KfXou{p%N6fV3YF|ZQ#vHgHa@_5|P;8+o!uD(p-ON8co%Txae`vA=UoZ)79j46#@
z>$s7u;H919JtyuJm53b_S*4FwAX9KUTNNpu^p$;-%LvSR7`9k#|DIZ(m~)SfaUPh|
zqRrdCu~M}h(HbZ!l3z7;=+`#C!;p~2N!bZUR0^{($B4bwk$Yt)3~#4^X+WPMQ=;K?
z=us$P6rF`L*-v3*lt71*Dq0Cb1@DCrVeGCoW5MEIC#*xKL{^vQ3s|J!OgD^|7ox}5
zaYfksh4IvrpmS*du|^L2M_(R+U?;pohb&GYd0JEH76P4bL~dhBAnU0utg;$RYk?IB
zSIwp3LZ^p9Fv&`VowSPa!tHC4<H3n!g`$yQ+6c*vNVmVn4`!e8#L`b@W~LDs3bGJb
zae`7xz@lzC1*gG#Rn}s`r!kJ2h38ElIPYsT>@*A2v_QDIhi}}r2LoNmQ_zaQ!UW~^
z#ly6c=9jdfuwF+J%$L+`F<yjc#u#gZOU0@@Z6ZuzP_p}XDl;PDuA`>?4gErqL}8Um
zlNgfpaqbGmN)zuQ;odbe=|Q9+ft)t1ox9>Y#KP(Gx<VzV@<5t`@oNe$(q5<Y-*zAq
zkGccW`NC+>Hbs#}*9PxH1>=UoUkh@mg3(|`pQ+arwXyC_q=MiT(3fScY?5;(yIdVj
z&Gq-@HW2VIsr==`soIvR4NGHIMGr#Z8bcW_WN=4|(gFzPXO$hs3ae*!TVB<f)J}v0
z;bo;B58Lq3o0ZAs-!tp%a_}RH(}?}x=3Bx}GkjwJtSl4?4xTQd3OHCZ+06w0K2^uS
z+Hn}3dR27(kK(w)$B*MXxnC^f!6`r^5ojy=0K)m#Ob5x&`ofm040le#%2!st6uXgN
zm>ogbg`}-Fmdil9_RH5%H69Wqs}XqzWc>+Ar(xm4;S$-8hb!&t*2bK89xD{TR%n57
z#4s1S<WqKX2aIiGyY>yx;AA_0CPWmA-qMdp!me4%Yw(k{52Ir!S~zkBo3egZIi<^^
zbI+q1menLURMUrbN;*BCy`BWT*Iw9r>@WQocSQb1OP6$wJ`91`PoD?3WlY)_Xl!ZZ
z;<HL2NGrmty&Iow)UKHKeIb+6H5|6v(xOA=))$A3875n5;<J(w4L&#si%ESAjmW6w
z#Pd1>!WYVIsZac*dYwYwIZ0Nt6*y$&87T{zae45KtI;MHdg_&mqnWudcKr4%C@j}I
zFnCY7K8!o${e*XW*My<6>CS|*6CS-SE_&7&(wKd7Rb!~6dPrpV$PGM(nIidnJ3IVQ
zf(uEG7CYRur(hx+`fC)97$U=}7=otxgAbe$oR9h{A52N6i|He0>K<CE)F!^Ov-6w(
zv}{|!Vxj_kpo=CKBBvqO_tI<s`tAsRSxuj~H+~4nz+TU1dvYnm26y!5cZ%AND|MQc
zetFMmm-Ml4S18w=f6Bd&7%Yicz{8a+Q;-|3mc8xcT6@KAM|cT$4cz#lM?M#U?Bme{
zr%y+9S^V$3U0-375RkL;cOHxPs*0=ASaHO$G;`wT@4yRDFrpF}#mr^gIjULumL#bh
z(M)AhszDNKMXRY&nZ9BF$ZX0`N@DuKT-5?4DJWHpda4eda7;|D;ApM9b4&%OA0w92
zjhSCsVkqS#?f6i6wM@J++A92bTRf7aVzK|lzZveXKI=vllAzvtKw5x<GXg8cFjjeL
z_s-%HJH6Z-l8^2CXQy4a@3+2Q;GVp!=3JHkzZC*4brykQL81rXhI=NveT|?h`@dqR
z^*cwdl2varb7fnIvWGX;|5xF}uljH+I|@`dvGqt!g{x%S5-aJz5tM{-Q1ibJ2?i#-
z*Zx<fL=VrX8T*<vgc??WD!wS+$kOaF|5CxzE&x+%vt=jnGBB6?uh{7>D0bSqEOsi@
zzHzwt9a-#8F`HyYEoM^jsBoABIWJbXbq5BjOTCx=_n#Ty84rA}a^-`lYy<}RIW8*Y
zkC(>&&!+CWdmgWl<N)fkt2D-r?@Mawz~rFu*nd`o8eINYdv%ji)3l)+>=kirJe&(6
zACG<Ng59Sp?E6LCSiG5w;{_Stxcl;|A6F>CMcHD?SsTlLG0$|ERP>1c0LF3<?%D4k
zOo}9UPk(s?_x?MAlq)2K)gm&NN3iTa>mb}<#)pc>p68C5Sm^67d5J6O=)shvGDS}i
zc(ZF!f(4vt+t=deuO?g$fCS_4&@c{6>$+=@5M=6tlA}A&Uls$`<i0pc@xIYbH{kTV
zZ7%>);K<r($s&Ly<ZUm=IfWzEg$pYWK=&8(lvWP<C!l%IL74t^Ky%jOLk#?>-qjbH
zAEUw0?y?pS3F_Cfk{@x^?W$PnfVN=TwYGhsY-$U{mAlq9n(^U@uV_h#o~-@3eLn_N
z1jCdB$=dgum?21J_uGXb7cXqcWeZ1?DF3UTlZ$sZ(NfF5EQW)yDCyW38)y~zg*QOG
zKT&;Te29nW8V(4T&idU1RcV<<<NrIDQQ0q!`n_6Q8r(_x>qq;iq4sCy*$3Ip0m3XA
zR|mYk68^ic=1_RX*zorx54P|Mm2t7~`1k*;Ry1h-ci}z}QEC=9yi6J@0Y$}^+lxNZ
z?aKcOpZ{MAabH}*h5rIlGqW$Nk^wOYaz+rB^rJ`2E=bawl*qk72zv1Ue$2zzKww_r
zy`>gNJoHj~3%s!|H;2&MUCrmm8(Vjjx-M~t%Wv6V8VUf!I64lPS2tjQ92p0-#LqxV
zyQlQCAbv;=s7eP;3Cs6`K#nH~ypy0XvvLa*gafiPchm`>hik?yfVTMk+dXy>0Mvl0
zF5xS|CIFY;Wlgf=r2-gKqMNR}L|y{G&own;8)EHmDF$zS*q6OzD}lHKAicox2#mzu
zXF!5E4M0}$Og?62Ahx_lPMipG?g5UHwc^&eRRg^K-cPqa(g5zT4zQioCZ)^}fMdvn
zo;NjIG6(=z_s`N&RrT8_tp$bys5}te&@KYoVVBK)fO3?!^p4I0O9llaBOe3^8L5Dg
zmzbPBZ_ok!A-`GOz-OJ((mttP91a*h1=G}TMcaZUg&UFYccmUEURI(LI2Zz8ViWi`
z-*cjQa2$yMlLWW7lFnrSIye{0L6d(iU`hye^`QBe#NfXJtdfd}>EbJu7AIQQ%q#{9
z5Jfc&jTvBy2ew;4)fR9*0x8|f?~g8F;Y^7`fJ|(7H2_u8F@5>e7NBN;LDwDF6+xVa
z2)zc#M9Ad?)CeR81k8P;03zcHy%f>gATSQ3cv%1rAt<PcK86zwSO;K%kOYtch$7{=
zg#)0(w7bAfsXqe%;Re)0k3h_%BgjcI82}s{$X~zYt-hxT0qS&Xw0Intj9^O7AKnH|
za==ST`)pojBlu+jOr$ZF)9GU-;Gxsg8vq+}{J=2m(g^^<DS<9TEEY5j5`dorias#*
zW(qysC5kOl$qaO=odOYn+km_V&>K*PT;fEL`GQgpF6|IttEvQWBK>P+1SS@+F91IW
zUjj0M8%;?^2V_y5|DII<NBL)g;@I_`OTCuk<eFDe#~47uMwaG4oC~hvMx-@B5(1jf
zf#L*I>Sgu;NDibz9n<R=9*hLVNgq43hkLZQl~}e~n4beVG02nrurVwgy!%th`v?$M
z058|KWCI|z!qye9$tuTjSP!^)E^Q{}d?^iIfUMga$6L#Z-UFB<s6tOqr}sVrYCwxd
z?MqX_$P)h9C!))=Xm5XT?4uqAI!S;b#)A*igXQ<VH#vci)fWPRR<%Jf$m=ttah<G+
zf_H-g_|88+1X4k=F=!lo0FYQKme~i+5|9XyGfEm^KsaR8>gp<ZEXe5Yqu|{P=T*DS
z0G^`(>iMZDQ*&b-SnX8s_Ow{#L=1HA`>WNt*4E)QNpOk)j7>#J2_AyugDs#G`2k?{
zB-;t_SdLG81I-1nDgsogK@!NQfU550Rb5L7CjoH5*FEH*W_&dAs~|lG+)n^aSl<Je
zfCZJzW2|d`2}Km&`3{5@0FE#KX*QN~0Fe*f>%OZ3E?vm!UjS=?&yIrjeESA`@sZ4s
zbtk}Vo`QU6DN`U|d(c#WkCRh1xUHgOMWkI|y((Tj&S~q%`t<OB^j_x^0lzDW@HN2V
z0bV%thjsgZCIndtYh#~p@hl*V2i#l$zDa;P0{Iiz!Am!p@mPiy!$dSE8aysQ{Z-nG
z0I?FFhP<J)0hP;%=k4DI(Afnrsf+>O2&fotO8;e+l4@>IzQonKD^UfG_-mbY2cUjF
zz(N=rWABNI&jsH2h^L<%i(V>!GJgFu)j1hhwQkS~FarlV0E0r0hu?u5&N?9F_MWpf
zZYglS*+2Nn&GStF!NznjN;^}f8th2*`{oetWLsx`y{r4Te@6tm(Eew5cyS;Kp3F-T
zM1DTF%9qhY09&2{8IB-gDgDBcEpQEZFhWA4yPksxBCrAG0EB5(6!HP^+raX+RDd27
z1)NrwVsl`<Y6MT<r8EO5<X<cAgAkqZaa9n&3#1G<9Bxz@z_}$Y+R-CGMTFl1WYGu>
zIk9ImxTye6T0C0R5)5cO4)s)ROE%DI0Mjv$LyZ$I?t<GK%!dG)3ZUeUz|(Ot*EbU;
zd=vGYpzsx<2x-)I57G-AG5O%Ydj}mY=S0k6RT=fl^tvW88X2Z=U7Ufd2FXggUXmz(
z?PHi#3P)~kM^5xZ5~bp1--kT8Ymr#DHHp*E$I{z;{pQJ$zkdy_32R6JsI#ajO+Dg)
zgpABMd4cw!$Lc4i?lhB91AYB{9Bo_|P$v`0aqj1IB=PiJwj3XXHHK*;9G^YQF9hn(
zCjuXej!znaf*Yj2vzxZGwjTcZ1Jp8RplviW1MAWV%r_O=Ex;**hH7!~{qS1GyLWd{
zAo&`^X9I<vw4~(b&W;e7XF!07L%bQ^iu*&*lNWyG>nnO8WXYGZ=s&x%58|)gAG+L6
zTgCru`&9^fMZI?K7ysb#uVZ7K(tU!0Tpqj~9~&bj2aop9;2;ZbZ*+9DuTK;B;8W<A
zN=tcT7p=;F3=cmRrnfatmS%t3yC*3lC@41tk~V=LHX)9FX=B5gUO#8s66xDG)Al5u
zkvL4QcFNpAU#3-YCJl5Fi%0JvbnmCdbXXyoW8&gcj=uhkzjUd74h49Gaq?Pu{|bmq
zxcCM5O5o*Rs%mO&Wul`4$u4fLu2~rwc`}iMHqJm-R9QI;-ilgUE1{1~&CRI^Utadg
zSQAte<RB~`^?DX}%Xp^d=5`KG_8U!s{mI+cw~}XL*AGbc_Qs<L_oZ|=P(bJH-)s@P
z2xOWHIoi8VT;1H1bU>f3xw#oc23t}t)z*r(&Vl5uksm(*qV|E4wClN7WV|Blf=4}V
z1bD@O5C_-VM7Jo9oNe2J(uU&WBlh*aKg-LV8+g#j0&g|YnE)|faQ!)}&V%?0nTX5I
z)8`$~gzju@bu8{W5$_4Dd5Nc~gEb>9Kp=zA-5WP=7BlE8<@}fN@hC7j_zojutnzzc
z&!3-{)qxo&7vIsdeF`)^VB_qyDhJ|G9zH&zD=&fb5ZwQujd3E@H|A`<{5gm@1meKU
z?T#wIwZP`Ze3?ja`2)p&`*gCzl>c?Q{=Z*1{inWq&w@D505CrU1PCQf#ZU52kpBk^
CaPF-D

literal 0
HcmV?d00001

diff --git a/docs/images/flows/09 - Invoker Send Request to AEF Service API.png b/docs/images/flows/09 - Invoker Send Request to AEF Service API.png
new file mode 100644
index 0000000000000000000000000000000000000000..1e4a87c54b04d2d6524da2617fa615dab7318dc7
GIT binary patch
literal 26214
zcmcG$by$^aw>SELNJxl)NQ;7sfOLa^(ka~_4HD8RjexX(G=iie-O?o>A}QTSH%JIl
zXRzM=?!CWne}8<}b<UY<t+`xFob#FYbKhh9YRq5-c?sNWWY-V`!IhE}RYDMy=kSj?
zCMx_N?@u<Z@Go>j83|G3;_|N#^&evpgc^|&eWK!;vhm(cm{8*OA2XLSUMa~IO8h7I
ziZ`B^i-~1tDD9_LT8Jsi<W*K^MUK0xoVXiQ9JpCt&+}8W9Qu57J5=i#(G!6vkwqnZ
zw3|0D&3Zg95^8Kxjf3Yf(cbqyuPtM5Jnr83!Ch7sqZyV#=Oavwk3PG(iJ<xxE4<~S
z#>X`M|LR$zTQVjwvD#vY{;vunaYuW5Wva|Y>tL?3rKM%##ra9kd;Y4L-O|$1_xvuV
z#>Tch6t`~0d!7BQKN!~LnYIWyZoMv~Q|tVQkB?74U~*?ILoD>#HCRuch`r;}ms2&K
zJIxq)cz6Y|ukv<go38{s?ax(y;49o$hnb_GqjNf>{u~9#kxgXtII^9RaeTB|VmB|I
ztMc7-sI_%|!lsc^)^Ka$vDc|9(sb*&M}L*g%y21|Y#s$g$2|h6Mz6E>aPkh*GVOvO
zCAsDO)t@!Q6ciLm246+<3kpz>s+Ut1PF=T{blytRx>vBiocyBp!*KAEBI0w~`!s6T
zVtcy&z&>7*R=rT?g&2mGJp4R@U}0f(N9bQ$A1?6cWU&~etCtC^Kzm3}Z?Rz^EbL=I
zY;9Yc-hFg*q*gA)Sz@oFtIN*LuALXeWwwD&MC1s6?7H9)H4TkXe}-7heL0K3sKe}r
z2CvC4b~kU{L_tAO{wRM>ij9@kt~d3us;a8>MkieMjQe^)baZr@_j&b)5Bh6^xrvF1
z)*B+VW!@KFuD0;sNl9c33=H*{w>|g!KRoew6v<M0VWe(tZG8}3)xD|r#r6);G%-<o
z(;AhK-t6!Gsz1hcFIeus2kW;5J$POWWXZ%cRY+gAj^NYK)I2^u-aYm}e9Fok;35oo
zJgyz>v|f*ii3tq}ao=Cr9WzVQ)YN>zk(8_ak&A=F<6ubL*VmWjcaB^#0U==!9wndk
zc=@kizcweTmY0^KX`@}H-ORqdy%TmE7Z=B*Q7oLTgiFq41(%KZgoK35cwaoGp%Gyu
z#z03G7Z)$pU|eZ$3BZ2#p3iBy=RL2(5*ixXN}{xsl-u9^hY|B;Jt;Rr+Yp}@KXW{H
z+ipF4_>cuP(}cz(>rs4cY+HN#bffpo(9l7DrUY}r4<8>NyZLq$q^`ccwY9aZwDfyd
zm$j8uSgoRx(r?&4k6m|~hK6D@KBc5k{5`%JVKY+n+{Vld0~xJz+pBh17LTODb$IdP
zzL+9>tQyx{LpeFQcqZLx?~AiS-P)csp~kE%G-PMWWyX4@;XU;mp^H=Hk>mEe39ce{
z?%lfw7bief1h<rzm$xJGc92+Kw)e&PZLcE(BjT{<S06P@Icons-RtFkIXS8!Q<#7G
zSg@~lY=Cv2C^3>SHO;B0I3TyFV|Cv*cdaPdNK)s8J;K65M`sQT`r^fl*x1;x$K{<I
zubQshE*vg;{w%2JBcki!>8VP8Q%o^aA`%_(_}%${B}Y8d&fXpsp%C&qove0nx94$K
zl6{;EJNk2e{{F$iRRj$KV`O+(i6}NM&eX=HDB1RCXO2Gh+Wom*R~B2ip1_{x4IZR=
z-JPARb>j&p^CnqzYvUD`#X2=4-le0ZCfEYm+7?bu6?WW(I@N|N=<l%wJa=YM1OnJ<
zj5`TvxMHR6d0=KVvusS)zj7}Kp~kGg%OcL=C4#Hj==B)U|B=ATpq7syVU+yCl8;D>
zTHDR%HixZc#I@K`*x}~;#w#f+AEcTD;*c5&)Do-7>*-N(xNc8B4#^GTiXB!D(yMo;
zgbz26Ez{G}gZR|H`lCeTw9<D6@d*zPSIUK}g-wMZ{QR|_KhtX{XNrgO+0F{f%Hkw<
zqazf2j*=s$($d!`_|VbNR8&<JiL#Y)1s*?U#nCP|?;k5O`?EEL{qd2@=J?f^x3s*b
zKN7BD6T_ix?K>VH*K$=ZC@A<Smt5(xJq`D{RYshVoH<jgU~4GvmLnS%*J03Yua&`E
zLKZp7a;;6XG*5J7XK#;vtNn0uVrps%1-XKOH(BG9XTVhK$?{pmh$}NQ69pj%Hr`w6
z#=xUUc>IbhsI~Lkw=bS2Twy!&kwQ6HStLEdB;ub63OHd2Nd;V4@>^?Nwo#EI4?z|0
zDXrhXf0O06o*wUo>zu8AOw;<~yk42zu2m|XJ)nva@DydU?szHr)t{}i&8itcKR<LF
z5`BT%B~?7Drxq3NJt@2hqOGm{i8JmK-agJ<tN0m@JzO!xYXPW&bg4Xcei?M5gr>cz
z^)@qth>z@je<wM`LD*F&$adXcM4{a1y8GeA@x~ZCiP!H1DYzH)p8MGPa-NqPv2%C6
zBm5-o-McJ?IkYED63R4j;qkjiyYmQ=uArf)h*Ffq#<04+PEJg`G&hH$JqK$aehc5i
zH#}TUSC`U=NqjJ!HQ9E0y0z8+u&%tkyrCi0;&1+fjLj#iXQ=|sb}1e6%{O8qBd;U+
z7w2d06<HD*8VON(VIr|{lP{+#2Q_4J=%m#tBd8u<L-2z|d((u1usF%OD=bIC%tq?I
zufqG8o6}j5AU;CpM_2T$tNA$0rkh3eyVX=w5M<QK+1PjiD&67M6kMY7Y!eF7w9px2
z5P1y;hgOOpXKkct=9$o$<8lwBt}-bpDdJ;2QQ3ce0Ztk!BH;OVKT_ztFZ^MA*Br{J
zDtC(y%9X8|M(>4hQJ01P{(WL%;;o6QqM8~$9-h%Ji|yZCPY$hDggi<)qxLT!jtCMl
z|3E(F!|i@@27N`v8^{NnnTCDa5l6DJ)$Q#xsIX~iHa0ff+uOIv$o@j9UKJEdmRD0F
zW|<2dpb&6X$Qz2L<#pcB*vYv6XM0A-^ash5xx;b~E;e@Nv$=QDM(U)`y{Z=eW4q`%
z@1!2Ck3@QXX|fYwVX-|}8)EJ*%#DqSjlG(udq1W?t76Unx*!Y3kid^mcqD<Vsq#r2
zP?_Z<A}FLJC0+mSzkq{t<;s=oR05btpY@yKeuh}-sd6hW?Oc_f)W;{k+Cpu!#{2pZ
z1QQ$k1a_*UQHW^9>(^+6kBKnR6#ser(~j+?>)fFA+D`VEkGYZ#S#Y|h-^wYooohk4
zf-alDl3rQq4DGr#5Z8Y${N~QbG_R1*P=7*sxi-n{sRqxJ^`b_2J{-zZFVd^8aobx8
z3&UyUeHV{vGbv+3hr6L`UwsOo#&I^7@Bz`at3j>lBA0vkaKeT=E_XMN<5A-jetTU0
zEs1mm1i`V1iPF|jhzgF~1AG!r#`zsePFI&q(a#Ee_Rs!QXD5ID?CgB&?M>sfBzC=1
zRajVv_&|r@({gs^LYmsz#JD%1m-Cu@e>XTd$lP#b2-ofS8jhozyZgXiJ$>xwnwoJU
zvzOC#n##(VCuEFw?;67AzdRzN0$s(7k++4o+EB=zJ?nk*=1q4p_p=lpyNOC`=)$(e
z;~FUSb#({=T|At0!ItM*fL{qWm#H#Se9%9S_;>GgY8+n-=WCjnn4J9ChHD&_(N5Mw
zBebE*s;fJNDv9<4UeE947N7~mCr_H8%}={6Q_gE9%dbzrgjK*`WImPR#^Jul|C8aP
zcGXK;w86FVRcVW(>52~@kk(>YLsVqi>%^L(<LAIYCG?nn^R4OnlP=~)1Q8D-Nl)(k
z`E##o#_I}V1vPY}P#5vp*|8-KRn^eo@%-y}RPJ&7d$HLcqjiCKaj835BoHT&(^Add
zz2<2;9TSsYg9q>BDw?#1k#?6&7CjfjX;o5En)M5)tE+=WOw?e9eZy|ngNFP_WXF&%
z=2mN3A1RvW@dETU<8`t**BZp{vL!1oKg@acBTM1)Mm*$;%XaG4P`ec$KYt_{=h|?A
zHd`XBdIsR4S+Ob?M@KZo*u+GU=<4nF`+cGMzi<O61U)ng)c$Nva5FM8E?nKIXFQ9(
zouQUTetwIPfp}o8YNGhwIxE0dKWck>d$l6H0tGq?OG_g|!$3Sr3-?;idix)e>`U~~
zF)_7H>*x}ZfP$Nwn^|;h+P7e#&@TAJ-X$kvv*Ti6rC*sNBS4U|thL3(d+}Yk);$TV
zSCFRVJ$5!Wx{v|gM=~FEE3FbAb}^(6ulUaM=&TGUEXK#(5X6tBU0qrdzxb4NB(9vU
zfOhpN3PM3idHb=u@z-!H!uuqA&z4J_H?<HXzU$!dFee`Crws?G^?;BZsxN~6-MIAQ
zvos~53e#>f*I;VQR_>&*8(}jFy0i1pH^W|1r}Pqrw!!{lvo2VWnK7>%-pnzu>U6i^
zXgvRGNfOj%*i6o<--OJMaTeL*gwAMOx27+sj{cjyCakCe*c^IH)ypB=)5ZAbH7?sd
zre&KO8#(gt|1NYA{*5l|4h#$w^!$q;HO`yYW-Qw~I<8ajD9{nXN7~$c?0tTEdg`G(
z_#{^aekYQGcVK!twaqYCGy}Gk_MfQ-nXmwgO!3~QyB&rl8r1l&0|Q%BHST}DBBm%N
zCT81E@VwD$=a9WdQCIh|^*Bd~hLwp4C%}1cZ|^A`75bs*dospsq>&xue2#P~6k3!d
z*7xt<2k_c7G7{gr49zi;lAnv2`MUT^bMqsBaB%Ie0(uGxZw(%j(2!K8a{!z#wgKiN
z$6c3`gD(H5IUcnj1FyiT)`=C?2$o<l?vXZp2p)<ENm?>q`vt(k)|Wjv!eCe1@*byn
z`nI{V?X>5gDH@50)1&#wovAyh{aPQqZE60K-u1;?MfKH352wV(L}Qoy|M^+&WE^)g
zS1r?DEpN!8Vkg>7z>0e|ZjUEoo=1Mg$3SD<%MNqbLf^MOGr;-_)*2#HsFb_5PQFE~
zvh?_KZk~Dzz0bkG=~E3_lE5g&ADYr%`0bB9sM30ucU^Uu;%TKc8aFqoTl|WDO!v2N
zO>#IX<f^niTOh}~b@Q<@sr!IvFFzU)VnKes7v)8E3&S#4)X>_xdwGu)hXymF-cv*a
zpLmi#X(llF10Gp;PD4X_R7>OccOxa&pXY_IsA3AqV`04DiO8J0;@95tN@8!^_UGW-
z%O}|;#M6`CRQ<y0P7s7ExqH!m%!<py%hIM1KhAIQPlRdt-2J+;K64JYNDHksqoBn(
z<;9o>&*&K#*4NesEe`Uyd;QF@C^K9*DsZ{wC_h`0Hk_O%Dd>KrXJ(G?T0A&7u&5yG
z;i{-o#*|4H*^kJnoV))CR#4TF<I!PpW`+WNUS1x&)H~^WWc<|oEBN)9xz=A^tRc^*
z8&W?FSp+<NqRya%@tWyB-U3eA`sBTGtpcrrVclPT!YhWy|NIH8H6JgQ+*>{oeMI=y
zQWC3_au%&C-o!b6St$MeFD%H#*FYmkc(T@q=9qoUcjXO7E-sA|s0Kf%|9R%H_QoKz
zbDE9BwM&0yNj_*Nv6W0igEam4Bfw*2xSZQkDjkqmDop*uH~bAH<rX@^^J;!|vrc+S
zCMK|UT;@xl6xZ$gi!I^Ax$KT!a_2O!(KV_hG0LxM3qE>W`!53OymU>lf|w0TstZok
z)xx#<tAa$EXf6btbqi><rvy<A?$b$6j7+S}yv!(+s<w-yc}u{^g$QS=?H?Ae{j#!7
zpm(0(6pDPg)pNIgC&kZ<^JW`G!|S#s1C6}L_z7Z^_8}Gx<8ROH622sVT#sCzk2rJ4
z4zVv^r|_ApEdFCiBCbdjXn?fp8_-E((_Paii6BJu5e2OR^g#Hv0ZI0d(mUdu78Z(D
zJH#iWFnZuK3ia*fkHb-^Y6Q2Crbatk)TO5{IBoI7nH5G1a2{xt$lrJqpP~5huk%IK
z1;(N6XO9Gnsa4#D3YtKJknwA=8R*Em&;_6C!4jn(HA*0gPn1qx%jC82n(Igg{C~%L
z2lqo;J8V%AS-nhGH3iH0wFmh82Cq%>MEsTZK9sAa6QCeeLT-mUQU%KD5B%B^cMHjr
zKb*^d-y9oimT&RapnoR$P|ZkyqQfj=OPXM?8T;z>E>5)20>y`c=#n0jZ7-^Od#BuA
zGW^0hjOUZ89;!HaSS7=T{dr8llDIRwoQ&tsXGKnP*6f?PM>|4#XyQ}f9}0P|^NQo^
zJmt)a)HO>iu9Q#IR*8*P#lqZLHmZq!?cCeB&+U=I&#!q~FzwGyVq9BAi(T0uI;sI;
z(*4ohosWZqE+izh*4-WLz+U>5N^?c&J&lFN#&^i1WUUL|BFZ!K$Qx(~NoT)p!N%P7
z`j92}^|YG1u?N&{PZ6Z~*PD&nVz;|EHr={ce~jLqWeILu!urbQs}VTo>izrygW!V&
zTo=9`ZQq`>wv?|LIs}f_+%mOI7Wckn22l8lYCh-n8YQnJ$eTASba9BzPa*v}|CXgQ
z!9egtKC7MT8-b+pY+ESlHFGJQ5|5<DpuEk3A158p?v><IOc`fvo8rc4?5%DT=G<bO
za;^3*(nm?79PA42GPr{D=+<dHP}eBo;UUkxlJV$6`FO+BJ(9rpylL;E5)Tee$6C=3
zq=IYB?`?_}OY)H=Gn6~;5R5ywV-X-egtUQk$jh5jZ&8EGzE(dN`HqhG%%O!Yl#ZSb
zQ=%r92%Xk$;sg>h;`JC>a$1ZgZclcdoiA@zIE6ePVOm>TB3bEdNIBm4HY0WC$<)*7
zeXYi2KKZx0l&spps%~Pc--nVrs=Qn0-(I9N5_qp<#ebZb?7bgJKE}PMW$M0bl%n5A
z7wCSRZ$MR8N$T=Dr$@6j&Q&Xlb4Hf(KJhM>)z~Z6<IgIF^$U5cHh*jC=bZdA$`Qn`
zDe}Uza79t`rCzGm3lYV*a}55k4F2Mo6n(YW$n5A$Fz<Eg#?<T6WJm44pGSNm;-no3
zi8z$nf3>a7fJID>;OJ|}8?;p#{h7_~6*|-RFn-i|?9!C%n789<|L_T$ta0V*%9DyL
zI$VSZ(O<eHBa_EV(Qx!Dc4A&UpoZ@nferD;Np~$x)kl@YhxYSk#E);UY~vz4?!Q}n
zxNBtckDsN+d7mB|7FIZ{O-b`(j0Hv6L}ISG9WQ&M8Ip3GZ$__9)jD-{GQ3GG!6~y}
z4Ba@Z%X*)Z)%!hdV(iVdw+))ui#+-~9b>$Dfh?jA2ofWh<aR7x_^n68d}3@|-j9j_
z-#YMZ!NKOzVBZHxS$P_?2;O5cJ*xMA5A8cWbWl1_cU;OtlS5yA{yUx&m}IsSEpdzc
z`g<9dEfaMi2K|!b3u!5aemq@2hVqgd)ph~S*Ko0r;$JaZ1xd47X#z0>oTf)_sU!19
zZv~>&V<0@vhweu^3W%`QUrIkq>-9C}x8Hut#3INum-w2`N_ZDDZtu6I1W*u%TV8qh
ztvBA+#OUNP_1r~#3c?*HS8mi)@43<D&;0(3o}2%1F#Fas<KCrfcEq)EmMFV_pVp6w
zgc&7B7et)xk`pJ}JR(AnK)el4>xr8Ts~768!|f)bmDn+(gXVbT-{NXDsO@bV{cayE
zSZ2z$KQ>HhYe!sv*Xd<e_9t7~@NRy<qm^hfn6SM%;LT4fhJx^Tbk4+=X0+qn9%yuF
zNmR)dO?cJF()cB?bq*CFBf_OfO<;Cj2&F)RQ4q=KY>Q9*pDw1tC300t$2L@D8WXAw
zZzr4KBGh(|klBsn(5}YF`5jTDwSw%X{9Cd~3)>5j*E=hIm6@m!m~r)zwc72|6ZLZ`
z5OFq*+(4+y30|W$N(BYsxjPIMb*P4Dg$%TG2AsA$sM;Rc6;<PDZm}ay?p?l?Rh(|R
zd{alpo6e57)QuML5evz;O3|?LTIZUtRK&QplE2>0LLpzM&v)-mbxX>x(w2;Yp7$xl
zy%A^#g`iuo%_imukJ}d)^w}BCU+*bI5ubs92Q{R!$F8OufoXsDw^$#ze~UA^u0e4=
z&vp;_kgPtk>|{kX5lCH4RCo`oMVi`Y?+#D<T@9-g{i-bvW>f=;JCQqkaW6Q=ze%N;
zvqZNoDUx;93}Nf=^I{ynn|h_z{Ogoo80unher?}yIJG2?uY{u3=nG8ZiSIdOy32wW
zJ<^6eJ%+8FU20#$n2#^cGC!&1DL&+|2&gPExPFzzr$mzJ`GW1n{!K*q!L0`&8Rzn{
z%b^=Kiz?<1zkduG`80=u`@5sEZd}pE=_-;UCwr$_?Q3X<Z?stjc3j~VB<wclC-3VG
zrG;$AYN=Y8c6QDonjGEJB{2%WPEFJF>}KRi|D<szP6<<wzvg~5ijU^C=R7<V7IbW4
z{3Kwf*}-d|q89Nn@IPJ4>ni{3t$tQ&n-ZYRC@V6ng*t+tpp~b1VR^MxlQzElW{KOd
zRVruaO#(*wyrMDIuF>@5yq&#%Dz3Z4$ZTk0ztObkVcW&y)};aLy7NB_x+LgGAR(;;
z_3^TO&$2R@EsJXf-_Zw}rL+{EZSXlB`}a4`JUY`U7%tX8LuS36^hbDp%%^x&Hi~NQ
z|DgQYce)dYi`-zNR^ndQ<;<&%Q{JDBc(;m}%|yegSoQbcpg4|a<*mMxZ&;!ORPy><
zkPGqIyQM64n0olq#x|gmtm5t?b*igPea)UDU(XAE1<z`{8j2=$f6>uBaYc`D^UBgi
zN{D7V9tA=C*l!*y0z}`;^5<AvgWkDl!Ds*aDC%mGo)%kFyj43tS`90l2a*v(dwhr8
z`>zlmqmRm04M{sI?(+I=KCmA-B};R;xFe>xcvJNi9&K27YHz81N$IMreZlNJmIQT4
z<)6{=ZLOvH69J~>ldIdIuQP-qKX&UJ%?y&Sa#kE53dh$&xGwBgR)o~`vr9(>{Mugn
z(~DD^qv^yI1)(9f$A2F)1Y<ul?wAX$R^xKHovUh5A!&RNSd^?*fEFHxN@kJTe8q2}
zRFX=E)k=`%rwaoeGxNontFv@r?$pBvChFEE55->a2w0XFar=I)E?l$g-n*OntvM%#
zx%0;0yIZP)oy~~pW}mA0dLUtb&F6vNzkawM6Z(GDT-#{9#f#u5a}Ev)Fh>h@7sUwm
zTd1Igb`y?;ZV2ROF}+jUt6PviC_`<i$Q<oV9<ZRly*#KUV7MoGm*2&&tsq7yw}4KK
zQ$<<pQIFx?>q?K3uz^pOdD2+X40gXOqrW5^#eJ#VDX&${O-oCQjEqc9PFA5`w69)q
z(7=4NS}&5PD)hw;^MPb=eo$W}d-E?u_@M<uTD-BU5W_4ctr|gmVAAi9fmifm-4|(D
ztt?#67@hYG_ww_)ux~ou96r>|E~Tnjr_qyEo+u_YyJxL?mQPuSe6aOfxRzy=`ljv1
z&g(<Q2%qkoztB3XoP7u}D16b(qIl#1_gLw8sDv;<zodEF)O@wGf?&MH?#R%@GgiES
zR)d0TCaJs3w8Tv-T+4VQz|us<{z%7{sMXf5jrffTNuUE7L9|gD;TU%IdzBEfkbz%l
z$=!re6b#|worJvlJk2*HwLI@)__E*y&T%o-+Y$#^-t+7~Wg(W(x8CjqG=@pQ<rNVd
zE}rcp^ZGno#GXfui!r+6*A6HBRSD`lk`bD^oSA%YHXhRz5I13|`UM#9bly}_tK3OM
zZMEg<O=`OV;DtGrO~Z<5W;{5foCT}gAAV$xkT!^+{Ok`wkKZm9aVO!p-PM6xT&#tC
z5v}nGK7Mu@6oSbQ1}uhrP)Q<MJswJT&4td<vi#k<nGp_Rhxt0Xp5rwV$zsXEzPQ#~
zKQCk!w8omn>T9r8z0l|$i5J_lH@;-g<SUj;)x$)`{II7TK8Ke6Tp&N{wgXOwrjG$H
zO(0=bp<JsuiSPQ@SC*7cBGi6ymd8KVs%&X8wfyyrnEIF>T$1G6EC20Tgs@4kZ#se+
zzdK9Hn&dxz%RhG|go#X$n(wZhb*r2L#+Nh8J>B({)7rU51ej=7C^KC+N^rTYH=5?_
z+Kq6nuY|VU#YF9}oBXjpaf31nua7@zG%#6#ilW1WAe6arOg}f(j)wv`rC~|mB<<5k
zyng<q@xbI9ysZcw@`h3qDrd=es#n!SD-`G!_KqDFD}f_oxBPx3!9H$FIOt1_DVWAR
z@QmiJrS_5;hKQ!BPdtT-t!;5h$&Fx90jkJ0!#SP^G}I?XbM={SK)AiRsWJU}muq=6
zB=+fLd%KzGl~qUbV(BlLqD94Qo2h~+s+U?_ci=urprY2zoEOw8Ch+DW4=~i#)g>e(
zf<;@F_xeXs(k1f#M8t6)#Z}Ga<X(yFh>@g~&L%)+soj<I^fYyKLB<-i;AF&MNfv+i
z&*PghTcWHf-U-LPBU7LOBXMYJ6lOpn7Z+DVM1;J&e6guiv?yT=rmj}KOL<mvl^XfW
zBtF|}9q^A4B)Pk?vNEn~(aFh4I$J5TKS7)F$fH3m?*OFk-@n;{Jjte#?qT|Mo9-QZ
zL`l-Z-vq&uw7=}D(Vl!Lx$-n#ZJYAZi=Bd@OV$sv0&VB=o*hNdO~vQWi&W_6MuV9u
z69=DUE2*lf)zsFW933UJ3gYUTkW5PXwHcO;!7BDH!z(kzhoa+Qiv0Hr6t4HRpvA|8
zPfEdA(Of6;;zh0oqqC!<qk{wcb0&^rueoyE^{cc}EiP^5vp#*9L$4&d$UV9yY=3e+
z@eSy(OQCkaD_Hn<764Pj%0Wn>4>RB?RV2vEU@d8~XY^C1Hjj(e_^>=(Ka5a&vGd5P
zwR`L?)-Wnd<J}e1nZD97E2gSgp?enBB#H3v4`|hA4v~An-U#JVu<R1_U+ptZyo=wR
z6M#EJKqio+EApRY{$G^-|L)lw8+3A390n$)mrh-wx0q8|jl_*U%C&gNH@y4t;|KS&
ztAE!bxU!X+ImLyt%m?!wk*qjfU0s>i$D2A27c0~-DzxM-Fs7%cy+DoS<mB8@($PsN
zDgyDNqN*y5%>=AFEF2K~+|A8DNz#^9Re7%$RN+zZ_^{p}AvqeDBqt+d!I6=X`N{v1
z;K8$03SN6-c>mw&l!?3!IaO7EVj0vMKuxTd$<58Zf{p`1mu`*YrDcfoqo)TX(<S@r
z)YMe48(0Ylk)2+l3mh^INoxEzZHBsCas_!K`1|SZ_~hi|`1o(*<Ey|gfT#kv^F<(0
zf+?p_=enzHQ?II|RBAEw`TXo;rp~P_J>6im*nmbnjK}Nri+Col$I;GZ9w0gzbrW35
z){YL0b4P7W%?jV;NUF!*J3C3)j4|h5VEh8n80>|^y}h5<Mfv#@tcG9JpL@o>eQUcp
zUh(D)=Jo55J3Bk9M(tl}YEmD+I^1r&hzJY&(b);-IgnK%jKprGFCDaYCarS1`}cEd
zYLY5tM^xS1+$Q2GM4mX|U%Jhpi|;M>R%OV=N?%1lD(4WGDl@wtXaIQtv?pKN+WPxH
zfBtM`Wkvi*tK4B(UNG&M&4GxbiiycRPXX7R*#PWYY^EwIDrm?N7$WWmYxjt*2^}vG
zhKtY7%{9A9G@SmHL4<X5bil3pqO<kIZhmcTjV{EmF{rw_x_k_rhDZ|DmK`F~k7jqM
zsb}Fea%jNv^aT5&MzG1_ASH{Ao|E&Sn|sE%Yz*$xShd3gYj1FX+*zFz>0?3OhT|?k
z)!W;<4R#@m06#xJ2gkdvML3+0EKwpFs&%m$4|?~GXv$Ep&h-Yev%jjG;N0Yc(iQip
z)@|=T@&Wt>bmz@+Cs@)jR!*{T5YN&@f^fFq=;@Nijra8q3@ELTcs6P976kB;c_=?w
z+qoFJBPf{KZCa#V)${$kbgs%;dkVLW9^5(t0s<DCTDy7l%!>HW{vSUsM^N%tT2Hjk
z@BW&fH=yD7KKIbn9D}ID%KYS{4&qZ(v<>&{{A9Zk<liE#ija&?kYm6{i;9nzNCutO
z#ry0)y;V8keQLnPiT6d($Bz%f5~HG;4NJa%|L*ANbG*h2z8{1#%(|1DP7XImM>V*T
zJrCAY&1YI$MYwbHqGF{N!4T_x&mSKb$7R+-0qawsmZv~BIW+~o!KG2SzoHl=31wGB
zQSk}>SMXB1zJFJtkA2As|Az1Y7?WyH&XtvEVx_^^Y&7b?%T<v!<1lD>EfsU0wY|=M
z@tRaL?B){L`wn(?nx)2A^~-*Gx~s8C{m(?4^z&2VIr(7K`p|xS#?vY|1oH)UDh1>d
z;-7o1&d+DwasYErhe<ter~y`jk(hyl!*S@dD(t@+JH5|%U^?wMetmNTo0#!aQ4t0L
zrgmrs-INhYb#XDixE`1k=|V(e4~ecZFyvuery@yZ)1srNZ(+eP-Ss~2y&&bar!{JD
zmw!24-r3z9PDLi0D&Y3(Yj7BAthC7i_KK(4!w~vMkLo>++4jvkA}F6cd9t6qva&+T
zZmK{ehW|BNCY~g3Yh$bo?aAo)_~F`+B^Z`OVrTn5pFun+hsNV@%xrFME{qlS_xJf-
zFE9td7`nWrv{GOLrIr-#e{Wg&n9j$dhG+CJ$@ku;R?Ei>SXkKDG?;g(she6`jo{;l
zi~0Wyhx;cZCr8O<{4J5)4DuFWVp+P2TXB(7!8@y|s**;^+MFz}ub=G9iL_$gV%BqX
za>}l{`IDcseD>EbHrv@Iup?2BL$F}&eu*llKs7r&ILMYeJ~=TnGh=TL3k@Y~n1wWh
zR)KS8^gSjfCOA*Q5fSLf;Ls2_ciGw5ybYHQH~d<h{?h*3nygOdwh?sQ`2dH)`{LyJ
zkw$v$gAA>Lmy9_&OkiQ9@VmSe7H)#F2ZikjOiK3QSUpYI{hyMHbz~njrSNavx<x^;
zv9N%~P2}w2!c0d85<IQcfStXA!)p5=ctPODFv7uv!w0_D*{@J$N28>tF^7Bbb72lC
zU`zMCw;$m*DQAKG1}T?2^z@%UeKLncRSu7o;=95s_m4HKU~_o>m6L<>S7|jyKu%r@
zjvW|skUhB;@D%aUD!{|SIzIa|vs&KHEjV8Ps!E3m+Q>CTf40f@&Ye39>V*{SreRyB
z8DJVnXNR#~?4?~mN$X?P)zyW7PuR#!M(oTqTwGlDD7oAeJX|t<gqxciEOF4Ae4=P1
zhDSzhrfOm%6f`xf;TC{_3eN12%+=lf{XvTg+h_fzh!8g_?i$s4R8rD-ro{Eu9T5B@
zNLVvUl*O^30C<5V3a50&^N+4znvKBoH&s<GT3Tef?Xdb#nqpaV{QX7xuto1GYH4Xn
zN=j;IkOUey{@$9ZH8VB_0Q1*Ola_!pjuR1PieFc=fsJ$Xni#m!&=b(pFcAa}+Y0#9
zMy!zN0)tOqUr#T!s;X+Y#v(c`M;)*G=f`K^62)|H`BvtamMWp6X_lEj(yifu%osS}
za9eK$i(=nmnyi22qOU&-`8;@SvfH;C;U`OsI_!B;mQ21Hmhic3)fsg}z%@f)DowDb
zvl9ienrS%u9?L)uS5W@qC*<i+kkK!8G@)(ZdwVgEh2>=-x8JlpJS0g2`~f6dfJ8~T
ztVZEAS30ig-qvq$mrda*$;mN=jkvnHT2fL1X9UVe<-_c~-CZeJSpoY6$)``By1Me<
zq_7yEM$E(e%gM^h%E`gjUQOb(+$UHgW)~1R?TmQ<Ss>TLjj`js<$0(&85!<>wl?SI
z*&UXCEG#Uvh29eKIAURAi)J;QY4C)20Yo+C!Agg{b+$9tT4vg9n9uN7cDKwe7CIQ8
z$#)`+8a!eC9yg9)E?2YkE=UEwI^5_qErVhVpyPC<pC%*&Tw1~NBO^F{#GxieM(nQ+
zt*Uk8AGodN8$-@QAUq=C9O}r!5I&Ei;<B<bVd_!nZk{;gzuw%SdHpoKzW%JnX<eUw
zO5GDuV0+Ldo=uGK2aJ(w`78qLQO{Lze52P8D6dy-e~*RbEv=M`3z)}M<PRg5V6%c@
z?IAeR)ny4bKH>vO9tbZ%`VCxhUvOzKpNfbu>(xn~ZRclAhfchH{o2O|5lowb(286#
zS925mJQR}K4H5#jvp!J?aJI-eE#67ef{#4`poTn;p|zCcZ|9Nt&tm(qD|#NcmLc}j
z;Jld>l@Q0maIBT*Z;~;hM@lN_@#UrVAU~%eoL?+hMGG+-ehPP|q4vJU?<9d(Xnv60
z0`vHtSMTT0dmOI&#{IjW^73jOR|y{LjPP?l6%%WNZcO${dzVk&T{n?DBm*38$fr==
zyt%lwb>4B?yD2JP%y%$-zIk~MT(6DIP10xK#eh`I%$6HGPm;!-bhYi*Sg>1ISX{%#
zHtS7&6w?Vwg}njwDQhh8in&{sT98k;1u;W@r?sy~zi<1l;OA?Uw0u+LN|sZ6mzFlu
z<a?#futY77Qoz*~4xhH$$7dMY+i%m-F5%AMA*wG6_9dOU#AKEug}9V_gGZsUTp#>%
z{eyx!N=>@PC$P~n5;>eU`b;BO2bu@dq0-qtra<k#@j{kT^zM!1?o>E3VWjM{Edob$
zQ<c-JKbr?pd|lg$0a%ulXqFg?K{Zm2Uq~j;!ow8h_c0(z>;1F89~K;Z-0OXAl<3_j
z3|?IML$oJvX-NTs5E2@F$MfIBRKh^Z*qpWHft?@|$N0j^j3pEmh-tsGfX7i^#;_qN
zMnSA7^>_pxEiQ6NSj}<Z_0jxD|MiUhJ~oR^I<w!LgRDXe_xk65OvMFz-oFA^zf=Rx
z*~p*Z)5nHP|4FY`6Vdp@XU>sSTny{pQ&B~ODVqE=df~dzDU0D(%xaxN75a4XS)OSo
zRD<d@q%n2yk|tXNOXz}Tbn{w3MTL{6r>6)QRk;B2Ht*sS^KI)J#~Y*lx*6ED2%Y;y
zcM@l3XD4t0`|7&NO0`^-mXBdv&h1Z!o@DlyS7Bp{p5T*^xI*NqHRw77L<PaihjYGp
z4?ph2xPO|78h=yV)^-Q#ig*OY>aSlJCog_;d3`Nba1v(6doz+UJ3CAGKweZ-6may~
z%b1BcRA0CO#R{{Szuvn{qafv>!te><&>+I_GLQqEkfFXzLlfgZ!Y2s~2nsS{)-M|a
zxBSfrrLHdtK#u<)^3k;2^!S%9dRNQ0pt{DBty(x`OyJ^Pdcrym)`HI%9qX^4?z%_E
z$D1v*#sNM800urku-6^sPE)5Gnp_b(JJvvhwzjqcLu-KZd1?g~H<jC8=vH+<QBooZ
zG`N0S5a-&pfwT5gpel?posb0?k7&>od{oy6=rLY_F6_;l4;Ol)qnkeO;^D1-LlUe)
z%X;fTky471G400>S)5kLR}S>`f#a^FmGm$dDC*;(uk*XpuJhrLn{ufA9I8Tp6@f;R
zt3n?osjn|C-p)Pa;Q-YXA~EHLdX6_aAI2)>5{0%A1ZP<biiNTo<WL&Y(9i&cw55QM
zCohgc9VN%m(2(tFmR5ndQBZ{FNBQ@FFQBTAg_UbpT0s;M$VYih%uk5EX-{#}NM<WV
z(*`_ESD_D(BShY&q?|4#+gt{+oc1jAZbFC`9Dz?mYs0ah+a=w68yhd+&&};Z`my^R
zWqj9rzzd6A@pBL7H$N!S5$$_(NAa!1q@--DuQLz?3!d#OA3ZEdNlAg)^4qlzfDkYp
z6a+#VaM&St0g3^<B5Wap@r{iQ$e!=I*7^AO)YS=)m?uy~+`JBl9Kg$EFogRL5Ha^+
zZoogV;qj@wA$<<3l3!GmCg5fdsOmB|*fcY9yR|sY>u+$s_2bFONe>SXKYxG79c$|8
z=_xB4x%cBxzEnzIQTsGO0X;h4=^aY5u~HLILFkAeEO-6<cOyqAT!2l(abRU1WN?8c
z^r@mDUm*KiY|siZ5vc5tI{#))Xb+&~&-5#1XnOEj96uP?6XKG^i80fzT)i75c|WGv
z$n_bt@9`>|=XgQD(Ml{wnCg?iyqtoZQZ0}Ynu9X4UaHnOYT{4^dit<QJhCtISoH_~
z1|k-6VY0sEG!Wcn-!J&|2@{!JU9E<O3u#1Ho}(kzfTwd?TU3OE4uB!y8X<L;l|`Ga
zRPDO^3+e*E%kD(>j-DR*yrJQtAzprd332gM0Fdy45X=q<4mOa*W48wiQDHFzq}9>$
zXsdP`lBAGFGUsr1b_Qy`BY3bews*PDA3eH?EG#Xx_yc)`ly-Av#&Tt$9FG>@Ne(eZ
zs1%Tdci*o6Ll?qUZ|;uAU7^6jyb>&)>3gRup7}PvGowI6WMoxEMZN9ZQ+M~jP`V+A
zYa&ey6&zwqfy98VB=En2HnDmMIBjihN%);N07F4Whxo>gW^+P!Xy^_QIG?I@nHU{y
z8slkQxKGBx7;1p2`v?f$WkBAO{{P6$G}baQG9ZD28PEa%qkW4qY;|tVV3a^UO%Qq$
ztT?P}S+8JdXlSj+F|3Cjgj639E`6BK74h;C6rcnZ!0#%y^TsGjEdwndpF5}|`;gmy
zNKt%~nD{c_cR%J~thDPx4i1j{_XAmZf2;sv3ygs9xLvhQtaNO2G;jrBNcsUP1LS`L
zO;JHXnEUMSUw5RbK)Z^}L3`xB3I;?vDewXfo~G|WktPyL)Z=&@l&nQ3eqTO?2WYG-
z@IGmPz*B+d(!>D)0VILVKW!S%AiPghgPTXk#Wmd1Q`pczB@Rkqc<dj@CPKtsI=l4q
z=a6pGG&sE(bpN?v;i-I9|DtDGB>;>e4t$sKGHu^xxC^;IJuRWIM|YT+BWb0ob*5L&
zKG20^AP7L#NXYL>OIuuVT5)|w{9iQbe`7NLN3vsVd^rK&`S~p?Z(SCDVUF8;I5&bo
zwieKyi|aoRfR#`T0e8d6l5?40c?ueamezPUIXA?VA3Lt}LE-!vnzL-HjBWA_;3IJ3
zi_QmWO+SGU5EBuBAaps!ASESr-*j$mjSL1gc4nU-O%OqZy69B)?Z=PTMO$+Z0}aB*
z0AdM?ilRwH-;JUJ@(ZUYtW%D|T!XmvZTq)>NL<^l_p9*6MsEmv3IKoooov&<Yxwm|
z{4{EN-0a-kjT<*g99IVd1JRXVDophGs*5zM8d_BF(b6vbneqPETCKAM$uL7BBT!Zz
zgZ2dZ@=-l3KmC&ZuC4?M!9DgC(=vd(MY^@lu%kyuM+XK5RP)q=+kQc3ykBiC3B?-b
z9Z-<-^K;-<;gONt_2!Ql-%+J`9*)6XheFQlzEuot4p_VQ`SCK$Id~n-1pz}&N)Ur|
zGspw1FcJb1EQnPrdKq*fTc+ZZur-3N-)3T9n5cinjR@xrjZaM2j21VuR0pF2;?mQ+
zFPCIY(xSmWc=2-g)2kZ&X1|*ZYLNEl2Nqb8f3PM|bno<dISn}6)AZu>^yYla6xomS
z;gtI;fGWks14ZwqJ897pK;;PlfEy5CKqCI^)DbS0fgw~Lv*SfrXZSJ+1%(HEXo*Ow
zgRLokT3Xu2kIx|E3Bq7sc&lLv3y$S9p1M{+WqP_Vt<=v@Q|b2!TTOuKxNN53Ml1l+
z8@~rS9Owja<PG*$`XN$$-}G|wXQIjm6rz{Vv)u`;pw0ux16^h3T?U<aGE97ctX2b)
zN5JUd0bx@ZfKgJ4{#UtfW63H>+C4m!myyZLI|IpNzos3Ad}d+3<h`J$yO)>O-pl68
z34p~#Cs2E^qtJJ*eQJG;MQBR_wav=V(9ptS4bJUIz9x{Jn1qB&Yy_?RZ<;j}Y#5?w
zPT_Tkpx|YLXe`e}Z^EQ&1Sn~6GpM*OW9nUtEu1@nYkhDVDfyiz>)c|tjM^X4(S3t?
z0pNTf;sKh5LSXLRFPlrK?BT=1$LF=*FJS{CTFi~7s3K~BpaC3%d;~QH=+)8jabiLM
zG<Rr807^yx<gDwG33=5$O+Q-6j0B;?3sw%OiFh*Phi`LPCH%`~i;R2*r@`OP54ea;
z!lbBwpb0C^i+odfZw+N-c9*S5*ix`xfpxDIswII42WkW?g9^Q>vdt4y(<P7rxUI(*
zwzqBmzGvfKN**xB5;wgEQ%AEe93A%|(=Dwy2)neUwH0EI!qk|!xb-lSBO)TAqCx~9
z`}gnhN^5dt7P<kESX)O&ZEY<Gb-f9!nb3GySy{t657-8POM++PUU>|H*4*B)?cMjO
z_L+2Rz#1XL4XIZyY>}!Lj_OAMt>JQJzSv#SV=FNayzEJV`H*&pQJ;VgTU%P9YX(Ej
zq)vooqvbCMgIaU*^Iw0gQGJ(~$ZPx!KV8Ax#^wTYtz_fCZylYT&w+0_;-3F$yl`@M
zhLaT7`P^a$M1(*S14c?w8@1?+Patfdp`$~(b!!Wlkn@^%vWbB~x&~ulSv7OP?WwpO
zC=M=bgR9xxSIal^X~i`c1Q`|=7cc#j)d|ZM;GQtH;qZH*^U!&rVirCRXmGBpEQGDa
zt3N-sMnRVNUnc0%NwR5>cd2j!*7N5xpjQh5ovo*IJ5bCU0!0o+fvjyL_Mfcz=$pb>
z0JUrV=f~c+cSOb~;?)yD3w$G*(bCca+^MpP`R|7ZK$cp4QW^0vUyJzw3KwSi88z5^
zR7kR!@P0R;prRY6{AYWtkL&wY$u)fs^)Tljg-(?04MNi7>Zre*a)5P3>9UTq)($)U
zI69}Z*1>u+l8BdsS5s@qvXyOM?C=g+T+55;FJHb44yxR~eY-^CvXhxl+7{up%JF!C
z-ip(@Vr@j`fWu<V-nud>^GAZU+{nWcA1#BEb%yOnT+^56q`xz|tR#O1SW0<AA|rc&
z4=;BocP!e!+FvOFGz5wcRckQ-$M!?Y{)yK{pk<>yVc8<fCy%j9CKc}p+m388@91Or
zx_-rcB6g5cmeP^6AunWZi4MjmKGI1u#a}^~biN>&QrQDwDs&wQGROt|`%fB9;{D>x
z3Li?Rd92BjQ57E;)vY+&!2C2Fzr*hDvr^licW7QYaa?J)HYK@SmTQ@mXc^rrO|^|H
zDC%K}aKT&SY&6>6I3@_;N5~w0d^@KLbH;zemDw6exzA$aKqR8|MK^>hY~lyUQbN?3
zBFQFjwf4Lmyd0|t!#BaNoFHEx1v%_)@35vX-Lggzq+_=O`teZvP3tVySYS*KSm38m
zpP+QeCv$awRq+tKfGG&Fa8sy2>FMb}<NVQa*}`&$Eaogx=ZB%I0;u=g7%f>@G54c}
z@j<i65-1Nbw7d|VR^EU&NB<jnAGO~=_@ZAFC>IK_TGVEo|I6nL8VIi+qLwY2Y~dtH
zkiVmVplY!OIErGHuQm6c0&RArMMFgiYBea)u<ny!bUZ=6@M8~PqCLG14o|wmw?+F2
zVQNNo%HMl?GSbp8TPQ6p4HJK$)<6*f0%6Ri`RY}WaKd{Sri_jzNR+)F(`id#R-%FG
z+tl7Jem_PkTM0aqXj+d3mbB}{pYa@Z5d;m@7sj!~GZk}Hz-fZku(?TzYT*2jPZ@wq
z)yhH~+BRo98-ERa7q~hVjIzJ_>1)FHuZ5`*1m<B&G$#A{6kwK9Pj3qz^YcHar|;mK
zO8jF>wxCBEkWdJMA1au}jE|}3;sg=^PlQ9YPLyPpS{^nwHuP3_`{ZQpe_c5k95u~9
zi&!)niH}kJsP%rjVQAdoiHM=a`m+$o&T4Bs^siT^Bl_(sP}3}O$HyP@+xkflD&%oU
zp5VjC6=jBGv@zt}xoYp#iqYUxUImMKbavvmSnA^EE4T$o)|H|-zUD5B>CM_J7IbK+
z{agQcR^or9iU0lcu8+V3NaJ(*41*_7u5oan7`~nx8ykc6rNcA=Ga%ohXdF*L=DCW2
z0fx$FR(}A{4Gj(On_wt@fA<hzFoINQg&T~5%C4WXuwX2h)(D%`Ar8kt{4HM{F^uW~
z0WZ+2=eu*K8OA=LJQsZaoIz&+PTk$86|e#b@5{ak3j-W=2hj(X20}XQ>Tu1Izw1Td
z!*IetD@<OUL4qF)Mi5UyjHrH@0)r%qnc|Ot3`0RRWu|J8RiJzg<c0Zp!zqXro12nB
zA1_JO+js9A_m<=k;U`Z}aJI)Q)`6O=ngbkp6CBJcdkzE5e$+4tyYd!h4#~-r#X^aJ
zlp{@0k-<ZSF`cC!iAGzcbuAiC{UwZoM)0b2@Q}CC*#OLxa>2msVS%A57Qi^!oiOs#
zGrueNcZG&el$JnDLIQL+qEvdK5SJOxk(rqb(AGHoPu^5s$!)dlfP;B<dJ01opsYBg
zD@X=~w*7*M!1(*1>DxLu&`2q97Xx>K0v6N(BZe@4G7ONj&wG=fPm)rP8IMZf3%ofL
z$7bcJaI7H<CmF_{TC+<_?Q^!oOgf_kmY6ahu56qS2&4*nTG-gkOzUY714v3@Gx-i!
z?(FOg1%c}a2eSc4mE2ft@6=TNhYv9KyNY-F(o8rLT<%RPQpyE^hgZMJ2Y5rJJt@BR
zHwGT(%c&_glaRbT%UAq{nzZ-s)dN2UaCQOW*%c9hDZnY&d8Duqz%}APjrA<dpjJW7
z9>80+2;}l%1f1%|jVD2`gMyf~%2$3q6RL*|lSho&pHrt~6a;<`vv%bM+{DXZei{um
zAUOcVhtQ0tCMN+(BgpXZFiejg?(TvGy#({>5x0fTp`U*HCW#0G*Z}EEJo5$E+4=cI
z*8+Ba8sl?wSAi(mlf;<^6q<trh7uhYzsCZB-&VW}QzN{*&Zlup|IPxq!OjHDAFK+C
z`QLZ7f}A~`5734+&Q=2_fYEKJHe3FV6MW|V6#UMz+YK;{1U}=x1m3i6Q<v3&MSx{2
zrFue*px>r91H}PlC#KtUVtiaaRp1zy7?D`N4TnJr6gUiwAV7hY^otAu_v-q;(uG)D
z!L{H8=|NIf7G?oKAjPDFAp;m6D*>bk8x`ir>q{NqW!%9JWZ^pE%E=Ve92_3rf?W+C
z2;{t+oSgcpC)9dR_!9Ug8@(@O95^=c08=kknkFiq`T4Y(*B$(Vuq~Zuulkz@?+6K9
zG+vw)1xKmpYZ$1R;bZQx0v!XUa(IybFVPilg&YMxqjqI}H-!kb)-6BkaxLqVzkUDG
zUX^oXQF6NZ0cnVKT<wvrEV@qV#Q9E``UtdmDC*FTroiY(S9qg#K!aZ(BcY0c88HtO
z3(zJnAbwb@gJFKi1H|ow>}SK<e*O9t%#pgY!wCVZXWO@5W1?k{*4<r0uyAk$z=#8}
zEK4eeheG~Ut-r9NmEJ=qA0U`k6P36x{Q`xlle!r`;o<N9u|~@Xs4KmksnEI<ZvWR7
z7Zy;M1v94qLyWC{cyb@=?G2n(7MNM_qsEMt&K|P3m<q^#Ka8UNKSf#muW+_u_iuMD
z+Gi_aaiVtYI^V$TQVoK$ncn>#zla=)8O*aiLYl_MYoKhVr^7fDL~G%vu;06w&sE*T
ze}i`|zH18H9I#hl(#+DrV!__c+PXj~_w_SU>y5C0&zGCo<`({&!#gZ2J5Y~-SM+pu
zd;X)z_JVZE_@^_YUKf&{;jntZN5Wy&3iQq1-bg%~c?leBRSb@KAJ=XyJUl^IKT*-w
zaCE`qp`8AIq05E>`+-POeG|+^{sJe3`O%{@n1F(w_XPj4*S%2ly%f<k@FAq}#dY`Y
ze0Eb)6Yya%QBmlmAlaIh%_Ujx@%mp1!_;2Ki??XhS#e&S9+gyFJ~-2Q&C141o!XzO
zi`3&mjWHlOgaZ!Y0vP_Ss@JSffDcF#c=OgR5b|K2+lV9%EdJXZL!F>N7DAuO%_S={
z%1J7h1#q!w@20E!UaNrX&tJMMyv@M>F20UW=O<FIU_d!13Dm8&57@Q9pqK2*Ei4R_
zc>pt1)z439oXokilpab&KTTJlk8L@eYB%j(@Zp7F@t>drJ%0R{w8;5`UpWQL0bRHd
z=C(3mPraK%p%?`VbEvypjy|@%tt~qz=kL+co3>w&m1&`cs6<SsF;HxvX*)q2P@CWv
zI!sj{1;BOzL3)548#y`{c~07K5y*;yKsSV~1HBR|Wx$Lb<WWdr<Snve9T+L#J)^d2
z_X7)X*?1`;z#)NeJ;0$cHZ%JJL%|*MSJBXf&Hkqji-N$H6kLvszyAzO9lq+}5(fOE
zuind~Z1=1C+(h|orQr6DWKxqTfmeq=3_UHyVCYs1A|h~Vh~RrL5YSvNt#P33Oz{&S
zPeL#9yg2(q5@=#(*3r=c#qLtGd;HiFe4JY6O(i-aAchekAvKVYfffYr5D_6^rdiy7
zMKsJpt^j-kU2qggVq`~XWTZMB5#TW(hL>~D?)wl=0=NkAf`7Ei0Sx=<$>CvVaG#)~
zM1+T%l#Rjc@KE=s!or@hF<v&d-w<H|7tyznKK46EN@@HqOphK}0|^856Lc)Nu<7Y(
zmLX^*n0~ION38E}WKy=?ZTyTNf+rhgKxshR1jl`3XsDmfAa3J_S<St=`)ePtH&Xsr
zV!`|`VsTl4;RS0744`{Jt`1zRR2Y$LDI6fc0K7Z53N|D$qed|t(GMS}`Q(8ygG+@o
zWB?rQ<;$0jy(yr8d<`aa3b*-3b>v*Kc=2KtWOoz<6hU~91Wr{u1Z8~s4`EQ;hm^Ex
z@B0-b0W=JNwjg?tf4bscTFf}heg69CorwAUJgX9od=+{KUuh~R%+AkWPD2A?LqWg_
zLq$c^`cvk!FT<v-Jpt+os0-!g938hdW*Qsw^MA0YIy+ZFOziB2vbXoe#)j1tCJ1_g
zg%%a#_hjN=aiAOC<KrVk6x7w1|A!*?+ycYk{#!l`x*E&bSv!a&u(7j)P*?Q4Q4oR^
zPzb=hNZbzR{-IK!7WDdcRy{Q{vkd^9z^L4dsgt*Cqt~LSF^Ofo?YjS^v_Tw1OI!QZ
z`tTz@0l2ZyG+;fz?J#N&bIYZCohZE4XV7O+K}AIcZXk%zEi3(*gaice<t~t8G8&eJ
z_M93Obtg)4WzJucmMv^)bMt*%9J(1CFVK-T#w+q(zJ}v$W@6I+(e`ahTpTeNf5gOr
z1|;u^5tjc|eJTqBhG&YJD-vYT7IG5^I;55^r6+m$2(UMy7^eLz#|Fxs85HU8f~Ki|
zd-OKqIe>PX>^y*=1qTO1TZYTkEi(-_C<ll&JUIB{JwG?p6fQ1jIMD8S(d`kGC$r7|
z0CO&LcksP1I|r{p#W6Je1-d9)qT_|n%EAH%tm$*_GpEy|U3XH}@h1sbS$LFzPyEr}
z3%Hd+aRH(TEHR1QO#ad)+McEaqJHzHs-`A<AwloaqFsR+_A+*I)Wfu1A*Z!>;+c^0
zF*Y|hx3~Wdcn2pFE1(7Zye#-46?AkcFV0ZFKp`3mhnP$$6fM}#fOZMd`eDu+X@X7$
z@&icnOR%0Ww>xzNs{aEid&rpl$F==n>oEPdE|T2#Yjd;Se(^he3CyL_>ELTH3SXxK
z*cj@|Yz+xhyk$e<iwvyPi0;p-dEj1%-t7m~2R0NLG4b#;)g3*`w|tIP;5ebh%Rn+G
z?eVK&Xtni^pVskFJFSeS0JnkOSXT<^ng0z0{O_DMg9b&&{tD|Wy``QHZslVxqBq_|
zTnz<sr%^7Rz{z~+6-zv&#s|Jg9D4BAOM>vFhaU&3Z(l3$QaU22MO@%Zss_QpFfdp6
z{O}Bj9%PG*jJppWJV=xs{)hK{gmuiy5(Qps%tq0n$rvY04LOadPGhCqcfHHdIk&EF
zYJKACb3#ENN(l*FGRT7~!PgGBySY_VxnRB?15r$?fSAh_rxloYP^)k4Z*WX7(NI6(
znI1Gh9fDl4uP}lDOEoO{0(Tycc3mCh)22E)KGxTZQ2&UK&W6MO`jQy)c+A>Ydk8+K
z#;@C2YnrpQrC7GF23TC6c8i!eq|FdoJhZ37Lp)y=evo|~{Xaf8fUp1geHHCVUCtg}
z@!eVOZ*!@Ww)fE^^2aCm(ONeCNzh7gyV9ZA;-k2E&S)YC3y%M7>L7km2>%+Ej9PJl
zi(@l_k6G4gT1HClq22JUOvmX%x@uW>+?zZ2n-LIOz}CeL06ata-~ID{ew~=pE#1Pr
zXW<BEeTUp^>HP4u4pUKHUQ8Eks72H6H|Ra+%~cYw@ytz$nkD};wJUctj>}jLAG^rr
zi?%}IpHDf3dRTcr=N?~<-*zoRDSDdzc9%b5329}C4&ar+a*<$4>z&^_hWK&UVrBPJ
zBGHZv$Pedn91;I}I+%{=KS!TAC+6{jaG&!IJe&We|0qflzPakyLom5J@Zzo*H8t@x
zf6_=`@{VzOzc~zBGnVa`X4ge{9%)&N7Ci;fi1_%IS8C=5uFz??Zky{}X0QLBvd%ml
z%IN?5Bg&F&iLviXQPynPl5Gl+C9<1A+4o(Dh-@JxdnA#eQDp21jWx->C1l^%2)~c-
z?|WU(^IXqd{=3J_nfpHH+~<7WulM^Ny<GUQ<4ZbA)y>3bz8na|0QUNrS`#Tr-2ZEL
zKC%q7XU{V9o?V})I;dSu-3=~RG1{=RjzaKL5K*Y*-#?cguHSMq(@4$AA#>P1zwh3s
zjlwyZPbwFi-^Ci6(q42Qd=VK+PMJuesY0j8Nlt`I+%{jWwLg-XcBXK(u|RP)Zu<NA
zttjjY*L!Xp1W$N&j}5!_wEzK9JPyTBSh-xw)G;)iXAHe)&P3ls`<|NgEtNCdxT%CI
zP4Azrt5Q->`^1}FF*GDN^kz!Mi0dN%_g%SEcx>@2pLPZ+BY6u~Q`7X``K^FjuNCF0
zu<NvJjr(qH3(8l<A4=#M_D!wtMLjPfej^mlE%#`9^4H4qfBaDq*u|nEpW5cfD)Vg(
z3Gr6JGGyL4N-sa3M^a*yt1>B5=g8Wk<~<o|AKxUlEj$07THiZIS1>GhfriBV%?lN#
zSdy7012#eWn^uK#x`HVUTkWRyXr7eEy?KY#Y%bfrBVD^1HxO$bHL7}6(#v?=iKY3s
z{DLV*4K56IN&@VN9k%*=#yz9k-;)l|O(jI*wRK0Ov*qGZqd{{X$$^_$PlH{o>kDr@
zd6q3dyfWcj)9*7ARL3{U#r&RZd&a4G(V^D<b93R7MQLZ>z@^tc{gvDLf`<{<;`8S(
z(D9E~4A&m$M5ywvCy^s+u&F)nk9fKsdcLca#w4ILwPLH*ldm+-^t}+O`xqf`Q~jFF
z{?cT_L%k^6!VcsU^dzvC@e8!nY+BYI*c`iyQ1)CcUGOGqK_F>PQHF+E%S6tIS($HI
zo1>BOlOz$ySa0*~1$+!L)%LWq=0FhsPZK^KXgL4K8CsR10dix~(Ek0Kr45@&wCGsx
zb7I0x>ttfa1Dc(PP_Sjoek~g~zrJ04ore2@2VyJQsm)nsvuc$sQ?p_<J@L20C@0f$
zMh<7BUagMyHljfz+eyK~pmAN?zxBKT^DAbS57<);8X^0_$Hy@wd=Y!jj#0O_edh2n
zM7z1?cc03AuDxe#9(DH|QE2hG&QEc5h54}LPql5{)a+DrbI@||`aEWAII>k=#aKr3
z1-G>E_#*3%$|a%V2S&1bdJ0`>Q(Aef6_3i#ky2oXI=*a0?+8{84)?q7srJnmQ8lx6
z-Qth+#_be2Dt68q4aT=}XxY&!`d3UUH(rgL@pJ3CdG<Ea#$|Oa#ZWrLzaWfOONimk
zhUVCozs3Gw#9nSi_fFQkx)zlBwWf_jF=qNUZL6pG2{&UrsulXKenQ1t@5aSlGa2Jd
zZ<1Btu+$Zl310a{2;jqzt!t&~%cAN3p1bB#Gxs$7?U&y_Ncg~aZA2a&ONY5N(Up0y
z?kN3ak|=aim0-nqP73i-T(PC_iNxxy?b)>FdYerz6m3sSP_Ij@unh&3%=?Cvq@=m|
zYBcTEC9^w7*ssdIVzmu+o{==6(|i{4DzLlNl=^6=TcE=_8Uy)=c&tajL1|XdcUngG
znnL-&UD|Qv1;%$Z>&XYsT<Rg7{sQfmd!1nfv_0~|dfmEvk|3htD5C}^#UYXg!^MRf
zUr><nfjeS{{hNaRot^S*`QYQN=%|qD0oK$8kJm~p?a{9r`O}-2QZ=4%CEw@d2(dw0
zh@%R0=}ah_+#hvp{Qjj!D&BlO6v-g=9$P#uob&nPzs}vG*7^SN;N@0AbWidfE&t}u
z5#QPF&#u$41fGy`+3cA&(}Gez?Oba5J+@TccS1^&_^b!&nzEfIUSvo*%_J}=$+_-N
z=Dm$^a3GoA7uq#m`nz53$?8t~Hl{s0;7Cc$kvmV$GGKwIxOr`Szq86;z?rLnG3!9D
zWiLNACGRU`sx{7cskCa;z|b^-=1@vtW+(UE_{FJ6BITWx8_%zHDiOaFyL#B{tGJCH
z@%y{#`t08%np)((yO{88#aQnO+=Ho|I}Hd#xBTBhrOQq;s*m4`PqUVMQ@rC?rY>P)
zslMg>?~cW+|54klrQ_P5YTokNhu^2Eb+nN-gv+0kLW&Bi-gG*M#j)GTdw+O1Oq@q#
zb<lM~e}&2R6B29Y?6)9L`ikccMRC=W!co4>w;{g$5j>7Z4peah-bee4?Hc*~nU_od
zHI}=srScB3ipl9bVWNZ7CVF-Ulb2Un(6v=>_yX=vzf2($_Y7Q$QtDFjCNMv@DN|>8
zZ!Ih^T9=y>l-H=P$C51fb9v|A@*1jN=Hrr?w}*|^{>#B$?>O8=Rs;f#(A0XOy>zEz
z*~33$03nKyiEO?Wd3dOcLYcIFx<^2^J-x|sC3`Gv_5RH>#Y0Jg=_=-z&La53BR;gW
zab4Tt2=*H9NZT!#zOa<xK4F8{vpJ3)n#iI;oK|bjz*JB%xs*}9E8IM#e8(oXy5zc;
zMxq@2E~19p7RDtXq)hM2x06TrP#_{AhuPDVDjgTq)%aQBF0(sgVlD@K#FTkH>L?5U
zmHaxTI(%!Ai&8}~d-bsLD13^q97Pm*@HS4V;^_M}hkOLWYI*f|Z)ROwM>6rT=L>%E
zrR|Bb-H^(4R}GzS1){0vX>)`I%rdO(_E#KEPf|sYG)33k|3z|R_6;K?89C0@*JVC$
z)2^#St9|@Ay7HA!m!*6NfiH#|@maw_N0bcr_(dn?P1vlz_V(QH_Q0Nht;Ka3i@$&C
zF9$x5X!1aY+5=S1))BnCtQ2#Gr3r^G_#nL6{N*Fz0it0&>6<BEc-)KFEjhuNiZHP(
zc_|8n7XMUbf!$tjy~6VNi;1xX@5;XuB!PAKNv$}SvU|u#HOkiL7^kFYw-iG&c?*xL
z!dKJ{ghOeX9;XW%8O^mv6OXccHyH0`8#Qc;xN#zs^97JJoEDNPmJWDhPgyCsjpo@p
zYDD&`ys#<vqG=E!@g+?$%!!LXf>v^^jSz*!)hekHnwiJ@Tji_u2kOIvv_c%|buNo0
z1gq-d!c)pOlkyq~Y15+dcfFR-MC~}YU<DE}vJYe*444Hg&nI`pbFh~@*w4Flm$R#Z
zJO+C(?&t2W<@Hk`&*tU=i`tNiheyr(2uiV`sc#QNY>dtI30#pg82y)g@_OQrA;r}O
z=851X!XXlg#}Xm>4YJ=h&CY-SnPoB1?(y1*Vx(>tiTK(=*^FFOG!Ra2qPX<RJ60o3
z^P!*7JyWzT*@&pCIt5~>oxo^&w%xM+!Fz1aAx9~eI5Z^dc$vTxi>)Zu(8;=c^)d{P
zr%D!1iLwz^7@I-YhaapO-|HO?*iy_0RoO>m+NPa<Y#+~PiFFVgkl`sBX{wVqAwull
z&i>_4TeLrl86&bb+^s0=3b1T7gul+dxlOOSK?bhKNn@R*e*&D5%bP4d`?f2IbdL8F
zm3mzMAbt(mr*?JY@f!mpd_1(WoJs>BA<q=U5n@kfNcb?87R?d~#E5A&A*b~iYmaZA
zs6PHJ)p#MFan#b@T~yTKE{w=1EgG-6+KQBoWTe0I6jR0~+q<<sOUmB4-~Y7x%EP6h
z-7983$97Hq_St5i*BT$3<;eIWlAazCW2UW687}u$gucyrs!q=bA(I%`LC@?Or}aG6
zM|(R<*fp5Ms(&lcGEm8MdzdiaRBCDFe`Dxx`>~t349!T?uBwkleFvLr78Bj2r>Ce9
z*48_FF9l1B4F`f%M@R@?-Q;Zs7kB;E#03OTX8a%1NfbJFA^w$=f-;p0e0Q&{d$C2*
z10n9%A_nxRU&%~zx6k3Ge(95bYxO`@k#tlhPV6TubN$1``QNy+INrKX3zoumn*!C{
zM|+H`9189Qc}=H7yAAuD_Oh3b4@VwwlRu*SLP4QWk~6A9Nhi$@lf>WC&($42<`^4W
z{N_Wue;Rn}U{@}NR=Ly?0K+%?8W}G7g;rtqiyz^8cP!B8DbgYPdg0aOQfEW!it1V-
z(Y4o&_Y?FxCRgJ5?b~e$_bVf=$>_OPn7O#tkRj9q-*aKen%q`)TKe}ru{-L`tS(fy
z=+7BNBrbSXk1UL&JD53d;}>jYp$9WL-{3<d`}<OhXEQE)C-t~cXd^-^TF!R;fuN9c
z{r4>l<h$(PJ4%Z$EHbx8C-q!O|03DB=um8L(n!x-YRnzzf8L<=u>yGu)EHVI%I=b)
z;<#NoST>cS)VQ`3<;t*qDNFXUJ*=tU=N}Hvy114oP4omsGsfX$M;9HO9Sb-7uhDpo
zA4R}jIBm)O5yqp!YzJ=|S7GdFd`dvDR$APcV?|?`JdUZj*n;w<wTy)%?h)@dyJk9q
z2e(KXGBsIyvL*+C5Mcf`X7#$!!8$3<hr0Dv4ThVdZ9T~;ewweGu=w-pb8A@(U74PS
zvJ9*ve_)0am4G*QgmJ30@oPjV<2hlG=rh$e@jnfu`@JJ)WUpKMqXuelvZuHr8P8Q(
z2dL+IofeCAp3{t+)TB?8G)mOoks;8xhzhsgN)j`W(wG~bP)ZC#aHTTx@-$J@IQ3uU
z5MjoT8xL`8<;e+h>3x?Kt74CM^aWk(*+T?tjAyoL5l?7Dg+-X(?**_QPg8uzfQE6V
ziCVob7}%7^$T9YF+87|T+v$jZ*}g^h<n%8RCN!I<`V+3*3~S+y*R%+lrtbo!f|YE%
z=}ojb*p*gMR(JDb%=JX#pn&wRv;yCdYf3Ge_1_Z~8bpaMtqyZUyi7-zS1TrWNJnj)
z`|EloUhYl4BSjxc8(V($_dU|vcGU_0MrP{0wBuEBNg|7gAFGg48j?~xrb8A{T@RJ3
z>W$PDv`o$kdimc&QR6=hz2>*V#F6CvQQ^9z5j30H@f5M|ly&iFH&u;9Mb^>L>kRdc
zp6A9o-C5glAXx+-77EW?v7-6UQPmJ+B$Ex>+Tp6SjAb}D1UcPUH3s-EN{b4<<}v1=
z(qW_H=BxgFxbWT=gn&ytBX;6x^lIzWD<}K3P~=|E`qd!VRau!B=}lKnNlHw(JNi(G
z*IYL2c(VkAZuOXpRJyIn9~sDIx<o^-L@X~?mqkswo^iSz7xP+G!<d~pIJfYhnRjhz
z=bM0FJiu94;)b!U`G5$T{$Ned^11+?5eC}xw15RLF+KQn?}A#cCu!R`%7(em-Y2cY
zm{i;=u_$FkaCh8gW=V%~GHk|+ije3Z$BkIpqZzXZ05o3TznW&V>=TH=U;r>;GRc~q
z|HAu5i1?D+ep^(yJ}D|mnBgpf49GlVs2*nOyd7BVlU&9ckiu@~x-NY)gj|Aqug^g$
zoeyPWlG?>4XwIbD({opm^=oymXv?bt*vD6nEPGUC=)48eJD?V`GF>{mqDzWv6s2r+
zf5iC>_a5*`!6aVV9>~m_ZwrlyuiKd9{7HlmZNX!c^>nXsMT_ov=L%tdeIxV8T$8_z
zy`cXfXS754X}sy~<gcG$%5qD`$15_qpVP3t65_867zHf}@F}KSlcjl74_6e`=BO@F
zq*yWCKe-@#sXxP1az~rLw|mf2@QME4TUg!y?r@cJbx+;s3){E=xGHDFrAwDqK5`v4
zgM;?@vu8wz&dyG<T#!(&Irk`sK~M8wLnRrN+`GWc9PsuWli=1WW8KA+>k+)D(z^YH
z%nBRC^;s(7M*#ZQ0c(%BCM4ttwi8Ss6aaz5tn~P}TY_i+RPRrBwyP)-fJop{{XumQ
zInk@ZJek+CH=TTYzjvU-^hIJKC+Y`C!ccZsqpJoTHXj2{1e`EfuHIYJzS8;w$`_3a
zKp4CUAxRVF3e%GIFx>&`Baz+-rXmnu=?Iplrq@7lNG3>Pz9m{7ZM;xmfkSD4j+&&t
z)k?bqHhH@0EECXWoq*y6AVe<(tXJlr-NL3XUb&J5wLsx^KzpHNtD~)bIuy$LJP{xt
zpv#9+ub2;;yW9NJ;0R7hOw18%1GO3WO9lT8On9TH_rlNN;bC_5PeMe2_sq>tAm{W>
z24-fwO*2L1$k+ix^=bVx2&KdM+b7A<u^+IDQt5G1pZoibV%PO=D}1tPjxm)TJ}?q(
zfs!>)Ux4OsLH!m?PL%*l#kvOvD<HnMwsL?27*sB*C^TRY$SJ5BhBuyAK){>|_-L9|
z!OqUk$|azV!MOz?wR@mx0F8$cMgHjR6>EVq76L4DDB+;ZPH9v?cgxABxO>+UqC_FW
z^DENOPy_BBpoc(t7RtAeBO`$mtg}a_3Iiy4XX9Yv*n)=S#~grTPhvoV8*-|c%?bpk
zm?s#VLEo{!dtGc9T=r>gZVp}zoB%)i(XVi7jEN2k)rdSFd}288TeAX`(ziK!9TbgX
z&<=!zl6fyexgIQN5X%iUWV5;;f9kvi0jt~QR|bHzXAfFygi<Lq2MGLF%3H4YmWYa=
z$AKhsuf#~Z7c53>R2oo+hO)D03slT4gVvi%SeJu^fP_o29h&z_>Hu+L(tmtvord}V
z6lc^vn7q~WysF2*rv+UHs+LG}LTh>8t_xf#b3WekiJok~-_copx%TJ^*9n~;0Cgs(
zrmAmj%7@IfT}V12gn#^tM<7n`o;)K!AUg;wsAGm3z{UE;;i0dO=TL!${&4xzK#he6
zp$vG3z?CXebd7C00}!`8J=cGnNbH7eAR$R4ji2->FfD8DgRX<3M8{f!)Cpc#t61WA
zhXEy<hO8s-97!?9!NBBo2fwUvyOgx_Zb379&LW(Ki~0qA@>y_#ZbVVp+Sxh0N(Dv`
zti>=4fHY0Dt>5VxuiTi7;=qrsl$D7lF`<_>{{msL>~jsVC-4tW_?DkMfE<t@YXnp*
zK&%ks%n>k`E0E=<Lf;G(>d@yYsj2*Yd`y&Ql0bZW2nqxHnf&U2Ct|?)@S5w<Z(J!j
z!DHs;fF?~k`o@!hXaJD$lo5mojP|_*%Q9%NzRn8V+`rT8vxds7Z&+Jfqfi8Z9N@Z;
zBOu8W6kuKY$Czr+$#<8ArbM2<d^zapuHxk-IYgt@Q-7K4l<Xq8Op&?s*}-1R!-cyb
zicF75d==I11??7a+j<<FjRjFo8Z~!l9bEU0&Q6dLu>}vn8VU7r7}l58n_+yl8yOfv
zk~laBTnD&8Gz9BlzAy?hIF{OQH2|0bUIrp1Aa(OVtQ>5#i&Ph@>d|ZW{<|pOogBx)
z&T3%TSKkvZcJ%xEU%`A%GHIpoL32K7%z2W@$P_#t4?h-EXZY^j>WRY@fa)rpN7VOq
zEc(BHdZ2XFvx1cgqqJ&RAy#hC)7H^haaitrqpG*`N|SPv+OPZa4#NC7t6&EtDuZ|h
zW_^&H;RSYVpsh~kx9z-ICy?eqDppV8jcS^7lX;b%ez)Y_40R+9CysMp_<2!H52jd8
z4-d%t&4dW&T0kU#&OZ}w4Fvs|p*RriAnX14V|NDyu+tFdv!Ne9RD1wqBB*z_jB3Fk
z2OAU`%`*goQzy)C)x{VPW#AJa8eJMWWe>AD9?K!;HTRg&Vz0}$P9LVz-_F49K(io#
z19J@?;-HMi3yrg!ieI?9;|1~aaOB9kqrDw%(m(08h3j#d|NAxEV?^-s<qITS;Qm}v
zS5@VV0MXXvaE_ECXl)%JC|e!vUXZoY)6zhbbOY}=Fzk@rJK0q}1CupmQb<cmYQ2)2
zpH(`RZQ1*tdqck4b@<~uJU###_=pp9u>9(qUgp`N)+$CuMxc<wjezmEC?C7HzP=9R
zh_JA*S^dM>PCK4?1(vDRVL)S`E20)qw{Ag)v4DRFBPQkM<_2f%cXK|7`;e9OhetgC
z<967aeT0!@b~W}rp{RLLkR0*A!D0Bbd!ArS{)OyrMh=eSL3F}1`Iy)F1qHvmyrVWY
zJZubon_WdAMx6kO6>>vBybgfpVsxy~=aA>j(!1_i7R4YxXef*)5D1$ljd2*1i0OZ(
zxhLRi0O0J|GO$TN32YO3fT4o~+Z<`x;-Vt<fH|)4MytvZp#9x(ZEEsMklLVyLVXx=
z0`KiwX(f=iU6XEPk3i`;T8mQJ(j{-%1MemHjTqG2;k-h~`N!kouYl7+bOl$;Z$Rz9
zej6MTK;1I>o(eeyw-wM8HIwMs*lJ-K%Zif)BnMc1TN8GO=?A&ZMVHjj5L{LdV2Sj>
z7!vhAKoT)3>DzWD+(IDf{5lQ4*2^-dAsk%6U+F({tAE$V_J!sRZzmwj-U9Ro-TIlW
zEI6mCX0w2ol%~F0wxB$5q*6s(1J52g`Cto+@k}XR8OX2z`y%+aP(GFc^KU>xg8@En
zQoK)%Us2B8VkjLrXdtErQg$7F9{>Wz02BcBwenH#kgV43dhXVV9u0P}wdZ#&Oe&mA
z3=DprxSGN_{{7Nn=}Y)7arR`P9RTnA&*JF+UxELh)zlG3TV)=U^H@z0@ItBSsA5&D
G9{mp%Cp}jH

literal 0
HcmV?d00001

diff --git a/docs/images/robot_log_example.png b/docs/images/robot_log_example.png
new file mode 100644
index 0000000000000000000000000000000000000000..6c15a031e26eae47fed53b21a1e69e2f7bfa89db
GIT binary patch
literal 158079
zcmbST1zc3=+NV1NK?EcOQKV}?8l)sek#6ah?p8!VI;0y>nxR|i971B~9*`L6hVP)R
zy8C(e?q2*coH^&b`TU=LUSBCHNa13UVId$O;7UIbe~f^D&4+-16o!EY+@V6!@kc<w
zF*6erQ<N4HqgJ%DF*dU_LO^)%Dn=FkiBcz7ie_YZcs~+BIHB8BakmJ<`@z)I%Ebhc
zBKKdh-^?A0kU$+}$xthy2`Vh~VPbg78vGO<j7n^z%|sv6l}Oa@sLKl%HrezzT25^=
zTAn6FD08nSlxBI4ERu3hmyC+w<Bi0Gwp)Uz7)`!HY$!TfDRLi!f`ic%(T*FtPskO?
zyOd2{6nKYTs17V(8wwzVZ(T9@VpJy(n26Xkx^rvL10fJ=+T6TB+!uB~pY;Xe{W=+6
z@DrCfB$M1{QIGGir{HcGA#mkt6>?!C6u5_*T>Da*Mo|E{QX6zc!;UcCOpUjQS?v)>
zT!P=-otWQ5d}Tt+6SIYlayDu!xi`NN3b|eeSu)0bs;nb3fI-}Ot9o+v!o=*na&f5(
z-DB*dB(V(b0`XBZ*>qR@jqIi;fwe89>?J`OVv~&Xd7tqRWC*%wqn;e+Vm@pO*h9t%
z)IOT*rw^2;#v_5XiRT@K$UVA;{<KP?-z>vJfu<$k3M)~^N5W5hiP=#L!wvm4a(5H6
zmmzl9GL2Ze_=~*KOyy@h_YtM6sD>DbZs&-|`Ht0yMBhLzxz@r`n)IB$yszW_O@3n$
zDTXlB78_jKI*}U$8Kq&whBD0y!^hdKrM?~|z4r<3NWR8j#J)<ay!Sz2yQ=F@pJmL*
z_e~6!o)k4XxnMZ9?iI3}E(&*+D|hH}H+E&V#padmZG&#{C=`TgV%gCW)zP(3minRW
zX$kOBu_(lN3MfTV#pMQFW$jrG4N_|LXGI?H!M%@owL`xfAxf0{O1aap^9SAc5zm@X
zABUr&G^zLE^gMVJ8aT&^NaQDclMn$qTX$tC7lBCRyqh}Djn7|h$<)_Q63+$8mNF2j
z`b(u2udKidGpT@Y$O_eTb@7&7U3Kx@whKYwCNBfE@K-9F+lXOu8;J5xud_#Am&Uon
zH{0eyy%{FeY{F(~U4_5NAKuR6`BCXU`5eI<UwZO0_sHA_$70c$qWoo4g@qDr2jxvx
z>GBT+Q1E?5(v6aQ$&pPak&pG~MEk*a456Q^h?Vuv^-gR^Jq~Pg_c{s<qXnMdkgK?`
z&56y7g{2Wo6f_ovF^q(Ka08=DdF?{Z3y(d<q|S0*F}L77H7Q;g<ITs+Lzi2>KH{U@
z5=#GN_On}tmNxSAe9YFO2!Dq6;lg`Q28O%#1-2UwXZd8^By!!VmIC{RoeuBlW#2#y
zKNR`<bQ0`n1+Y(PO-&*wdRROuDyqa;;z7|*x@hY?K%-8pYHVy=B_}DT@bQ25>_qpZ
z4eI$EZpw(zXT8{&jmm(hDuD5YIUUzIfq)HJrHOKR0j<tQ7z0gTk0=oJ6*aNkbLDFv
z9a&J7KFG1*NBeLT<K&~QHQg>IUPp5OfT)O{&}93JOba3IgX1%j!W6tOgbw}(Y51a7
z2=9xn1QI+A9ivtVB%k+3q0xW9MHrSvv-;o~jpSm7oT1R;fP9gWo0{R~izJI|b~kum
zmfft3c=_PYHrmnir}V_bQu2>99qxVhFYTx2B1rZzPFL!`Uv^#FPbE!xg|ZA!FjPmR
zD05>)whSHl&F!`(CN`5EbOVDDHL}=O(j`!}yDFi|`sHf0r>R9xH`GY>3GU20B)#Hq
zCcg3N&YXY;mJqpaNKv!%oa3SNDZ}{{cv~Z(Dauv9s~^IeZidhq666rdU@SeScrNx_
z=^3lzmFcUm#L)&qS8xxWGO#D!^RIeS<y#dtCTB@2bbCMi!7bXzt9N~fWalHdrRlQD
zvjnpYvKX`Q9v21V1XKqkN>)iG1gK>`$kZ~ZY<u*Ykqp9h+`(r^UP{Fq+jHmP9acIU
zTAoPO2>uRFBJCgwI-ke~ojE<3PZZ7XzNJ5)w*i4b%pgxtyJ-*?%v{BEb5tPjNO6Z&
zIqdTTBc*nwrB8I9l0O-Lw)(6|_S#q$J12W!+f3GUxa?{fdYKM$O>FQrso)}zRNmt}
zg|(m&Myt|_*W9x18BXa=)%&6wvg6u(h7_6<6?m#96$;sX`pJoWf;A3P1T`f!t~J4q
z&TA<{o`q6_;9=~cg*D<et6~21gEyfA1uK?(VM3`5uf2k%(;t4S9D=Qwti`Ruhi!)8
z-2I$i*dB1dF;+Bt){>U&%Wg?}Lz2bd?gGLB+QQJ4p_}<P{cZ*ae8Q{dSoEJ$Y}OO=
z)qgi9)Vvmu8uCU`Uy@g{`}OD7o8${^p=|~sZ^>-9gp4LZPrP$46sP+K)6oN_*+u1V
z$j{3gzp(^Wn+_V78<XiXuxnemeJtw^(Z6OHYgN&;o~!<rcS@jN%dnyA^vw}=4q{Ym
zkC6)7LylTzIVKwB#cP^O8qCK`8%$A5!AuA0)0G)&M`}hI1*PUCpDVa4DXj#DYTAxN
zaiMMPlBVFc<&a)<P5ud@3Dk<c3djb|#yzJOP9Ud)b+diZeWmrh^&;LY6dpJ1ZgAhz
zauTNyq<9e;6B?JKc!%{)#1Pus3jOE$4b3gh?*pbBa`?bW*hv;iR5ff`8QMWwpS5*x
zD=AaBJ&wL`HaFI|)hyRo+t>5ow`s{Gkf0@#s<X9sSg2O6(YAkE{jwHfYxB%|V{Y;0
zm$4Pw?x;=PaeH5rU>FIj4eLAA0@b&b<<2z+Ztz5*V<B6iV9&l|LJu(y*dh0k*Y3`C
z_W}RxL0lskP@UEnFxm}CEJ<tfqkBypKIFx8X@cRTZz!vHiv>Gq0?D5c@6wMkyrHV2
zJtXb+jp-e4b|aoAqrv4R+V<UOPieKrYrRi<Usg=BdG}-F$B`F;7?n5>tRhT!=$DW;
z1Oqpu14DweC|#ory5?-(^G;>fN%fLBas-jZTq$Sy{HV;JjH||$i_h)TN=zoab*v@O
z;In}!(;X+H^|O1mRd;P0U*8OUMXtoVY<3!W7{6sgxPlo)=ya#<A&#_Gf(uWlkaWtY
z$oymhp=!P(F&WdYpy>UQ=Jq}^_nX7_l%vPPC1qq4CL%^SSu7_%+fpnDw#S7uvVXAt
zScVC^P4=)S*~Kt&|JG)f|LXJI=-sK+)asH+2J44tcMLowdBS=%o83F{my70|v5-(0
zQ6L=19IA#w5UdW3_~E-agt6GQ;+6w^18eIY>+(=4yQlU}%e%0g#m(-a4p|64)5uj=
z;6nxOL;)+i#1`qtG-j#uJVtxb)@IQTFL5H|!$FH{&0=Q~)%B-$j+*_N{JQ+6-*qbC
zD-0#yPI0oWS=f~rN+k{;u}<}c%=Vhbo3YzZ_q+tFfh&3>jZJ#2;|)M>T@>0U1FLJ7
zA1yESoYZ%en@SAS9^Ks`50(#xT@yaPJO4I;uz=94vlsOoo13|XB<NZNi=A$n)4=Fs
zuhk=t(bDZwNU&=#<U(K`7L<AtXUJlv{khy>fn%OytCYOkKNhZ$UYqf(bs;8Gb)?{F
zA%pgw^<LI6tV^(qryxB)qR6Z$u+UV^qTUHQ4q1D?R;U{AWK+|o)N9}vpZt)#&=O}_
zt+vxa37YdTQ6kaC>ebj|RU=L1hM1~yy|p2$&WS$D1E@}Yvx^iol$F1gf5N#H&ZoYi
ztzAE1crZv-CaE)2ZE~8@?Jjn}{fTeX8rnXlT0ylQ2lw8RJ!a*>6Q?lcU9m6TS54F%
zrOKdUC=mOcGwL{sy*5Gqn0y>BjBj#qWyWQNCvL`xTb)aplKo!kF8z|}*1);Ji*~mJ
zx?b&eaHz0#{3pAEma(g&3ZcAEH-^ujphI(SA13K1^Ez?QS`P6x+P{RHBo#HzI;L-C
zz*@x`-Os&phx5ueBM-6zx*OuiCnPH<>Iof|4u|{m-WJ&wYFAO(*KbG;zSiVvpRsIg
zZQMI`+T0j*#@gJSN_G!>R<zsDceagw8~^?JvqJ;jTGf+?m+APdLNYE62kh{z?mMM-
zQu%{Y2UB8&IlWcRCO2G_Ok7|~BnvtYb<uU}YYaz92avs@b=|XL)i1gvwe3#Mb+HYb
z-r&Q6fr(_ez;yX;%btKs>Olis%&h1Uyf93N3gRJiw3~19*<=tF#EPd&)+p&&Kbkr^
z!#XEZ-Ia-eMxGFl*_4=!&_4_H#e-W#+rF<&dwga1O!-xl_s91q8IS7_a$h9RUx!$u
z=?Pm_*vF_6r``K_2MzhtlxOifiP+W6oKlGwJU8##cwcBLAv}1E;1RKZaA36pzbM5;
zb0_y%zWbg(_kQ4)zG7Yx-$L@+vQ79IHK|^43t@ta;<Jce>ldiwDq(mP^9P=Q?-6UH
zCT%P)kH7$2V<4a+5+Wc2SBStr1Vl0f)UVeF2r`J|Kdv7m(tm#k2?61y83M}pcQk;%
zmp|daFVOn?U*yOD1a#mVA@KV=4e5`!vH8-F|F}j91D+v>Dv3!;1Amna?2L@8?M-bQ
zUKHo`05>q7Jy5qtK)6PC`HLw1_|_M|ahf!HqUN9`FUMzKW5uFxX!F#F#l`B`Wj_c4
zE_}eHm63x!wTqRdwLPDUAkEh|_<-xn+pILyUte*s5TsF)SELrRu`{CPW?^GtqY=WQ
zrluCKGc@LVEH3%IIq*%8#?-;#86PXFv$HdcGbf9Uoe3*DFE1}E8wV=~2Q%;nv%Rae
zgT4#1wLR^(PX6de+{oU*&g_|knT<8|Wxx7QZ5$m0X=pA7`tkE^o<=TaKS#2*|Gq3>
zfvlHLSlL<FSbx{d!OZwSG`oEAt=ZRgeH%{TvNJwqdm}qB8!Ia#YX_m9J1+2bq(43U
zInQqm70q0XEY-x#fR^^anuIv+@o;@__SZ+hZL0pWDG!L_*OtFL`K9IM8u%U?+1pq;
zUhbi?wV8tu(Cl}&|Jq9JXEPyoE-qH~@6CR_|JOF^|DnyV_y5}Fp`979jry0<6Z&I}
zU+;Z?Ux4+J{=eYi8`!?y1<)phCBXUvxk6Z`Rp-J82qFm5;-XJn5Z9;BU5JLqo3?lo
zu^wk(Kc7w{LNxoVY<3Oh$rZ&GzsI{^t=7Wav1+UXtg&Lf4}SDdRa@>WxkWHY$lS-S
zzjbpX(fQeJFkPp0DYWduHN^;$#0%@;ZA_Mc*17UnPV86Vq*MEdh#)yyjAG;pCliPu
zAfjBk{5ZXO=q^>~O|kj{0SSYM-M6@y4HMt_RrgY4M+XLPro-L4+6*~?8-7bPKEMk=
zA1X+9u0}1kyb_m|mXF!pb&!^q?|#p?0X+Kp{Lde=Z$-q#tDYNOZ-tyYi2X6<*Ma}(
z$F{bJSd#XU7ctB42KevyP^i;p5@gcs5%e4+{)Y+po{~^!+Mko#qkh}3e>&}N?_ntV
zg!Cc$4N!dF?SIvJTNh}2WYa_ZuUdV7nVJNtP%A_q<C127rpZ6}8g7H6udjbU&Awra
zgZ+Q$VNsHrmR5|$jx(J7PveVtVcZb(q7lw9Quw>=Ol!fa;v&!Krb{5^6qqy`q5aq_
zn~zQ|bxA*ZKBVIr7Nq3hzO`1FpE&-nd*thbGWgo^&8nH%@|);SJ?Rky1cU?xEXQ)9
zUr~`(jP*tL-N)muVwS&~*<TPuor?1Kv62LpwEo*$3>=SXXlcd4!b;!fLeGRm+Qz!}
zoYdQpC>FH@@7HeWp-56;sq|2Ub;`d(2EB;yN-jO^3h(`o7%nVLs=l(cm(;t5s?~@5
z`A-}B-$+cSM1Az>F0U=eK+mog2kIE;D=+I`rS7jTuBXXI|GQcIkQLw8MeVyAf+H;_
z!%c-+hQbp3b!Z=Eku<QpDC)oHM??e_*t;der;%B2-y-{c?MB2GW5wGa!-3_B8%xlC
zThlKaKxFOvsf>$rjJMY%=NsOym?Oq@OQhN74pdYA3j`}ZK^f%aSTuZGdSzYfi4Ob7
zD_|BxtcV<ZBt@f9Q~!pSM2S1t{F1M})`RWt?xyv18-APb;w_OhdxiT+U%~vBt^H45
zWvYCPofKq*ls^)W34Ns;J?bur6@~*|_Px>jf5GJ6eGSSLG1o|lhgJu&q#Aw2(l?P0
zu+x}Do87-*C#0(nq~(b{6~BQ3;{^g~vRHZ#=)dyePlWhVW3Er8vK-UrMkaa4aBy&7
zecsk0xqP06f_Y^{%TLF$;va)R#P*6>olD8-{+dmzK4bNG^8w?KI2Ee$;A?7_(p^JG
z7JBc(OQ=TQ@(ui00bQl?q!I3mXY?$p(mEy$i&U$yKGCeOoVs0Z(JB+w_Bu#V^!`Ug
z^%A=nCf$<93Mq2Y6#UK!?uFWUvC%BrGUMe|v{n;kv0X8YMi%UQ1!f$lIr`B3xm*7b
zY9a&I-UxZtFsawIOp0r1CE-wVRGHe)Hw~xCU5jr#cL?7J-=WQRaPYZ`^3Hwxof07_
z>CM98V(Q)wu5T!E!G2DvdsET0K}-Z$nS@EpuxNYZUD5bn<ddVVx2YQ&Be`C&Wv0_T
zLO|#kmz<}Q1l&mIx&M~SYETUgpG*(MXLS3s^%OtdUdk3yI^rKRq0jg#mNFPkpuaHJ
zUqOEb3(+JT>{uU4!5^EeXVSZPI%jitc^{qJx37NuxhBy~@6gbo$d%lVaNRiUuVzCu
zjxS&-*b>JUX!yP#adUHM?06qr1+=t`Ih=Ag+^E?b(Jyfw>6wCrd3VC8O{S{Q#KS!2
z&5ph-kXqxV9E46t<NX9y&})&WPcyU*i-LRF7p0@b8jASO;R-wBVnww=i=%jpex042
z87kGTSvl9>MQ^(MZr#0m_sTL2RQ15L{^f0jH`k*D58ZTGG%I=<`X;O68#~COu>(va
z=Zn#U-{0G49lr|s-Qwv~n^eQW=1e+uYC=ip`mcPCY>k#-NA@@N{1EQN*zwKQP#5-s
zzH(4dqYq#|1%51+hlmUpYV&o6iy~t;4`LbO%9HUB;<EKqn=p^q+jgvbY%fZ?x^Cy`
zAod+6ShOvVmm6$^^zu7x0%&vU+$Lr;YVA_qx7cb96P5<xSbfyCW^^pYIa%s6k(~RJ
zEJXai<rbrzAN<jKJzI|tW5Z6TpMCU2**T7gc)`#3A?B<oQoGh^DQF?V0<B97UpP9i
z<b|iAhew^(;K`t694R?DBP?l1p-<?<vU)L6b}@v*#Bic9H(5?r7Ca;NGVBIs*S2Rp
zD=2N;t>`w{1sYRO_PzBFcB~5SCHpO$zk$3+C($!B-u9N3K(GDmY{_0SLMjp)H2$@%
z*_-}*@5W-6GzV|ZnFiE1o=Iv?jDzUk<oA)1l14sl;gygi3S#4$c!Bj*%54$Qf4TU0
zh-F9VHB>xLo7A1GCfchK4&JjYhuMuIQSA%UcDQCn#6uYXX5{uCXH+dT1VJI?uV;xp
z9oEL7IF>2L`&{n%Xu=i&Cb&u8Rl}tU1rWK^9XCO4HBs?eo7F64Z*8=@{vd?C(z6-2
z*|4bzQIwWVD4403V<C!kyN`dUXYB&kx;2=u4o)kS5H{_7XX;ZW)NuH;!ejpk#$nWD
z$h*_SX-}qN*#}#mp7)I3>n_sG94@l)9zfV}+8FPudfR3+70>xQU|~>)7l;5d;8GZ@
zXZrTmyC1|>PJ46<G?aRKA2oNZ<ikK<`)(EHY~?%^XrF5I!#>@(&2kSb##|8-Z8>vu
zGT%O(A}rjmeSf&ppSp9+G>ucV584=_q6j8lv=r3bfQGSnn7sAgeMOO*pGWS|i?9k^
zc-naFy>CB$$WdjFZt;U@E~J$5D~szS6v=;Zn(tFuJx?F?lBW{ylmY3Ejco|9U2+Lj
zRb^UJYLY<;k7{3Iv(9yA!}6M{u4l}rcS`Mf52JGA>&EX7r@5DKJX)jN0h?ZNY&<`k
zWU>8JbzWgLv6yJn0Gb#*uU09f;*-m%KM8%3tN5Y7##XRnb$YwpW;(9ni9+S-OO}aB
z8y<Y~Pq`6}Qhh&>{_B-UDAF<5HvpIX0qR0^Bf;1W8x$e_?(mypSx??QHg@k#042W-
zQr70=Wu1v#F27?Xdynj9O!o`dWNZn4V+R(xf%Gb((XSepUjNeEMI~903kQ2UClY_M
zMCH|lsMLCci9A?)8%`IJs`u|BVcJ!olM?rC3V6@aRQi~~Tz|2^T9v4Id7*fN8=qFS
z2E2O|J+OB-++RShO5-(mvo!W}uub%tG)DH1)wyz#a;=c1YEppQ%0kF^yKrhosE2jE
z&*YEy*4Dr_(l(2p>Vt5E{jlE|KO!qAT!BXw6E={2KQaXE$!>f`CGccM3b~z^VJvLt
zMEw2Mh7-Zu+>s~g@;6&q9|<*fAf6i5w8_Po3&palNGaHFGG=@;4L0^R(yg*e9Pu&%
zmUX5y;BJyhz$O397QVC~=+%+dMs13DJQPm$odkOi`<d>tcM7m5*F;xov6PhNnmf&o
zm#<w9({S?6i;RvoL@V8#snnH;VPPJAuM+ba^j`DrnU?~HgJ{LksU6N;`rrv0r+lhy
z8>v^Au*YHG`ZNVAIzDAICnTR56aq4g5xhr7C!s)>8hN$-;n>dFbiqPk2ga*VJe>*@
z$4Rhz*!nbh;;^gw3GZ4ySRAbP{N(6nb_4fBB|O~oWMA6SQr^G@)HB+yb1F>i$vhZR
zR0h_OvKkRoKMA@^9JK^;T#xP56z3!uEl^cuP%S)#<X3wSo-B3RKJ1X^nYL6YHSCPE
zL{2Vn*Mp?g6B-<*DxWb8b<Gf?l%lUuUZL$1u084D*gHrmUM}x(+&G`qRIg_}o2qq9
z7HA+D8XA&lEPV_g?#QKor&(FJrNdyu@?mra-#5Qkb!MSGtQ&0sPV3n?nx_hZ2^Lt$
z2*lHyt;VY>D`XosIBU<baDqcXjc6fnbFyUKFv`i0dsCSW@N!#E(jRM#6zS@A#R=En
zu?T4pK7h}#PFzg07<I>hIG|k7fq_V8gDe(i0$(k;UwPvaJy*C8&(?WZSf;HS5<nJJ
zo(;<aq^91mv5d#5l`K2<QV<YCH&rFgx9_+*XUn$%R(enJtLaD$LArTy_qu3bwR>-V
znlWPs)U9INp2xyelJ3@xXV?mq9Hx4OEbFfDMRP*5n?JlsB57Y@MwPKO>r07xVYzIw
z{YmLzV*Ai^^6fm8!f5B|cw;m?i-mBDmmOyZGbRVZZo9d1@d6S;r(bAmd*6SuQPh=u
zO-3i^zF(YB>M?@Q^-wtZ?nUyUF0U;O=NC0}E$6B7ZExq()RvYOLtd|)<z9}}CF$)Q
zNTbW%>PSH%`?-_Zc-gy&>WlLO@9pVYcy+maGN1Bpx<tEt3P<OLhc*848TZ5UgT^?c
zq1y+#9Qi5*36pl+&q&#xiNq?wr)pK(Uc1XU;6XB=Iqj1?l3lUP7O7-zQ+qn2)o1$`
zV93SEjB|G}c>uIsW8h@&2&NMbXpP!(i!X5I%4wSB0BtxY!f=5-H@elh;j{rZ3DYiA
zNx1lI_6&cqpmMqb&XZ>l9Lv18S-TmDN5QWquLG%u`cHGZd0WKq423<;mLV>3EuV{=
zj!Uo@%%8Gp+=+z<^|eh-Ut%rU-b5L{&Hd4g@Kv1zJ(N#2&b2)+NX}(9Ij0Yf$5-of
zB`&;74NeEGth=|Dx|d$S+H0rm-5MP?#wFT>gjBks?;1Qjo3Lr@Om?0$qOver3W^!b
zmQ}5_8vY#PbQU2+8AH`@@j*bR;c0w`w|-qu%31cr4D<1HwR2DX<3cT7^?J8*ft_8j
zwZ*`PW9QLJb#~$$=J|->w;GMe&bKv~q&pvC690-NNw)rMe<I6wEBK;8rY?d=e><zw
z`YqShUBDQ)RB6^5FShg+SZEawQ%i+59R%5V#VX(sHqD1AgwkA;>M>EBG+~}DGBQ%h
zn~&bgyonCt<}kUQtu8;hD!Bl;T@vqD%Z?FK#%0ip8mGvI!LNsP>1g|Yq)(gKzcDCc
z^4$dck~rzDr+qygt2^NbsIj~G1V>9I4}A-jcR@v3)sc=X2VhwJ!hs0i_h=WuM?~1Z
z*|M<-C;d(Ldo#>qaCpz=QYgI-HY$aX-xL6xrR<Ln(i>2P))?i5R6B=sc(=i>ub&PE
zvv!_HhUXP!Y`nyyihY~vC9_MVog%?0GQ)AIQZ%cUH*<Ql(<?HKpVJ7hP^DEaAEwhy
zC1KXO)hA*AYvl@5NA4a9p`H=-FSJeJSR?D<b=$SFMoj2a(Dh)~^tw31ciky?XS{DA
z7?%*cH@d#+3eomH-MS+g4&!v|$}{ahYQenPi!iFHlN`B*Q<*?I$>26~$WT<b{l4ye
ze62yDb6j||>&skaU_$`2X2tI3s0qO=bQk<A6GJch&2kJAF`pd`F|eDi1`O<m2LKN~
zRJ-Ybf4idaEn<J3N<r+oDqlkmN1Xd7UY_gmF{#{}ybxXU{sk(p!$-Su?t5Nfuj-q#
zvb<<@$Db{PE+~f%`p(ZVIi4<JkUG`FA&(rG+h1F*T%65_zv3v>{2np+i~CFe9_g4l
zkV@f#jlO%731U-!6f1B%mif5kX=_>!>AJM>Sp>r|h9tB^c*lMY*EXKBuPZ;H+zTcd
zDCDQUo47*%4Vx&MA{QrwlNV2o!1o~{%6>`U4_(XAe<*o(ZZYijPunqh>lQp#gJXp!
znp<_wrxa4cKf*P>8F$hy9&F*@Dagwc<DL&^K$Vh3bNeVX)Du8ek2tqKvyLejYC+dC
zpw3jThXni`>R_IO)gh_zN@1ye_ylXP*M+vR2S@XI-iJQonIwh{{xW9;n^Dl1s((Ca
z<+v-aFuG8?<_+u`i^eU^*Gv$y)5ASgU0J{ht>+-1;&XT)ImtJOXSew@WMewBHopFd
zmDYWGvRb&isPWvqFa3;5ainY9y*?uQFjAH^M)=}%2yb_|9`8C^Q(Xh6Y-#-%0;BiY
zUR=lx-Y&{)=sSML&$kBH2TCoWcAS}In{cQ}N=yRCyu%fiYH~2#_59V<4ZZ$!v7#v7
zQ5-Ig{#c%oI!U1;mw;-Xy&<^{e1StB-u+e*T`o?$o;U1bLKo}y;EnW`RHewz^Hhbq
zEr*0dsf4ZJ+F^VCt2?hjE1sFq7jNafT6;G0;)T4<k4#nvXkqJ<d|@U>C-BCNobhst
z3CFzcr8wPj(Z1skhqE92drp?V%+Z!MRjGm|Dq}TmNN;kQcrgrHJgE!_u*Ba-J<DBO
zp58w2Ty;Itt0Sqjgwh;L+7}6y8$WCKk`bJx?~hjMG^KGg-4U8EI%cEbIkXuS*Ht?-
z4SG3aZiqeFNYW<&_5&<=$z2l4-LtetfvxisIQfT-=3XxfeuwZ?Dup;M+CW{-SPL`D
zQ_nAlSHlwbzI^EsaRYzYdWi<9WG@}jb>Ao_B-b43n67K{Xf%s^flZQtU!ZGrI+c0g
z3<dIAtAj?y#uj-HhJ~3~sL|C?FQOlK`or12L^~F^X}(o<eJR=d!;xJDExG;c1ki?k
z3bEi@($s>|@xvSNN?mVGe8;}&dUy4=Si@kn8>%eix0PU7&kePkYo%l=m*+$qW4+F0
zzgce7V@Nl<R|G8fRZE*XDi)dC)}hM+RHpTC;y791g-6%BN36WNV+$s>t<1>Q^L5J~
zHR?=x)Jp2y7INLr60CFDP^;avkpO!|9Zl#mAOBG95}G2&Rv_wrb-*Ywq)Hi@cK%W_
ztlz~L^;&PGa3uZg6xsvn>B$>cEYJYCo@`Wx=(Tcg?2tG&swHrn(JZtH8dXf$wkL1z
zu-en{@r`dTsK+19U=EfTNYz$@w>Ie9HV7(1*(P+{%=}1Ow1&3Q*El78ij5scGCst!
z%DZ&pO<E6RRPSz#s!~>6h#qa$!o`vOQeEby<GEIiz}~~}l_jV;JEfOP&eQGJs`QA?
z5Vi~X;T3P)>?WfIE8)cZC7b1dr?-E;*?55%->8>T@1<RI*}Z$Mvz#%td8PH#Vv>Dd
zM4}C)wK4yQ$fuLdM#v4##`9I2DQpsBuX|IukHk_>G}yd->r+lPsc0|#9nZ;HXB#uX
zL&0f0y2csqvH8&6o_Hk*u!T{Sge@R>?zXXj7f&X-6E-eiRDb?{LePCcf+V46DEe;E
z8_{Cc5GvNIA)`=+^f7-&X75ycdmGg428Tl0>+sf#5bpuJ+)?)@aOJ!*Q|Lzwqz0Ky
zu2MnBiB-yQ5)1~@b?H02`M}0K<#rqE*5`Wn1zetZt31_$5=io+Wt^RJdBAg@*oBjO
zPv-%CP?V}pJWaN29Ctgn&Gh7HHj+u~UZQo)qs_WC1$XOSGD<7MXI`7tu-*#CwGo09
z%QeNHe!x$eOdo`_Rm-77Z~%uNE?3;(&Me`?CF3r0H=Dw85OVqAGo^E#k<3MF{4k=0
zTsY^!{JT?i{ksdnvzs*nG6^ll$sspcRq=K;F?Z~k+rCAGZXn9L0Rn4jo9*-?hC?5m
zFvw!j3IB+6(X!w!(P(iY@ybqL@>^tH2dxc_awG}`?;kwmOL%LRbTMCZRIXmdY$&H(
zdC#q(t%Gu%u|u8T>uit5$s3o?5sg>#P9f#9^4;~}A%Ra!1;H0;mdV?0l!9*2n&IH#
zbfvfUOCto88ZS%r&(LZM?a%d44$TLcnif*XOwchklXoj0wF{lUAq^?8BFlZJ?kDz$
z%RZm@xo0b}=cHd!!P?q6SI6VvO_TOeijlkgvgO?3l9J;aDiXqaDMDw+>g8_Pq~a;c
z#@2a_MX=|{m`>m#3obT}V{@Mxodqb2!#`$2^y10x41EIK<k8{WORA;UJULy&p2tDP
z&qp%UYl{F+G4;{g)a9Od11bxjf+BYnI3jM<@KaQ8O@F^~bc+T*w|zhgRyWi&kbtNG
zE*P32BLZSM_`=)8FuGd;0$M5Fo7HKaxY@?GPQYf6SdJDZn>x8L%f_*kC+zHcOju=Z
zP@7oLoY7&KkUBN9!P3>?<IFoG0^DTKxx2r&?2LR{vU;AoeHd>~_eb{!DL3>E6^d2~
zI4DP(ir5tg_r0@+sfODZk9K=}Yp;fM%()wm!e>#jbjp%mC24)oKbwkUR80YgR4HmT
zr#klkl6&yg!)DU9J7)aMweo~>-&mP1B{5zb3Y7xCXVGn#v>fEkM|fgFm3Ll*%~Jfn
z^y$*-dW(~Prrn1|juYO5-p@yX3gh8L#^bS`G_AC7S}Zl{9&hgpGPc_oEDxS4bJ|FC
z5)@|aj$;PDwV6rx*FMNE<2$je1pw5z?j|M`i-Sw%wLZ`;&e{FhW(+N_%+5n_Zs?()
z0ov{M_I7lEdNht1?qjFQ_BZbB9a(XA;^WI4@7JqNzc~&dAkv+-I&bwp)u*xuu+Wvb
zD4E(!wMT!A4*`5O8)xhh%5_Za+<ExPV09g!vq0B%{nyJ)XFXNaM?ra|X!PirWoA>i
zyUjk26j-DTfp{Bx>AMkmlT4xSvsJ?a12Ntyy$yvHewb?Tdej`xE41`PDBFEYgY;X>
z=l>DvilwiHvKEK+gR)PBH?Ebvb7V<Yf_)EuDSkrPh4m7ot2qeM_VeDH^I=k}>S)la
zEKFWnCVvTSZ>@gZsG~g~Ropf1xJKu7K<QpXHVnb~e7fHv`u@{<z{OL60ip27VcrLY
za{hlrDWXvjaYMA~4jt0$Pxd!@<qFg{YVDR7gdS4xxpY|D49q*kYS(_qd}?Geyo@6C
z?7b9Ei66P(#9oz7y_*vl?O0=}$+xGd)#B5=oxGj=oj#c4YYvD-nk9XgP`elCf$RM9
zS3<07S`aq_Z@@uhJ24AbVn28tvBes~6V?bs;a0?u13(j&mvVeQm^Bgz$Q>q)rb>FA
z)i}dhR8)*`<wjnjd7F<+c#|ToB=b2E;^Oqm4up(2PrAN*@^0SqVQV{}E-0NmM=o+4
z`OLy=L8`g?daN8&48C=&$#H<^W!oIkqkG+Su<Vt+TalaWf)@}2aZkocOV_EdQQv3L
z72>=ibY1kU!S78n$*Au0FUodNH>XAg%6{n3KT%2K1NIXZlH2%N#LSRhxmXHJSJ~Sc
zqJ4a-t1EspB#hsLE_Ef+%@gJ1IUd}o!q6hk<VL-Sx}*KF$->%}&>iB%$qZNU{f)U(
z(e+S@TC6<{^&3ATu_AMXW2HvH$@S%8EMPDtzgN%nlislerzzEJ^WpbSI|G?g8#Q3S
zkd}D$>Xj{b^)M)0)!)5*eXOBb$a!6DneTn7@|5*~GH>3vx|6-iS}{M$JG;d%`jzoq
zild{=P%}tMk8aba{k6hcl@#}Lb+Zws9YBt)s`$%;Txu-htc|J5(7Kj$p1*wAy~8SS
zCsQhn(32uRL*2^+Fob*hCo|n2#_t_5twlp%*sP~<J*VqRl~NEL!HtHct{5<K)JB^(
z112V>Qxq#zUhk&ill{#p6Dl+d{Qc*sik%xL9M|CzwCWYwgG1m8A7N&}sm;W=Amf!^
z;=6wihNKhqHyPq8ZjLYsjK&R@JS2-x5+hz*p9g=^YE;1yzYKeHXoz^L#8q;sszWw*
zLeTgvN;vo}iovmwkx=NQCFMDNkZ51cl#`W4ciZd4o@5)g6i}iwThO$y8*4de84g{T
z*OTkK@sr4?OlhL^WQOK30LN%3n@toJXya$iC)vE+!li}A2!`4y@PhB7rfP%2LG0|0
zWMUYWcIq}o0U~@VN{yeY_NeaZDYCV-6>8Uby|uNaqTI*ioudtb$Q*HU7THg1R7&qy
zdZllFdPnpsD2T{Jud2L4mZe&JcWYGFn-p3_(mj~nZ3tK-1w-5CCscvPVU)t>sI|=D
zLB<x8>~_y5?bet}J&v%{D;(Z2>6D7cvZ$LYWEMfjO2TB#&EIPY&YGtxS%f<@2gIv`
z%ZId`r_4+)hCz7O?}-2+Y7Nw2x74-2#&0&*O}M;Gfs&XK%W@oMEjUwUYf$OxSAt%N
zDTo&t6(y+Q=l*8mz=&-+SU!QPoCmDmj8?mumqFV8d+kE4D1iF(M(P0nTB}(lS(-qd
zR2I`j<n32)ktX6n+{KSv*Lry%OTA$OU-!8IbyrhajBF*pn|cg-5FDXo@d(#$#1n8R
zB!x}^heZNcZqvDS>2bAPc2Y&s#?kZV$WD^aa8qvg^J=mv{P6H4B=tJy>FjI|dUT&^
znxm9xWSb53AV}r)rouQW5bM@P3m{G%#<c!r%I~iu7O2Mnh9s$PQ?F;rbd6);)Mk&R
z*1N~c7swV@o;kI;HazBD>#z<Lf$&~X)w}J1votHMeHG?L8Xsj!W`tQ3)vItFo&>WR
zcYC*8w6AB9rck-edf6sa;qEVp2(wwuoZr|<_l58~tw)=|>u6KG_=awr0p_j|>B_pr
zF%ZV<+G{S1bADTIk&<#xKSS;mE?!g!n7>gQ6P1Y@j%&j)8s+A$ds~$^`vvcT^>6UI
z^_YyTW@X*tzcMl7h%(Mv3GW8<kHPEw^#pcp?|8jAzZZ5u63W&qIJ`WrSu$W7waxWw
z?&S~3{*#f29wMH}RjR_LmzT?Qv}8XHg!uR;4bNvq;EPeEcP;0SE>3Jc@%@^|zha4a
z1`lQ&i#p~^MdNqgh>Rar<=kmF+UN2Pi0u%P;O$V?Wy5`AI(UoIKc09uDUQVcSSod_
zIoW>V^^-r+4~Qs1Sxp*JXd^)CP#v(mtHW5dYXXfw^vYx6<Hz+S^T&&U?hSUGuJOj5
z-(GoW?^T*OQEp)}D#$2&{w32S%2U9k??&x(mGsrx=`wZWv<fsm^JRTq34cFWZ=y}A
z`M^hKk#eVdPf_gA^6nk*drzA=>)NOCIm%qdtEm#8;|yea?u#7+oVn`E$r7ALcoc5Q
zmr?zxByH|#TB*?Sv!oaxxSKdy%wfzA0rGsZlx~MN2Sf~+$wJoiQtd-b&XyBxIQ&h^
z&tR$E?BGZ4`>QV2QnjmL!q+AoAwh-1b~1pO{t#w_54u4$ViH5_ady1!f3)#pQL*#$
zbXWIRF^7w1GqLaBbO2<9x|;EYX=-kpT<WcvJ-CmqH|)lT!aFw}VC+Zty!`(J1B$g?
zk*rMB#;s)Di=#N1628DOEFyO@^5UlGsG8iz#b*s?E1P7Av;E3V5)aav&auUcfeeWB
zBYe9Gr+4Z}1*MaR$6HihJvh`Q<7b{DC5$SCrM3L93i5Zq;6mEhI8<-8@uCms$wq&=
zXUe`kbSVzH&>m9#a38RKs5E1M;P36m^W!{MH9+N<rS^hm+}5mWi$FT5pnLm*v{A*%
z2|PB&%5=AHw*j#Wgvk@QyGRmZ@%STTZYsAGeSVA@6A0zw3QKi&yn<*u4~iMT7azLS
zCTbil_#YhB!W---UX~+h&nPXVa0uONXz}PtO(hLKTmHnebh^V5zEhLTYEyR}0BYGd
znoSqmw_Rw9Z^U``8t{lpA<WvPErtAynUbO0MFZLPssrmYDRe+8f-7827BCdn(~KZq
z>J%1jb90qAl@Be@%pug{l!7%Auy#RS1r@T3hApO=03cjanVclL;R+SI`VtyKn(C&b
z!Zmi9O>)Pj{A6MlQXez=RR|uCLz_T(;Mi*6-WYP5I_cdre&<cd_IO@Vr{gGI43LpD
zskQRd2Ax!%dw%I=Z8V(Vsk{TCpJ33ev@D+)RU!XvW*Q)$hyoJ%{PvZVq?aYU1>K{r
zFq4dizM+7xm=Li>;p$Wow?;#=xYTRv#m^#+^5c`sCp{Kcop#btE*@$5CGF8!nj1Q7
z4xG^(+4gDe5D(|~B|O%eK)Oq|xZZ<Nu;6I@Q!0pTU0E3~&#RA!VN@M+G^x<9W%ua<
z0yr$)vCMH0;gd-m?mDLqM?0udoXi?`!DTQ<a(U%w+n-i;C#y5+7EtLi!8p0)?JNUi
z2G=bIg0G#ifQ3?x!d!Ptq&AxL^R^mJ;8A;PJRLdmiH2MAt;TGYVU&Vdk1_)?e8Yu%
zlP%Eu%+oe$!-SsVmZv7`et2uJS+m2kI$dA;sZdGtGL2oUn?~GQak8BiXEf{MyWD?q
z3X@Q;H-23$tSt-Vy*&=+q)PW8<;zE7V`|l3K4Ncln<A{OU7*~1m?9v-HL+8j%omT?
zUhCZ6?GCSJ-SJ8^*&n6eW>9`VW>Ef^u_D&<6ws;<N+Wn{4BA5n%gmGpEPFKyYmON%
z<K*g%Lt_WIk7%>4YAZ4jyUf}3=f(Mh;Y*>jPWC>j-Z-QjV>sI*vxdE)ryG?s@drVm
zI_s&L?UtyA9b@fn3G$gzGq>Fe_9^(TuhFw!hVJA%7v%YKmEi<1ot@H`0d1a7iE+Cc
zVKWCZ7mO#;@f=3II3r}1h4K0Jny1y3+s6$!mjT<C(owpx<Th2Elkd?I-O-ZPSQ&9B
z1s?3`>?&U)YrK`_`&q;5@ErYU^8}s+XetlKUdP1qL{;SDy|Y52-Q0;Ro5qI6U`brw
z3%?zEL00777YC&+VyutB&vAo%*9BM&kgG$7c|IQUB7Z9c1N^xa$Rrk5zdDb2F&G|K
zeh)~j^55VvO<NzUmgTk<I1`(`ti&M?Ii9sZdjQye`PM?IR|)anAoeBTjx&^-w+8h|
z{|rXZ3n2kaTfvj*+o@u<+!10~j=G(Hap?L9gG}MU12%uFgUu<%gczu5yns<;nd!jf
z=v{CDpb_oL37+L4Mw5-L<5*Xq;a<Pjv~ED52{G!5j<{PScMZ2}1Z3J@OnlFBZ@>h1
z&|{-qHQVE8yU!S`1EfA^m7duQ<acXu1(ylcIIi8U*{_QR!Y%|2`^Od>^CJYyTx1CE
z@gW&&?n}d}w`gc~QlrTb1O_n#y!K*LdpAF?b*uU3P_c1ryTyjWoVbvihb6j09vZ(1
ztG)27oP5^2sv9s|M14Ad@nBSLFo9Upzr-^Jo25zwja0O-`fh^jNgqEvyu^Tt=cR=T
zESR;Sqo>2FcNBu5GF595CKtaQR2>>7d@jB_r_QB#@&TRdnMGeW<?eYr+Z<i>$)<Or
zeP2AM)b1QpoQ~V8OV~Q4mG5XNIC^gu)HSgB@9BKf^>Q)zytaJO&)ISG9*9Oi%9QH#
zLsd5s7;W-285rdp^X=oi0Qnb|AioDa)1lH(Dd;<`EPysq{j_%fbmfEZyUxMqY~jRL
z>~en0MMW!7O1@?<LP<tTA<Wv*%!Tu<4!7y8$nrt%u>eJaB(BrucsAIRy>~rdw3x2k
za&kAW1wL(H(-;t;{9b|*nSZ?#tIDq3idMq^PJV`Ow*jS#noi2;`*^5(dtdU%U0RGK
zpM14ynQ0IA1ZX?33}5!Q-c>gEY2T^}FU6o@KFYQ8t68~F@660h&&}SYt{%KuyBA06
z1|ajc`K<-r@XMM8lO)@KVN2mPM;(x#Ge~bt74rh7k+6CMM4=-tgKjtvoc4!ZrN|Lu
z56I&a!3+sg2L+WgTwu|Y&zbQNGhQ&}cRHChMMK6DfOKLynA`!7({+B$<TmQtMA)H1
za$n5oj7x8a;^g#B^eQ)y4LR}{fjPw*ncV3u&UfF5QP&vd8|#QY9cZT_Bh4r0eHrhF
z%a(Gy{Djo)Ofj`6%xO?4p;Og=1f(|(Hr?04%{Yf&+zvw9;0v~g6y7M6*{#k96Kphg
zN)dFgux9`l9z0T6>#rBuYFRK=tSyA9Z<nGc!)Rz%j;mp*G1r(i@4W@Bk(mnZZ<RRJ
za$eCUPu3-0aqT0E9;#o0oNx#Ta3Tl^(Ci4BYtt6NB`hd$Z>4f?P{i|G@EkcT;~Z`0
zK}#)<9=lqu8yH{P0IbZsyz9Dmqt$uL0n<0qxHlo*ibUs-m9w@MET-UIe9T9Y+%R&)
zShUUx5jY7kjEk9ewb588byKNL3W9l@Z_>SW<^65p0|HVy@mLk(6b#iu6)y_CC?s-D
zkf!(LNO`Ynr#YUk=g#1@xdrfST~E8(w-8|xl0K=VEjN*&=V#5K9z9hHT$_i2$(TKS
zEO#No=eywg;d!D(OPj7-Q|gm2`(?hw)53!lFM{}_vylwiKip`=GL%qCVSN^t_R!=(
z*tU?dHu6hQ755uDX6D|WO^?Gb1VE*HeEf4j?Iq^PuFo{;;@!BXhXzwA(wSoJwpF-#
z`_3Km_~Zjpb>A@Zh3*G{oj%Ed4&&0f;B{UfW2X(^l;a|=5Ec#R?OhcpvbP9W0xaEk
zPu@iyJxhTU78=aY&)))kL-Uc`yC%_Fcq|a}x(1;;4^xPyQX5!mgmop(=AByOMe|Ea
zKy(ZYU8<EHRzo0jwz6sDnm)2&3zV|ax^+=xS70ptNzUx70D|jqoSNRX9M37uqpgOX
zUU%Edt>6zpaoqB?J;wuLz5F}vWa`xgA!|D%J)Cg5ha|l?n`<Og0w<^oYDL*6!@83l
zpW}G^Y$=w128DmQO3THTOW~3RLd;LC4L-JDx{mivIZs)I+6<S*Omdy(2=o$v{s2CI
zK<ufO9lb^1QdB`O2%qdRygI_`Inppw^dP21DZXHwC+|GIep_V-($<|4ar8RbHSzT~
zcMqcqP$tQq7jck!-HuQ$u>I;_b`Qc>gQ^x~>DsjlY*4Q5!=DwL)A4;+6K?k4l$-u&
zGPM;}h9m1mh6`=-Uh?VjX(yxy5=v5%rj2NWm_O1nX&spP8s&pJ_D=DN8w!XjT+~&7
z>R6_2O4peJiGhXel(@!9oHjJ7NzFqC@bLvXNnmaqRLG!?dzFZ@WF8uMDx3Q`MPb6D
z%8kdkpHI|WR}ywX7+e^W)inSez+x8H)=udgHVaN&beEUw?-^|y(su91EmwfR`&N~&
z_i5A`JgO-c^SxghItssF=ujuQ-euwH+yA4$;-|$8*n0$ofWnHPSjoo(nUCbh=MAr^
z<$Yp{yiHVIYM^Vp+2yqN(WnEJ;Bj>lyoI`k2iFvceQ4!eBrtSWX2(xB_C@HPgaw84
z6upc8T5yYi$hrC`9m`>4R2*4v?@^@enVX{oRcpOz(>Aifxs~A{KXtcie)JNfYP|Y{
z)8?d+b^T?LRsYNVwUKP_lR~X`RZ+#iq)fe0Vwp9qHOnlA2Md)%5q$lw(lf!k*8=d$
zk&|`3HyjtxDHF5h*G2}@^pSbJPOC2U()N)_>V#sw+d=8tFFxQ;ZxAR8{(}7^U+sg=
z;-&Lk2+N*N;$+=<Znu71#l>0d+Tltt2!x__<3>bQ_>aZAwwYPtg;<rjTP&LF&(Ub4
zB(K$c;cU!bdHz)$IG}tCDa!0U-Al~?TdVx3%(zu?c4h18a-rM)3Z47GW(;>*rH@?V
zz5@H?UCsMxE0{z%2TMRH1?|;4ay<lFA6`;M16lgc5-N&c=lZpj=Ick=GfcTuA?;Wu
z9l~e{$CWYB031@n=<53*>5l_A@r^?AZWXV>2M4NaKX)2NP^si}@$S90(aWFjn!3ds
z67;o__7pd(PaiYsYkdwqBGRdhJf=$ol;#gX1wceXdUj<XGcq!g28cIB1Lh=gb~acA
zC8$6|-(7dwWdV1v+=3*Y!!;;hvvT^h6$86bA(?NmW)C`8sVi&-gdOtYO@3roez3&l
z{ORu_k-eEL))(V-`4Zj&4~lBZib5=Ccp_)^jzDwhP+bglb*#id!~k2&q_<}hK3Vs|
z(ags|2iDQ|k@(u}M~3!&p@H^a?E}#({aSs74tPknl>UU}XDIn0eIMdqs{<6y!blQu
zeN0G*cPTAz-M*cZWtr&tBUJMzGXnt$^|m6zZ4DaQ?Q0?0dcm-dUmr`z_=v!0_UuZ&
ztAejY393Z!?Q1>RGjje*7r%a0+(qSTQb$hy9-Df8zlk^~_!;i+x8)bX_mk8Jz8TC{
z2q+c8?FYOt)derjjztvUG=m*0DfYMGs$bsy(=PwHyZel@SlCf-R&x7wqVv8+kfU7?
zk&<OknGt^H=KrUA;pHN42o|+~J<?+N*juVHk8_C_;0%uVVtZE4<;jL$>F~E-FZU)2
zjK=%&<x7&Y-eTm-P4T6n3r|U5LE$5L7Z=j{pNRCkG13VF+58d>GBP_BZ;)9ReznqO
zZ>G%vM<c-KST8XaD@C3@F3rlySw1j&L-jWs^(T(=)xs8+6n_(+WG{&L-CM!%6HyCz
z<i~~&AWj4UiEJeaIB78GdV-oJsrnD;>U(<a*^3v_Wf84Ep+S`86L9b9idJ|L!YIoC
z(lMGq%u^JBR6gYliZOwIxT_*_R{{a%&h5a!<n;Rkb3|wWnX#Mmn#g3ze2g6x*pX5m
zW@lkwj>zs7G%f$$1N$qae8aI#744rGW{HylUQ}=V_megH1i(2qeOEd)bfgOmU~6T}
z%@bBQ|M7tx-&4ZCkihW3z-I#{-$MZ}9s!*8@$h}|ZIp9@2lBE}m!|<`WqCLSEwq1}
zg8DPC|3t4p==w!f1k6>d#WK*-J2%GyrX--;gg^UUe4v<yq%T><84-ngO!&<9ACl~k
zj=zrm49heS+zl1^pN`;Np*KZ5<3<8#a;!Xi{5vTBw|ld<MI=pl@P0YI@Y_B3?KY*c
zVT2D<v(;hc|2U!X+xPy8fbZ*{MCn*rZ~K7w4*~fn{wKPIsH(4yvG#Aq`?;_u)J#lr
z7!J!i|4Vb<`*h(E5jP1ED=nFy1V8=r0m45`@;^&2#ZuId&CQ)FTBSCKPXEEB_&dsp
z%w2s}twm^@<=98>A!{J<ckllHDG^x#$7qW)>Je2ghd!k(2BMc>6`*V_{LKx1r=Ge{
z##^cjH2<#8?`!o*MVgzNyPpP5Rr{aL)B5%UC#!DoSrmS?f_`gT{{Qv-*k><{=PzDF
z3_$Vk)cm;jFP0&Kf%;fU3DW^DohR<!oLc(<EMXKamN@alfiRYTG3w9t_~;_Fhf&3y
zog8#`M%|%fXCJts^!^EO!nvjlux2HIBH4ve0TjNIR`EOki=^pLpcWL=22Oj>0U5i<
zh={on5D-WXr4(eiv?9qs<_~~a)Ga2ao`SF)k@l-A>qP0HKPUIkuMn|K_m|}pxuK*<
z-~<umHw*Lgi(lrN2LT(6vm0F0Fb-K-L$UhbcBl~vNW1c)@$$p?Z0Db^yvdhwak=N)
zr#{#JKTVYv8vwlA{KA6$=E{IryXozfd@RyraAf-bB#rHe`g?kSgF?LfJL_o%Ku&lK
zYDpzE2Ks#w^4}t~RVK}KXL+#N-UKMD%{|?puz{k*T+4e6jt|F5x@Su>Iw~tCx67;I
zpN8qMFD>>XCh!kAhDh1>V8&aQrQvY?Mx6KQp)Kc^gQ17QF|V%PF`l>pqQ0>}L7&M)
z`)FrgQG>=c4L#PSKmIQOCbe0o_dr=h>9e`}mD~{j#YIDCg;ip{PQ3=D`#L+X-D03g
z98(y){y@idcR(uJ5?V@l?b`AP>m~L!C-3^B<Ht$_U#m{uaV!SB)pu$o8AVD?iD+5o
z)O#ZZnnr_J(%Zc}Gh?u%7?V^_73-=wG?S>Ay~_ho5+vG-&fa_hD%5#;M&2qB!)kHe
zboy<*#4ahO-i0z$|BfkSihWFc%rJ8>jz&QDs(?aoL~T|7AP7HP;8k$&4zD$|)M&6!
zn?Ds+YEid8Zeeu1yK1d{8N637H;>WObV7gk?%nq8(8KP9FyRz!9<#CHbdQU(gU5|t
zXO<`GcT9Q{=*R+-V`Gg$u7Va#j!&LMtGYYk>Utez@4{zhET*Ag6WLTD&r<S)rRvKw
zBIV}8r2>#wr^I7mlQ37`e81^4%mj$_iv-6>b>JwYF=b8C>rem8#QJGq_(syFsmCH?
z3gKlx5*L3SLcy;BoaBjHGNPrWH3Cu>Ug*4Q;(VzlSDa!=FlL{laRTxDQN)lmMx^QQ
zg1i!&`CqcCVh9Qs?e<*r%Z-=D!Mz<FU&i&bWn%1l64q}-M@Qe{738{FBD@5+gZsx^
z!KFpp)9&yibM6VDqs6Q56x01CT&FUPGg3H=f;_%_K+jOm6YOsCMedawN!d`RSQ}4@
zy`zxy1zN6Jq>~Y!muv)|t{19L@+?b<jGP~ajE)Po+iKOJa4`x24%HgSi05BUe)i^<
z)wih$qD^EN`C&j6!R7xn0r0>$<E%QE;6w=s8qxua>DpoklDFPDQ9;Cv;}#*WUPbJ0
zOkAF9m}-l?t0dVK#|j_GK?h2KcDwfT5j!aO9N1vh8x<3aHEV^OU_s%-S$`e(bD$JR
z91J^FLc=99EK*{2luxkzKhC~7F3L6SU(pdo1r<;c5DXeYL8M_&F_4sQl<o$JAyq(9
z0qKww7`hupK^jE5B?cHuDe2$!oPFQjvwLtq@A>_;>^Yp_ndiRmE532vo4`}8T@cc$
zIZ#}rYF7F=HB7&K<0SXsXjisus-&5<rSvxH>({T)v+c5T^8cX>`5QHiCIP2@Ysep`
zFI~O7Xuwj0+JJrvXzOR{yW7ic>qeBkR!NFcM~>jBVkb*+vBBKK&uTN354{D^6u$fH
z7xyDc!<O~b-$4KZDg$@%JDP_F53hushC1%v$G=<0fzugS>Jn4?o-B2<dX&Q`OOw^=
zY**#mZ*c00i|8J`{SxQ8JJUTSP_ng9PRGU7)pzy7mv9iUPTazQ)L<}x7fpK#G4A>t
z)j5Fq+b84u<@mlR_L5P8;(2G-^k((S)CPK!5OsBJ`%REzFj=`i+*BlG$G}C~m;daD
z9)1J<DrhQhnMMxe;yyr%Zb47qGVSk8jRud0n;0DCByh=?U9nQ}Qq?CuwRGysmoK#K
zeYMZ;{JqF@icyaML8wPu_lAb$A#i*Hd2hO0+GVz|CbOQJMo`=J*Z0XYD_|Li%50mm
zd`*Tc`WDeR*qnXJZ}H#Ku3Wk27u3X7-fX<fUcLP_Gt*^f^UUe7*mXOgu*@*d)FvZU
z>d_xsPEy`l>1xR^-Tw9CXU!p!-g#iJ-U8)_9K)fM&_jg8U%<aO*v|tm`XI)<Y^2ZK
zFNOW@*6Y%T58pfr68N?jyX1!tA6hN9a5uqMi!rU<<|~C~rb-R)^(Aeon_~sS*6w2D
zD&i5yXvr5j6ch8AlQMrfIzQ`R2QNw#j=Cxc<`$^#QM<dLzIJxfE%%%vxY&B&Z@yl1
z{IjETgQc=no3j~iw-PDh^PK=47mnY^!(&C_fQL#`3<IUHLtz&<;^0Bv0nTbBVQ6S*
zR`0+Y&Z!^pOGQy*O2?#u^e71lLwo5&<=ou)f5qJY!%yyS=z;(X^CF=sqJeOB{ZL2@
zk^cp*H~y5|d{KFsZIN7$)Yue@0%7B`5AbdamRe1U8IDv{LYD0}{_<nIeiGcQX7ib<
z#diE_w$jCB>cvxVB1@_DZR07DW8Ov{8^}LF%_k?cvm)E37jXLM1GMMX6@m*QzX8#H
zA4B53k2Od0${r!PI9D_q9)3Q8-#*J`VX)6k7>tfdAXUgS?4&QhCKno}>7slyr<1wd
ze(^0N(+03_(OtUq!DtQ0{6yn!tYI9!Cp%6&>Q;-;n!I60!VA^q@1K2#0`mDvAiIis
zR>UMjX`1)+GZ9h}3^@Zk-)GBw6ehK>vihNMgEcpf{2yNIpMT|5k(=J-i#!(bu-2WX
zSHMQZ8idAy977c%=wSEv#Sc?0Q9}eV*(KkJ5L$zZ$D#&D1{*angh{q;KKcj-S2Wj~
zdxu^;oOZm<KR?wwAfO1a-!J~?d-q<J{AGB||Di%g%be>iG!8Sk4xn_VN|%Gu)!ASM
zDLd6v$THy3a71w$Gqh;!Kvhw`DkUKiYF@q5oq4VOP>aw!YotH7fWTniU1aZHCb;<F
z@9+BXqXzN$M<!K1D;M`W3u-$5_?+jsYNVMu*ngH?gSFO+#NPP$+6O-hPMr@PC;(&?
zoo4I&DG@<}cm#*&O;zg`MC21co7lrZC)RCR&8Gzp8!IRtolMM_VJoj)NIBS3+VXgw
zi{d1mBzlns5W&Hw)|Y=XGS{4GN2{HDU(iUQAN@o=9|MCBumwh4%mYG>kGEbVtblcC
zZLaT%jEv0M<Vru3vDF(nl!DB##a=`C>R52ZWtv60Os&+)YP80^hC%x<!ArEGW0_7B
z=cRu!^}pZn{{~iwh1bAm4%!JI33)uh%3`|x5{1CCoM=AV#zngN&z~QH@MC)+PQ4!F
zLrwS<sGJwN?j0g<KMGx}_u0Rjl;YcuCnY77WWs2-zWH8<CHQjuB*`G*NQm%W&c8}W
zH`%ljhgpk2x<QxCnN$;8k9a9;&0vVxec<*8z{F7Jsg&#4tl3n7_BHxW+Lcp5Zh9&t
zP1nWHiPL`nhaLLoU*RQ!c6zeci}>h77#d_8Nya@{U(;k6K#=ZlK>HKq>pHvJ8_1Cb
zSgk4h5vTbLGNgDd&499Kb8sj@)YrLaYoHgpnBpvOA#es>8C2o@Kfd~ZHq`*}|0KB3
zyA7_~sKCqB6t|==BjCwr`OEgLDSvZs{js?5(#K(X%X`g>XZIDQ{rL_2wRl8B&_90s
zN}_dxQ(xcz&+Mres<d2Op#V(ooXO?;yNL^)Un~}ecU=DeNIJA+1UGKncvo`bkD&su
zGTkzI7ySJ9*MI-+9Z0(oKw`XBlVNQLj~;JuTt`O-AV7oa=h*)`DC$4g9Hv>>KsL`|
z^S4DF;DrVtwYT@q<f8x13vo|iZcmk>0f8}ddXxSTtQFdw2qfLX9i?c^gKU2b5Rf)O
zIj+qyfe@UnXiHlg`7D>?B|o<an*Sa;hki)jj>ctVm8B<{#bFTNyTcjUc3vsx6aR%@
zao;}m;L)RC$mWd@ZzsRJzOrF?Z0bLYd)li6NQr<n#S3M4Hu%~^4P2$j05xf<!=PDv
zj>dgo63Zj}{VROs?skM*D*U<#A`?1&`t;X$kwb_lJ=$R^LJu=oVrezq{_bf`XF~o9
zFp$Zs6c}8BY$(;Ce3RwhN7E6#bAxFq)ehC$KOceje4xd3vF_6+vX7y8SCMV8bQESV
z_%I4IJ)!&S0s80Gl75Ur@Bk2mS8hX65ju9Wd|5kCke&v!@)~KR&rnk0^EDqD3<A0!
z@bk-+DTNW>2>}eVsWNri+ug}C8{#vBCcR4C)92s9fcu-P?fLpr9fSyZz-UAO=+?=N
zH?p#_4bxOswrt-2e1gA%C1wPW$KFCOHz3jqFkF~<)y6%LIp~0H>nGw)2jgkWjSDtT
zt-QF9>E_nWJIOPhsZoK@nw2VB{q^IJZDe^GDH0Q{Egf$35&ph(7L^~3(2so$KtM!O
z+)cwbeisE*K7RZ-Hy>@=t!y>yfO`mSlJ3Np*LouqoO)ltuy3^f?qBkufBV~?AEAY>
z_%UjzKK*aquXM;^nBKq+5@GHz0gF*I(x2w3?RuZSG7)1x{2D5B^%TjNS<ZG|7?r1x
zrDiB(H`jX!bn>sEVSF&(UsyS{1CAy-CZ>iH2?2h7Az-PG3WRb-tlVzC*^-=DZs|hm
zNicBa*~~mfFcX7&MlBpekUxIRWmAN?Zq6`R2l%p;Js`d)z!>MUnHG_`nU)&+#@oA7
zIK3l#3^?~iU2q5L(b_}Tk}TqR1W{}va>6;T?M-|(ID|R2e$~^s-fYvfYM`@=QYbPT
zGFp=z0Siflli_ehsliz)P0{S^o^HXkcMHkT_EwdB{fFlCKehn+!C@!~f3mkbz)Sww
zrKtHr=Sr*ZG@(uLpp|dFkK^fcJb=P&tUC3XYJUm31Oo?3=gKUI|6FYTDP5uCPZ1gD
z>17B&9jCz6ggZt`{{>QE^YW%AvHs}7yE|UZai^iE?lj(p&Ym{AYBT-r{rdwr1O_-l
zUJW%r_=Cte-TH+L<z{=b*)J$j!BH?dd-5XEu;@a|XEyJ6-QlMW=aoX++rr~jD_<YA
z+&QV!ZTUxzrE%T1<ZM@VO+nDZ4t-7CZmjaxVsp*qZxY-?I!A7(?%d>2^F6{~EE9~x
zl8cxXndROMuOsHJ8<Sy=6YrhW&%b*0>I3LzE7lOh1n1GgOisdm5AyQ|HIr78n(@mZ
zAZN25w7l<K^xcJmAZAGL)n<qLAwnH!T>H!t0jfF7r_b`~;cr4yJaAy`IcHC%oA%~B
z3Gn?UUc0%(3PZB=wm@LpEL;2XWU%AvY=p8uSBWC0h<RV0=u~TrvA#^vRLSlpzQqU@
zEg5_aNHMzsNNJ1PcX-FI^jwONa4O1q#h3|7$U*1jmNTTJ+IprMc{)B3uN~WB1%FNi
zOR3zM)8AnoU@p_#nU!cs!uG)QtC&UbG~D96ZmclNUiItaiBAjAx*!6on@#x(_%`7^
zG8VMjp*WZ`U?gFDL>X#7{FEhBg3UY7i7Ve!a@_bi`L)PYmDAW3G}_HVkr68Erlp49
z0FsD`{4f#8J784Ij^3BsbU$?r#tq^$<MSmY8-x$GWX02jY%+uLIt-f74L(uI--nPF
zVl|Dg2C>SV*|vtKa*q7clfPNh(>RUoi_DByYxy;I;w8*wSZ~q#4j4y6G_Q4%{o=5O
zY!w7wy`a1!G{zl=srYb!7d+L|>ZaAX_D5xnb#HXcf|n20WwpEY20=ecEXSMOCW*+I
z!*S8B26ed8SMK%VHFBT6;0;{spq)cP=MW6eVLhjA^V$I`(g+w>Nc}~p=H?0$6kqkP
z@4i-35&DrBkl*NOXp+!NMl;$EJEZnyxq`N-vAMOvd_>4$zOZKkg5ixe0AQSoqFU1^
zQVXYDE;>w{=HxH<ov!n_61w_xGx>L8t5Vuy2y*x}U7jT_5d8blz&HnGefpotbo;^X
z6M=5K@wf9Cz*KdDKRYSH+Zb%qljAT8>P9(UAW&%Yy>bs)3x>+w(y$-0{rc_>;c~^1
zHOI3p1<v3mkD_>+X${$;INdI175-ieYm?*cLvJ%_^#!}LJDkC|TwwGzf>U2be#>EH
zx<ju{mxV`F3dZ!Q+zX&$(ysHfJZ{x(jf=656^cNTKN2&}X*~NNkV+9LSZ$jR6_*}u
zvE4JkO<K@;nShQgZ(ap#roc0LRcW2mZcfR^-@oh5zXb4qj&7IEwYR;$eA`8y?fe;c
z=p<fD@TndCUEn(4K1gJ+rqdFFjWeVXb`cmggs|9r0}?0~uKmzSDvc70cRgwsa>{iY
z&M24Jr1g}7-nTa+^GWSXJ5?CIr96`J#B(Ucc-@w|g(Firn9DOy-|~o*DlYP-;boZZ
z@yg+SUj{M|0hyjf1A!{Ht0fx;s88h1iYg6PMxnk8<+U=Qo$fDyyfy$E&~mHg;=FP~
zV&dd0maHHq*_3Co-}gmY+?~(0n^S{hbR?qm&tLyP!<G)6#af?!lLzYfoSUkCHJnG#
z8Kmbwgd|^)Cv0qyBY*MP=)sKH<qcr0H0I^g<$f6XdN1vsZiHW*a~UePFUD6fS8-f7
zK2?yNaImv%0S?m!-@IZJpE7=HIx+ArO&|G5Hes9TpdnFC{VnDTe;!)(r!qL6_V7wn
zM}=@Qi+8An#BTy4(ylPRCIDKF<4{c4HC1|0SKj30;J>uuMbY|Hm)5R`*Yn-h%FLC>
zO5TjeKow@oR(V8L@==^@#lt*}$2T*q6_NoLQjW1Q-h+?^!}Hj32g>Z`nISB_f#4X`
z2H7M(Uw$CQSq?kb?Fgu_ofT}@&FRp-q=*78FqP%?Hv!&=W&6z#r^oKjEz?+<8nEEm
zx|kZk*rT5?H$#7*XQXtcmVf^}`Hw{*JLwKlAo6(EiQ3LosW9LR^vjnJzyl9Hqt*E$
zV4#|SB$(IEKxAW^-hO@skpwPga54q;Ag?6!y%&7+`0<-*5-r#tf>Ij-FueoUVz*P;
z2mzY4wYd>8hzp7rf7nsbwjI3$+4T$HIu%)|AKLj4yam84-f=(9IU(1*ono8m_76fu
z%vA(Unb!M%)1Wwl&8Cfww;js)Bs`p_bc$a?fD|4;>$fm30fV8-jl%u82KYA^0czr-
zL?<Y3iN`wseAriP9w+eQ6X{o|QPTj0Z;LVL{^Pvk)u7s$F9Kd@>x50W1Ek|~r5jUG
zy0hQX?Do*it?;Kl%~4D{FO7;IW4tJ$vBEt|3_iXK51T?2HD=CEU`=`Hd^&_$zb1$t
z=WKVV^P|v1=j-RJ0<(7wjy@Ns#v-7eKu)j&K*u$2TY2cn2@6REFJkI9(9)L{TK-!V
z`M*a8{T}HqcH=7f1AEdO_k>+|UtX4d<)_Q~+91W?+ttuZkKf;XL%%7<EVe9QEKNff
zDgWjwo%UlUQN09rj^qa%TdNu)ZT;1l5nODHb#$$<;Kky~^?rbm)~pxD18p_e3$5AP
zd9&Fr$1Ec~{w*kMIwxZ2#koGDHWPtb(1xb+BD(-Zq~u6$f0lZA_t|SI6GFn<OP)-W
z9vVKWic?HiJcS~$C-wEcyQDO_nVLSqCYqwZ&83F{rL*bQTz+7FM=y(f`b6ICPmYzE
z8Ub9w(Z&E=+<NlyuqxC7PM_mqS#&=!YF1T5QN4}Q;C!$Dh=Ri^9Y(O!Rqd>)+GoQ)
zo#F_hdN%5w5*Yix@}mEJKmQCj($a^;-m)6D39d&UUr~o)uS~VekU|XWsqLdf8D&1I
z*FoqW_XswxT<s1IOWsgKJ!J8=hpl|eamBzG>Q&<mhsFCB9X_FWGZLT?xUuyh`LTJZ
z!0xYcbxp`G_U<3JjJ{cT&GH}Abx_bV3Y81~F#QV}kO9Cnjp6)-ku&{t<uxKZKz%V|
zDi*_}fDPB=YLVR%Z-y*f00*obLn62m)bL2zTn;wJxO0Ka2h=%(vBqn~gHL<Z?PK^Q
z4~_~Y7I6sIH~P&7YVWJSLu(wJP`QVzIPaW}lU8`a5a;~$X=N*083`&m7E*aP6rC*4
zqpd826v5ZE=4Rpn8%sz(w{drKR@J5vKdi?!0bU9rrGtG)g~3!KKMDLA(PC?n%Lry&
z8IW#|O^CH+55LD>HWDSxiJS)SsQI_p-l)dB%wv)g&$@vgvP+C9P*@+$t-qKLeL<<)
zk{p{X#SK22X)WMQtlYn+QITf&d!%oz;`JNrPG?UK4}wq1>~^Ka*vDIz-|ylfOIJ+Y
zvYu)#+3I!w=K}uw_Mdox#&>5938WCjk~0p%k+Sbc_@Bv-FOGXYQM2umzh&Ibdai_0
zZnykr+}?J*E{(!Ku#`~W&Go7gm#xx`703*wDM%gEbe>v>EyfmgQh4>7EL-V|*2Et%
zFlmsD)(MCgwuV=mPBY12CU79c((ub|!Xqd?W538A;rW72ago;DNKBnB>KaRJo<~|}
zX<yitK!LBbT^YD3NAl;Hi`*eGrBZQ1YtRo3Jn^EQ+JsE|hF=HjJZ=>CR>H=(eyl^C
z%`U<PsgE2aq#8X_&$y&!-755KfTs4$eszF*#VKhI&)YC(VEFAhhDSC5iW&}|B`Q7}
zCqBGMGfJ5)fpyfqQ36GyC+o@F{!baQQ{N9BI+DaSwgF+LwBbXKhSN2T;$wI&<qe>e
z!s%5KeF@Y;D=&9`O}tOy1d4!s>MZfI7Zz80G-<?Z^o&E2ZU>h{7Ra9+A7pHNHP4Vg
zzM6eZGmh(uMpX2B8bI&Wty{PTxY9CcCn(KIE`4cy-B@zd$GKC2yDz^@C`!z_Ck0rD
zwK_`k!=(K`h?@!bP@gC-tp4S6{;{|@zQ=$9??wr1)l4i+8WXEG@R3b#E!C2gJ9I<O
z02=vB4?Uv83bZy@2S>UD={nqy{fMA}Cd>_zy`D|r5sJO62J>5bMz00I=DC5|+vIRs
zGXcge7-so(DV8Qzsg^9a@@K*X6Oo;C`3#SEeUt&d#d$2xVOcNigs8~ySORNHWboS;
zP(j3&K(<}$Ry8lx6MJ@sSZU3=a#l)+d&JqggugiJM8{?p?dJSjD_OS{=*ce!ye=e2
zvlT4UKuPaAj?7NNUAO6N>2VT<v6GL)V+D9CBGw#(=_M`)bU25fA(<<1ZzVbbqJ~L3
zRFatZhvdejXzX;M6;OcU-K@zwM3RDl^<3$nQi#u|zi<8Y>0{C?$N3nI8{wUF)ra|5
zR9||8SSJ{KRHJz3d-hsn0e|HinZ8F*LWC8V+8nC9_XDOWa!EX^XL0$-KkPF5Z-C6d
zwwZgyS?Qo$51%l0%>{yB^6-p}*2|)gon$88&^=OnI{}qoS@9f`5_e}YPhI&MFgCqV
zsSP?5WW~=U2JkUY-nh4(QKi=$K9;38e$w?x61#24QX<rfryt&j-o{?P02+q--!c{<
z@^n`1?K*A2*qXsAPZFVC{~MbXE~?g_`Mf-eL*4Ez@22S`uVHfj6J$fucCQ1<PA=Zs
zh|>eryaRh|AZxCEtV#Z*u7srB;;^6^b#7L}?Memq)K?x_Tn;cZbvb&LLr=JoIGR+X
zb=DbVT6TaB^+FkB{`nQTuS1oGS{nAekH?G7%3G*><L|1Ek`<)n`0VDwWrFfIzdg6H
zx%c`m?kUZ0I=dj6!({ClQYoVD9UaQPobxQhmOvHRDaY1E#EutABv%1#mLi2ss2Nvk
zP*_pFU7>{xmQl&qYZ+uvi0iOz43N!GxVG*yTz_ldzrcSR{Ug-p3akC6_eIOmEDG2h
zn1gGk&;HsA&t(sQXaM$vsXA~)Y)vBXjmi}V3JkR=Z<+KixO}%=f<rt2wFiZ{{k_%1
zd;WRAGwa%zxClL17h>>?-YF!e;P@2ly6aF)VZDLKDl{q|{A~`#j_x2`$j}T2pC+WZ
z1uj!w%$3j%2ben4r@@Pemgr92%~Z}$Y5JvB<?OJYUQ%j}qZhoF{cdYEBl~e{LC~Bd
z*Gr3sXSFhl0JF;XB<B0_>g+Wm*u;4cgX#Mq$$uQuQKh-@^!e&sAEzotBvUD0&);_D
zD_zgakxW%?eu&wbF!}RF8z>*_KVeh%jhg@3;(z_AHv+YyP#DA9?lAW81#q3&bd~yl
z6bWn)Trj3!6GAGHa`-o-M;^3AakmXSFH7LTv~YJ1sy6@LfZ^$Z;_TI#&iW7`ezmE#
zxW&y#4qdSlzNhMa&Z{cCp^1S){R){X<a4gGX{mF7fRGd=Dw18LcKJLM>$E^|6VYeE
zIcMz+&_I}diCBTY1kXfriamfo=uhZe<ka)agu)7n7m6WM_rcvo*F9t3bL^6QYcPeY
z0bt-Kgfz}M$6v<X(0<uOkmVGI9fX>>yV`Znq@^y9#+;NvvRQ#f{oR($*o$*zJ=d9+
zcA+oKkrLXtT1GLje<c3*T>Iyy9PJKD?y76jciMz{A$!p~>Ap_^!Yk##I7?Q^$8^Q)
z1&=@&q-}zTYIK!_zI$J}otd941d^IQ=3rFFuvOEwK9A_GhtT4Pixl`YdeOL?pJRKR
z<jthi=L(0Dbk4W%ahc6byeZEYWmDVCrZDzE+whF?pN%Z}C|+Z)%i~Tf(_<Wh^@6`f
zsDW)$P8dSzjQ~|V?@oB}0pBoGEhA)D=egW^6+oZWgY1ET%LFJTMN3!E-se@GaW>q8
zs~XI|Siz~PZu5de2=6j%H(+YlKo=Gsu<>g=(Dc{R*uyr;p>u!#)wrBylzSgEFX!Ic
zSQ7o7@f2V5B+sD2!F10fCyC&`HNfo3nhsD8gE%RANv~)X>M;h@m~82_5rA+uT1=Xt
zFlh-9<xOn@Jo1bk@6%65RVy8B2XA#KXC_hts>xB7jy7ZQ7L-Aku+0LQS;W~Uz`3x>
z^lJlRsCW6u;<Iso?(K9{Hl>^zm;o;%(_TstO@5e0U8Tsx5R%QSEIrD<9)Lf!z5me`
z{n6l_A`nw5?>x-62SrTLvmf6}mbi?&3v><wOVM2j8;Qq^rvEgxK>C51yOR~mt@+RZ
z^uj+j5Z?WzU6caYdtvq7F8`E1oGvzBt0K>${L9KO#{ewo1q9g~DF`Wida^ZXEbH=H
z`B<i&?bzDPeq&0&hzv>Jnz}1`587+7Z=dF6bCz$^Qw8S?!7$Vdxti-jG97|*(3vLC
zcLPrnHp%<sirwEak^HgmH>7D<Sd4MUY!oca5)!nulXD~$0{CX%KbJ^oOT;!eGy>kE
zUSkNv4&Yx#c2EcQgV@a!AX_#{bDuMGtlg;w9SIF(tp?QuHo@e&94@2ogmbWoia|Uv
z@Q@)!2dVr0FADY}0<Q4!)t(^iqDP*v@;zOY$2m4Np5&&|A9a+ZMV+M|`^tk+e8uJ?
z!)u_$d5$qkt^51Im?#1L+Jk3WNgF`ahuGQpEX`_{HDGTD2Yx633Yz__T&<GhzSkpo
z>mQ>Y_JrCx*0>#9NUUpY&Jgc}6Pp92eF_y%)XLps7m&&7G2DHHFUzHA&3KlIp^QVi
z2V-ED<*`aP25nN61Bs0St8#QievGZ%r?R~JjB}uD;WK16EaZGM%{(*?j-@{Sih?MF
zc8PUWcl`ciEdN_$9)HwipvV;0Fue^_!c|+v>xOw!d6Ef-?vYPtpudXy)-A)^Ds65c
zvcf=gz09$t*KeLTZU#M^j>MUTJ<#xB0UuLHdrZd<iWn2<D~}DFD~N&C;Srw>O-OXX
zSoO)r4)+k~H9iA%{On<Tt^zU7sGCyP4g6O_%KSsjzpIsE?rH&?lCsgmYdzHq6-|Dy
z8hO~h-AYX>Q#=|ML!W5P?B2?2Ny%-}d#a;F!)aa@feGQf-2JAX_l|bfIIFY{+<i~k
zD_7ote~l&B>@nXItXeUYO>Ja36_vUWno<Ju^z8B7EqQr)Ma50jF3!wtvJmKGFCqsl
z6ZBed8D;Z5hB1f|NYlSm95)CusbY{x)XjN`?E_@F&yz~GClS!6N<`^_sIP#}b~b!C
z4^}w0gc_e|nXlhg1Y&VzC?6g>YWKs9CG*hEa#CkF(8mBjvF77MJpW+*ym}J|KZbZi
zMn^|INs1tR(F=Huq*>1Nf}B+qq_fVp&B-2*Kt8|thViCJ?{z&&%~FsT+YdR)YJ@V&
z4@MjE9XskQJf_Qs8-dYdGcD#se(KdOl}u?h&^PJPiG>`skNCQ|_G=ab5k9-xO!O6*
zrTH;&`-^t>W2%9{0N5~28RG05{I7(8?Z;ybCDq3(Q8LyokxqM%F{75kmG~#gT!?Mw
zktW;!{Ed(F5|Lz<h*5AJx|0IHE>gBD?%M=uX#>u4OS|rb>>FQ*ab<gy0H=qHdhb=U
z#8jv4xyntb(Bs-B!oTF_A(x*0IXC|Cf6=YS7}u;)kJ+?lG#`)b4Pb+SRR;S}6-hBA
zejOcKokI%JvzNT6p2GflH1jCHW=qjY;w41MEjvV3mGh*QW9IU}4Mla^&`hP=kDF`r
zQKp(A8Q!*WwLQ`xG+fdX!*fW<t@UaLY86)%Jdj&KNu|^E6(;qQ%<p%WE~6Hzw#@Jl
zEOjQURf+CiylD_bZQXq1^wv#WC$xR*FN>Fm3l~SKtGUdF1=Qxd&s|f|f$F|MIbTnA
zAhqh|%jx(5@c<w;{i0a>cHg<+T4Uy4oYTk|vKzQIuu)6CK4c&F=(z=e?F=zAayf>;
zFh&OwXlawvp?IKeF$G?<&(41KTLXgLHr*WM4PC}3iJf`JJEF99$BVcSsv})W)rwd1
ztMb(_si+7+Sz>PEB=rNV?#F5hAC|VTWVZeViQKxU2MCm6xg2vFt-OKP6LCx1>6^fc
z-x<_7MU<dOaHi7X2Q>K&ze-<S{0haVDblWevOiL$zbQQalG4oEEY_4CR?&oTPxW=f
z1}86lcWK(b7t7Hypom;%hxQBsl%!`+|Gq}f?&(86g=>p5kNhH~@4-9lbMtlfi8H0j
z0N9yF2K9uY7-FA24Tzo%;9tlA(vbQ7X8-G$t4^^tu8$+aNi;nPdPqY-LvW-#^fiM_
z1h2JT!qDk0L?+~IdTYN`E7C+O8`X-m5*aBR(IH12=Qi#Crc1D<{}sR53gO0^7I%k4
z@TP(5&jtql<I~@qwc-7EqE&Tcy98q6T#*7u?Lexq*V_oHWn?@uBqOp4e-nsv#ju}C
z%zy=&%OhmDVpfrW?gn)r@9=`R<Bpr=!DydX{fwp0Nvyh89a*T?8(FfIAOf4hr~8!o
zl(NIp)ht%;4NLM)hSUJ|6<7>C82>avgJelazt+-q!gQ@dtfo55%fKVwtj@o=eS<Lc
zY4U=59{RrP_85{ViZGiUZo3L{Azf+@MYkyzR|cKoJ+M9TntGNh8DoTiGR7HhcBs1y
zj@|0DWV;;$B%$Z;;-r7HWfz4Cs<@W>i1E3~=597jY)4R$;s?L&E0YQ8B;c2bw+6`S
zOurg*NNWJGo2}o^ZuC`LNq?ZrsZnGS5%s+1Zpz+m+Tj~Mv!R9v|Kk&BvMy9fzgW;I
zX&qd?d1eAg@BW2&93Y~0<@JS${EPsfeZ9o0oOjiba%2={rz~YyhB+;i>gTX4$LDLv
zMjCZslK&DFAT&%wyK&SoC+0K)d1eR+h*Ot77R1W_)cm)2WI)2;xe8O>N|O$yOM4tb
z&A0%cv<6KoRDi2${HXPpoE<`&(}_jS8&<_q%g;gE;Tu)IOkq^04M~CRXgAm9dYnz5
z%z-uF$LEO^(YaYq76wa;fZV6NuH}~D3Ix_*#XHy!o0qDl#L8{)dT`2gPPJ2*jrX{2
z&2v+7=y(q~;xp}_f+-t)T+QD76B-vHkE&2zdkBcFVrLtlW+s?4HC9E5JzU?Om8EbY
z4`C)n3F51&AU`c!a~5hxGyzhMo8p*SYU8R67>RsLF}b2Du`TW=di<uq_EPQ8i0`i6
zM;cd>6;BU~%5GpYtynZFO7JowtGnjYKk8}h+upgb=D_EvHoT!zKeh6Ry>i0kdHf-=
zQ<><^c_v5vyS=E#Zp(n(3@(?$IKZ$=YM6Cs48MDwN`Hhi7n>gs6>p7exbdS^3h__>
zwT<Crisx-rr*BtwPi)M~t&9UT0$n9x<X!ot9FLc)FWmCjD}V(}=@HmG)|(Wwoh_oF
zcOOziQ4_~Izq6Y^(VAq87OKkHUzs-FTnaW}o{7FvJivTFE&GIo+{z1x!l6ZD@xP!}
zq?=QTxc8Xp_*vGY^gm?{r6~7Hy%PjuyyYO`zj8GF+v~>djN;fdkaB+BCK)Bq$w)A1
zfEF!jgS(!|-ID|>r)A3X%pN423+GYB%;S0NMC~g(X>8G~mxi<f1|OgueH>wdQ7~!=
zWO8^uB`cpmibhb??&L@3xQXKmySe;+v;k0s1>`zKo9t>V)*1MiEFX_Aps#%uUpg$k
z4mca3HI@i1nVjV0GKAE7rCBhkoQr=t-qWMgAhwS%*XZI+wGct2Wy?*2pXzk7nj_i6
z1PuBVUO1AS-6gC0al!&`w{x<ZXNk5IW$J9`rrWKlGoE{PBZdkk3ALC7Jk*zG^f29=
z<GwCeM@iMlSQMIf=C`(f!Kk}UJ+p|`kr3hQ-GXh%xgM{t*|(Q>A0+$I*x2tt5R;*p
z9ox>lJ$dKjOT#(2dzu)ZQ;UfW`V!F>Eou&$aX7Zei>!h4p$yB2sD`&5U+J6q+AtV}
zWv_Pq`23h<J=X6UGtn0_fcA%6w&oFLBh2=8aGqnO9<%6&Ayj3w#m8gE*vEVrVjq+U
zS1bcULTs+5+LIyiD1`C!H-_Uj-RCqKM}x7`yE6L)a4Urx!V(09ekxfXmkejyrORde
z$Nl20xfW)qwU2s4tADQEqq6#PN#s<<uvlsWYYr3y*7)2rr;(&{RBUaYgI5p4v<p<5
zI6uzTquo2NNNi%EiQIvus_KWPZYGZfkmt5MsyROunWX~r)MSrJ(ohhfmk%{|Q>x!g
zn}3x4knXEsH3?O=N@4mVgRwST7-n<jhOQ6N4q!r6k;Xg)ZGZ`>RD|`kU#i|S(6EGj
z&Bo;U#_%dLL~ozEqAP1mHA7+0GIwUzsWE@>nNlO48_CtK4>y%db8|(p;x_^nLn4$#
zt*bglR1JuGY51Qlje4_v-H7^0SXYLNh!zgk-afCiZ+jLLMG(bpUUa$C!J}eMHT%A}
z+)dt0cJc&<vx$K+N8a8Q>4@y@Id`79u_D3e(=%O2_T6y$y@w*bdp?y3L2%6b19xUV
z-Ld3KImS-%bY7}hl0pZva7l^R3|EB9W6r?`$_)JlhT}rTLv~TrmY+@^)4ZQXYoV?!
z!Uoz0lO@MirJi>_<`@y%-X~t4`>DS%S$nrNlFHr7yh|w0;3R4L3xG6pM~zy|h3Dn+
zQ&AT50ZT&N`}GAJ=h_EbxO&vI@6%vxnkAtcC;zrsJmRtjoaf;PzeJq7bFHi-@8_0F
z8yjdk@pfLhkM5mSJ5Xkdf2d~`vfv5U4#6miTE~LZ!wx^@`f)jHbF6aDeb)gOqrdr!
zL+4A-=mkuSW_qB7FsOY`dX!+ImL4ysmsLSw?v*iAwzhHNtA32FLeWkx^H;&WPd=pT
z+>MNx4{ciVncgeop#I33xu^i`TX$Msm+ovvKuE|(;X{$Qrip8gu-1L(pE)1*4xm#7
zX5S~iiB<LyenU=E6Z<}9Z>wj-2Ai<QO;%6^8R*=p>H)LzQoWgNiO;h=J-SxA;sHN!
zzhR`zh{)K~o<Wn{jlU3j=?ORpZ?xPzhJlK`e8-3~W17ojtYJgR^rNx_vA|M|l7t6e
z<##r|cHZ8N#a9G!PHS@!*V`Qe1=o(!y!p8ax;N_lOoF$oMgkHEb<C0Na$07Pp0wxf
zY#XIBn>pDlmTnK;0<BwMIXkx<gv%?>PEN0_WV6QtfXChgDzj^E?2>!zXN6eC?_(1b
z2{mjwM04##zcG0WsI9#4S#Vzvtw>-Gv>U<L%jy~KZQd#D!jpzNAd^^s5GU^^qt)U+
zoK^9&vE;t7%RIy}yDexiqyYj`yZh7~z9qv{Zk5Kd!*Vyd$rk;e!pHc3Nth$0)Uom-
zvGC)rmWTJLRROr}(Qa#NUEtXKr+2~I#R&`6`wRqEW^q#t<NmzgM^D@WSrtCuD^;pT
zB<6_uNGQicmV@^|Tm`3?S-R-K>%FFH-@_s{ncK@D#%GO`FO)T*W;YMac?Z9|Ww)|%
z=T5`9j9sBwuLF+DPc_K*4n2pl!Jh?^r*N1JAa=EntZeNxyv<#3_@leg(bg8;KY?C~
zFRg@LHXpqrR{G4nwLiOoPr?mv>q=yBG7PkIN?~m3ALaYHx!mXTd5u#wm?GYvfXhTy
z96!TUI$E=Cb>SN{*>TW&eHsYO(QvQcyiBJ6cos+8CzdcZD<3D6X2EOoY<BW({1uG)
zN*?fs9rC4RF-B`|bv)bg1aSYzMC3dukJyxcL96HQ6ds!fJ!X^!ljHV}dO}SdFtmP7
z5s!EZkb`ejL!Ev4ctTt<G^G7dE$e{TVzuQd8<z%#Ogu9lhg`sPf^*D-?gmNHez}JB
zK5Aur8N{|-A4S?5`_sSY-!vB7_OvzK`i>7qk+N%4^u{3N*Mc;v_GK{VuicMLck7!Y
zIP1Aqg?CA4QdceB;&ilqg>I!5nOFR%qxH>S%r_sYa^b2E+vNixtxQkxu!sG3ABHk5
zJSeqFav2-k^7y<+)fqj_ZO)E}V^(i*xBM_<Q#3y!o;)|boXSyGVKVM|b2L8)_qmk3
zWR5ccf1fy44Eldhqn5(@MzxDKALO0Ev~luQbBN(4!-Lh%l<ya(PI;e_W}T8GpT=rQ
zNm$f3DPS{t?iL6+&d29X&B|LhPDHa(z6_8*U;$GH3TDOf{928YMrTrE9UD>nEVbVB
z*Fr5tBOJ-8q8LY&>OnE|*tehw8bSldn0NF8p@Mgn)%olf<~BPrE|5amSz?*eW4<=s
zQA;fJODhBNP$(F95b_@}OE4{Qzs{xK8OPjsv-V<c^iWpinu>j;&&ziYM-jS~OU9y9
zLw|-->ndOCVmWltJ4T=Kpx5XIrJD(b_T>vZ=GtH+$xYw4jr(%Q9i$U|wms_lk&3c1
z9}l-wbD8wEn{LtGHf4N&U7;iTaY6!3$vVEL4V=s`<0GcF&g?u84%LQ^baK;o{bkWo
z$#;Lj^U`dY2CeI$7RZI!=Y-2|A_wHp_(Y4jje2F34lM1I&7?%lL3crXhKg0C;7d!N
zq00&=qP&mVtYMyqMf{rWlR0Y~3R@Y4BVLc1-3$<NO&|9&3nQfnCm+T7^@BOaXF(`=
z9{gqfz<poo--S}x%&9X)V#*YA2xEWBEc+8#?yG=Ry41ZC4qjLK`d>ft_v6OUw8ba@
zhU~J?`Vw`*OErfca&jJ5ppbIz4wj2w?Z01n`MTOo%QW`u7vZ)i3)`Yq&<;fk&78$t
zI>Vl5{cF|k$0jwGkzCHB2u0`k{JaXJf;>&SCQ{qp2-@$n{bHCx0E5!FTXEM&ct#Jb
zi_aYQmlG>nSN^c<SgD0gXmGA1SO!?azc6Y)^MpG!YYxc5I|F-bmp!59EFH3L6HF<7
zv60s%wDn8=+|ikQZo<&LEXMqdS8wR<hC$XGY?)_r@OX8GQ~++sWQ(|Cqgov^dt>$y
zMcg>bbF)Trm9mQ7HMT+t$|O!6e*#4*p0UH{mbO2UN=-Zis<efRJp=BTJ?7;Z&E*X<
z6iS|-N5BfoTDbiv^7<9?vZ`6BhpcjB6WALjQhgn`o?eW?k_FlnYfMDgwWa;E@KK>;
zM9C_34P3V+%ZC`RK$ajLHaCH^hsR{Ux7Y?!aMG*hk<dNu7`Tc#M%cW?cdho|SKgTG
zNiYNSL)v3OSHOwC3eoepk?+$296W5LjBa4cv)Z6?7_OuzttB1d<#Gej{SeSS5t;lF
z1}whjW+8X`_-?+7HSCxuaW&OT!F=MEr0@pm>-T5n$8{=W87ePxr21CrJcDaMb`9;x
z|92JusoemeCF`Fbe!Mrg-){M0?GAqT&jCE&y=lK7)Q5co@#gws+%;MrD(4cLnXlp6
ztM08Jvh(T9);Sy*^;4u3!OmKuxY?fsS@YG)rOP$MNcE6rOxVURBWB>?n$+T@nb7AQ
zq8~CqZ|s$!kdxMrv-x424J^;IW|KxDkJU-|aVg_Q*vuw#&;a3k4T}$`6rH2Hq>|q8
zXss@WDBMs7?%XTa-POU_O!ptJ*0$b|9;|^rxEe3nS3E8_vg@p3bP<^ckg|AQN43Oa
zY-u5+yH=!@NF`AIqkC(v%gQNyxE%hEQ<B7Yv43A^Ag7W5FpYr?f|wTx4ZG0anPp2^
zY{QcoAWd-&wMGXX2Q*)cg?s>(#i@W^emoR7#?t0%Kh_vBgmKZ<b1>;tteZ7+r;%d^
z2COPo^r)qDDGM2?B|SLZ$r&F%9?eX2OHm;Pz;OEc$C?4Un*yMrp8;`9c@i#uKQA_V
zmY{KBFi-c9taSRTDRaac%0Cfw=c(P9)~^Df(J?U%d3{@?oLTJZC^A*}+*Mm1P^p=A
zB#5qoyoF(GTeYknxkEL^40@Xs%e!F+2KAl~>D^WbRU&{Je8l>0;!N4F5*^ivg+rgT
z3!4hEAj~ba1NZo8?lRT;NY*A>vn}RBwh4KOZP~d@W1j3I&ddIqEk)5n7)R-ILiF#&
zt&?Fm+=tT*XCxUJ`>GHAZ02mUsV_9>_((QQvy0e3pj>%XyQ;F@7maxu0$cPlkLxqh
z<&Vsps%=-p`34oStAF(8xvdh^`<EBj;(6OY<;U}4>I7z`&aKVmxAm)<S59hhhR+ys
zMesqBCYxiB@VMO0v@<C=?u7WaTcI!q*UHyvQa7Q9D8~gj&NEyO%cKsD0g@=$&lY;5
zG2n*d%JlPWL-FLe?f!cdk3rXK2z}wM9f?dI20?+Bxsr1EdUT34MANa~iRh&Y)iA4F
zw```R*ZIE51-{$wNzqpBzz+8~OQ#ToATY)wG7A-8=(GZ4J_J#6oB8qh5YU9$Du{jv
ztuk=AFS;Cz_-5o`w5KV<Cc}`nO0n5|ne5pobT_=&VC06KJmgj+Ez&#M2bddYb%jAd
zY|g&N%2hn&+g3GKZ2fcw=U{6NyzaV*Ix&#N?~ey^zdw<ggwH6g1wQW6_Ajkxw$&i~
z?Mbo5wZ6;O)r51@<1Gne8?>}QyQGqHQA4@f1#{PKHu?ddB?x^8BiiCX@5s$SDU_-?
zQsIzqC^>vim=JsTyqMhS-CuL{DlhSc3+uKZy|m?m#)Fo$d=bv!UJ(TDKGRL7@%71X
z9Kp-_R^pQWVJ`bMz^5KujXzAiak-sWx!d>dxz`499DTE)0YH1|s~l{DISm}TdhHoM
zKT^n@iNU{54B*h^rns(!R>2Xir};?e+CUlXG??+@<JQwmJh>0dMrh{I&h|(S<yFa6
zY_@qU|6!CwV95;<Qp<&#2B(a}2h@w9D>1dF;qCYU!%m(c){WyXJ^0(5*Bmob@;nf2
z5xDZhyT=^m6X>ICvo#zh$?e-#qwk%=90M6sPcNW(29XtEF?l|pSY{4O*5f@L{~ENl
z6iLH*EECEnI9qvYTb7$+1qZ%koTZmh=hQ|6WX>A2G??}mG?;=8yv+__+-+Otsa$@I
ziR>VT>N1b8bF50I)~OorWh7L66}-0`>9`f%NEfE|eJXCSu6l0}wv|ZA3>>qKSv7T|
z;pVmmqgXsp9>lGwieyGElFP4|i5|50`;~y&+1|Q>Xm{ajvM*xw`EZ^rL<pQh#X}%n
zWdU74&SG+yhL!nDXVm64Myf~gLt*5)?<$jWo{j}uwXpLJG<+XM6BI&@4HB{$@2V*`
zVCWYRQO{thwS+nCHpmYKUpsbx?77gTt`a5Y{T(L*!xfA`{hN;v)vNE=AArnbymj6)
z5DxlN*|n8<CRi~ui<04Q#bEX*-huqB1g4jvvN|%eb5uc7Vpyk(3*24Eo{7AZ%)4&@
zpg3kgT=3xD{i!7pqTa5nwq|4~8MqIzKC61y@mzd5_8d{8{7W(kgR=k~!9?{5j?+LM
zkLZT+K=6?uZJaslZgg2rQ{2GH4urXE7RuS<s&H$-^-Ea~Rdk>A0%e5-Iea(FSLYvl
zPWrX68(*I?s;rx(P<K2=mg3%u%vmCJ&%6hW@eb8HYs+3bs<XZ)bl=IK=b($nR|!bJ
zG+IrayA&A`7Myos5jJQ_54BM<VA{{OzFv|kiZo$picbLcvvkc_=Q@>rOCx<EmdTMW
zEjA6wv~SteXW!1swuLNYYa}`#5(NN!VpQpI$7vGv?+1^$+*Z@{o^iqNGIB~|6SVf8
z(REm#UOc~#T+3Zu9c_LKM3qmUZ(aQvF6>&xgwKA%0h8&yQcg6$7Ah8m>|j>)z}lOc
z$obnq>2}2goLdST%GRG$axWEb(xi<7rPDz&2O(a9yC=0q!+#a1J3DK2p(dMb4H%h_
z-$opB!(NdFrUn^*P4Y1mi1hq6Fada}F7)7-Q(vxS1IjO;cqD<h9rP#dWEL5pP+*SA
zjw0z&i=L8@4>@pqxpgc-%RX*iS)_p3VWvE>ji$(3BP@}FpQXd=jo<W@J2c^o1Ng<e
z$Ed8*4P4+V^tfV>=e60U(VYB+#W}uQ@!LTBC}ox#^WtHS8a9%;j*3e~Rma<{vGGQ(
zLY0;53{!gAL(6}pl!#4>e_dhpXJT&Vs6iIjj=``^YfxZ6^XPg~u%uPo;KjEf9CgD=
z0pVb^Ws~KK;$$&!bb3X<6q@<eiBrL(?L5)f+{mkn^cUm&_3!(sQ)r*j^-_3AyZ1s4
z`-90ldOvetP+1LvOsh^j7XH4cV$`|>H(lCL64@!#Bm$ix@Dyy3>S$1fQWebM-(2J5
zy@z4;U3q?tR83E{g-#+)NRTJggDcdXkKLDpkEO$H*dhh3ROui^qbax7euqREY)csV
z0QS&hitZ(i7c!kD^Pl1G5^XBzJw@fbe8h9<?lZw`=UUu}Y+Tny?b!}IR1LY{j`_k?
zx$?M^1f_F<*s41Uhah1t2Sz=261ThyW5iSi*}bT&yw%}K%3E+@dORhK&79{{Xr-$A
zOd1(o>;pNr@;MGbEn*N0K~@Aog}hA+;0s*3o^3v7s@lf>k<WQ8Pp<6CeWNcQZ0RH4
z<PNr4NO~-3qqla+4SoBd?sOF_v}ezSIwR~uE8QMRxrLH(Vs6We+5UN7kxKuEo$P+j
z-k{?I0DIZ?g{_|DsXWPAy?tI?_A?Qqg0vn;G{nuTI!Wg3<vOCK&ax_LHNMI$?wDz@
zY2=9s(`fvT#g;+_u@OmkWYJ3abjSy5SFji$R9y@hBiuUs0kz5EUjNSPBJ6MZ<#KCV
zWTeNsAKny0RMj1LBBcFt*8!XjVJbJf3-k{u&&j-~?ZWvr&0<)(d;cgkKk;$f?#DOq
z$JIa$I4BC*Nw%rapzY$-!=#5gc50R|Dj#%jeR8_{^q2btn{OWV37!dslC&RutklIm
zd5w&B#1az3MH(CL{B23z_hWPK(Kzh0LkR#^*+si)lp{L2=ZBsF2ZX30ZrLxW$(|)6
z*DazDcBudo*YqJ=#Zv{Vsv^B_9{(>2A$MoGpwLiV(Vt!3=V3nVVFG{{i$HB~WFS`|
z)?tdG^L{d-4wIWtdkZ&AeS%xDql~QgFUtQ)*8J;*I?%^o&C#)G<usFgj&?*WH)41<
z8_<#c0J<wiVejUD@o(?1c>4JmOzjolrqqrmU6KY{Wt4z})rI>>!(cUe*9{c>H<Ea|
zeG}Bb9_lYY1$hxDD=Wie-Z7Vaf$k@Oe!jIs3kOq&`Vh^+jGnKg(<s${`<{RKNaUAI
zylTMWaMWg)SeRIpR_ZX>+%^m~>o+YP(j$^<EdbK87DOaEz$ttwI3BPsoxP8+>z|AI
z^KLu{?-dLNs_CR!>mHs$Yn7wmrd9)(I8qF`vUF4*#RgCpk7_lMcNW~D67%f4&q62M
zS~39LdwyXe!TvA!_dDqUeGZs|dy-%X$c-q;|2Y!iT=p^8gw8jDAjbFZw>*d@8!GW|
z<4-p@HP?R}0w+`kqJ{w0iiSlt#V?diy?@7YYln4TeCwZI?ypbb?m;j8UiuOYW$l;H
zt~h%4xQ?!FpU~DEsd~%)3fz6y<R8?cv=#~m){DnmyH`4$p!&^wcpx(hU#k$DAgWM1
z!PYgh4D1KZ=QV&2K`i~mF}N3$ZQ39Y_a6`{wl^3AM}>W=!(^x;7IcB7m_~xmYWiO|
zxW^L!p?r{HtAKVAi^z(LKYnKU84Z^;AO$C&8#>^}@#_iMBtzNIT)1U2twKV1t9i(i
zj3k+2|E+xWwDjd(>{ZiV|34?pKYwBA8WaFqLi}KsHU+JiWws7<oOa)2?)Oz~Ef`-@
zDae7X*$+BaLs-CE;DqV~*|_bon$^S5SWO72wBcdW&^eIHCSpJy;((cbjw^>MAroYC
zh;9$j=7T(_5tR!!nYp(zZ))`cxYq(Am!|+T*tgw=E&&T&DtK_Fr>9I(FU8XkHb-(b
zVL;*>RQLMkzYjk6-^F&9gR$9?qCU6&{7wFJ?9d0vrMpL<9^xIFMtodhp?07=%^E@k
ziEw7^@GyMmMGRo~MQ|{lV<zh0DuR(ANr4}C*JavmHNwC<jX0$A8lOjNib1i21&_xE
zixAr_q=FhKyALf1mn)5Y8hQ}%i@?h%9S#4dSfl<#0P%(V{mKXA3Fl}JwwRxpuJByq
zy|(|F(FUm^bK-8IW|(~!U*ErI2*c16Kgu#$bQf<x$!-FyKSE`yf^~{1NMQ>)O;d*$
zdB|stYrtTZL1Q@=ymZ0tMGR<&iwG}1t5Ki*A3*{LIkuXCp*{QBwj9#L!TR?yi6#&Z
z&B`I^7Fmwp+X8xH4g|JP-OrXf>Tb2-ohVNP?T>4nLemDg!BPIycc1GwU&Ia8p#->o
zb^7meFZbYc2`S>>!mdkTwsNotC-B#FoS~C_i9;+@fcDM-<aT_mUPb2m0{p5uNWyZ)
z1Nd7}-<Y2{!hgWVna?45j_L6yWXyo3>rNrG@QOt+m`L{R6WuE?rO2dx9=@BJ-BSrY
z8sJ>Bq)_W{*Z45Z!qH=hv3autkSkJwmX8i0@fvaK<jELUvo|UUB3iJQ)1;C-9~226
z>1HYj7aI2zfljXE2cFM40$M>`UENZb+K6OwR_u?adp+Nh9+KKq^MUC9z)!%72S|js
zwLn^D<6c)b1@&Q_QEa9p?kC*WJDdY8;g$qH$Y|yf*%0LZp@<pBn+kCa%IixF3~>cO
zT$E`8x2KQTb1Ab4`fLNq1Y$sd!H2{_`)u-{9Y8XUtTUQWV1|*&fm;H$vvMqIB{@*X
zG(oAS?MR>K8%rlh3d~YW3$&{608@EtEN=YURMR{|ET|=<eOeo`*W3bS`cN-&$2vmz
z4+;*0PcK1gtO$&)Q~k5b-PQ>-2d9PVSjq@tcxY@(92lX(S#q|4iYDQ(sOM)>sLZp$
z^Y-wpM&lzoR^>r)sbD<-utNE*4H#Wvwy^OY?mC^hu!79;3T4+6`rd0pb%j{x(0)<V
zUF}T!Agz0A>GMa$zd6G-0cQ;Q@{(V0(h7qR&eAI(UP2Rk-Z4ebWCA`Gx%XNi9Jd!K
zYaob$4%GOZnuU88R=HC*q-yLXrAHOn^NgyHYh^&j+ybgvD^7vTkN?TX=UQ__(hAqp
zUJ)pPKF1hrLR`YFH?-@Nz=Jv1tCqO8ljt@CjUfL~D{APxD1ANdbm`k5E>QJT>rfx-
zBH}ef6o2%Tf~u}e_x*8&_@YLzDrbUIK!n~zabr=K=r%R4mCkiDP1ga_;)u;ac|`FE
zh@vD`{j@F77X?GOkK_1e0Fa;eKy&Gl4mRu#6d#LI{;O!`pnUVBQA<~ISj(Xhf|$-q
z;vsHzz<Bew4Lv6jxf__lbaUnvL;Ne?*<Co5G!PsMhGUh3rp2=iYS4Zd(yCKd-y!P$
z8N`xS?p-b;q*4M;pnp#ovgwp4f`je7H8(I_`ij^)kUItNo)Ma}xpHp#yTr~ZD@&4s
z+MBA<7S4GIZj+$aZW5Hu?MD>-c3_yeJNI>D7U8MO0xUZ6Guog;F>74dfj;s`d8h3O
zVx9d5DyW@(AmsbD=}^4WUy+u7R4wk&<kCTjLRE}Gx1!(m_86B!QKBVFp{`9HM{W;@
ze6C$R7J%S)Okb2gd~W=d!CJOhu^ez*Ou<e=6Y?zHBa8u3QJ&EHY*&-+>$NS?Yf=!&
zixHMIg|z}+vK56B`EzW|gb-%)DxbiDkZwXZ7t5hMWWw1P2ho;zHIM~mF|NBCW^o>d
zpk~ztzQ(f8X%frY0<FWlrjm?%Ki5TC0b3|Ko-kBmnb`Cmd!iNyNNb_oJo573?L`{h
ziOQ)+<2i7k6Dtzp$F!dM%SVLlU;>E;R|#XR8kx+f8aZOHNlw&_+pIL?C^uwe3R}h+
zNJnS$B*DEfG_-{{7I+Ht#J6bmQB`nNaX%`x8aVAN|4r%c1(*X_hW%WoxLZbEk%4VS
zI-Q;*NA+Tl4PchfN8e#_6p|wg%GQ_u@Bz@uyo^rk<gK(Dpv{RUKc9tjfVyPCp?mp)
zI+;$EWd@^cX?JLvT3?0NNlHBgOK6(KZpC7!OJznYUS&!3WLDqln%NAgRB!W)l_3{Y
zBznFstR=0LPtd=*o{V;&VWrtsRlIJS60nf8{m(m||E$GAvk}2%gT5s;zbiW??A-y|
zIebShK8HZGb`o%;6CS#ut6VV&Cd~+t8p^8tl{)2s0?I!<+WBWg%4iob!ULu(O3Lm9
z0PL0yNKVqA5?o-+gdLzPWmAo3hLRoz)AsUqqV;u!yXy)0Ktg@(=v8p|Wg>m;hw#uF
z&p;hwJwViJ3VI;KE~q;v2t|+j4zPYRZ+}XsXlg<Y@&qVjdyzCEw=Rb>p-O#$7$;OE
zGiTu|596j#794@g&aTBvbIsJ`Y(-kfyf+KBjK+Dd2;SEFQ|g1t*=m3&ud7f9fI+qc
zYQ#_#q#kds0v(Qe6k>tXZD*57cs}3)(5$D{Wbv?L6KZ=_88{a}X?^nT{r7h6i+mvB
zQM@+^cRzOM+O2JE=K<8qmhl6y&aw26%)vc0y04u4a25^0FTC`D+=bw}bSr#jaar>a
z(Hr703p+zyc{Zq=2QXdoihbmYYGYZdZH}PQ2Ua|SgrH}&so`9V>bjDsE2mJqGDS8f
zC_k19)t$i@UaH>~y9N%z()lIf0sQ#|U)z1ps?}q(wT?1x-zChxqzh8skg*<wV1|d6
z5(skV#Zdy7B604tT3URE%_|R1_=^FucFLL|KHY@88LfmE<_EG7-m**(R*9k4(-6r8
zZOdE!6*v}R$-V^x6)<pzZ7ZAD8MGvxwECtj2Ne1o<q`HD?4Oo+;5fZhnVpsav|i|5
zm3n<yRPF58IZfvdT_$3?q}&7_7hMtJfpp<ei?@0-(Ue1l*_r?qu4I`E%&2+gF|#l#
zO(L2vkLbb}XmO$Fs8&#yNiio!Wp2ekL5aXYoR>uxk*rWd7o9!_;DOa6R5DAAfEpPi
zQhb!BfAAz!<?+mACciq8ttq@L(wc4zDeG(&t7=j6HFDOu`Xv04M!zy}8RY<+s+BJZ
zZ(6#sm*D_4vl)tmsnRbqw6n~iwkM;?j5nomo2N9Q5(?7jOT{>V*kNcEf;rh?-i+IA
zk<FO5Mk5+c^Oh&pYx(vqw|K9`m)_;z!xb>^{BCtn574BaiGG=MrH3}%#U7B+b(bH_
zATX%?tiN}%hfc*DyzrkEpco+>fExW|cj5Q^P9qG24uy(mmYMXdLc!K0uk#2qk}j}P
z3*8E}MJ=U&1OD--4l#}5d+B#t%aBdD)p5rdqO}_5GSEMuVF~9@Wx1|M;XxixMf{kU
zSn`Q3lq_uJ1$lHCjNZUJyki^4Evj{&5yBVD)`~{B$X<h$A^E8=!r>E|R(|^h5t}zi
zxAL?;5EOqCb|eNbGj3Hz=2T9b8WxRH5{<~j$kfdOq_ZIrHeU*a=7%B$vXI64BwE){
zP_vilf_w}Mw7i+%wiF11K1P|TuXmjjOuP`s!A1iFrUJOH?Duwd?>0UC{0c=8zIy06
z6h+-gjkHd|Z-@1#;^p{mG4#kh!K52f>i8zV;%G7Z0DgMw$^Pbiv!e#BzA!B{C|PRX
z69khe4jg05DRtf3wfju2*b8R%d2rDmzn2{^fpTMh50`HL6v5<?qx_hqIW>;yI|lU7
zD`R-B6qsi;7tTN@R+QxIO)?tViCCqUcxVg|BX;QlIaGN10+f?BG}I6+8Om#Vru`~?
z_!LepAcM+;oU;2hTs9`z$}M`YQiUUiRd16|ReOltx69&G&d9k+aU7p>P3ER|YZ2AZ
zBG}v2L)*}qTB|zl3q-$GML*Q$HiCKml-wRzjZV9_ItporPV0ATdJ%ln4prJ=EKy$n
z6=|Gh=>-}X%9OxY1SO#@$`O&Z6d6OU=l2*n9Y(4!rXb?Dv35@Znqr>!(nT{$$?(cg
zcR{r2prG8h1f0l0gX0Bk7Eff$eusGwCAksk0u2{o4-w3?(a!11C9e{bTA}i+wztuZ
zsC$HdDOTcTrX0tN0&D}onOc_~pqzT5<o}WO)?rcp+a9Q(gF2`fAR-brB}hp~ihxSD
zGy(&HbPLiy3n`@==^VOSRJu!AL}8GW?z!uApM9Qv&qdGG^Ur>sy}`}Q`+j4s&-w%d
z+5*l*)8-qMxzKx>!F)6B#=~~n>7Miu7?w5*fU<2#HB=BB(YwTj)3}B#JOw%C<O#}>
zqwK<gjMh}ZgP1}D>kX&lP9BrgF10bb9h+r7y+0~lG4)IO7v`=KUyCFh%z{fZT7U4a
z>Z$bV1}S=c-f@<7!d&)KBE2-z1nQt~D#L6&hF70Nzc{vAbfU6#VHa^aA1E@PpIZZd
zp+1Oz?S$t*)xqTq9=JMi%DD{Xq_gm!YP>MJe_~}VIo1-z%BYU`i<pW$J91bWNZ-9W
z6+n=xadf}{m^>yGLNTbK{{`oV`PFj8nOaUI7uNf{Zoj(csRD1N`q+t2fM#q+mNtGL
zgzxmi60}3_Fc+1-0de+BPFAd`$xt!tpnuR5H}5*Tdc3SCKslQJi=bf`&t3h94psVy
zA&bfBGe-~rU<L7)K|L*H3&u-1Fa#@c>xHpAw^3}KFXAS6{A&i&5LiGP4e9h-1WzC;
z!V}`>PL!TxM}0It!T`;??<ev{7h#+T!o&8b*p7ou2%!YQBYYkp7krO^zY7e8R$+Fb
z-z3BjZWENSk(-#1xiOI@eXJ@$O~+5ii!|toMs@h3$OMx%mL}`?m?A~{xfc2oKO673
z3DKZ#BNpU<oEDW-uL5-|bn}Q|)N0+<Hz2ITkvu&Bld|vjCEq}`e=0{45Dp#nabsZf
zL2-UXCVB?m?97`8-xF6cd$&KNsO1}#pNx*l&$t=vx%iQ43Z*Vola9XEBTiuu-vqt;
zbQ%!)FbIKRd5$n=HgAI=R@J>_jLl_xeZip9mL@cfsSK^*!`#?i4z$<eHs~!)z|p<N
zj=Nq_xE-xlIbXS@L4G!Z<dW}PmpNi|$4r@BNEVy1Z@@v-p(hF8Iy;bQJnF&VeU2?F
zubR<(1rJ%`KIRd@DJ^ksC>ea>o1neaP&QGmfU?G{h_J?a0~C0mNc~QH6lDuj!`W2`
zk0_?KqWScbB3$Sqq8gw?st<N7mfBIh^6s+?2nBl5M_|36PwN#nSI?K{<M0xEr%Rub
z-5gK>RgktU9F=Q*l>vrO6@!`kR&cb2m@4Hf3l?&xZOu=%F3$|sOZA;#c09JjS~7J;
z;Og|A&o6-?c0-0RN}(riui-udhGm~Z)3tXSW;z2sPm&<8lJ2;2*fS;Qk1zsD*imiS
zV3;_dpMBq7q{Ir0ASlk4Je+?h14WZ^2G&;qJx=`__zw9Tl15y)Y@vdmRj@Edgrvam
zSI#q#Qdxt7O4TMiCzm`u#iwoGEQ9WLd`9KZ3|Ua$br`foQ>~4+S%U>ku^teKF^H1%
zzX!_`c^3dFd20vrzOqdRJTwm9mk<KaF#S@#N2Rk|c1bQD<9&?}2la{o0y$KwB$SuS
zn@+cHyF;AjsE3WSY+>}>Af(1bM&LzrcnWaxXe!T~1y`r7@A)CnkNOhV_qwB**4)Pi
zdUx8n<6q&0t3lR#rbBCXd#BftJ6nCQ<AdQ><r{O^F&{s-*m&oPZXupYMVoL5L>y5J
zEO3Uqd}3GwgNrG*I1=TnwC9Z{f4W_L3c$LsSI_o*QE<Mr(p$jHrHnWNyi=N7oS?Fb
zAmj@QQ?5yAeBlIBd(uy@vVaeCT*wL3&*6l3R(KH7i_YMEa(j@3mVO85eI&491HhF6
zq)Q+@j)gg?1$i@K{Z=~D%<D(!rKAN=6O<4@jklZzs^&8Ybgo8i*iChQ@EL;(*m}#X
z<lE^Y$>lb%yc(W^4Syd>hm$U(^%+PA$@EZ3o_e3NvfXs;v760+qX;VK6nYc_YGB;R
z9hs3}O$FB6Y$&^Q93T3tGSM{H@I^$DMrK^N8e{1M-_1TOSt;wYmQM~?9x$h<uStOu
z3HpU{$xLojq<gQe5Bhp<Mf*yFN+JmIdXuCmi=rC@5kN_}mseT15zr{RKFiL#SNq|U
zQXZ&yzEuf*;c!y!)$|IFmKClZm}clOp+mC(*ILgunTD(F==ZP5)4iN?aB48u4;*Z-
zf<oF30O!&|biRsziPw>PA<VNLvt%<g$2#qf?ykvbaX)LT+q<w#MdQS`5AY_ZiQe4v
z4Z}R)Dw*u{8MuaKvC_h+2!8-5Aa$mU)-!Mlo1oVv6LCr&3}D6~k@&d%%DIQo%s)_>
z4;fh4((6G*{WI`%n&S$}l9Bs95{WVwPdkd(@1dI0D&byMJ0MDs4rZnngJ`v3u(wlJ
z*_Y}OX<P0gPL`kkSuY4IP|B=(0OB&8rol*80unV;xcL~~yhfp>kH|N`PjisDRA$|l
zAs}YVI@}|>4l9fD1`lXvGOBH3l<rd_Ek2@o{c+4MMP`kc^bWQft}4d(^CHi<^WeBE
zwbTR(`H4wx&=+f5F(`SI0qC*lac`{71B}@*LA^#^#QCgD0BU%ru`HQcvUAif2HTFy
z6|0^LZJDkkilC$rM^=I6DWAK2tOm_z?D0W8{el;FLlODus-r-+%fjcHIdfx(xWSTO
zo~^o?V=uG{LJ5#hPg%$U{+reWpLt_Ex@_kIeKaQ*C^9*B5hRzCd;VyF_8KDbW@aqd
zRJdZVZ6jIgyL&%)&z<%)$!&s=c!zSf{2G_ct<gPy=jXK}f{5O-5e*=!8=UEfP~r^x
zf3zxs@s3Ia%p!uWsrQolpFOtjZHvgP^MLo(fO2HyRtfWR1_n|E@mHnmh<09MRSQ$)
ztAbe9f-CKfpVxC9)Rtu?{a`5j%KnaTZ<c0RFBo7-0E6RclNj7T-@G^B6%?BE>w>WA
zI%?Bcvp?St^!l_8{JpfxJx@L6Dx6_BVghiKcTaaugAMp-B^lliiv^;PP)Gy!90A45
zI<z60#|u6tz}A0GV&>Zu6-|ZGZUa1X*-Hu)I33pIER#$Zx(lz|nxF-WkK!@`*K)p{
zrDVze4$->r;%G+!#C-Vy#G~Xx6JLiC5ie>ZuESa9?geMaUPr=gCy36P3n*B}3@R+!
z6<KtUtScR|IhLONTN7+jSpv*?6`>6%qaMP+^s*R@D&CsuqIt65j`&lZ*y`VN%0>IS
z+V_x6FXe#OrL&}4{~n3#g|ZSHKtFS13-W_0rE?&U8bxH#VJAS+?T{<ym27q%;oJYp
zGW}2N2JXhM_5>C5KHjYxJIt&Czu5CXp*vcXJ0S5r;HW^S4mW&rFHCcC0c(5*ubJFh
zFlf&;_WsnT6A<#1o6E#F;+7)*yUFEoI&MPfQVJpKMIHQICBq_|d6wHnW`Ue}p}ya9
zPx~Oc;|TQ=9OB)J6^`sh`v31gct=48Dph5e6@o_5AzZw3&jFwN9e1kN9jeyqq8Fam
zoc>jjj8qhGlhMk?-F_K0##T(U$76HXR0KDQrd+#@N0YgKI@LtpFKrCkWVjT}>z_E9
zpZWbq`T2SNKmSpdzmFoyermAo17eN7=iB)oOW{BMt3Un#P|xdek$5xWi+_>Nr_*=(
zQ!a+sy|rxhVs+2oeE>8$GYn&Q%dUAJ+IzwOemmsS?zyA>dqw=}r;7nXZ*M(?uO4G|
zNbis78pvnLgK6g}T(jq&KX&*R8xpW?09M$xl{j<sPhT7I7w^y#@3kQR_eV%8co^(C
zeBe*ph@2t*n?D_T0@tkYci&nXp)CN}!ruNV!LJ~#->zZzR=)ke{e@qAA!Ma5j{2WD
z@r$4T_Up_v{_Ff%!fx-gnEi`C|5e;QBZG-BYH8f(f#hHOd-wn#xV+N-SjA;uvE3f$
z(Es+@7vuj6c=6+U#`+fzKAVx4ltJ-@(4^)D!RLX$IOyvA2w|LizMV&K<jlvvNFuGq
zG682vH1_}U3V`Nx5*JBhenjtYjyjdo0GUw2QMb6iy5Mh)IvPagbI7Lk?_a^cZi@fI
zD*%_fEB}{QAS4D0V9xrlwt#{=V85?Bcw$B<pY3VF^84GXnwc@%bnph_8+DZ`&?Bh>
zFCJ^74fK7DDSJbl4X~P5!Ch+r(AQx@7%)OZSEUL_$*kM{W7(k3D*HyC9H|S__F)QU
zo;gkg%?Ez>bCWHI&@u<oWrK1I4Fmd1=#nR;-mk8VUtC1)Q8KiBgi#P|Vc-Nvt+l8L
z6#YPy@zj_qi?!Q?9!eEl#7v+cU}X_@Zv&9*@G3Ibo-1FHz6mP#%sa0&oQ`-b&Atc%
z!FfMu@<M03k&bI_xXduUjf4zk*}PHX!}=fh_HR$C|N6b^R)pmj<U|o=9bgO%M@hf4
z@9Hc&leql=D9CVW-bG~Dh}U|uZ8>2KClM9GCAfOzoOX#-qBG31`ZraSao{?lpWc?~
zwaw;hgJofvbLAa>`zwmeFF%v)@dLo`P`kcAikJ{f6VIkjLL)F_PSgam5;eGjJ!U0U
z5CxN+zxBEXAW1*X$iM^U6xTyl)i{t6QwTI?%7k;!&$0HOofHyvp%CW{c{8{s7?sn0
z`hPq3{^u*ByF;joGRpSml-B{orx)7r`o<%L&=HvcOq1ggNPp9_>Fe=7K49GmFCeFr
z*d(D<mhQ1U82++OD?vbq62g^&W$6M#dgBPl-;|2v?g(blrd~ROF+>s&Gy#%iT_b<r
z2o$l?#Sh5evyyY`6a8tb)P|N$Q}DGCa@-R{5CIH#O7gKLma6<{ey5K^S+Rq+zrilJ
zlkXJrDS4&|S|IPonIr=1u`57A^dhByV~Y1bFM^m%^nX`kg+vnYRa8|?3(9naqWeT2
z9NYabX1DX@j@L!TZ2xh^FmsL&PMy{Yp-CXog$ev<ga-M`Y%che@Xl2_+=Q@4{iVsa
zA^`FSz<DeaLE3<Zg4je%-D0N)Np?Q`^U^kG+B4w%P%g2;to6fuTZ%r%UU38b5cHze
zgqs1*7io4*GwH)dRRBpD=!b(QrU=09<<i#8sQz4z3{l?m*$<j>r9%{6nYdNUwI-NW
z-}bq%(n4j6FEVT{<;53W2P-8;80Z2r)#A+7a(V|ifc*fu4jF>8$(*@_UiWAS+cSV%
z=ThT4f7^%bb%flJqjhQ=B_(MlX$efVhuH~a#Rx|5+8Q^Xr+-lhY!l{n756akE=G2x
zW}y*gzpsihr2I9i4I>WFh&VkDx_GeQ8^xEFg7>ue%o638Ngvm+O#qeMrw1-7_asm@
zbqolaobmldDHsiQA?Pw%=P0>p8z`J1`NSL${5<x6IshU_%}!^Gf_aQGczhOR3SdrX
zLKX_+H27jVgN+S%)-2+N&D7U$00tKxqvE{}N65tilQwP}8hC>Sh+Yb}ge{xPg}fQM
zxK{HS+*V9OD5u@<P0c=-^`2cbe+xsr-gFff`&p-%oaa?vizQH9h~a23U2SRfMG9>&
z&Qb=~sbc4xJpuLKZS6bav9fP(m4tNgM7isC0_2xy2T3dH<wCln$sUgo`2)GbHfVXu
zbkwR?9Dmv<$Kr0gN9~@$I4U1c5kMb0dXNFS&jBFve2Ms|@oY`oVeBdE;H5Msa0+T3
zKI;TgCQ@8nTJ&o9Dg21thIds529Oaf0_Y$H!=m%PpQyRaG_o_R=Pl%vXA#y7{OA<c
zw*>2yP`F8VzX(nN;j&qZ=g}vIlW~hMiWXNXnccR)cTwdLVJBtWmvXS2Pu`-3s=lYC
z&j3rW5T=@{V3+)^%yR`sR-eEH)(8>l$da3j67)I-FHeEn*H(mgU+^9Rr{DKGv`PdY
z;!f9lx1wF(oHHu)e*cnLgCGnE$RK0Z_yqT3NahqQ4L$hj%ZQ^~g9LBA5bhj?2@5ls
zlpFRcl%UpHI)E5|!L+2?tZeoMT(CR3g>o2hGZ>#69HD}s6i`A^f)sf`lm5C|P48J(
ztzZv3e1#9&bH)fOUQt(KD8TI6Ho-;h&1^e<ds2`d#UoDRfDBCmcAwq#ja$pv3y%5a
z&4T<O;Ub*87}cqB{xky&FO>TY$TGt2BEg>Yvb?23u)Zn4`<=!|v_Ekv7m2~0n+kl1
za3Onv@K*+Bh3S{~FX4JBEuOV@tOK(hHni31crlpsn8H-hg<U2XHM>iUf&FiEkmot8
z%*|O2U=t}7H^L|8huT5=wk9tnptA)I6nR}!&kO&wxEFG7!fnIL9{{e4?nntRPP?Uf
zr!Iw@SO?(##UK_I(JGKG4m#5n6tIndWB_eQ3ZmUaye_tY`Zx<b&>X~$NWBX&|M@%w
z)ZIa_)is1t$JVsl4#uth1EWCq64nG3v&V`en7(X67-rGyi{c;oZxe0OS=|2?s^@Dd
zpa%T$PaM4tqI!#ZiZoEAH1y^JR|STtoGMvI1}hPzs0*jADr91iCuqSm1PGq-QlZyt
zU=N+__-Kygkb;}L!65swQI%Yba5=s-2@G8>jwLo^-F|t}(z6vTs?88&))u@%ag(sT
z5BJvoG>||>Er=x>5a4X<HYOQ{q^CEx_`U@y#HIKDu}DDv^t$WJ@ZoZ$rCt0F^JGOf
z#gyi^1U^L#k*RD6W5E~Zd=i@1E|`T~)H`tt<8|-$$u~K4x02W<(Q@)3bb5i`x97LE
z%0^f4bGE%BhJML;Ymc32{G3<A*VNhyTGbxSuWYzf-t*O%s&e%Th`#vhR4WXR5%*K8
zmp_#6hUt=BO5fLFfh1a%0HQAy#DFI+%ft);`)>mA1ClY`BD*sPBe+3+*WD*wa8aG?
zvYj2^yh1x5)eeUxqQoy5`RoiJ=mfl$!<#)F;F!DwbEgkS6xsk8mjXQQ-Vqs0HB=1E
z2nBxXb+eT(-{KwXM*8GWwn!$^cq_c`qEI+ag3e^Q_3l5$O>3|YY%>q%<LqCm__du^
zf>Oa`v{`4C9Tolj6=5@QwYEcRQZt?#L;^FG2PnyU!EdQCOv>$8#&1UWt7Wb5+8$VJ
zm(E(u1FD%ruz|2?J%I=Hs0&<g>Ln*2OMwgA=JLAeKRZR37Sg}Irb+M}5+y{Am(L3r
zg4$sMoW(3FYRY!WAr6juxoc11(Qi6{jcW@?d4E(k@_}L)m$_E==Y;38V86)PwF|SW
zLcuIHUS#_DTDSszf7LUx0E4~&a_laj&rk&%&-?KmG4DH0hh%{VpUEO<?99;lVqt;x
zNDk_;Qy|X_@kl3|iIjc}pucJ1C}g$u6Fp@Vu}Q+ffaCQm*=oyAa;KnD;jr3tXnGmR
zUF*J4jE~RtdL_JN1#z}Xut(gza?Kbm%HbBTx!(77ye<eZ&fr5<z1&euHW_sH2Uvg)
zbptT-)r0+Wx5M5^NH*^sHmmiFg74p60ROXi{g0x8_Es#A!>?o!Mv=2<oy(#4Xb@x@
z7Fm00dAg5<t^F}LD@=G0GiL|D8NE8zZ&F40v-at#baslT)u}+3h(z9EC?7HAOLhAP
z3mzFF;;U!JsLqD*@P_$mgUQ|$jK}1HXW`<%#4a&pMEVdpY$AY+@Ims_4cPrYkKw{?
z5#0UZ7dmxARK{U=h&OO@2M_ixB|YActAI43=MgzvkDO=JWpe%P1yPLy<uJ)9ZICEu
zEPD)VMGEfU8GH>QN%#)LU4-^}vWxBa_t+jkt$!w@1@ttx8)-v8hMhqCWzJ%Nl0d~X
zL_&&qRa{KA+z;lLkCv@4@G$cFO`(Qz=*oT|!sQT90h887$ryoQgkoa=H{)vJ=Sjs^
z9`_L=<oF}iVS$iwb09AZs0c{@)dax$*AXW52ArTiGvlbtgY3Z%#0BPDdBlRi2A$40
zTQ2h%P!Gg?t@k5QW)K~rdzx7TNA#hb1x!YcK;u)%am&38?XO~BnCPu?+V*#GK6^HN
z{@2{g(Kf#1L#g{DE9B`B6QU~+WbZo#h1+BB0rYtAl6M4B9pn2jA({r@&LqSR<EbvF
zVsGaKHWVY%R1L?e#MQ)o=0(wsrCXg6EJ3Bm8fTo~8V-djrmEXWB0{JMh+ct64yBah
z>9NiUmZl#Yh4@#mUYRa91iof7Hk4-u&!#T0D^EB*wmT2jy~^=z74UjZK29bW7+m<%
z28!0*?aSp?C%swh<G)~Rqzy&MUQCmtz9pT?*ap!?7z|^=VYD--J#=Lr*eZoQV5-=n
zq@sz@f~g%sQHuaS-%uFtg=Q8GFwAWtOa{xk%QtWJhX<`7vuzfj`kF;78sY1R&&lL#
z58DN=jzIApuabrVf=Ut)jV1yWq*<Y;m9(`>`u+UkKX&22m!s|hFE6h}#`Y382v{lo
zTc}Y)RbYE#0G@0~P+HKlAU7@-jKA(YuFMU83)RPjzsNCGgoLD8`J{vggp?Nq)l?l3
zeoDP%!x0S_xlIk16{*5dH8lY7mp*ciJG*<TQP<<i0DiNsMF}C~x8V5UNa})WJW$X8
zVowa<D57txJMyO`h#O06X!nq)<Yr7@;v6V|ZZjK!-<JVsQs^rJU-D=`>t%ohDOPSw
zP%a@v0iZ}mIK)sytL%XL)7|dRkw<PqiR|McUz-JctGK&u5bmEA@G%>gUW5Jkfl6iI
z1)@7Pt6oFYnsXIvT1${35e~Ob7npD{iV=MImiV=47nZT~rLf$<EcGI0D~+`MU>g4b
zy!p-7dVr4a<Ix##4dFN-)XUre_Fr*8epxKa{yZ|1?!A2b&7m5oT4W`5V8Xz0kjh5(
zYq1Rxbe$jQ{O_}%9s{P-iLg`+z%twbP=X0qdapEQ5H+9|vI8u?9#B1ZAMhv2PgGh7
zgq1)WI!mn)r+rgU>n;cL2%lN8hhBUm9GB*1@W@Wa1G=E0`zeXqpJYqBKRBN41>zc<
z1T^N$hm_KVYZ~F8@S;eLoq{!d#?)F75fgMs2;+gU&I*`P(qnKi_hu8g+BmR-<UJtP
z)7RcS_|umxluCGyC{l$Y3JP@65;<U?`JKbMBbq57MVh?q16BcLa~FVCC&OL?$K+A`
zXIV0oCqwNlkSAIezcsbM?MvM}ZBG|(R!;lSwbaC>2+%kyR>-EwJbK6H+|*I;#)q?F
zb=G#{rz)yIAoMz(r4$!eKlUTZFOpk)|B@vhEVQr7>%l^OT}u|Z4gSrcP@{e*4`xz5
zd4Pwp%#K^6cysjeBvn~6!ZJlz8HlBaSXk|3O9c6b>e+R8q;*tvhyL_%iREyIc8XLi
zb_tkWdSGYlesU1{PBrTx%epX7M5Mo$=nv8CH%gAuFkHaKVo=YYy~?F}^jO`rK*=F+
z7PMlHUl$gHFm){nNNBp%DyaVYy(@pPF+NIyKDyfm$~UWBVBtgnPm0e<!{IY%56)8S
zBQ)`owH%)TiD6>Z5XSxR_{e28bYFK9M83TjNAl%r;i1gKgO`iYg>p|1bcJ%dV7xVc
z??{&$T)YQr<Ii!xy%cjK>Bmikpt6PkMq)kOKrLeCIP%93ymo9#3SAXp6ksRzU65Vs
zO6f5dAkEuAq{$GEbg$;o4qpz(>$D?&>Rs#L|6oh(NS00UlRbqXl}oiGf}c7-P?6lC
z?*!)*CF<6533!Z>Q1sV&UfdG*KJy?@Nwwcf;qZ4`V#IO2AMB?z%$v6WlJ#K|ps{He
zo`5nIoEEKpD8RUOsy{EeAMWQ&h3?Hq=NmPmOkTIl^yjreUupVN(WDO2$%}?naH|mJ
zefgq`n8t^-M%_GE`;I+P_hbR}*tg5y+v;`%b*kNpYgW;^eJ-wm=(d2Nj*ss+uncdX
ze8_{%hf>G(WBK%Y39!&wpgHm}7JrCGsNQxPE(SKPNe)T795#Op=l?iBDxr3Hq<)e2
z2{5cDU}bWFz(@0?l46o>#XUxd@XBp*oJms9!GU57=jdsV+8+av(5qxeB-`H#eX)2M
zvhf(Gg<>pZrfmorGMe)N{<ONu1Mv8=>;mz5aTmS6T9&>9SPWleU;a2q<Xox65Ta=p
zRssi;6riLR*J_})(qER}Hv@XKi)%4e(Fk>Z^ii3Ds^3ZWt7rWEwzLUWkcOS0UM>RK
z#WjkGlVr2zsM<2CYJ!8GK2N34u0s=ew&D#v&@b4aqL((1Px|9Y=mk_@XaSv-BoB4U
zzDDp8OsIGUjLsYA;8lsO)mhV6tRPbla;t>GLN9x7vRU5g#U`4pfRHhORT<fuae1P{
zQ5s-TML2ig7dwQ-?;IY!LFZ%<w+Kf>;MuPk8;BL{$yawV{P&t8b%ZMCTv1~{-D^Eu
z$h4aRw_otO;3tC!QxhWGy7gtQ323IJ&2A<A@rdWkAyP6jNZ!pW{D%12C?rX;qI)G1
zBZ0PI00RZFev4Yse#@YKuBf<`P_Sldc}5ux1<>x8u<Go5SF+z@SbS1!!qq<n?o(h9
z>T=<T<8=L9#6K@S_Pag;7?_IrQAaf=*oA}b_ysFLhEppLJ$5oLQnB}<!N*IEi<bDl
z6uDaXYBwk9FZxO9665ig8ol|!j#i<{Wd|>~;Hufk<WhT-EAUM8j2mL@#{oa<ZwUKk
zZt}k?l>gaEydeDqIm9kRypJ9^uFaW(Eg7*j6!hX|k%F=?&j1f&ge%{#`|8@ZoUlFU
zV45K-pe5g^>rLyM^nHe?6&Kh+20(x!3I1jelsD!Z#haiiTsvr3umzk(E+7!4w$w-7
zt40Dq^hUsZgxzJ^ArHi#A2qM`BT3Cjr!vQ}dkAw@Ice&)I}TK>u~6^4of@eqn*!;v
zpi}z}NOOsXzu&RtPgBl3%kCN%y_kzvP&G7_0U{r`Sn=tJd7pXxaLL0Gabn`vf)Oe8
z5n}rzkdTC^OOik-I3{Pg1+M8PV4wN`0%}g$pB3A)s{Uow06%Cz!_w?mWY{&oYxiuC
zcUVSnM;|PjPHjOI>embv&%;2~Vz4Ys0w$mVWd3o&<GSa#LPmh4HO9F1PDA;?j$GzI
zJdV=r1?Mpn(&`~VqVj+<eYHX(vky>aQ^Z;k@L+QY<1w2w2N&calg7I&+pedKOVrkY
zH~1;UBO4H4BSDGjEVmi(e`u+EbW{EsvgeNm0$Di-@dK3t((+6$86DNJ;9a<{;W1k`
zL*d^HCxoeg$q>-cV{D$`9Hv7W9p9^qm5*(d;%&VdgjDgwNN}vJO7A4#$Thn(HgiM$
zCV4G4e%!ceRqRVMTLn%2K*%Q7pb2}#QME037R;73X*YF=4$+?Wz`uT&LL-L|aNACE
z{KNTHu%wGO?FV}-y$L+@<t8)c!UuTkOepyOw6;ND1Ak6;sS`L2MMZtD+(H!7Ur|Yp
z*Lw(ATC%#gs#@ru_^S_rAz<S*qzL@*7ZY|jAp=5DQBmMVc>9<9@$C*Z5$zx$^e>m%
zc?MIMNPY*N@6o{gJRaD{=^CG$U?TXNe|x+>T1ZX~;egdOy!oGp&9DC8fBqgVB_Twh
z(YEtY`ZN9UH~{$rxmRUjHbnUMA3&W@v|sIb(;r`eKfgupd0CiR!OP$O2J^=U3@kOF
z)dR5mWn!&Yxm8d84Mjy?1nN8BXP5}(9{JM(8M!3tu|jfo<aM3@`A&XydHjFgr+f1O
z=!_b0krd~x|G1PwzI`DIcoBtkO~29v{q9q_d!rasu##ev-eju30T6$^pY=6k>82(0
z-GBWXzj>oV&j=6j8Xl^j`I~?3ujvkjtw^l3os{a?zk2I*vWkkgW38V(YyK@Q^;cg&
z^)&Rc{BYpiz*zp(7kDcKykF3Bwfpz~)tS{q2$v<84K^h){c#P0EJHR@sG|3~w^E#C
zyZKiSQ1xHihAASK`>(c*tPVh#umT?b<qE(cD*#R{lg2N<TjakwlW9fV<Kiw5MzM3~
z{|zndcztd)%oN}S=F-3VtIc=h=jQvrtU%g$>tJEky=~zBmo=%+{9mVTYyHW;dU_Fr
zA3l75w|6QK^H*24-2t!MyfeYSGKTrpw)@xD(icb8o_A~iTm8K`+rR(kw15Odrv;3*
zYm&ixO7{P^)3E;(UE@gH{lB_zX#Gpz!hfCmW<xhF<htwbHtxicy^VeTy>#m(++l?B
z^_yc}=U%UM<0?pAh(yFDw+GELSpQ-#qpm>#@NEcVV`l}utX)+3f8InwUW7m?DYUlG
zj=G@XF5UV=HumO?+LkZH^~bZT4JIAvvZ=zyCM@{$;UqUYY%!Gh;iKfCuTR~!@U5?c
zFqii_+t6Ze-mR!S#{NI23jv8=Bo>rC&x9u5eF`x_{mr+%nC-IT2!>b&=DFwhdY=Ew
z|3>-(sn^_FQMoMre^W4^@5QFX7C!U&n{vs$oScrC8KU(@=0$J(|1L8Ay^e(Txf7nE
zZ7->|ql@^9WiNF85VUh)-mOowFZTZpgBmRro6>&c#q3{w^KJ5!H~5I^)5z8)Q$X$x
z1GqpZ1o0bwsgSta50iT-&@?e#AyWT;F(DpbTL90XaPSHXg;8vc2~4t($%2^F>wm@A
z$dj+HRpCutAgku)IIuGe+R{^5E>}&iBW)n!k<AqcRG=gvD$twyZvz9(3?>%MU=yiZ
z_(}Iw;Dn*>-nU=9FLXpXK-;|;%miLAR<zgcX6`Qml#y8Q72v(zbCAqp)DqDY2609Z
z1x==MfF=iYOrZ)g{G2$MBs~}+7$5){=yI>IJ_ZU=i>hH120C&1IS)eU-X9<$cAY43
zKWfwE>}!3AV9GTC9$z^$@z3P}foWI~&wT=)EcVu+NPy48g3LPU5ftp`={tra8m&vn
za0oFjr1=5gemLKJQ~;NJF{c{o(1}Q>BQ4?(BpLqpFgS`(Be|wYKtem5Y^eW$7>A#Q
zXCrNN5gC61<su<);>T63Qk&F{jV7`kKW)&5Vf(0Sd4rVz$9ZH8GDV_sTzzFV1Xs-N
zY{37g=}&x@#scPo5!S6dbpVbey)O=9H#}RR!2`6;7U`R_UmeFQL+p;ck9vK=i1-M|
z&|x~yMc<M&{oz{CknUu|$2DA_0H5DgYF?WZpbG{K6Kd+2Loxy1NO-4;GX!6XP5Rx&
zz(75xiXWh!=5qjEzr1oS)H03R3eal`)MgqoQ(XSu!)Ud&jJKUF=sU|#cPCK;o@(K(
zdkjnKT~{`J=+xJ~0+z}SPD6=1pTL5!w>g3<t9!KZC+q{Ch;nCjVtdH(5e2YL*?|Yh
z3D9>CrO7BD_Bzb)OFE&xMf&q9Cshv+C+yjrf#@_=|G)uWmCyU#q{L&(iE-{dfaP|n
zNuh-F<+Wh0722j8tAPC9t0qLP0cLU?!nD!B0r!Xu_)~bdX7XAPooX}9+&ZwfT3`$T
zDKL7?KM~I3A6ZHUn4Ld<Z3t)qAY-<UUct9l56}r>0WFfkAi4S=M6YCPu<SBy+lM0g
zYBy}FvQ^!n{TXm)3BJh1x-MiV1wM5nJcQs-TXNvIzyZu)##eqVQ-<XL3mdU$2U!J@
zT^p7k;JiBgEiLE(o;Pz}nMU9(KI*UeV6AYbs&ghVX9d!)Z@^x1FbYt9@dJ%T;HhTB
z)(pWi!OdEBVK9?+60wp>oXvot!M(2MSG9`FG@JR2xUbu_M)KT<&z?}YTp~q=(@2>-
z?COf!ssVK01X0VmT1c)jW|iwM%Zo~*qBkg_1;I-m;ew#L(sLg<xDs8g@a^;^Fz>YL
z3Y)L11%DfgCD#z93}TzsuTD0(F-mk@{NP`}I_k;}#oY68@c*lnm>LnOBGUwuY_XvC
z#3i`$se@D0kH5aQ<Wf<61pwVt@%Xq;F?|1VpL@m*aicGCZDn==#5*`0H@dR@=+5<b
z)9vO)Ko?zp_TDb-1A$K!0Fx~MGtnp<7I*)$%ZZ5l?;hm6n)^a?|K^_cS4t@1y-4V9
zJ`AmyfTLXCh1k!ZfTh6_Y7BUE%e`3Z>}n2PQvKI-_5Iojgwa8%W-xjDNRrh0&CY0e
zyBemZg2UZlil&_zX#<is=KFInxI_AdGj|WdrI~&B0I6i67gb|MvKg6e`i1&nbu$WU
z-;o39Aw@JLsaT#c4@<uHXoeRUU|Zg3w?!m|RI2Wq%O5l*52M=XLS-lj$d=2&Hr6Tn
z6KqXJf1(IAxz<wy(imfD(yuc#M`3n;9Y{>^$iPCd_;VR!;}6+|n`~`2vi<#TDrJN9
zxm(4WZ12LYYjC(6y&)AO^sfK8=WEo^4|uch6|-?L7J8SdgsHnN+`8M0z90ysrWwn8
zc#vE1xV@=O?&l8Cy#$+C9yiQuz_q9dFpi3!)3lebpC3xFbT}&&BYB0zwd7lcdRXAL
zn^tBP+X?!v1VT?z+SnOu<7ZuDnD@~@G?wcPUzCNz4uc3;b(BaytDHt)?OgX;n@obW
zHmXl<#2^$LItRHHnrXf{w*GW&h#yN!%3mtrfY3@JeW2D>OQIfaUjEJ-WhAETy0Ou%
zSzjkoz7xAe#(6m*PERB#=iN784{*8&Njp4wyM}lJO@P}48<@BiO%fG+dAp@a#ez^j
zQ|}OPG{$PE6|Moics^d_mixF%p<Pr{qe3bjyoW$~&k}9Oo-sjYTneyZ;?dzU{40u*
zw9CjbySv#}H83x@`y|yaWKFMnH2M}lb@!qy%q+I0u61NC5n#FweciH5_WF*+RbG5z
zp7v-4v2}yI%_m%{!WEC4c7jzLA&_cuRdl%OIr*EZdB&1m9~@9Q4k@dy#U~bYCP|LE
z^aDXl3Vfx#dlkr(5V!Y$9MvkBV{o_*fdj&>iIMH(z=g~p-79<ElZ~&1fR=U0hFN^e
zQ%QKAyMHz0n~I2d%PqZk+&34ZAO1;E;X9g0x$AY~fuw_{`<s1}XPg}GCsmX3XDfYH
zGm_HX9F$cn%00G`2v^~ip#!F1JKX}HsM&TB52yAO_tyR)tjo?O1<aNjsS|e+nEcSs
zu)vY#v=x?5Y@wkR)P4VAA+~s@F}4`;1medrfU<Hy8SHyAlk)9j(&`l3UI7)IXA>>U
zZ)4O2=3!mM5Hg>NZY6P?8Y^bR4l1qJ_cgb|RM<X(v>chYOh6XSq0O5%I33bZWi>g`
zGblG0gbvJrE8vae=Og;$Fm*}+?Z)4P`lf*N7hHHxl}h`B?{fzoBuMKxF2iUUAKR$z
zg2KYQ5oW~cK&jScEp27kcfTdAth!hqn}hD`EKscx2$xwq)u7SW6_xeg>nf|znh*Mo
z9Ezai38W^}Xz&`?4$-yCFgvn*Z4NN2WdU1jWNKS75;zi2VXpM_4kwrP$UV`UGV5d<
z1uUdYKsV0PDWWTu95vrvEvgEGi-!9Qc1bje;&T@d5n_-FbfcR~Fp>Q<t;ja{RwuCw
zN4GpKoOu<f08B^2It}lxm5#Bfu3hA1N&h06OVC$3g5x5HdS#RK_8vt;bkT|`5N@)U
zaE?JH9R+fIca*#u#4hLF;+{Lki=$-+H$u1U;^I%p^uYjt30AUNuxfA73AYf>?F(3V
zGDW?=zjDn1?9n}xy39|Z7o`$$p)wQpg(;Xu^)=2-e(|-zP3;$JuKqLTx8-6K2Cfh5
zA@<XuNIW@7X*};TJ{hmAvK;ZYa(aDwBw2>W8b*1c5YkmGWdM~FCf>AHBv|qu?`fDf
z<gAsJRt2%|?cjIobh|lT--h`se{<n^H@6LBk^y-JCzmXSav<xuolfr+z8&bnBR@$h
z&h@yYuCiyt;1swzRz_`>g1f{E<D8}H{Uq=Cj(2eLpXu}@<$M|5=y|V&Qt6!(FK`12
z-|M3fD0hXq#O4vx)_=1@ln(;?;Hs2s<~7nJO-TAYjnI11v84=GwtRA>wp2YxhuDp~
z>Ehi|EIRg2AVE^gvx9w#sf(^5SQs7-3Ord&-hn!g>cAbzaE=Cn8Gc}-dhVo7s3D1$
zuBQigpe_xY#+J3x5f^Ib(?AtyL#ZQ|u6)fk@Tfp%Wgjo&od%ZhdB_>c-*PRREnE`s
zfYN~MHZ8-c=&C8R@{uL}yu2#SR6EA50T|mp^gRD=iDCRZxSBj-q${y((6Z*J@aVAF
zi3Tp=OGy{BmhAOJ4>aj^<n))-BEqn4DrU1MqTJLr+8hwQ5h`T(7|7(^9PpK55o2JJ
z&+*vVu})xfmd)F^o?s5wTC<;{uBRCVa|r7JqvSBq!)$t*+LtZ`-Iqo0CykAB;zOlA
zoxhxa1{Fz<6RXQ@J>`-ug{Dzx4@j~W#Og^A6rlALc)q;2cu$dbi1gtcpDf&6Xujnp
z?cGK4sy@5v5zV#k#?3h|HsjKHJ+u4WWqd2n!a*7ua!+q7<;ot{D%TSt6Ge_%u2&R1
zRtX*WG^{vU*G7~=kBmEYKCpz2Y}TRv*@LvcqqBWbi*az1)1~afQYqY0B3QxVqQ^iR
za3igpOeru*qmN4PPN!7zbP)C?MBNlol9o>|A(E&;bb#wo*>92iN%-1RzC16D_o`%1
zzYvBGLoX;jb(g$%p4uKQWI9xw1NW$ygGwOh2+Nd)%+NOMm6Fo61=mxZ8*C9l2ZwJw
zAMIg#>ax^<e^88jl8Vm)o0%&Hibho@K1fFD`Vso?;2AZiPmv8%t|vZTns~jY2@IQp
zAl~8J73^b)rqh|2X{R<S`=K#cZyul#nMj~sGT9t^40Zj?lTw;)^MFm?aTVU4l3P_Z
zMgzH@Mp-F^N%ri^F|@Iv+=Nk0`@;R86_vVpyp@4Mi<t94+H(Q$xOmG0PWZDAF_u4Q
zj7uMD#O6?Qry)*8M4xV>Iv$o&+tEn`u}$&8=#W)d?QD$kVXiS}U=*H3?O%6)r<O#W
zkC20EzGy0kX_$rNnuv#$B&DomD~eJ`4%gDIG_{kVco-FmX!t&VoYEw*SXo$yeUd|B
zUZ9DVRt}D}u$+#|;AI%FTPv9xjsbtVxg3(0+YhknUDIQE)U@Dne64;W@p&v{*mEFB
zD-j$MnoCBYy=g5_{Rf#>hyGXwIDQO$sqvpl^MWMCz~<InyUT-_vnowT)0R(W(aC;6
zs)!b0#E#c4S3irV)C_l)#x|<m!$wo(dOO7aU|`5?%0BT?-B0qFHQ(*&l1KT1$~EQK
zl#?CMdQ3P<luwstgb<DnSA<>ZbXJWEW>S26mn^h<pcb)0Vd5Iz@IWPedOLn=4b43M
zpnQvF*qm;#L@iwQG6Tj=naF`K8c)JEyk)tuHNiF#m>3s*m6Y#$ky^al7sP7oAI8J0
zbHjt+8+ZAWXu|=EDc8vu{I+3pMd|KyQk^7a=aW?X8<XZ-4P|xmtD?<B1CJ_`G1LM3
zW^{N#a+LA=5C2qk-aelN%UE=dT&658TDZp3F*VLt+pKEG&KjH<H$8PrZ8IHzd?0T@
zhWDptGL)G}W#<nvlu_8abUxYCN}nDAS<H8_{>EPPcAxo?vAFr9(!z~8bBAz;9kQ`v
z1!cRc`n!|pD22|7=!cL0wa#Vt6=~l^eExS0CKEvO)?fI>zWnL*lhhE8x1ik!x?Odm
z#HiER75Z2YRa>eKPFgv+CUch#d@NxeSQRgX2H&+Qf2eLVQ~XBqk!5&Y+kwo-N>iP)
zF}F{rWsmP>+0My6I=Cy)n`<*7n{JL?P);Xn$OxE--xFf=XCd75DWcO>4qibb$mCDR
z`p<&(<m+xG$1|~R-TGdS<TXj?zo2-wn&jMq*oY0)-ciIZXDg9tE?a22tFcrpzmZ!i
zWk9=GW_40e6t6UXvn#=rwRt(JWJl0g#2F#|QUrQ6xv!QX<UAc^izp+VMwrDtMzoj8
z=ckP5IFf@rjP>QvPMe+F!akP)$&gC(bw@w}vQZjW`1t>^BjZ15YMIt`RZUsIM?q{G
zYHKs~Wm#>KrP{tjTmsv3Se{a?_rzAKlX5yAfwnhC(r9d-w#C&ml~<aJDb7ymB}2yS
zeL@6nFFhi6dY0K$7|z@mZg%N#_Rr;h&aQimn(q@`sNCh@jqSF(1?qJx(0BT<4O}^;
zpFYt?_H_|#rw2dd6a`sgk`S)+u(au;?xr<{>8&3cJV~3bG2fR<)aE5a5SQOjQKZ8Z
zQxy!VQLU*>d$9;qt3le^Yr|sm4F}9M;bOS)sR_SN>DEz|lPh&~)4m`-N#5zJ+9ivW
z*&ds+OD=U)h!PlHX<U7>DPY@lt?1H|67+*aXS-5Zq*k`AcNIwwWCp*{kP|ZEu73<w
zUr`?wm(Pf8s|uq6HYL}O?Y20Ir_5*>`vbkW*5-u0P#_pJ8r59kCs;8py~2IZ)^Uv|
zVo`H4)WVYNDlEtZrz2k%M?_RTH9L5ENCNF^10MU85|usJbbikQ<n|S(al7=BC1rT8
zn{ubcQZ7_fRRK#=?z=p=15KW+X)nzh0?PReK3!uNpMe$GwQZmh{~>T&D~)cRyns2b
zahsXPU65I>sP*a?t)Z)<W*#X{a!(*Fw*A2JATLD}v1wK=5CU{i@4z=rNa?zF_+!P>
z6rB6hGhDC_H$mD^Z9t|R5bSsyyYHb&;EqI?hK5BZ_4Q2*P$<Myb(gb6TK-8h(o^X!
zw@MNf&TlkGondn6*ng@*V}f2P`QR1f)7@=%;!PR=V&Ke4ja`I%sEdbg_3|=UAQtwC
z1`Ud<32=@we_}#iPF0l-$-EvJB~c@n8_HvyB<B+a#HIsF##=#;#Xq3RP!})qLgdkA
z=vy?lw^EU47CcTUF|Br@s(Ja^E61C(wS8QH&*wwj+rAlP(|OnI26+CSi{Ez$NZ^W0
z?!dDRH!bW>(lxbtqrL@J%x9wpcMy9nYiQxr*)?N&W)E_K4=a|lLBo3aavjNH`y}09
zba=8#dt~qr=#>xB;K3>^449KlxHeI7Q32|F8qIw#Rx22oM3o2?@)j9N%{E2J%DOYw
zz<%~Yo;rg<5hJ>|LqMteB?AlndTkJ}4nHMT^mumwALN1hyhTtVhYz8!4TK*(nX_hl
z+~<q|hh%ou+choec-x9EWL1}gb1P~5ilqC`YIU@p+BA!M<nD?MNhCbBVkH_xMmm!!
zS<s;PMKPTL2_cLauADBD2T`fsv&7E$nXbmlbT?sV8iim(6`K*c4`NEO^#=6I<LAQ~
zr5kO+n=2GyjXP{fOd|a6f%*PY!-Xc85qQi;q%nOXN3oDVMD4LnXd0zJg627{PL`v@
zsyg{(*mJ!~G=<HVt>XI{sG2va-k}t~ugg~(K>uPwq>2$(d*v&YndKV-q#=g;T(04Y
zrNnS5AJ3t=#3G?|MCJ0$s`WLODJ_{!ej+Q|`L|wjoBWMrm?P53xMENMs=rfJQk7V{
zpZ4M#O<S65oReLYH6m=<T%Dyn*QOS$HYLAc!ThR9P-!C;Dv(5%NJ8H>-f1QTLHsD0
z{wT0jWiB!iud<UB4N>K*d?(l~Z~Ljub0eagIk^IXv`b@ieiscGZT;1*cQ~e8_@|Y4
zF7ho!PnI){+4;BKPucbgBHTy#?Y>Zz_(`0Gul@1#XZr}J4&&Tk;Vm>I!mdBKb^K18
z&{_USWray*S}_W_ZjKD<kGKb(#1HKr#kvSuD3dTQw`+=$Fs=x_$LJb$r@W46soWwt
zrz@7w9&ameC&GWJQ>4@314;ncxlyY%&#14{uZu5D8kZrF56hj4I~Q0+n`tKPr_X0=
z=gTZF6af};LspIC={AP(zUJj}KMu+1*Ug5;YO^60&u&mK)~kMtd&SHKs-q{(`!8Zl
zjKRGb0?uAWecX|YwFW-vY&kDBFh{~&g`olKr+yk~S4Roc7UGry36ILt^ClaOc*#aX
z)Whe^^jW3LrvxE6M-IiiNsw9U%jkATI#JUa;d>#f5^c5Jnu9bZjBKguK@Z=B&33l9
zq<jlf=BAdEuVG5_Puxk1LmSOeOYD?Vmo=)RacFXsFBl`%aJW2%s?3{#W)?aRvHm!+
zLlZ12buaFfE^WjF85enQk`-spxTlg1KT-}{y3NLnaTbhj=1pXm66Kdc5*;O>+i@|p
z9Bqi(CKXB!@c@9o&6UVKL9Q$9T|CX#WFrLoR{U{3Ag<95I*|y?f3R|CDXG(M7>%bc
ztGl<7tvFZ&Pn9P-4ZqlALX9$JYl)J*1us*>s_8N#r5Z7cgrWgs#`q)4E^>@==+BCx
z8ZF5tnc#<uz9M&7lgznp`IYZ993dmetYVzOIgKcQu3Fx`743TzUl<$fV$W|)me-Re
znwIGAd(*j2=1R7b7B<0&|L)qE`kspC47%%+3QBYhwjJh1yE{P))r<l8UUQ>1Pd4i^
zGpscc5b^WH?t5<3ZkH4SYgF9_#~Rso%h6AiFFRDMj=H+4Q&a+2v3p6lh%F|@Zor5&
zvzhL=Mv$J(e7IT1jg6q|Hd*OQLE1K0d5?X23t*mJh#mcO*oHZ<qQMRdQrg(0>YX^r
zrZJPpj@MH&bR3K48o?C$wM`OBh_I^a#h}+e#XG{u)K|*EHs9>Es&ij$9oQV4#T=Cv
zdw{W9q|tpUC`ob~L9}V+p4WYt9wi-2d|o{k7ki~*`S=|YKOo1M@9)w)uIR97v$?Xb
ziN*2Eq(>yDM$PTUnOQ?mD}rN<=VlLnG~%rYymqIC#IZi%U@}y@1^5&HVh?Yt2$8+n
z{$f~TUrQDn7uyS#?VU&2K+#wr{I$l7n+ly~q1s1kfej`j&5ordRx(DbSiQ_ULlpAb
zjcr^L@cNqMopBocb;ndXw>tz)X|f4h9D*0Euh-&vw;vS~(H~C)$(~&X+~WdW1^orp
zI^x@FGNnr;8;?hA2qV5!+IE?mK5)sMTTv2LQe9u!5hJMm;Z?bo!g<;`t81+|<>WCd
zWwB0&F0mFG&I|yVg#Gg<vpx$8wyTa3(5Dgy2EQFFSWp;v(^X;iPe}UoYhn(&@nwDv
zjb(oMI<w+0fxg-m`I?)@(nEY>qU;9f4NkZ$<cZNOSOcHG21XMZhf90j3b|6@U9wZ2
z{q(Q2Qm*pyNa{Llvs+cd*s48CNv?s-lwNauGso(m?nL4`${25+ix&x-d8~BFGUzVg
z(N~?yzZacQ5^CSj4EoWOn_^Y!k)=t0jlCd3dVcdL4&e8~%mR9mQZ|vTs;%{|G{pGq
z#$Xjg|7}%qO-h79&)D!hB<Nn1+L?t{E(%@tSMfJ}E4ltPA^V^BG~FeF%k`JqOZ->q
z24Q}$OnVMD<DpQ?H<rQZa$U(`AjO5#Ijy<jCH0frEg=opql$Z)OSRCty&~sO`=;EV
zh0h#4C@?J?LRkM!nEz$(+l(TKnkJ;JGB)7VSa!RY1$Ex2z;$JX8rPj^?b?9E9vT<f
z88*=^VueD{ig%)_N%4fNHca(H{5py^F7lgPNw>c5?{WaGA{16e>YvJ#mr9B<o8k+U
zJT;rjRKzFENK^GsR-IWS-}a-t+$r&>^x@^*GQ!BLvN>KSfn(Z~J5yG}EkFG4uY-;$
zXKf!dWnzSyJ8R=&X7#fEPdp%kiZAUO@iiG1%y&i1WsHL<xSDI)lrCK^(~|3&3hmxW
z^T<)4Z+wW|dgFj+Pi0Ckm%a%p6qNqd<~#3Hvzs<6IY%5ZY~^t=R|9(%|2ZX{&4O}Z
zc$B%jwjxMrTb0?|uqp7lX#HfHHkquF5o^GsN8R=W_PYy$Yaso}&+J&Q?VQ5W)p;^x
zCoEDGa5ULqDaSBr-;yol7IeAYWP>b7aT((lAYr;(={bE)5a75i`Syg$vT3Ibj}t+b
z7tXCeuA{R5N3ifV9xe`z3!eENwzVG$+>TRgskw^s%#r?sAl-w?BJU>sZLn9T&g~x{
zFDYJI2UOY=<4}~vp8EBCa>}UTQ0~f{;oaVOT7(*3S1#C+goCMRou^+9{tkBv-<hyj
zk<1pHEr@Og+)OnC6fGAakdxuZR!n6&ooD`>Q2>3~r*T6Q8H4Brjxne6J}OV01lxJG
zom3nsmj9D+@ZaPMe{(`0br$h|+`Ql>Bu|Lmw<@tt5KKu<jh$(32!^bg2$<&ZSS>=H
z0QZBBHT7YgXHr(o;YxH~0r>02+ighW2#0|Ii-8fu;?0PBl`7E0114^g#DPluKzyfb
z0m1+1_T7@QHBck<{v48Wgm2fON}b|-&{2))X+z@0WVs^3u@$!|z;22CAQ9#OS_5&(
z6BEAZD5D6}YU9A1staVO^IM|*U2*rgU%BS?896tUz(MLmgZmtuRecmCA&#moHM07l
z_1f<sihOJ9ekK*&afz%HgR-C<<`G*hcT6c(Y?u*Od5414cGfnGB7QZIuo+-?BP1<r
zb;QY>k}0h9iCmMkZRjq!P4s;balKO|lT28;4fp*iX_Z44SMXEe<t(O7H+q~O8BGVx
zt$RI*wlFBAQPBz4LLvm@>|`-SM-O_WeUVVym#gmU)K{Vl0=o&A0o!`YyZAv~f~#Nm
zEu|CZBc6_*f81h|ML8yeSV}wi&#vv~<rG>oW4Jk!?b#xR_2Mx$rPq>cUjq4#e)8Ql
z?v4tn^{sTZRCI{`e9*h4l3hS_0hI{y(d^)_2ghi`wUAZS^<DX{M7Sd-&$L%OEL~$V
zi-;Qua{feyS}Qc_`nZy`5<OFJf6_?l0Lj6HX_1~UL31nHUayQYCEu`5tt++XFd7eE
z>xz4S*pdEb83Qw2?IyUc=oZp5SX-C3^_YvODRWagluy;x+HT*bs@<(9oUoisUD*D`
zqRJxNJeonLtrES0Op(4EPDypDq8pc2lncmnxw|UtNhtqLxV3R8-Hm}$1n{`E%~vh=
zigIh|7HTWv!p-_>eL+WgHuIG>=^=l~e$v5jy%Hpw;9sE!7|=D!gzhR=*9glFpS4l*
z;xVFtsr?$)Scd+|4p%-(-cO$%=|mq8%-9$jKOtE#8bo$4tTL_<CUsHQ&+r;kKZCHy
zT{PX9j;Qp2!#dKoo7+Jf_(#}%q*aK;`25k*+R1MzGnkt9TF*UvwjmegfCe<dVqyHY
z0#)0KO%<uugJIuyrEE8cu+DbDBj9{u-OO5dAPf9=2l1~{XbqipxtpRURGN+f5#ntJ
zX8}wWEL9}ktI+~-$Gr$Mf?6zqXzvp_LJ}!yUs;d3$|_rz;K2d1H+|A|O*J{4$T{_J
zh{XMZ`Vv&=eT%Y+eqKG#H0(RxIjzgk$vH2l9O6O__T95@IdahQyY+Ha>Xr$ncUhu*
z-ab4D&WzoJ3D7PUPWpwq(=Xq~eCXb&XW5MDWu&~^vlH=sx&MCMVxhMrmU6f7pZS{{
z(qwXh*9KTzdiA54f_e~L_Ntahe?+_&+lVyyB@od(V{b;nMGU~d%2K=36@VSSn97^a
zU#UI0mz>~uE|J%ncRFy64~<=!ziIQ6TXDZCWnYJ6*40$%{bpsk&htND3|%T30mYs`
z(i_$57Y<S(`aMbiJcdN0&|PyFm~wW(SmfLj<K+u0H^a0k5KE7aQ({MyM0xD_JIfdv
zZj+(>pI1rzqn`d_vTH4R0Y3*Kt#O$*@<oL*btc8@{gIr^{qs^|-`e-e_jD6_OePz7
zKWMSkDuWylQ-7>mZsxjZjWpWv2m9)G_e5%r&C7f-g01t)H?CCCO~<mGEQ?F3&(mCv
z{Xk;YdxPHEM)9y==V7jcG@O3VOuc41CmCvks7FeX5W2zJDdC4fhHTyf`V$|I2+a;p
zDt<cU)db0V>otDi7kez_z@MV*zUHL@^A%Mr#4v!kmbIn$hEeBxa2()SO*H9(ToG1s
zO&hu9{WoS$@h<@8B{W7%=M>zui=)0Ztx555`wJUSI)!z`5Z^Ax(*dg1cRY~C6;DfA
zMW^n<t>=<U_U4^xPoT4Q-)WV1eRsL|$mh?Iq^5p9J8!t7p!0$-c*i8%IQ2pr-K#vo
ztX!Vbom~*UhLz2gGG5s?LUnbjmAv3s!?7;Qw;_cRgBg-hj(B)ix~JcI>7b)Cl+uG+
zyh3OAHJfjt^9>b-izYnsE&!xylJc3QgGJl+-(CRtC)=QZ>-X||pobED?pYrg#hG^G
zEJwY8hw^Ee;lVO1M7|9c@k|pMUp@w{V&@rnV~Xbwg$tZpPn$RHXCV9GQ2(AeU|MY5
zx@W+Xp%n2RIzx8MxbF~(H=QiCiMfm^RC@G;ZDeZVWgjP){LI+juR<MG@=`VeY~D1g
zx+Ozz2#-zK7zJ%P*8ow*_aZNg>;#W=&ditx+bezABoh*e@fT?9p>by8A%b=JcAq`|
z$pBcsDB8J-byb2Sly!-bxT<onIL;|M7cnw<xFDByXC6;<#`{IriCvet=62(2EqJ_D
z-m`$ibj1Q`DY-}j(2RXJG!v)*+*%eegZj?_@LZFv$jjjh+Bi>D8~i%dg+x2w52?)f
zQQX}dvVY7V6l)zl$E{2WM<p@t{9F8I4HCf>w_8$;43B&XTbWC~o<#JG2Z%d7U*48-
z+N{BXRlW1|7+zBEX)kJd1}CXP2_UTKo=*L&%`eHn(yd^cblMrqrZ|1xi~8f%Wi6rn
zqz2$D^rM^UGvO3tF@S8s8hy09yq!M3NzeXVFw;4IrCs%u@gQt{EWHrVkcnY;KCc)l
zU&6SEXq_ivnr3?`;rtUCDI`@!&Cu1Eb6!rI3d7FyT{zrhC7)({-wTK7^v6IHl?^3i
z?ur^Aiv_VyTIf;RaocDGdr^i)Y*JDTY>!>gPYx3$(}xPx>>r!)ZfquJ*`FOeu5JBJ
zRTu<BQv!{^O&Rc}V84P>dF~-;tvR$i;c$m3(}}POho6Ab>ImVHtJ0BYtno=k!@CM@
zeuNa7auyBXO83wyh-agC-1pUC8@qm$uBbL==_~W4=CTr(c$pRDn9t!doX(>P>FY-`
z&9B6$+*va70z7m}DSzoUz$SWxONtG0Yu}LA?W30vC9^l%%=g`);jBkAI9KF`@*Sc=
zd~`<l=Q9buO7W0Vl2cS2QMkq{{_wFer#L<<?aA5J<uJ2swK!V<iG+h>zMwL;nA5V~
z;G7(<^c}@pYpj7C1qr(iPIf7zYWqWUh?08`iyApOU#gA>p6e+hC{`Bht!PFZC-Pox
zxwp;<B*CPJmCV_;jooaBd#ggLZU^Mfrd3-S7>>Rl=^O7vYkHu~%&8EUx5%GpNg&;{
zB*z5It=!(?8P=m6T%+a{&_Imq8#(Hg)_MUxE+V#3KE4d;Y-4_fH5;t^bGzf)R$PfC
zR-R;`X8^4)ba~auBNU{%j4yk#VHHuqANiVR=#87YuZy+3#5u<)-na97SR7xx$(+mO
zvs~DGdrV;O=0ol25xFLGNXn9^!`aQfsHn&5uM%AL2U<+b>X~V;eS~)b{Rtop+gh8a
zk<2<M>llhXIKEqZhpXmuji;W6;fh-ui=)ML2%L<-Fm1;wH7N(Ppz;__h2d$nnq=Li
zlSFIs5WLRRYxtT(P2rfEI#+AOBLP7LTjnChb8hi&7o1nYeIY12Y{TNzvayu{$;+Pd
z43Ch&qtG?CtAi+5$6uf?Y<iggQ-F$MSH77Te{8R(iJ*EuVal=>!$2KxA*n?|wS(Xx
zN5qk%rd5p`^Wuo%`JO_EGLF?f{JzQiDk|y~*}hm6(Z;VczWXp|6skkRU)YHT{j<E-
zHf0t$qFJ3r8H@{$k5#T30<(b|_wSMg*t8rY$9!$F9do!N{R#E4IMr5D#SY2F42QYg
z`H6w)B+D&xpcVKXwxI@b<Iy{cC~j2MRzEA}JlyDJ<gWqbT!LU5P`;TYULV$es9ta_
z%|F>mJnE`V)x}e&dRbl6yD;*mFD`s`M{`G20PsZO;~qo4hUb>UONRYbS}(mkZb_tf
zr_7V1{i9g*#Ios}uOec`%=NQJBy&ZC|8b#xD;R+lPmZ+m5~O1se(Li7aQ4-4QLSs+
zf{y5bVh}2+Zlx3i1O$me0hI>n792pjyHSx4P-#R;8V000L_z70l5UWcZoYfD&wIA#
zZ1;ZOZ~x)%ha$t8S<iZ&`@Zfgc#-7nd)y4kd^@|n(X6j#o>owHWh_{1QB!29nN^{x
z=+*D+5M}cmm;0<VNGkuRK64{A9Kk9k<*``#1_bPZG_xbJgY5m+ZjQLR_AQ)46Dguh
zDzsN&Lo-^bQ-FtsxsKu0%)R1T4Ceyh7X!a+;*vPOHLUWAz&Dx#gE`UQbE`M~X{HuB
zKlc|D?HQHLIE?u0g}$#~FEal=&@s|g>3&d0Wg!9ytZ%#@oq*;^AVrD8^TSpGv&uQ!
zxVDL70bP8f;6!znnsQ}^_l0<yyVhZz|L(Yd$c8>0#QPXPI$q_F?E?&DOdY<1bTYxS
z;Zvkz=>+6}mp%_)0ak(Ev|@mVV({D@W#?*Qi4|!CoUA;rwh}HAP4R|Vrh@tgV{Za}
z-m9x<^f`VfyN0o%K4ui%wlJB4bg6FRIaf1p6Vz=lb}Yj)CFL~I*Fyv(h7)G_=dhbA
zzKLB2Qy$_s>;pZdXNbXdFL|Dt&mjy^!u!i=Jy{bjr2nK|i@EVhd8Py`JiO?VpkHEq
z=H@{fj1p(D_S$ATa@)I+7qJ%d;C&C|C<owNe)Y@W%k{=_qd6B3#^#C3yO;|$4I8H5
z<iWFa|7_9J@r8XeS7v_p=#Uh{bpK-&QxQ1PyYnuUg9Q;y9NxIgrPZ}h)-rI7U)T5E
zCB%@}Mu*Ki?eXY-%}9sQbQ@oyM`Uon)J*bF?Be%`X+6@qoyZZF()8K)lTXZCl{4<(
z1nvl8Qv(A<Tgyr`J_nhh&PE-Kn;(9qtPuAoNJcT^@ObLub=N`x#pp<u`o^*17vDG;
zZ>O_yl&}F$;nbu)c1Hm_W)_&Ea=>Enqx|q%Vx)<M@6mx>Eg3E|2qIvuke~XRfad)!
zx^eETX>r?AuYepg*GJ2f?Hl6IXalFEbX|He-8JAeONkk7?H-t&YLjJ*ZoocE=<&L`
z_Tk3*%dl|vDH&~i#USsZTr{hR%D#Gr<0XTWjnNAIU-M!2=SmrLJjZ2X1bMw5!i1AM
zih$|-fk-To&gffn{PJy3Kko?sj<fyu#8Ubi2(ZW-a1U>vNIrw_&9?Fs71W_DF>=}A
zNQ|ymaH}H2{BGRPODJ&CKX{5s#HTw#q>yUEZAq@o>|;zfgYk8CN3xlpbO{7|vD7If
zcqyr53iZBqJ7fGR+rLQHy1#hLpd{A`d-o;)^!;~&?TAfF1~UorRVIac6T}<Q3bO3)
zU1U0`oNd@Hl{#(G6Dr27QeW2(Y&}SiiY$qn9dZZ^nL3{nkxvcAcqeG*CdR2?J%zZ{
z`z19remlNS9`V%GL@L)f^#I$0_lM#wjY{JTJ7K2(NcH{^saLSWiTePTIG{24%p0j-
zouISb#MJVYPwKCn)!1L$6|}QYS@S|}ZO3?U!E|u!jrO=JR>PPRSMP7HLOAU;G~<e|
zA-~$T=(?V_KSN`Z8zr{FDtx{zs#()Zyu`Zik#kVS{i~0sH14~<svAqEow~(5>^S@|
zAXa?7wtBy7`Z`5)z4Ix4mdD$cn?2YvBa{n5dQQ+4>a<M<wR1S6dVWmTw$t3YXnjm(
z2G2!iO&m4+WKztED0w`(Vt;pGPur*fcQI86=|E16W^>b)?pN>j?4&Q1rZ2Ac2-v=L
z>_1|f$yl!j6yX<x_aHI1?o{wIc~;>;snb}?j&&(iKT}qZz&vDv8mdxB6N<|SFEh9;
z0q?~BY{mj&7{kHmxaM~jM@{u=%VdT?Cp3)yGv4s%mA>dP?Yf8Ai`KWhyyQeLcfGO-
zz@s9Z?#mG}4lVKOxFLV&-eh@|0B0U$zwd9VK@Tx!m#c+qvs7B3H&kh$M+ue;4J_{G
z4KCOk;tgA`kf)|kITRt}ov!e<68|UQwb!Gd2YKCLW*T{-*KFsZUz&^#jnh?NdN3R}
zin&x;Htgcc@9fpa!K@baTw~G;aVFyRarq^Ea7hDGaZ&*U=AS=?&@YGhxU3`~%REvR
zqkOIcTz9sIZZ9Cvh4Y!%E7}QshwdwAaaivI!brh~Y3FXl&bCe8uaePp*-U6GO}cEY
z-Xe}GP;7h!0m=>hv~8S^C{|;1Am=PQbFsR7acj(?B&f<BWCtQM$uaI=pm2FNM!YfX
z8(y#)60E%)sO&C*a9$CQI6HRjEk%%~!z>h=tGQD2wIYE}e~CP%c^huQtQh%Stc={@
zPN9&kE1N88g)O?<o!{TC%1b*yLaQiW`A%~ZRNN<?(ZwuBipCBo&P1$qC~EdJlzvr^
zCu!Z}>Z5cHl8Q5I0{=<ldVB;c?>dR9OE^_{a@BtPfl@3Dag)+IH%v9Muinmu_<6RN
zY6%LLedspkSQ9W2V8q%q5IwzT3ZnbGst?1{>aGYN&Nc2R%+371CUVJzx0HE2MSv!N
zV0V9d-v#2+)^7Ua^H>XHE^uw_ON^KEzj9^;>^iJr34L8&K|M;!O0tbZ?5x)PUEGV$
zJXju6ern=rBg@pT=SZaQ)Xh>Rw3UL{cc_w$5C?!>#&%?o>U#4oiB<9@771$VS$Mi7
znYK{5rIEZHZZ@v7Za=S{Au{ba1$KQ#C~}nKw?ZkB?iBmHJp{f`AB2>s9z!+d-RMGV
zsg*aTwd#q;QgwGKUte6W@V~Rm95>i3cV6wRpV)R;V{}ES^$Zth)cR^$k?{7tt_!=S
z-(0eD_h*bu0vHXp!n3T)LC;yXyWh1nt#)xaTa9jge=hoVPEq3(!aw9Q|Nbh*iEzpm
zLwd>47fJB)J@<Mg%dEb|XHpjQ9*=HaMz|mUI>TdTQGK3cw~kpcJGSoZ3Hf{N47e7l
zIQsjleV&-K;HGXHH2n_Q#+oCE(XU3&JJ5U}wDNxw5u1VrB^6`M$`K(#Ar#LYDP^16
z{rg<*O<27qx?kw+#_ws}Kg7fI?v{-GEiLt5mJffD9{>9i|8=oPPfRtK|Fr?Zzfsvg
z|Ce!5M3QxgCp3-kecgYbGJpQ>f7VyIAxSwY9tVHP8Y5MYfnH+*HsvE{;Gm<lYL`*M
z=P>y4tfvd$D)k4(w5lLxLY+5j6($cy1Pvy>*_}`h|8Wog{Z;Za#3%s779XgZIe!H?
ze?WgpQ*5RL7w>lmr<v{|#DeThLW|~XnIj}27;t4FH1zB~_doac->-}Ot~L^SQA>W^
ze<B41b<hQAH8mqpav!})`1e}CU%f3L(^-KGTvE}0^OtY?*FW>``%kNf#L95WTja0o
zU$p~$N73Gqke~1>OckM-rut&Zjf7)kc6Ytg-itSw%RI2LmZhls9!PTkN%*tT*!Q#F
zEb?M0ZO094v)KN8gMTa@%mA8Xd@dqq<S)MeH!BQ!_bhzw=BYmDNjyI4RR8ogKjl^K
zY%b5;0ezz3^o|mL?QNIYq-+f_f8T5}mci)S@6zS#Qp%ZBwYQahm+emt6^`D(#F(M_
z_HBnv&a1+}|4&yVJ%DKPkDZOG@6~wV{L`=cUp~iwFNfrze=V~`9k<5+Z%aIA<ob>R
z@$n62(xO07>HIHO+uvUmW8v@Oa@<hufykfk<S*XrFCR}#(dlHllvD0a<0hF|xBm12
z{qkr2<F)0?5aX~DQ)*QKc%0A%{Qc$r`Md5Gbid2<i+Y*TPyG27{jXO*s`k6OT=AdZ
z0uplaNXBuKjJ<+eNc<Kk@O+iaz(p&vUGnBt-LSzNz#%L<mGw}bh*1$cB&PO8>#JS6
zojeMNJ_iy(dQ1YRIGvp&5gF3=LHs|08+1XbII-L;z=hN%h<}>jd<p}pq87-!CV)1<
zj+li#YKd`2Y=jt@539bB#^e<$0y6`g*B{ydkN<HyTekL*9e{Ty0JY+PKV>Npf$*_=
zinpf@&c`am!&?^wf2{JUzwPHdWL`_bvGCYVo#_FI<4dxJ4sJSi3fGU;G^?OWiUie1
z@Nz8iZLYuiq~Xz}H=*66Lt{(BLAO<54`eJIeru4~=|Y=hevldr|4y?@!MpO@JpG*T
zGTM3vSXHd`gwL66%MjPxBJd*fScUAe_y)wZ>pxs<G4`h+UodYIsC!t*fiwo!Kgt{j
zaDB~RFF?x?lFJ()xL~!X&JR&VO#lrIyWg87mPMdbN3iPD0H18)L;5V@4unucByS8q
z4jcX!&hK2z4eB^CB4XkeD==_I6DJBtp%9s;qc~DCSCM_mQ0=ms?QT_g$v+l&+hf>D
zj>sLtRzD*qpA*1hKf<{I4fXY6YBf+a>Vnvh_-VV04Pv%(4eXnuCG@i(Tz1GafP3Oh
zJ8;bqPfsnS!i(hFa#fW)l90=N%1I4ms&hrR*M9@1it4q#g-;*3=}uF)_J1h@tqJ%~
z8X|%UMDp3u2d&)jy*l*@ml>#FF`K9KL3g;Ra=!EMFP@&5_k{F#_lk(DKqME1@RYo%
z-g=#fN`&3vt}p|`B8Y#&RZWU6oryJ4IK)FhY4yjU9K`MpoBh|AIEXQzwP++++(OLZ
zfX5sGRI$VD^zE5XgB3_V34La9hqO036DIyGeme*SjX=;mp~X%l!*FM)$WAq*(n0jW
z5&A%>L0cs0H0)U0`iK{`!>95eY6{VlK|bdfK@xXI;jta``F<LZpjX~%jRo~#+8NsM
zhfE!>`+yUr2L_)0rwmtMwNR7=eOAJ&8Gh;OTx>RcD+gY+M@wse8EhLLu2`&74bLtX
z-I#o+J(^ikY;C$yP_cWpoB3+wUpol=u2(K{I?U7jnwx#&0Y6cO7bTW-DqURQs!HyW
zOpiv&Bmznty^h?CdNr7(_Ur$LHz4gT%+<g`+DXV;_^L}|)b`dJ2~9BWyn{-dE_Vc3
zT>ks`^2%gTDqL3r5kizMfXbvR+f*<FTX&php2SDnwC`DAkwGhxq;gg%+I7#K{o$t*
zHx2p<%_l&i$ibtlW-d6#;{vMQk;9>OgWx+WN~D8vK~LG42{s{wL69z&BLb^NU}&E^
zB+eM0<DnW~-ZeR?kkk47(3khY(Q~`-aBv|$bg9zu;_rDXk~^+N>3s1xlQ4TIh@%I^
zZJO7iAab@F$b*J*g4m74Va`H3NK{FbjN(azKBdZMTsxZaOd$|ks!aXCqned2%Ic+z
zuNjX>5HBV}Y^vKHmVP6m4@{S0ZsMN)dWdP<S`DbhoH2tGL5fi{IO=G{nfkg5($DZ4
z4cD1IG-^lwc}IuQIh<>{RtjqgcEaIrRx4GB&s(TRaG9FW_&gPugjJBE?AEskTGnpe
zB=cRF1&6SukK~%&UJQ^T%l7&3Eg1DRixAre1&iW!)Y0dFkC(8sP+fJdILCS!09QEx
zQlH^K%?W(CXYbzd)A@jTi4T@{{>oWe?oldu!k}v^Oi{>)m>Yx#t`R{mJ=I7*C5L*D
zljbJJIVvfNfC(~ioaY_vn|0igQIwLSyvtnoJDrwHzX2X*B*DS!`5D#=ms^l<guH5a
zLAxLF?d4XPFnqC)E382F&7&xQiBcG%Xx(^|E}oG(7PBzN2octtd+)FWOG!hAtR&5Z
zt5WM|XGOtb8AyZkhD@D)Gy((2NO$dw`KWz!R3#XXYd3vnDP8nvOiY*h!Y@-}y(^Mv
zfkeV08lPlqwqUi{cKAgNhZPJr(RObjGS)menFpk2oj7$vgw_+Zx|x#n2JJCvY2Nht
zgUHMRxjYdCNTvmznf&#kj26K(ANQ&2?L;>5d~apfGNkTaVT_NYc9;~C3CyOhNqh9A
zZ0&13eR~jF(;UR6OuQ6hekUO&V(iP-JAK|4KW<f8vx>$+@o6NOJAVS7XuhyHM5>RN
zmNi12&?%z(Uew+C8!*kFW>-`80}-$m#3bs`Tw{19BzUkcJzkeN_`A<f4>yJxg~SbC
z(Fj*k2LhH-f+#6+=5`tK?<`iwsP>S7QuA)0W#!8*DsU#@OctkTg?kl7t5@&<k+W>8
z?IP36)S?-mdZKw(TdPq!7G69QZE@UCxfyl{#HPKYciY9^@b(;LDW0~6@5x{3TA*P}
zrF8)kV2#mR-03=-nL3cFtI;iRleHAtx5f#t-4Du8COx^+2A<gQMoo;x`OOflX`@#x
z6+EsP9=|GUmd6ypyYy`4I^+!KoEV!utO1&0T>G1wYEp@ll&J2KRhewOU@PN3o}%@R
zG(`$*qC#tlOYg761wR(G^j&<15Vd*ys9i6D_nimp@D3jSP)Jv|LCHRRdEOp2YNPg|
zVdFM~X~6($i<Q})cBDpNHQWNZX-|x9*&R}>0pb(b>Uk;{EXl*+x~g?wzdN|Me&=i?
zM<3rx*AO66;T3zUnQM421u|wrjG^l}YGXtDlPSoUkQV5dt1RSWSyDHud=azyYu@-_
zasU9GBZ|LRfdb5f)Clx-lqambZjyYM@?kSgrT-*Gsx7akE8SZi?LoR&!9)WF2rqh5
z>fST*aH=gn9D7XE;OLIX4sQ_9r<K$nnKcb_)vyOW;I53-r1TInC=D3^JH43R1!)C6
zMI<EpCVPKUv6Qq0URmFs!eMNIle~`%zMEMJ+;Hi8w<^XNhEy)KTl!}Um8@<e&<9(4
z-aB?j*QOhzMDdP{>NKm|B!BZ1$i(!acuKDD9^Zz&`d9>=O*PCksUMa+7@u=StS8>S
zl4P{bTNx7SovK4v-v?i)R}2I{ABUnLm-y<=aNSV4*H)cPXfoJ1RQtO?%^-FiTLgTh
zUhMXAy$zfod$h$r4W&M%RssxyI9(dg7tb&wmX9LLz0F&FFv``608QQ(8^n};0y0!M
zz-l0m6h(Y<_F5!r3(12>Ot>g;2;97k0tl#1L#9B0+9TBMv<pc-9$z>Ioh*AZ6s*)_
zvbvCAq-w1UZK+B+=++(<?e9%>Mz4<@lG{`iu61uZD3bt_#44>k4<QCMyxq=WADZhk
zPp8%K(wRrM0f*W7aVx<6;dsbAK_tP!{odFsdpLxiVl$x~4OGm~sytc^)KTZciZ{5I
z@;{D?8%$+Pc<+N4?$6R<(>l#1e<@n{(K~^10lYQDM~?Kc4UCM}hepEb$3Jl&B5&#M
zLu$r0rjEll<tRdn`cdRPs=wb1;+m7Zm{tc6>^A8ufgf}OaEKeBupm#z<!?eMozqhb
z#GH(<%`dz;Y_|>dc7fHF2xlFu2pZmcMkG~|Ju&xKpjOcq5%#%_dkZ3cye3J7Bm)%<
zc@WNKffBEVUrm-wpOnvR6Mk6iI-b#;C4xVyGIt^rkIk(9ijN{mOKRs`HJOhBia#JO
zdl1bR3RZ0+UXqAug(vn7oGtk<b<?7x8dr>gr(_~Mr^%<p11a~p=W^RUzPsqQeDozJ
zsP1rht_k+{`f@ThAD*3@a3`R?=IznDvpK~)h(GUW2rix@xG7+zQTSQ56C9kPr^h4r
zOMSkiihsoPtv~rLZp`CR_2_hSxtoik#mD_<tLl~VM$X<tWjNVeiQBpGh$G~$yn5@Z
z1($j}NEJEC&)zp2aR1anDz16Tm-F0{U=o^p?-*yVQ4Z}HZgq-+^3;`tLq`~)tzm^K
zFL`d_*L;B=z2cM0S%C5`kxubKD9)Kt2xIG|)jK99y$qvIQopX--<Bw+b`XcsnN)u`
zg}ZVgmE|~+=hg_ox2YviC=Rzz4R3=G9I+kteDKW<DiGuL2#0I&epo;()x{4_Aa<LQ
znq>~w@u8X|lyk((>`{++P)aj`&pa}1zdoWX;iqw4k;ytjMf>w3UMGu@sGs5A1cJ*^
zeg%nlCF#uuA_JKRQWC$CmVQl^xft)*gBVjcf%bYm9DHATwimSot;P~6VJVs%>{5Sf
znkQ-rlGMY!NOf|k|C_Y*jvxWmLr^#9y>VK)7mv|LrBDIOTSRclaV}4>VP$13v@#Q1
zt<%loViZu#C2?B9qQmG7ymW82uf=XEdD;ner(rHQrcjAGGIJj|h37UOKp#c;v}77~
zH?&px*h?{w@zhZ$yot6(QR;^H`)6b;tvQ>xnQ6I|-1lt?jXSdBjIQqj6x;~X{A9_<
z+{*p3FUQCJ<_@7QOXJvhfT^*|S_+NU@vY#V?)_neeZv7|cSd9SDRDVTo}gf1;-(!o
z$2Ft)P^P-3S#qqZLd-H4WXuyEr~YIZ<MDD;b}bvMsXmB@ic5JOKBj#c;sg>~4bw96
z*^nq{nfrrCF^Rz84OSqJ{5M7*O@?1LveWFk*PhQj!Y_rF0l8PjGaLq}8d4N4_48Ur
z!NAvJY|wURtv3|Y&~TZ&o(6^e`-avkKdYdd?r@Ebew5s8E>aduUEs#sJMz4|x^RSm
zCyj$rKFnH}RJg<ExyQIXi4iB{l5s_>^O8s(C}Hwu%ikuoRcE?m!aqPLh7pX$Av?2m
zh#d^J<sZk6X;jWp$cu_577kf*MNfS0<d?7sPc<9&X`(9PnJiqr*C8^KNH%I!5zqFh
z?YB_^-(L5fzuC;(4h1b1B$pZmuu+!KO!xCl53d?#mg#B&YHsf7xo&oNO6$Yr`Nc>{
zn=}iMfSujvfH4+VU3rNvHyjn3?LadOGsoR&G-GOshfO&VRDBchxmd)%bl8U+GZW8<
z>eEa|gu<J0T@W3Fv1B_j?NKQyfuDN#9ujF`LHWX7xX+%nlZcfx7}<P0T=dP?m#Jhn
z+gB#>PTu1sBq8Szw_yaV;Yct)>6I|iaG2hIXG>!yOY(@O)>r+5Ukt4v>X4w|$rCG;
zPA`Q{qDXTtd}fcLV-$JsK5`W8b?4fH10Vdne2!i_CHKMaO)~8>+BgpnyrbJ&nT~0h
ziMF~n@O-mxr#0)@IPgfU7dYM&7g+rwCdfrqbTP)U42*&99O7PI7#zH!1hytXDA5*1
zPC+C#LG|7jVvEkZ2E&LMlF0TeACGBQ;Jf!WM)#2{vU6;QD^wc-zbGO`5r9ii6P_ih
zN@9}d1yY4qs<tw`ht@N4XbKfR?aY20HeGXFu-s1z?@lxs*m9A7>n*>d<HaVR_bu#I
zYGXq<dm}_8%#Ea-lG=EE#;|PauVFI`4o!dW^Ztdyb#_;SysxUQ1gc0JpRpc$apx&P
zBzP*3&4eD~d*2grTKRJ5c@g4X4ZC4fyw}F}I;3|dAwf={T8gXMVIH@Th=yXDxpS=o
zJA#7E5w<s&tnGODe*&fhah0HiG`ds{Bf}nLh6Bc6?lS>FB<w&25_;FeM3@v2+?AJ6
zzjKEAUicgJRwsJ+KxsdMg-$rqAsl8l{EYM`InYmAf&wy3|Ev>fgIc`Eu~C9|n}%v&
zyxPm?Ka=FhAUcmu9`Pjfkh|oq^pRKrQSha=PDK;ogS!J!r#7^rg0_V^Q1#@8HqiuS
zTpaSSUo~d-G~bBaHBQti61|+C;_7cExG;=u)!Q$O!%T`(S<2=iB}P^^44ZJqtGBLd
z7KUzLT>!4b(XFe{G>1Js{@2Bqg+xqNR*PK2(<jV~jBJSWew%Nck(xnbA!IY%lZyO&
zG|0YzrLJWbpKE8&rC@L+8=q_Cgl1I}*v@3RH-nLu(PGSCw8>OU>;z~|*Bw934Zy2B
z&yN2*2bS{%%Zgf-g;zAo`wqW^B!`c~f=)kK%EZVW`l5Xg$T;vOp@K%D&^QCRr^0V}
zxf)A!Hjx~t*MA9u@NhWTB7t+(#O&^&3^XhaimBK07pAG}gO%`>Ol~anut<X?i=*of
zzy=g^T&;V}p%B=ReiwRmj~@#aRc_eGzcF-hc~W4%s9TirQ)gaz2k7*)tEXR_#S;iq
zBvttG?N(v(lf#ND6&WwRjlVUs_r<;5b}5@#XH)Dex_G+wwVW}8OpcJT%$ugv#m%V{
z-heW~FX!0h#9z8i{is^pDNlX!!AwF>XghrtXK<W&3)qYpGrrO_ir`!8zNkG=_d1RM
zU3Yz=4mz@n*{n=r;&A_smtVm+(IUPl5h+EjwtKLw%btnBWtU#Wc~!V>)@ypmKw77x
zB?xILP;7?XNY#U!_t!~rCj~&XujTYJt%Y6!534!{r~5TA`SN7}f`hlHkeDa5NgrS!
z4ShwH@rQ5h!N+nm(EzfAS|sk+5GH3Q5n9YcDyTj9hKUh5bnOO~Xr2QbAq3`&$GvqO
zgdHM2d9;Py_K-jKMA*=Pe6K>VZ?*7tfR6_S;&4vgFv)vrv7my{7fDe3*eSWIE)!x`
z*Lm{BY*w`gi|lx!zI#)u--4*uaVjG{SkjDw)7zwDJJ36w&8tZqtl5b(YBIn|j6-om
zgkxnhZ-66V+w?}2N5%2c+JFKY4u8YpTNPZgzk)x0|F=)_czIiDfyW5<TW%8zU#UR~
zej47X;oBP>5LWZd98j{oXU#o}f{iL$jYdqqJ|2GRmal)zr{y{!gKAU*-K_w83aN(2
zM^Af%I$~lUz%aW)M$1bxj-!9}sVjg3xOV>6Kd4oksoZAkiy}Rl{!l?%zCTKLXf#d7
zi^}HNMgzf5kDjO)rm7BSzY1H|Ws<S<1%<;x@<gwJvvf?(C!ZG`W}N_w9rtSe3c1<3
zkVM3F)&RaWC2zqd6{@`X_+7zFn0QxjgfsVl`$k>gxQ#%jE;XiH#}|q&#mv6NA%<!n
z^S2Ru1NLo$*I>POwm<&<5@^0^;R!QPGz0ED!r?y2ls4*7Z<K}yc!tpjGyaE?m<szM
zop~VMK{$xh>F?OBs9C6kvvx_sAU{v1H)@_!zTQ0bOJ*0OpL#Cv0zhP3fD=HHV`3_1
z%<AKs_e>v7Q(N|BPxS}O88ery$O2cfFpMR%NTnj9_&fB)0_%A{wY5LhCqF8cKui2B
z=dy<AHDt%00Eou75-Cz8;4z3R2e`TPnfWTFx4DUwHH%1qKCqj`K`HJs%POr4>;;^4
z4@b#4+B4#=u)4H*h61*Fj?Yi#X$i~^wmmQMdwISgrObkjF#;%5-H+b4Gm1q}FEZGv
zNR%9>ym3u?fO%O=NQ(cbE0RXz8_0YJhRWw^a^R%m)^Z7W4IR8$OcP@R>2(OwRAbbg
zRdxJ+We~m_#6uVfFsWV$zZqp=Q^8bS&|6dNg`_Nu&YzyA&W8N6{H5eh$?Y#^^<F<f
z1fPluRmPcRYY{S8p-e#XiJTeZ^FpmSy4Mq>%?*H}AqOY~6kn2QyTH;7WoSG6g#2*7
z)mSD5gux!c?F)1ewi(w0p@zrO<)7Hg?<gP;Ll0Ct9_G`Z(h-9vzik>hvv)4hZKif;
ze#IF=C}=oDkH^F*)a<-$;*|fm2lDNjavYFYwDKVW#G-`{$f)sSM<Got9vKdw1=^wc
zC?GL!PLgJ|@l8-VOvP3$6|PFuURFB#^TzUDGdg+#d{G0rcj;Z0Frg5<%vEs3rIVzq
zxePJk;H2=Y-%H#>0GeYyHlq)#OW2<D!(Lx?`&5CrFFA`%R8>i~F9&$~xbV-U=ge-=
z6TV<#PRrY#9SEL7pws#IMyGf$R&ebi-eNf6gm5XMgL@?1Y3E~o9E#JMst)ZB#(D|t
zRSz$k{l}^9UkR{3r8u=o-la1`)>B_qy1LOC3aB#3;p*N#V!IGS^mNY}$99)d|6XIa
zbhhRYGL0ZZ0&T841k0)EN}@g>@oOfo{i@Rma|?s)1{wg|4pS%n_J#5sKSW!_`^^>a
z%O7yer3FFD;hs^E;~8YW5piyed3|=H&nKQzm}G4W<@)sUNI@CR_R&-;TMk7cT?%DF
z{9w@vg<S4ntlaraeIClN3939<WV$`YJJNJ%Z)>{rl*#y&AIHuPwlQ=*QQmQ^J~fN_
zFGqxDPtbp=<b4%^-N4JwCQ<}Pp$T3_g>-!qqS;Ua8mAT)xqPyU4Z&mIpKiAQ)<*S4
zG5ry)a0JZ`Mjm0r3c>E8jr7qD-%_fskT~OJu?`sWO!_lpz=Yv2Xlf_T$fT~JKk%E%
zi!}TrYOipuH8Pk=I6nO%h?DFG^>3~GF^j*eh{-5!h!zk?=`n(0xoQKgK`G!;YTlS*
z=teV^K146S0cE-JwPRF0S7Yj;Qpm7+9nPVyn&SlAGt_$EtTzG1B%-TKVa$XmxzCEE
zmm!|+l=U<+ZvwYWO6xOx%lC)im=7pwR4p(uh7Cz?4M3wEwaqIUOju?GR1h$mS-;7q
zj&q^}XV%Nj?pa4}Ew`<23oE}x-rqCBBV1~=q$q9Msg|l$^guiJ1PK}0;pOkH_r+^3
zhn=VT%MbX-*zaz_i?z{l;^~tfD8gAI$ej-N?wS0;+wt2Z9I?hZuYnekhs+Zj%hjM*
zE}Z!e&~-QzNexa&7zvbhoa{N&BZgaG`uX9tLZn<HN7}RrU!RO+Q=Q6aD8d$^55v^w
zJ!-#vQ;pad**SAy3c4BJ_J`G~^izB_#o8K#V$_J(rXmiRy}y;>^pIxeJ}~aPPmgb$
zSo7MTkY49X6)y(N-jU|*ZY<QQG6$zdni&e7hOF=2TCYc7S^#p`0F_`xJR>z|2t>c$
ztl!=PP(cLgJ|m#c=+(7Vyyj%TXUrJ6Mj(F+8Bxrct5kS1Q0#-1m3kYqG21(d)!uMM
z;l`+&U3<)l3hhYJrz4+C8$NafDt?K3^(qS0Igcusm=2bcyE~B%?cdZaxH9t}W7^+8
z_1`YXOqw&oD8TT`(IC6aQE_DIyCbL6PEO6Hwfyn^-7q0X7iqccIq#ljIlg`Stf||T
zU57Q_EB)87xk|Id*hA3?n)Q2u2^5!`$$fX3o4Kx~DdJEY`^;UD(ZRnU2^fu>XEkcX
z=;ggua^w4{r~B)b@Y8AW`}t*z80`0wJ+S}ldgQ;h%b)%V7R|E<|L?!-kKR5|{de|*
zUf1OZkN(MTj){qJ!|2%@{Ha9wKflZ;W_Ku7PENg6k9?f)*UkCAsTx1M;otww{r&q}
z_hY95ULN&<Jg<k^`3<N4fck#%RgB*um3$**k->(pUnRN(B~${3Xtryicm^j!t^=}b
znQgkSImk7}<5UZp<kFR1_%)qmbo$eU{Ni{0_f@;Ik$0Ec=cI(CB*cigCO!;j`3LJ{
z^QyG8GzQGW2R@|#e<uUNT`!``!q$`FM_HQYy!-GE*2`GI?{?aoW!}m+|G_P{kovJ+
zCi{AguKW}8^UbTjU;nb>=^UGXa{X^G4<4L%Zz?M2QThuj=)b+UORDgsZI(Izvo|jr
zbL$BjMADzH*53LFH~8ae{QIv0Ykz-MC%>;@JO0lP*&pxcld`+VYjq1U%KyV^{nLM0
zl11*EUz2?iR+-_S+<7If`jD%KcqSLubXtF!qx^AsfB)4dRd<h4b#?`!KV8}X;ghiV
z*Tr)ejVtN@gNt8M(gMB)T>L-%<nJLn6+Ctp_3v8#$+9iN2)@arN%Q(QCj0j*<v+g5
zeOWs87K)8$vYS)K{GWXCj{n-F*Hyzwe<I8N_XhV@H-@(M5E_jJy5u|Knvq{^yZ?O@
z{>Rk=nUMJqy6&S&_RD|p!O;e?BhL&xbKw~uJ^slrmplY^w{#Q{9slH=haN%`5<*^(
z7=<79A23B@N{^5Pg_2_V{=r?t(Apki)HRR+kKe!)Wp>TKUG?s4C-h-ReAbCc)B6`o
zOqv=6qdp?wSdND1Mg4<|`K0ac;er3^onMnl8B~kkc<g_!q1=B%K{>CJG*rxUuaK82
zYWKVpmr+F8N0%3uwcbcH?FH&lTyN}n;ClCT;OG0Nv?|2BpL?J9bQEuWKk77L{jFc!
z)v+g)KtBC6^_pDuW$@o`EWi9NZ2)rTz+yap?sMw@vOfQ7x&HWTAUQrMqa4J1vE={8
z^#7Xy59=I5ebi{6G#oR@`}IxwudRdr{%Np3j}!_qmKsL)6!8D*$^7dl*q!%OcQ%&L
zy~#e8Pnq;@*UqnBeCgKjfkUO;FVheGgF?stH@JQ+#);OgEJo1USL2JaRyeF0K<6+R
zrf$>o@e5A9S1whK!K>?;@Xu=ruI8@Xzw;&lZR0}1k6}<!!f@q^xRpiCk2Z7h(B5+N
zei+Q5zw*N*BBxf~)U0S~2e9TJ-B4Ga_D7#YFkHBoQLuv`E-NRn0JyLLcBUiS&d&Dh
z_Y>srHi8B(Cn~WCV8Sq<OF=@UyE4`KBNT$u3w*q45pH54xR5HZyEy{4YXW-XV<Gln
z1|vf3&!#R3NNtWuKhHLYL*)|iC3Ux$?nmqcbfp7*RJqny=t^624ZD~(O7m|1NCXFm
z-?uAy1e9iOMJsJ$_aj2Q;Vg7_B16pXpPSIjG9by@kRgHnDlUmw@UfeZd>CSC0=V7s
z!^t~`qNks+EP_TqVsCf5mg*5;jn`nnTL1&V@<)T^Wj$aBGV0%4xkJ{n55w%`S1O;u
zyQTXzFb(fXj0Thf$`n5u%CtpOF%e<dcc+BdP*WjAttk5}tG3WJKmRuJ?%YSO%94t}
zsklK=(^-C&5NYZxKVJ$B1B8u?f>Wo42u77i&IJ;o+gBU5aA}V3!Leii;{|Y#mF^)Z
zCy^;Ow8Yl3?K4iS;4*x(5sLH%5Nmo)0~z21BDor3r`kV#2IOd)z!5Vdj?ytLTkYIG
z)=-Uuw%`nvz(_EVW;^yY;vKgU*T8{fdv<ZsJH@sOCL~j7psOtiyD!Oo>D$)y{tSo$
z*$lQ=!`ZYd52&8M6#i((d~_G5pwcylh_E~fi1Rf|dQD2gLFEv<u{{Dr%LgL<l#f;%
z6P7LOGwk7hS0jcDx-b{FDVy5{aG?>5l_^%*_d=#tMR|R-p8mw|{Ap*A_D2Ps@d6fk
z>A|dTM}iXEsEgHL)`5g`vyzV@>|-QV0vM|7NMfr)%upyo0|lo5?x_T=w?Ljc9Nj)`
zHx=uJq+rfn30f7de}|9=a=zSF!Pc5%;iqxz8S6kMKoN&R+P4nPn+^6I@Z0v~)Bo<J
zCssfm#0SuP)d&)`I>qdJ9K{Z~n(PUgoz;xU1_X8&{=Nt;H0rs(HwZfJ+J<2H%NSq0
zRgrsfPq|h0>ZPcp`%#%HA&brA=&X97&$YXPlEA)ww#f8Z@~kR=^acpd|5D^Cc{Qop
zHn`P=AxH(1^pOatmwm+mID%%LJ*_+p<YVR+t=j%b;Qbx7TCamTn)c(Qkupl`(jVVv
zqpg~{Mjux^u#&QdIczvYhHjKyEJmEM<3kxM7#ACw7k7ZCCL*WH3&{Ivv=#FsnrBLG
zS2hD@wtwVFe0L3{Pb0KKf<rGfvE=TNs4fCj=eN;F8-<xvgZUTOa6EIqnBU;)m7Lvx
z_+!hx<B#_Bk8}w%sr9GQ!QryWAijlfVo~WJ0)Z-dp87_!V4K%gd>P4Q_QbZDKHcN~
z4S@>RYhk4{&YbQ^AtSiH1Dcqu;O$+}8)%YsrfwF^a^7Lgq#fA{u}ZpMZm@Mp2jIk=
zw9(5r`3a4OB0`*A$z}1H>xwx+(mpECBG&@g^#Fz6R+7MO$`|~oJR_GAt0;0cE$}Nm
z<)oO%b6Gs>L<6EdXCj-TB>Fwlgq9A;lBm1(uPlkB28eGVG1sW~Cart<<VxDIRdHJL
z-U)_e+7N!{t!_*g&{?@Gw79q4`sMRT(%XqtIi)^Kh?xZbTkq%xz?L-quPb#dS-fs>
zV7zZx3TCIKi0?ZxgKC7`ZEn43dwwZfU~Knk!#mQ3$z4fOBP577lP`#aSF;{AAL{f7
zM)$`#!~_SI3rArL>Yc0=8&WeuDsSUQJ~k_rM!N)Se{lW|>^ez*$%FjlhIxV}h2tJi
zQ5OoBOGoIL0%=;(T7%{9D4!-Bi}UKQdz*OqlDdrLTkzvZmN^_^L=UXuYe@P?7Cl;_
z_uM!DfO&!}Tg(F0E1etjYJ2{$$(%#^d-+BOt5yf8%Y|?6v;pO0|6)IKJcGZLhTL*3
z&wA19{#LpP)=>Wb*CG|f6ObZsnxz7toiu$qRKIr6iamR4xjA9pX@ExCm_U7$l!T<a
z>MNI=`&Bh?P<0q37<=qBxjl&pp`3t^rTfu`bgerkM5=u28&faP%boAP!PmE<QjpDG
zhmebeJTZE+zUEGxjxuL3eCE=aaJI1RaiHU}gZ~I8a>~ghbOJkr=fa6Cz(Cm$K1Z3}
zN|IRq&E9o9SLY>bS7}2DxOeM{c}lh$<>}o=Rz8Jca0|AnhZcNrH{W+9^3=j(6*U1g
zW!w1ij*`wUQ~Lx!N$+K9=FY4yinr}bFt%5u?E<IaIGJ)+{H44DNl2^&92^qBJ$xPl
zu@Z=V<}<%Wv`zVVh-w3{6IoodgNoUWU$os~J^9PCQ~9?TvJOVw)}<_ZsP`og1qs%&
z04<PXctQ@a<wu8!&S>rEUgl8eac`;%Od?Q0Q@7rhM}-D|F-oX-?P421&F80ai4=QF
z)-t$GDOqa@kkRf18$5wa5;WBOP8*A6nPJhv$IPbN67tX5a~#Xm8hq)KD0A&ih%zUd
zttEGwzjCQU5pTpmLxDJ4)Utff_HjvY)!j@pnVdxzOPo%PA1fTP7`xnO%_;MDvgOT2
zfy`xiFhsV0{Q}ujV%Qw>kdz7kl>bSYc=@@bp$QD<gH#iSc44c#4vu+5{E!yVNq;Tl
zZJed2{|i8{S&`CX@>v_NB;!q7#AAi}6UB$S5mvd%TUja%>NPJVE!gXi;zx1#@6pH&
zH)gJ^K_T#UhBWG8weX}A>Oh*ZHTjv)Pph6DxmJAfS~L<#hFL<mC$dq@rG4H`og68+
z+j4>!W?)CDUkhJTp5sEVyz(7b=3aiQ`klh0u*zy-px;^i8(*toF3ggvIk}?0G!(r5
zG(LA@SkZtq)8nHg_jnLSr3zb2#|tx+21pw6+~d)B8;Qps?2M6!o2J$Uf3-E<;7{iC
zN>d~}OU|y+_2QTMZ4)YW>F%wT4!cI<?pUe$E1c}4X<q2u6sh2vQhIB6Oup{!N@2!=
zN|8lEl*nY7kZ;p-o;#_s;*aDm)O+pDgAjp>n0FC_Nv5d~*q&tv8h+rjx)tE|>0Xm8
zyx6*Y&#qW*-My`R%?=2sp2F=5+z>I5I2EA-)5*``r~H^q)w`y+uBn^OxSsFa7mTY&
zL$OQ6-R@EXw-4!SAA$Z)W_4$#Wj}h)Rb3`9XWn`T3p+u3W2_go0W#3wim(Ty{duQy
z&%-u`6eUE^vZkWgRbY|$(}Dd**&nz7(Cy?lneOh1Pq*C7mOp@ig)u(}Vj<WAAr`{%
z%pUBMk*+(VG;4w}0<l~Dkbbs?S453To;p7XiXKzo`jC8YxmCTgC_;Smi&2VW*bVa$
zq3vrrz*;_ciC%>arN*#Ptem4evEaJzD0G<|8@a|lKrfAjYD1)oZ#d2?0m_Xxh~K~X
zN1uH@B7`NeCYUOK%RW}(wfl-rDxaA7rp@e`^nwWLD0V%60q;3v?%9CMU$V8fg=ZYA
zP~_cO?jTs&@HC=*?w8x(GL$LOW(AYVL~EeAseG{d>=edn9MMnaGLaAETSS#7K_ub|
zo%8Y|SdUXX&39!+x8A0ypsy5silb-x23z?wf5?_&_V$a40}ufd6V;QW2ijgFWg@3Y
z14jCSt{ksYV~#^{F;<Sr6}Q_{DH?WYUIiz92XNvSH@qm~msNFQ_))O=DpHg|v3~sU
zC5JbihtMMJc~#)-<AYtgzv$t?VC^EaXqo8SJAi&DYg<@2JpRD7g`*2jAF7j6R|2s0
zA>qKyKYSe-nI3Z@DkzUR2@($Nf+*bQ_rjx07o$r|R=j44;~_>p5jGtc)843WRv&eP
zgosheQ^iVx2E#KfjUsq@#r`ej>7$Qnj9z`{8e2_HQHy`1+0K!V-y;Vce(Cf!ta41z
zD8`;!l76v;r7@CgUEr%p|H2f%kn*6qjEID7=H!;JV`$PmlicTzr1B$jmk3eAAHNdF
z73G8S+~idJjOA|TH>bC>B8ow*3hu9<7z>z@PhA){cBMa7`mmYeD-OtxR%TbErJW(b
zXV#`;H<77Wx1}tS(NvhJP7=55PxIS!P5Y+kWE5nbmS|L!l)HkSC4Zc8pE9P78_N5z
zGA}vX+_=HBaxWV8B~crx?=d`=Xx49{Vp4-It2@$PEM=-Yw-74VL}#)E516>R<3>gN
zw4HJU<Wlhbo=ZX3j^t9<K`sTH-Td0p_bSqa{a%j|plG-E6?wX9nTk0V#Xt-duVEVn
zzR&rxNs$Eu9LD#0;y6tE*OM*EG!YZ363v>N7S=H+uCiWDJ4jbJext6<v`W=^;!^OX
zP*ulqdj|7sb(`vKjQL~If*SJg$dJvA<%Eg<7NkG0I%Lfepbee)uDgKojpse}rzBXF
z?=-x{C)Ez*QKM6hzUF>DTqQ(k)oR8UD1Dg$TVf9h14gtRa8{nP9$>zqNW3Q(^t_#~
zyG74AlnHI2kW;_sX~reK;BY2|AU4`*$=mrv3Md4!*#;i_s!Cy>$+Q-iELbn>T?d|0
zf%DMtx@G@4O=8*AYY(Be=5$l8UcqESmG}|ge0Tb~CW?mXq9hFN`ePmsk|xgyJhnc~
zct(}jr^cVk&>#32y{g;qq0CtjdDnZ#UEf8fB@2p!<j9nlbuMEe!o91Y`g*RUz%@G&
zX`0`Yy}K%nIgO+gs?us)=5=knu2KHbX03~<)g)sdBIS(Cq|zUe(8pSOMtJgrhHqBi
z`%RK{lZ@7#T+1}ww}yvN2cbJsU85wq`pPVQTr^Q&`?l3pTlG<5`D>X>sdm;t3MvWs
zIADD>9*M88juvU-&@Al~u<DN$)igL?Z909vW7_Ack_TU|=G4vt8+A>w?iY@T>?l*9
zG-wn&5|IB9UO^c3jU!^m+45{CmLaqDC@Ns<>MnhZ9dNuZtGz>Lj2uxnZI5%xT)<P?
z8r+=G+&^dT8ebQQzSau@HRDSjO51MPDcfC>Xuq}4_N&jbt5Q#WD>NUSEt!d)ceL-P
zX|om^FFnammVC-QSApKDF=j}xjO5A;xqAE#^!6)`!d5eCNZQfzr;7nXhi;~k5~9A`
zDY?^Go-)0n>egh5@TezJoK@ZTw{|b6Sp}q9Mpo=Ut@U0l;+?gvtD7h1{(QeSNUoVK
zLNj$6lZfLZshm?hb@Tg&)4Lr_ch`XvV8m2Y8&TvR>cDVDg;ZM2d%Yxrg05qo?v34r
zFuBQ-Q3t^|UOS<t9SN@h-C@|XkbAim`s%q0g>lQG_k`Ow!ecnf8P$vDPB-5owdvc>
z^QSVHs~oI}2=%8hV35KafMIMjUssC2ud|JuPPUkqqBgVH(jg;m%pY?j@&z^JH#`q&
z5~issFmuh8=rVjx(lD%Xi7(6ypIPZ1@hNS{NHAZ;(bA(vF3a|njy_MTyt-diRKvGe
zdC)kgV9&~7aU{DxNTj_MjaF0$eOZSPsXdSM*@6C0OX!5#7Sksru*x>R+m`PxB96GY
zb!qGT*Mn-VUjaj)K#?ZX`-W(e1dVy%sk_cybdk}rPZUkvenIWDJ7?-jNPSmWwOk3$
zuC*qC1}^!jTm9oCuNItzc<Ci68^~FzOL$-)jLA43B=>vD#bk$4d(m=k(>rfU9nvsX
z+xb4F9I+DD>|U;(@9i3uY!QOFWDHP>-7L9|w)2N}fh9Y-NVcjHt-a=pqYD1W{rY5k
z#r$1so_)ucbDb__cHgz*{qnsJ^`vfEql&J8k;maXblc8F*Y}pj>*pK{)Z@#XGUYN`
zvl}n=>~BA;ZO&h{u1BJ$3MIGqzzF0Vc31AO9*Q{aLLHFA4Lncu@5T(AK1zSzmleIX
z<jYw2l&N#8TF3ehbZWI_-%`^&w$D_!ruKg}8GKkPWnCod$kXrXe~yE3p2>;$jNw^X
zKGVmONjj3HakTn*%;P@zqSb;;ux4{7skr<HtQ#soS>mCQIvY>ada3`SVWG#)?&zDe
zw^R*RzP$L9C#8RCo3&?`zUO<q^JM3Il8$&`q0i}*H&U|w1Z?(mvFTN~sjzPZbtQY=
zrFU);l(=k3d}aaW+qyu_tingf^%ALu7orc`UJ`HgmKb*7E;S*!fmg_gGG^+4T->{_
zSX8{P9ObpM{IWMd+u6G`NUf5^KwaqQ3AI}Uu1cjQR8nBQy0^ij$Iue~ll1Ek{20TJ
z4s7M7DPWv=j0qv6f2I(AwwgG4b+kf*+4p5ld%(WINLw=wi1r*eQ@lFrltz5mtQdNI
z2+wui##F4#bT!kz@}<6;%pk=fFzXY6QIN5GfjCe9pfA!sTva?F2chbIgfX%e`oiIE
zJ4PSSSu&?zF)wS}Xb-}7eh6w~qWG_Lz=1oeo3^S*b~gBBx#B4O?JP|awG3;8!^T)`
zg$X0YAUx5TOaivOC4&vni}?}qwk$DRd<P+wOFpgDJ90kR`Ku7LgQPR+^Vdm^`%rgI
zJ@CW#Ty?uAcn@u6BU~Tb(9DRou{@i<s=R!RpgGO;QLx<FMdyM<OXBx^+4P28NH9;1
z&72Cw7aHpMno%%Dvd~04ICO!7)VNFfx$@l9ndIeIO+>B8T(M(em^fNdygQ_e-Rs)q
zezBa3|7?er*f}73F2&vf)%b`S$o0hKd!Tg9uAPXvbC{=Yc`s&e3Lld@C;ypA1;x(6
zlo@Aus3Mu|b;K$Tz`RD26!Cr>{g6nn93EZjV#3T(MZ{+)a!r9<1i*pFB7h4o;^s(>
z#LYCwC0P!>YAV4g156*$bY;mzWjAw%Gz}3t+Nc`XrFQARn^5oEt?xCzwQk8nzESI7
zd=N$XZQN&`@J9-Ux15u_*mY=I%wP4|_G{)FbTGzgve8&o#Ln2Eh`v!PC<F1?{7$f-
zynEbrvGN6CZ#f&;#C9QE0z3>KzH0C^A^ER+oUw+7D~Qgr{Z@EK5zA0PZ>PLo!U&g?
zy`E{Z-?=*jS$wmsnq9PeWjMxB`t~%J`j+y{!5e+face9nqc;|H44j_nY|-1o+le8H
z+x0-8p}G<&Aj#IhnKj7ptef~{Xab{X+RG?SE6sV))X7)BS3AktK`t{E!e>42Gkjfu
z8u65^tbAu1M+l?#=5`Ka&{TwaZ66X%4EP>hcQnWCJfp;+VR157$JC`N=<?J?x)_Ew
zkjMupU7wv%+^^=*DAEbp(_F1^s5z_GJu39!lMH|Isz2g#J#tRIK3??H{ML=ShnLo5
z2`{T0mw()1UPZ-zJ(l0F*Gu&-y?LVFA5F$jUt!1yr`GS{N9EWZe5Ze8EX~cOK{1h^
zZ*lRULiNlHe)K}&=<)4~Wz-?`fx_)G<M<K%R$H?Khi2S8sQuFDp9v9PRm%^8lDPQu
zY>6Yi^gC_gc*PBO&xx7lo7&n7p49qV!o<&3XmdcehQwRk*s<r*Z>jXB)*xT~V)5Hj
z)H%g^nkLT6Iw<ZmHBd-SfK2U~-A3%}Z6Hc;Anrz^g#u`+0qA6Ba}ADb^dyl8y?r^g
zRA^shi@HRAtsi?@)~vwe{VwfegpYlg$M77gbd$J#MXL?P!(`US;?lnCvfuVi5-ZSV
zD*zzgN#7VZbAeZ(YmJ~@5%Q}BI_xKBJo&`dck1qkKa)feTsO9-=NXvUnet(r*bqeV
ztkbu&66-q;xf2+1a&QM*z0rV96A@<5i4B?q^Z#7vrY31XU(qLL*VG>3{*~_oJv8FC
zs;+$H|B7QY=<HLkn9jjHP<z6KvU=i+Uu)%@taYxU6r5c}NE40&<Q#9*iaxYFndU5X
zsbhL)K{Q{rOBmg!FphiZgVU+6H@|Q)6i$&-;p?50Nu|_uNC*=XKjWEt0lLR?)>1J@
zOa>U6Lrli-_Z8(}p<P;mRSJHmLYa?VRz8e=5boIAbZe5nzjms0tPbLZ#jds#mCh44
zu?4ToHB+>fi&d?o(-pZ_T5d~#+<JE5h>4nfmdxR4h%xM;KUk&-ImFhEP4~yK693A|
z5Rv()OWGd_Ps1uAeRnKcD4)%)_mCmcO2O!%YKsT2_F?*^N|wXZRx%W>zP!4bJ2-9o
zLI_`VeEg?}<HA!{Uil|4#mTYcYnhor*D>L5<*jxTciRU|u~E~IQ5bMYGgbkA<-l(*
z;)t5ieQT~sXsM)1y-UYi#40A~-7$a_RLA!;*EtO!>}dsEk|Ve})?yopJpHI0(KE%J
z9pCF%coe2>xqdzH+PsiuzpRTNwT#utram$j;YR%y$pRKRYZfG<r0lapz&5<vTFpn5
zyAs3GI>L6FDJMR=Mm&nAgWvB9@g6YgM6EdQJx?Nt7>+wYRknh;O?=D$#>kO)f-&Y8
zI$jsX=+$dAEDl*?9<Mtz-C5Ds*VrkFyjGDk4EsmCWkH)F^(h44wx?8Nf!$|%`E4Fl
z=I<)mP|n-Lfh65HuL_4F2?Q2hny$`^R9`jF^nuDZP8Skt5Q;F5`^&9g<hZv$j@|k0
zOTEGHjD^x~IN*nWM_>Sc-GNE+itz(ons|(819gapnZZJTt?T*8lbV%>L~b}6$1tRp
z!8zp=PwR^`8%iHz&g8_dE1Z(nEd@RCp+Ot)@IO~3M}m3lhLwN61$D{=Ha3FOJFZ@?
z{qY)Tq3PCmFRIj;3s~YWtA2)g?~iYcN~N|Jfo%GwJ1o;W6YtH5EVuc9pehCB4Qr`n
zw_zpWbsvK&5mF@`c`G7KMW&07(#>_8r3zh<03upFF7b6nz%}Ms7(NpQ1wo#Mk6hd9
z`$#R5wv6OyR9h`jGZ(LSmQ&zvB<w1(WQ5LdueR;w09Rb7;XScS=K++<0H~a*Zh#ZI
zSWCun)Ry7?x~FhQg|IIf<aO|;(d+XBV<z_{)m`=sdJBgvGOYi-M{o3M1m8WiOCzdR
zpLW4JO?(OZ(677l6?7^19{vkkQF?}C@>7b7c}$nEi8iCt>J^d4sCd5QA4(#ct|OY;
zSC|M$n}^v=kI{bW!_$pCUyB}qzXRtxjGe}3Ck4WTF0BiJ#kNbYXr{`&|DvclN}oc1
zHfs5iZ#MIhu`svew+z_SSWv7p?vFi`S4K-CqLIXm*ykRx@9`MFE2uWUV!UWo>UH{i
zqLfV-zWFwo&wqJnQ8@L$R|Bc<oi|c+O{E~0eNmsm`MAJ}Re0QPID=)3#&De5sJ<YI
z?NyPZQep$IgIR>A!leEng$sT1c-w6azPB=`KN^U3a-h<j1&Qre7exe5;OGhU(`UI&
zUbopv*$Bu=+t@`4sW$0{Gl=QfheMMP6y?Td%RqZyS@#tKy07is%@>!yz6v+x^k<@}
z5W2~4P{_Lj6h_R6xt)pTdTXXid&qWOqa-VTV>W8^+!olNNIy_sW@6Dp-`|b)lL;|J
zCDN%Nwh&h8Co=L*H2z54K(WZb26Qt#$~v|EQn6ZVO*?-IS_WMsnMfaBgiF!hZT^it
z(}=3Tc42^%malW^Nsbns<8v~@a%@jUDGj7<$dcl(%DN?GcYbr#+|Oy9m)TlhFkOh<
zQLxZ97LX5-6K=L@%4nU}>HA*2KY+||$((jvQmjHlcLhn6UKVAtd}a$?7O{H+n<IKX
zyUKU?z%BXrGO%FBYXfLBXKe|oM)jIrKhi`;d|99>Uhi_oF|Iv5C;;h*_h%ie`5>Vs
zN&D<u(sT-D9O|*z{!4y%Wl6y)n6(vUm{IaSeQUvg4@=XM|LH?sEj*EWr;ijGM@e2H
z<`&+TsBctVa0z+1YjYj!4oaH0M}ve52D3x<?z|Tq_rCH9N4F|F?uas)dHvSsmBFJc
zJH2u9@<D<sUAf*Q^0VLB^Xb?m>|QVC1wLiE=T0+4xyQ%IOZ+n%{f{yr&=)}+M-+6z
zPky?M$M+DVH!03hP?~T$W=7=i_YUrnz00p_cs+GchQm?7V(ini>3#wZoqdoJ7X>72
zxpc@Y_M~f~vwTR^6803;%%3=iW$MzkUv<cu57qB^xHIfhkWC>8`A&x)Z-$%hn19J|
zGv~Wf1k<r<PthGpmuJaGgRau4?a&(VUAJ;?IwuwWx<e?-G?hp>oH=Fo4!VyxRDUMT
zXcQE^pQPMDz1mN&FSPJo6ww!`aMMc(3x0C(wsHEhXjV_)P0da!WChMM=LA}+oTKr%
zNUl&_J=6L8mG}BmsQ`Up_h5~|`CINv4#I}{syz$Z>J$uF;$0W^^4xkgiaVu6#MLtk
z8~jYd_HhSbfL;u$HTxP+CU(E&i4tg*D_O0G8T|kS&q&j)Dj^<8IQy8*YwNw-xAv_h
z210ZB0m=)$-keRT@h0GOlluBKw0QdrQpVLCPi=@9#z@OMd6T)#PK*v%rx(I>vO$8Y
zf6U?1F7?&BJYUP6GhPVN1#*fSd&jcK1_d1U)bm(@ZM>*&v4&j1FtzD18cPj}Cri~P
zMe(_=wBE6KEw_GJz4!6LrnM<0v$qD*lO)UN<p&k_pInx2u@UZ~1wnC6uUPLDC+C#!
zvV75Rvx%ovuAlCruH&Ee@o)sb_%wgw%A2VorP@dGZ;%iUu@2EN91_C8a8=yn^rL+w
zgacCFQfI_B%Yd=Hw$8V^_ST0m)eR9G-ATWn+tB!~T)HCZkwz=yUTs9pLgp^rSN>T|
zLqjLq*GowWh?(V|Xff_;kfp4JDk{alaub^OL^rl5`e#*TaVW|euWj&sucG(O(p-_g
z`64dn1(@tkB*f5hkUBz3`5RkgP)+OYG$_LRO96P|97@z{e#7agl^gye32GY7XQ%4M
zVa6Hp!cUTC+xo<mW7TBV$T=DrXs|bAJ5%+sfa{-ZbQ7VVQxV{pKFbW2Sq};og~+aB
zt=4?0shh*uYZtH}>p%0oC|BTZF%5&3D)H)0T*LF>QyH3el<@puOpYQ^9fPMJs>5cd
zukBfRE*kT_zAl()H$c#KLyhdJqw=-vuGr-#ATV%q18|!HyY__}u>~IJ4xbaZ*}i<!
zMK`qEYQhElyuuOe(~b%(G1gpvQwhu|XMH^`*`CHhq|P<P^A-*<R`UM{>Hv|BFHbqm
zjqq<)GJ3BuQgg4+ZJ_^&l^L?VC+u!s+=*y@CDJjaFDG7@R^KlZsTc8jxWDj<N`RtE
zIU~BzGQp9Uz}%o{wIapwG=y~cvVE&z1X0fOGb=DF=^ecz)chO2P`%ID@_^R;T#W>o
zm;L3R{WZ_khZ!&5oh%*B6x%4iT`hM~xF>FRL{Fmgotko#yr5#&xw-+$40^&@aA7cB
zd~l<BmXM`X3mh9xE+@>8M;(0MKE3|`SbOWRD$}n0Uyv;b0xBRP={U52f`A~Y0*Zii
zm(txKNGhU|Dk#ks5b4@<V*#7)7L;z0jt$>+JJ0is^S;i!$L~3Q|IDEy3j2=hTGv|V
z`8gliD{*S2M;LD=LkGhoS~*^N^UJ<VV9q(D4xXpxlDIUodb42HS0@)4$AH&wB&!9P
zuP8O1KOOED>H|8P6OyeN5vkrgH66=>00fskQq8|}etjqj5<1|7(IFGusX;Y4ynSOi
z<9CW|HeZqZJSS|kKP4(`ihem5p|z{*U}R3W%}(4HuwTIlS!pJ1%75AZM)S)@)S9Xt
z^XBP5x&3)a=$Od$WjM1{*Fr3<{AkjgIgW~DxbR+~MfYu*7w~NOVha~!Q}N{@vu~3B
zrZ+oWhOt>vme<eGF2agH?tye&OU}&M00s{Z3PoY&z2n#9t>#{5HHBvxTGDK_Saamv
z17}K*`SU{X`u@P_@bJ^)u$;M3Ryk!XU++9Ce!`&7tWsD7?6SVc%^`M`E7Bj%Q&x^s
zqevjL_hU?YO~D}u%sL>JR!SA*KZtF7-s+t~s9n7YPQl;;ud;%>ABk5%15_Rco;QgE
zqW_uWF@HJrRqQ85R)dQ7T9<)m;(+9Mqy_lda~^(TDn??arb0p@%vf=<y4W7aw*nfv
zxQv{jy(}N%V@kCJiSjDhp4U0CUtzv(9co+Q17ox)@W=%d`MT}i%;=KRd31f(qNe@U
z{2LebRE4Som|va1C{7CLk*lREe^f`yt_feh%W`k$Y`j&W^*Q!1Xz$X_X%C1qh=Z@M
zxWL?fcP22?{&;i&Mw%0ZCzxn-<VTgwYdOd0F1G{un&L$LNx`fXw~^6V_peKtm%J~3
zQ`;<gqlO*d4-eH7o(}o8nNdWjMh2RD+Y4-T-8p!Gqa_goHPf{V2}_wpiRmsJq@K{G
zUi7LN^?%5rn+fUT4aEv$EWKh&qXt$U2l`rC9CNs5Y65iU)5k1B=FLtgUUAEbwNYN4
zyjKG;1<zZ>6bJhli0wDS-tN$wSVh9&j^}G;M8N1lymX(TPNoPrg6cHbw<UPF;scg%
zN6=_<HE$mn*iL;RIQB($$yP+II9B9dLDgHNx}LZ3;ZqGVk)d}{ZRd$5!%ZO!wj(cQ
zb{rrGr_Rjf;fu4^k4^j<m@34Ep3Z=ceC(0Yvl9(2eh~G_beD>9FO%>Aa6<~TWY*Bj
zFkmYtCs;Ea;K|2N;tyq1-2rCY_KN`~qrPja8jqrlpH5{ny?Bm=2GVc-8dUbl3k@Fj
zX@R0<aSqbg(U_^XE@A2sqH=iHFDz`yA(;|*sCP4xxmaKW+SSyf+&CXMZ+4XKE>+~Z
zkP!|6={H|M2hBjt{!NbDbT4o_|E1ud<2DW{!eVz+r+za@RQ^O)!}h?fbPKlqsovWo
zh|J(KuXg7^n6S$n<x1X7n#w}1^$WKoN8bmMx6KsrIT0LZ)4_W+tFTPmz5^1i-%d4<
z_LWJFOs2C{#Kd^JN|EoVJww7W3+f1n8HmixR86ZjX?*z^4@Br&iOWIwx2Xo$0De=b
z)!}-wHC*cYXk!NjX=i!p_n>_{0o&oz1gDW=MSpy2ymayHAx0E0z@nZ*8?Vz_b!r04
z-!cTk^V&Dyz`pRoV!xxP7o0~nVR#u2smYvs*OT#wC?}R*3by1n$2NAANjIrK{O%fe
z88R<^gFugqs(m~3!p?bqDTu>S>5-n=$@OKtwVDx_N2JB(gHUk8Lud6n<}pXVYNS=<
zr077B(Zi{?y?$#48N_j4<Py`5WPa3nd4H5qb^CYq+VbTjVoogjOlFGH=f?tVw|J_$
zk%*g1cAtl5O0#5ZygLd?$8N$KRXs#ibR%Vylk)U7NPHUEDoPn=7IKUba+8vfcArQF
zWhS<1a2ZrdR^k=g9LZ%H2J+P0#5vU)gI0_D&;676ZG@ReH!I8qpetM$uQEa?yF2*a
zu5ki(jnNFrobqDmlUL}WG5%;^nEUKLu(9{P9;Up5US9VRm)mg9l|A?o=26pi@kf|P
zCU!2v@OWzjo$bxq7MYr^bY`+D=Y)3AFizoCw%7`TC!a_;XZ2{_6p0M>mb-RWzGEI-
z`Avi@@t2C>27Wvc#M=brR}xM5`TCo^m5aU`OXZfCY&c|Jn@v0QnLnPFrYtGY-n%1g
z7m4X;AvooII)hLV`{50fo(ah+<4Y?B;-r;Zm!q!NUEEo!fsf!2D@QK)HfQSGdaa85
z8;;{L(eZmpfiK|(k$TK}jugy}h^9Q(C^S_cdFauf5m?||Y>qlSOO@Slm3)d)Bzb|)
z`?xcNxP<t}7oEqto^DM`ce(jS1SYZ4x#m)%Z-TFUaqPbnC`Dku``(D3WFhQ@t=r|y
z+q}Ea{5dI`7X{t251kh$;vAVY@_?dO-%m4orSOBW5BnjB-0u;M12$Yg0zM4BNKu7D
zzQ+UG`&AXbYJIoIw?B&C=1lA10h)M0ovfvnWc`Z0l618k^+w=_hkAy=v^srPv7zbe
zjG+4b_;{X5Fm%Y<a<)#qK9o`X^O4^<Zl(H<;ufM}HlmC|^D!{**u>3N+5x<=_%|4G
z7v@0jh;N@udMHJ?bi@;UW434bv%1Mrt?Zs+ktO3F0F7gvdOML}c-Q<E8-#lR$nEN_
z45AEAUQ~k^q;}M0IWxZ9B~&YyD`tD#PX7Da+rI4?;QMWQM#{QD2RDC-<h?twCHd&k
z?l?Tr-=@dQT@Es>o@!1$<;)>EGAr`cEWF1XEnzldklFdtKuePXshnK3)xPy^V@Fsy
zX4E9Z%LUzV{yf{s$xs<?B;&u2ywjUoh=a$Jwn{d0V%M9xg*|@tCd}b1^gYvhPMa{g
zO3^Hqn06eb)r@8YTu`&@wlnZX*XXdgjZBHX>aA#H&6)9G-y4dfJvFaKMGEyJMaS0x
z@LS5=OxWR8YiCbqGaMv$eu*>%&6c0Y#t4Y$_60+J%AHcTZ(8+FuAk&5plJW4a9e_m
zh)u~{lI%Qd(Bnh+_gK(@X4v60YuzWOP^Cyl%ZX%8A^}~>h|FLStU8@{-fKce4|G}}
z{+A?ct}oVd`<G*+$wd(WeT`c_lHP$4`;p$UjvgUr>;3ShnG>ryOC6FM$oWOW+J~;s
z3!t?F5=@&yy`Ip0X#r2Q6(Q#hiJ{+gDUWeyLZSV#1RUaDI=c3=d>=svu&n=nVeXc^
zWBCcnlstZh;S>xb`vpCkqPzS?87?caY_9X4kn;T%lFT4yI7jBwnp-4)--f$%3_qDE
z%>IdMX!UGrthKa`kFMHp--CP-)bsopiL&oxT!6;d`#whDnu@I2eG$G6`p^4c+M>5w
zbz|P<+$yx&lIoMpD4ooCy=RlTqWfZ|T%Tx}da$@Wp`&<nlMD5RtzGWN+WTfrMr+%d
zG<}{7CCFKk_)@9v+810=L^bcU*^5?w?c&_~TcyYM;})9|XTGzi$x)qr&R#y+!TIcD
z4pXv`MB#42^(iVlI+JdBW_RJwBDgzW78&;!!gLrax`gb0pMP^KAKSfv1?`94!s+bb
z(TrMp$b*%-ySW>{!9EIhaa)193dZwu9vd*z+2UfH9j01l;JqK}yn1s(v@$V3ob^hL
zHG}wno;5c2-kMKOBK0n-3^D26(c4`?1eXLtft!ur?Bw1Q>B@SHJ>|XlO7-lgka<u-
z6uM_OY>#K?%)27zo;6x6c%z$<yqJqYC(cPn0n1f-?bgJ#{_aHS`apmQY*o$tL^AnP
zj?cscu9McFmIhg-@K}6oWeOoLQv6)MpzLl#IsE$kM=W|W=CR8-+o9`SG9-tTOe=vY
zEc#V4C00QzB2rQouf}_Y?;LyhM&)YjDxr*XAck`{as8W86W#Kc2fX~8-=yWg?nu!X
zpKMX3OQ^XYp~UgoaT5k^Gk2ciKh{&iba=2)F8ig&SisNd3~3&zA?rEE0=&z%r(#<G
zJEhlreaIGk)&k=(;?<+s*4AH6a%~BTC|KNAa1&Sdt;Sz~N6KIwNKm@@>tq#?pM)=v
z|4{+Z+>Vazq2JdnzNN7<x|B#h-l7+2%HTeRm%OT+m9)AC6SySPy)d@~b<_)xGhVTj
zqEKT~HZ?pLl*FUv#u&SAlMu_6=tF@SC|+OC5V`-xfkEX|xjob4UV|YQ;O$6D26#KP
z1X}6L4)S~!doxQJp1klX=bdUs*LG95ZOO(JuCM}^jP(<GK5X{N(Q#A+@omg>k0WNp
zBH-cMIuMRD9p@{Pe^(#yZCcKIvp1mxUmTF1I(MawM{4AOH;K%o?w)u*)XA9U^jMqx
zTTp=+2N92mUZoe>=U{(B>{DV`xeJ35^O>Tr&l^wvct!S>tYh4^_7)hgAoJe7+mR;D
zqi3qydfh=x&aJ+pO{L;|n~^6r6Hd&YD1qHwJ(zP@XCAgJ;?VAJCPr7nW`6F-e8K^c
zaRi}-9yF6nKFGT6>B|_bXPrXe`EV2SZJNLgqb5y~DCq2cBQ?cI?4}E2dv!RL|5o9;
zV_)8x)Td18x`JD~sZ+^T&#ng*JmWO-E;VOV&olx}d&ub&CUfdx+Wndh@!gRaNp~7t
zGzVw7ehzX@aba1{@w)Tw;nCurXfQCaE)`lvB5+5+efNC__Q4O9T3ot?jA;-11osBu
z#HJ`*9}rZ~F~4=3>xqQB?%y=7tnhbmIqw)dTBV{j?M*%_cZ5|V*f*vG-<Uz&>icD0
z{VVV-hO(aSbm+?u%~N^XQzg7ApwATAL3FaAnd6~N8E>w|;YYnZuXPtQo<5*M-G34a
zoHp!OC6tQECf$b-sIusnKrzebD&#tAIM~xM<Z@IgDiFu2Qerz|Za}@JgE0+3>;l0r
z4MsDA&6q_m9c9^1zBamvfNWne5V4;_7d-id>2_;Gatw>L@?D;{f9GJU0tLOm%%_7;
z)$+)TD$&#k=Noeho0L+3`0aCOZ<9AioaKxpbhl+_tbSX;Shn0%ow0aUhsxw&Ble2=
zMy|U&U&Z#fP>8a>B{5A9dA};BH-81xB!$z2*_j-DGjUY5p<;vT@D6;=yYs*%<PI3K
zHik1L%8c;^le`QB)|xhPbu{yX_8<-{<`03gSc-JUe*DpBU#@}OCOfM0J{*iT26I8Q
zC%{+g|HLR#^=%M;O*S-F7pU)ab(Tw$v<dc!Pk-G<ABf{d=fxxsDu`#gMZ=c}*AHTw
zs}zL+Qx1fe=t(N`jI45P7Wx;?t;$FGjhEXxwNjnmwtU2$jdW4isLThv$YW0)nAw$X
zfsTq7QAydXq(g|IK=?)d_SY}fJ^|J5Syf{1@}Zp(iOtUPgrge$WVx~0DV<fj2<iaI
z39+mRqlTOi^KAr7T2YCZSw!n?vJYN-6TZG1XSJ(W{$o0;TfOnEq+&w`_cCR4O0`jk
zCU|6-Vc#91YDROMhx=~TpR!?%4_d3y0%_dIgWOwAqH0QAZ4a}@1H3`9R`c?9{h8=j
z&ROg&CXNTAd){g>8O^_l3TdFn!;z&W8QXPWEAOo)tt*rol$w}-tObku1;%qfjAjv$
zwMdtQyL={TY#vs5UEtcH$DE2?gXypIvMIi!GGSEfWz+yHy0rpy^&gv>_H^en#Qg~8
zHmDW7(b^|r=A$>ut>ue*ZJhl5@{wJsd&6`2ebKnH#qu|=-9-t%x}+ySZszm2+68_i
z!x&rLNSrsy%=u}H=sNXd5b}F9XZQ8td?;or*PFLl{&%O2DV6}s(Oz~};B4OcKTKkm
z@%Vi*Qr`fW$fU2S8tzl$iA2o$150i%XxP+!P1h-U*&UHr;F1|V4%lm<(>a9K355Ov
zBLAiC_0L|kuY?e_V&;7a6<Lk<?Lqul1!_!mL|K!nPVX#V3R26$T|pQ~%|Ipf|EPv`
zDr7kWV0;;;5tlyHc*ig6tUq-mfB98}8)79?QT%*D(+BzNe#6K6ZAwO(L01|}OR`(9
ztPULtxoF;xh*N5bm-EFcC`IMKy*nOSFY&)G)}MRs|M(SJ<S3{Hp9Hr~T0FqyAew*f
zqq;6VYNpW7K+HV?0LkD5V&+8%1-QnY?f--O4fU4=;uix6Jv|1b4~XjH$C`sE`E&I}
zuPA^`!O^lxQ}d^v<hv3YXo1jnyI7Y2#u~Pn)N?fi&UUkQ^S~&d>?1A^0D(C*exI&W
z2+l^1^SzzSz5JV6M}PVk{@twgqx{3Qs8APj^T+=y_OAs|FovqyWd42te(ZYE&-YPc
zgBT$yI?r{pds2rpbMpHELNh=6mi!AE$Tm(TfZ^z4xt5siU->H$U#%>@VmRNervJuO
z>nl-q9AF51eyx*tZ(;r$WA8+`grp>%U#n1Im8R-1F2%3fgFpX2Y(OncS;5*%trHXZ
z-&lJC5&A6@X|ESQCjIgX{q%PH<pKWV79gf(Vq&?Ea=EjhW#Pq9HUAX6;a5owUf5+p
z2W8HN{cuW+GMZ>y(y;a1L-h#U*|VvRd?$CWl?`-j6(udWX%z`+p8lH)z{H9I-rQB`
z>9}FX^Ot_<y!c~*`1!H;`G>uCUQtssYCE`<3nI3RuBwy%c?tcRi4p#zH(p;)v`cGb
z8Af~p`*N_nsnI*%r3!-^>SrwQBC&y^uup&a=lerGsQ%@CisKCih-<gTsv+hVxkyCD
zvEX>Z*aYQ?{PU0X>pwN*P)#!=w*Oy)i$8znfB03w%|HCA)`LvvN&br~MYN}ZFj$WM
z`bYccXCYh-AB94JM?Hh<-MhcL760@P`$CBTUfl)4fBK@I@9WQB7w&~mg|T~f(jY0C
z&nyN+a|9GWY^sm}zTs4Pr;gw+enp91A|SYv|A<3DRzPSL1}afpiulf%2ldY?k_a6_
zD;RTx^h^}J+i?Eg-MlFWlxmPCh@Vpdevt|_gG0TE;r8(@#B2*5D_CLpTga{~D2k~I
z%k+Ln9J}Dfc!BW9z{~LD;C%EGn~c?<Q2Id``0AH=hN+=K>4RG&IrC|Ve-K6&f#d%e
zhSG|Jp{%eHYn8?T`%4hC=_D_+fch`#1|ROmUq4(lF#tS2A<O*K<SPRKz>0-xzWfpR
z0h(k1MXtNGjEsnh6=U4^+<y6S8v;gyE~?LUaWUhXS}?Jig7V%>AH;Hx14f+ML=j49
z3t-z$bQmxuc+9aot$d`Wo@ZQoy`o)ceqyO*nvP1d!Zmw@72)6+lDYyp6G*aGx=QQ}
zoVt}{P`Ft(Mtq*CwdZBvC2oOP$ce0PcLM26oyAJQbK4AUdB(N3M)QbQd;rNLF>MGx
zD_zr9=D4>~ABzk^6GT1B^*?^*%a^A*mW7)DfFWshE=134^uM-x4iVxg94=Ij&Z#qh
z<(2#hNVoV2>7B#1Ag5%uC-W8b8a&@68;?vQY@HF_d<i1hd|}mm>4x9?(`xmfw~DEW
zU`@wEfl$~inl%VgzW#j5ZW1A3%txq@dPC{0a_u~b-R%&WQWsorLpqZkwVLNo@uS(w
znC(FmF?6WM{8si@DPNmNS91)1rslU^a2}oWpH7m`^(M}GI}zxMzuleG1)k({>N7~9
z4(JW@bHQWWqyF^qX+QFNoIk=$vWYH&={dO%o+&$L{Q=WhoA13$v>I7yX$^ZIM-DQ7
z*1|Q7<gM#tjk6Ao+c$m?z=0uF9!?837xE6g03FEdQ8piH@4EG`Yos?)E+7m}DF5}&
zN{FcbyVrW+!5@^F?Yy&EKeHPhmBzqk$j{wS2Inq;UBeeF@`y9q1S7_ALEcXaiSs~W
zVaolKw185SSB@RjhH3d2W>g8#q~JW%;zk<^+T7NFR3HH-u=)-j%R=%d%68^57tu#4
zSfUV&ta+ltM^us30W#8>*IV!c+Y3i;7(*F58drxBV!Z#Y4l(x$B2MpUQBT+77t(`U
ziER-DxRVpJ*4#r>HTaz#GfjiGC~9MIh*m94iRBKxLHBP_p%>xi7`$6G`LKqH;J*h2
zi>oxa(=kd%HsG*9qo!B}em`q_hl72bJXqW0!ItOG)BHg|?Sefb95Nh3Ccub&JQc*R
zu8cJNmJv33S9e=u?W!$YA(X}N-VaD8izZvH5hza}v1C3{1rkfj#NWPr6(GgLh>B5P
zd={4ZQTSJz$HWr}bx16E$tBv}56*RYFk#8TBz^T^Y|me|grk)pVVHtSE&ntzn+IU}
z7D1kghz01JnlB18sQCqZu)8Zs25~?-NdEE;pU0Xxl3#*KoNdtagOAInxkbZg+HXCY
z6UggfRWsB1CTNi#Jcf@YrV;A@hBz=?5qJ8CapiP+EgW-NwpPX$2YYf2Mv+c(DkuUr
zFuX+>&#ytS`{H!IQT-X8QLM^y#~N*6meM3cHIw76KP;U-J6(y^A7kL@9X-Y%(!X>L
zD7DcPiYku#7q{VzS~w7~9x})x!*DOf0%pm2zOSzZ#(=W4O*Kui&b#%4fESW4VOUfx
zf!78OFftCMBJdv~*vVj8!B)2URk$1U1Z`%(R|^e6ecw;J+YjcEN-^iZuV%u<@jYA>
z!?`k7;Y1um!d+U66p#x*%bG$zAmfFfwB`?RFN6Jz-{HTw790(JWJ0K4jn-6a?BD?v
z?IkFrNj$v3GA+3YmUWvFe7d8KWSWlU$?$$2iL_vLezb6P<KHX*o_-)~-<?OesHbh5
zAVcBaN62$xK3#8e#14Ll_OQ@BD#b%doWx5`lC3$T5TjzbdCtolUXm@Yy1I$kih?x`
zxU}#93j%OJ>qE?($ZLpfMdX1l-xKcO(Z^Cla#4-cK#banIv&J(r6gcR6+Z;{6vK+H
zkyPyW+~y7s_R_&fxZodLVxXNz0N-dDEKD=Pi}~-pZfr&+AMz{_0ZCg>yiJCHZS-)(
zb162yqNkrD`Tr^RNbKlLnIr^1&ENS1861X4n8Yf0(@*jBUOT~mB7N$K51i)#GW?fA
zQW<mJ{q66Dev#RN+A9yJfkV4%NQt_To_6<lW^n><xTuCwWTI>B=qtmo!BD0vrHQ%+
z7U9+n*J#O+%azk_Yhmg{nWYJ~e1F@TYtdiT3hiL#<a2ps`&^#=mv>{Q(OFB}=kjVE
z?K@1uKCnvI5ijWn#DODD%fS0>Uvy*3#Bc&rqA-5eRz;5$Nf_FgEH2??tJuy|mIJ!{
zaNm(-OC^O!8&%5TEJg)2z<{#dD%44Uz@?#ksg_2p8~b~cJU$o8Q#-enMz8%n{f%k#
zk4o8EGo6sZy>_3?ptArXYDQpZXrlAkTVW2t+W%bt0&51sk_MR0nb^W3<J!%<ju8_C
z1pMh~c;Jgh5FE(C-n6*Q@nqg}875H>SoI?nd&^Iy?xC}BHmuyQX@Fm<SB;2`^%PLo
zYF0kcx<>hT7XvVP2nTh+k#WxcTQv6(TkQ`X2{0ap&_&f=yU!<i6|uNbh&bzyZ1+Zw
zOB8lO&4Mo3K*{bC&m4?IYSw$B@+^Inq;?=0rM%-_TOJaJ_`vSlgO&#gKF+1Jch_}5
zs!Sj8#HJid3??Qqb%^IEd%21%S52>F)h+LF|KNEp_~Q;3O&~zGLuQc`f;znaA*ch^
zO{_?}mONzzi!^<ncZxWqcr_!@t^nEX9Fy@R)nH-4kB_HZ{%J#-NR<HIZ?Jy;Q+(~f
zV>Bm^i6PMCrQ2fLAD~Ft9FY|7TS3$gP)Z;*ModStOl-XCU?b^Q(I6Dy2ks*Mk*HfR
zAC*ovG||{=Mq8e3phA`HPQuC|0NeFNm<$WT{>QrlK^e0%t+sf5CnNBW8%4rW%XNC<
z6S+tGGYx$2Pd+uwzTafwlA$pqsifr7PO~KU;U%t<!yPoDry1!pQYM~eMuaa3j6g;`
zBFr*2n}=c8%fm=2RCPgrg}60rMFQ;u^w*R{r*z%F1Qeg_g`f-yf^%;z$4_ZSR=0{D
z+}~Bo9;1gGQQPA`Uxfd$zfVN^-VJUNY2Su)FJ7p93wUN-A&@Q(h@huD>gnCi_eM;B
z{5M{M)-Uqs$Jy`TXqv?~!d=#NY-E<a&Hr(!KrEBy9x9_O=|_?U<PohxWfqNOLy?t(
z5<woi1kIwG!{gGEqB1D4gFPqO(k0&e%kUzaLKs-xAdCU2B};@UDG}mCETXNGixp^L
zJFYEhS>C4_z6aGR^+hp8$6H87VI6)wiKW^%$n;fD0Zj~J?HQirY?3rRsPdF1kD}t0
zc{#`MAFgwOnda$^2@or6+DAhYf!B;)b?MWiZq}d&cMz#qJ#l$2(Y{!U?|kRwsZ!qw
zL%jVN`}qv-#(wiXh>whdYE30x;M~UO!M@v23**nP<X`q*g6~R9ocQtcfFMEg1HIOn
zJOH#PkS8fGn=vHX+*(gs`<MN__JAPb<94nOE^{T;Nkd{D02jxD3jxrB*73`<Bu$0s
zm!vqqU~bkUV&m8gcl?FG$vtiwO2(3MZXPn%+MqdP3da%3^E${d2BySz7}zBVaUgXi
zMcjN3prK33hX^2*@+zPDw>T%>Y}CWU*^bFp1}}ox&LKJaDOFQts9WB7=ZI=we=)rQ
zD8Y5j^4)wA6{SwgPN9a2mENRWe@Y_e)@2dXIhgvSRfQ@?w<G_YN<CePNaLXSz!5S!
zbLXn$B=zrmh7Ln7#D99z{^vvX3|WBK8y>B9Tsw@q#76tV|73Sca?B}~1|iyFvZkL(
zP6<;~_x)XDAPCTP3IZWm<USz70)d7i^q5Zx7bKdzQcA5y{Lep-5Di+l?zKx2M*oOO
z8-wgbcIY&@5kRz@<y>Db<B5r3gdJ^Ihu;OS?PDq$QIA5H_t;sx%855<orBBh`u{!E
zA%jiw+ivdwdAEP;)5NOFdo4c{-%Yq&)4Q?d_vV{apRuT~gwbR7;?j*2G6awfr6$^P
zTkQ$!eTCp6{k8vrcKYc-VtNIuTJ|&Exiy&N$;Dhsk4k0`OV_$1o~)DqZ00YUr4Z)@
z@PQ8Pm6P~)iq--_%6eyG(Ms1;#%D4jK&1r>s@>i9J=t<?If%yt*y(h~6~n)ReZ_PM
z#(jnsNGJns_oRR113W-P8=6+#jf75FG?Fd~f7BnEv<ZH>`ZMwSP@g{~C-(2YcrEhx
zyHw(uN|71t+nkDEJusYvj5k`y*HX{XweU=Tcg$p-sMJv3E0*`POq0lh9R?v*pqf4i
ztRIfoYxlf_`b8{*?e$FRGw4%XstNa|q7D1u-87r)&9>TI{VCq)KWDK&x|x2ulx(XK
z)4=HF{jFgDCEyIe;swZAD%SdfaFD2Nv`l|~PamKAhAirEMn@STX=F&2g2RKT2hYZx
zXA<5~6}SpNS@0PJsuMyCzXyEpg?AiLYItqL&I%=4ek&dLGhOlGU3PkSs0H?Rt!xR4
znkO4R)v%Enz6Mt`g>%<4AAIkPQ81Ijw%6vvUHqK5K(Eq0e{uAu90j*8?*fW@0=@~R
zLz05-1zUhxi?_LbzE|&MlD`S)^515rTj`@OPo-EUKRl5$44Y97roSTeSx!I@P>w?+
zrte-|`{_CPYg@O0$}cJDH<c;B)-Qo1J16!bGLQTi;xR(U{w3d{f&5>I2YI~EFbLYB
zJ4WP^#(x?mxCGi^)1~1urNeXwU^6CA;Rk>>yhjx%TR8nN{W#f8ffwxj#TmVU^CP%%
zU%bQ3&=sL~VdhWZ1Vy@IeC2dn?ZtXJio(4V8&5b8Q|nMHigOU#!Xf@%{+G1|Mm(S0
zwy2BmO#{et<98~Q&qT5gSGtGsjInYnPNqUaUs^u_oF7Sd*k}EaC=Vp}VExJj6m-Vk
zxOEK-9B&9mv&l@Hyn*~~T?6YfU+JfY4;NY0Xcuds{0h^wJ$R3tNn}FCwM*0VDvHI4
z5va}22lk(SI}zclZE&7#o|#OLdK+FIf}j+_W3XhBh-DhVY4t?n_Fw*H87tb*q_1-4
z!xIV$V#i)>j>BJ*q=Kx&lkp>ys8G%2ovHG)eT|+kNkkxK!u4qEC5yX=;_T#uIDSVc
z8yEJ`USENfbiq6IR!Mn=$ov#y<2oZgUP2qVIeb#lRapZplHczR;UHay7rT(znXMz3
z%qY&b&6$T_xuE15q>6($*=Qjr(+}9W(lOp4%i8>U2HJ~p<k1x7qt#ya&GaJfc`H7v
zT_y0<y&`b(b;bKBrofcY#IvvIfPMuuE+wmd>-ETrQGpY;)#_e;NTEP<<c(*uLsOEQ
zhH?>tU2B2W@@}>6)EpQxg-@G-q0-5q2_zPOcR__%(W8A$dlsXRQ^1HPXg?<51ovrB
zA`tRB2<3yypY0J+<}m)H4hh%62hR4<Q(M5&=A&Sdd%Wu?8RYFd2+@ppVKJb=+<AZG
z3J*$-{gC<hiN*~~0rT@RKEu{IGLtRWA$O?P_{qih?1yn*AQk~LuL1_9WW$S8iz=WG
ze593sHvpIASr4fqEo}WwkqEI0PDJnVk<?Y*_m&kul7685dxW2(p$H1<y205^sAoym
z=6X0aZ=x`O4i7Q~E}1}HF%UGSfW1}xz5>W<uoLAP>I(C6DnfA0E^T79RNY5WkF^Wf
zcR6EDMb+)aHaf^TXE2}?jMBfIVu3?bRx>1+g?Q;f|E%sl)S44$Pb3lsE|lQ^577bv
z0RgFZwQ{F#vc?+&9I2csHkRQ&8wG@AUH{5}pOzRC)qVH`FR#$qpMzx^MEwxPnx;AG
zb)>3o)w+7JbtTaMCmRs@zbDZvhl}?|(OFf*+8F>@y@@e(KSfjt=Y=|Dggz#n`}}EB
zb2`&Dv_}SZrA=&mZw-x_9CKSm^0BTT%9?NUv?cygxf$((13d)4KN*!z4pKk{K}RQ2
ztvO=?)%3|vw04&ej^79?DBLxz9phPnH>Z^)F3QV^_Wc?_LVd<$Nc~U&_=SksA(bU`
zCLS85>Sy<`$A!a6ot_*_3g<%YPUg+?;t8_Fo*;S2%82w)Sgqb!{@pW56jAJ(u>I<u
zw3*3GB~$vUz#!hmwCFp13rUYSn_gMDY7S`aeI*pHr=7a}*BEMRy&q1GAMk!2DCKP)
ztWZ^6_TJliyh~8ynBt#|<O9RN<CNSrBqZjlRfg1n7HGa~6hzm%4NrN8WBe1qv26^e
z;2gut^kqEg(c`Ljl0amwq+tr#dPw=J6xhKhjskqvPSj8(#A2Glx_MClIlgvCb>rZm
zhVJ?62Im*-S7qNw9)5O2dE{v)TGFCh!lG54@64syoa^2<EfTth^<+<6Wxs^JDy#g2
z*Lcs<VDzAfp-<a$*=b{7dIA2k>mtffufJN}>!jy7<f)gqu7yzQ2JU^Mxvz@V&6;-~
zsc;L^X+n}nnP!No?mAse@le3oSR8mOotj-4uMe!gR=T~TtHk8`id%0uWvqxTQ3!kK
z%Tu4K0yY6#&&q#jvMl0zJhv<3(zzu}<_v>)R}4%UZ(6Q;=oSf=z(L;=$}=Mj9Qb3w
zy}(+;P4ZJSEIb=O0H+_HO|}wh1q3!zkRMNhj0O|-P~*5V;Fl4<=vS@;sxEW#?Zi)D
zR2YagK?DqNN;Mt22FI~r#<iCRr?6AQx^~n^I~W>A0`T`ReH6gB3GYcfj4JBXwIc_v
z-vyWymqlMRdepL%W4L9UD^F#tb86a5*|S}q4Yo{7Vi!WU8rX^zu+e6+5^hcB4xCF(
zLk^JE!=)VyAWTYyCj7?kbxA7OdNX)1Q9VV4Q)bE)oLq-Df+UKGzwNj7@-;d9^y&V+
z&omxQ6IXZx!UqQp#jnvxl%gFyJmuaw4}YVfm|4&Wz4LQPvn7rv{M_Pb^`XVOKEwW_
z?c8w$xhK)0?PT}y1|Q_s+21_cz9cIfgJV+sj$c`G>vNpwFYZkA?}}$&REdq`yBGaX
zLhs+>*8fp#{U5&-ee+DhY!L77H-^96F^G&KB=q$e{90*Tq|=W5H~&Bs;D{(@<gWZ}
zUGxus;MaVT4OoSKt<f&BX{7(ncMtD~7WntQ`}+_1i?xV`RWV0bNX53P_jzbc3(zR(
zV@+cJ`CoYRdpm%Cl?VAMe#Kj6llOz;(7;GvmKL8aKN9-x=21W~RAfc1y#_=NUVuxI
z$eR%SA9wQS=j+c4*Ko*>csA#-+s0d+sKr0&?#38jPi5lKOw9IqRv+uaz=>=}i<^T|
z-0_S4VUZh(c}m<|lAaB3F!4h5vK38nPLlG+*=+GP_qmrA3q*hUolYK|n4EmpA#{SQ
z>zBgnKYyfO{tE3(06B|tXs6kBjK(j&!T<4mH{538sflj>Gq2^B-{!A%_kX@bR-1{3
zCoH&?Iiz*}|M))t`8z*<9h1+$VC3Q_oc^m%pMt`^;<=4>x|xg-|8G7$n<i84n3U#!
z!BmE)icQE5+7-__$|gz&DE^yQ>GyL;u8PXpXp|Pq`3r`%hgKn97)4<Kp@m&gW*h1r
zMgm!o-WoDU0!h__ctMcwMNMAiG?}>pMu8UCG;9`;RwkcCXUfTR0R4KkAoQDRV80nN
zKtI*6=8f80H2$%Ph+1Sy_XxUwbgMAWkZ(&6ec*89UpIrP3LknS7m+;zrlbPpIv5by
zOOM`SFXPNZ0^T8<XtkcvCkiYnF-U*3_*unoWnL2y>{gt3V&{Gu1Txtg*{`V^!Y*M7
z<LgxLDW<}yI?Xt|7AUi}P%)Xnnb?>^^~QdIv2g1w*f$r<0tauvw)R3@wh!4c%4@Iq
z?B7oww*a$oI*e61>)-kR{pw&`{>LJk9)~#eqIqiecs14NFL_6Ujc2y~^#k!nvRs`K
zZc}ZoD5PDm3az|IceVNuTI#`E#u;607Y+vk*QgWtoa$LbRnt`FQvd4l`8_{@U<gBO
zd3T^ty>`VK(8&;`n1V2kuXfQi+WIAW?=%kIUu{8P(60}xjqO6xp2?8x9sKF5w0BaP
zk0RV@Qy6$n0m_JEZXa4*P0mZh12CDar-S6HI_D#f*CYg^kirn=75tYCaXuaCDy+$|
zy__03baH0s2?FR<8zTwwa0oqx45tn2p;G5Z%57i*DqP?a4i9xIht|%J0?^XR4Be1C
zQQSf)3=ZXC*Y}^@mk<_ndU`iGwm=3_k|3o0T1`wUG{!bCD?sWZm2dm-4AcRpcZ<>}
z@P)XLB{ojXn~dQX3nddD>iO;X=h5qJ4ca4cIH%F#;rJ=0M?&jlDR@9_n3OAp=cnF5
zle4QiK{VEI+Fe5Hvb<y~Ow>tHjb-n<Ly)xdWUrW3I9AQEtj2uA7oOHDcfN?gZ|Elx
z{1P%y-xUN<V)9!&CC6)HptHWXf`4WGAYdPfGfJ*)hnO-JK?&XowsqA<P23gD$WiYi
zzsGopVDNrKqbA;`j_09HJ0KPxIJlK0xHkX9dIxcpwZMZ*_kv!GK2b<2zk^h~{Pj6~
zr3>2#Is>o;UaJTDqX$7HL|s3xOMhMN*!b|v6BN)+#BXoK&tt#M$wIq$80`hXGh6dL
zI2ZjGvn#nq6=*^>Ho-32?Vc)VXwo<kMQgqd_I-WQ;sl5a{e*z2@xVq95>`)}{`=qW
zJogQZODM@!Z0{A&iqYn6f&PGYM019B2T7}+g0rgJZRUPU>7&rV;UjWXKcoTUSessX
zR5=H28on;#6+*QBv>#q7MZV?z$c-Ky;BL4FP%lBm-);dW^5{zz%Kw@Q+koCUe>suV
z^kpqf;IB!x!b?#l^!4$%W>_+8Sni;@092bPa3Lc0tn9`xyHx>+WADK<wze9Q?`ZU{
zR6r=YwSE3RPp-<_P$6V)j(sy82eEz~$l#`~>pk#ADV+cpJZPn7c@BDSxnBMc2U|e|
z-V8?v>TXuJ1L=clIdCkfrk*WN=6zWMty^gqHHd7M3C>AGTK07g#&fj`R7QM7mfa+N
zaVPpQpR|OWvgp`;vAjwQoK!?Rm1Q4T-;^mDNhVae*Bvd)0Egl$2zEXB(0fQ_W>x!$
zAO*;tK&K=YBrF}S&m(vY#L``g+7XsFGB-hbc%a{S=BSv9pNMO|;Bm}EUthm-{f4U~
zN+)yNY{;ghs2=Gy8*3CbHCiA#UE8_i3NrLBvfGj9`S}7sq8|x+9wMCDsj2}BT?pkG
zTIMw9cg1HnA}p_TZ|{RHxfu@oR<8Yb2r)=s1I|n=x1N1>v^-dyZY!BDu^#9w4ti%T
zS6=~8GujV{*j<5+>Zgum-JjN@Jc<IKIHoEO!Cs%fN>j0xz@7eeE_*XY?EM;pd@9?m
z*StK4&XC1Zm3JQVqn?y-C8nJ8bkRD6EQBq!=|<soa8+o9<B%?)yJ`gkGlX}qx9?fg
zH}-6xYu!)@>2UmSI&x{ZW<8>86Vfq@R;k7iaNy7v-EG#s!2s`i0cb}je1^f*z>(i~
z`bZ;+HX#VJc$Ml{8ZEP9`h>P;ds!8<4qC2}iyGg?_^U-q_EYKU2*WGd0#Bj^>#Q&q
z(9{#AW;iR0VnRJei=K=~QqxmwkWGJ8FbTA0Ok3GGn+2bmB00_4Zo&=$eN8KvH75C*
zd8uz5yjoiv>I*)7@m;Hisr#$5B0pZ{S;&yT2bckC(SyyJ1EhmHbZ0Yc%7TUpH@XE~
zyHYLYjTq|+r=}A#x_93`qCXq1Sc?*-cGl~!vLn&v{t_DXm&WqHHXFrM6hds7Ph?|I
z_QI25hb@XEJLj^lUK7v$%uu^6v0#!lJF&T<ViLYSJmhw?Sy@c=&_6hhdM_O$d<6Qa
z473DVZ)B-<`z=wDZ0%Z-kA93JzM&1)h-7WLa8=*2oKpZPFPvwqwTC><JijNz3GL^&
zk|&?v;y&8jBcN+G0Ab?h1dD`1RwE$V7@CD--N&{W?c>Dn)E^bVCOkN%ML!SpVB0{d
zVPWh33$V2xJS@(%Skhe2P!JXE)v9}i<sGTK=R_Os3A<S!uUbWj`L3<kHl-P|nTfg~
z1Ft$x;XseQJb%$uPE^m$=@dl8GKM506iA-%P<zBwln*Cg*5Ugci;A>ev86I$42b5d
zIC%;2rR{d+&)zRn&?qrN_0Go$=~QuW-Y#U*d0i9S`ochLXXae8(TjNfbqyrucnV}x
z(>#`eksWgD4ny}r$gq&CMYWJ)c(-WxD_eTPVN@aKaY-9_M!*86xMrYNl0$_#8V0BO
zl$t8WJ2Hi3B0FxdSaM>g)F`b)x%)=<-;;|kEPp1;T)hvD{?{H&D$`fj6E57j+AJKC
z2bO_YFNGnXSH50cQ?oB@?SLMZEg!`vy=PDUxWmTzwSZxQP;St+L-_W5`?{#XC}#aF
zZ6@0Q*O<?N@^K7fRO-3q{`_R5Gj2l;wNQ)gu~2TJZxjLELpzeKF|M6ASy73!NEmOk
zoiW$7Mh3i*!pzYkj`BLKfzP<4QR9-&9#$6s<)cshh~`GFZw^UwtYF*H^?{i6hnH$*
zJR%B&GG|!Ks6{looieQOv2@urz#b9oe}f;dhmaVJ_IWyrWHi<WzC0!2=ym5v6!IAK
z&1{2pW5HCVsDqzEgHewn_=u3zIE)#yl*UT2NbVoSmHrd^KMyPax}&3miH+sZs}P=G
zazzAkO6jhp*WN*KFo1~YHPcs^`t_sx5sR(s<LesT9@vTGP)d^w7pVbt{x%%DqPA9D
z#Cjjk+%d&)<3frBSkFk{Syd&cLN&mIzGw6yeeWe475|}Y@nZ0pvicO}3_cSMi>Q(d
zd!yR^hLgC~r9MLgh5ZbsI@@Be9%q-znP=6b_gCf3Kf~PRbe4hQAxHC%_ocfnT;Lsw
z3F0nin;K@Pm9O-5@NwGixrz6Nctf62GeaPiiHP2=Fr|~Mh*Xq8%N0sLN9Px=y3@A?
z9!IFjh3RN00Sqwmds_<_t!<~b4=Q0@dTjzizXrqN&(t1t7~zH_DI0|_!;l0k6A@Lf
zVed%#+hG^Ea-1?fQas2g*Wd)Hfpl>{b<3>xoYN$~Jock74<PFkXW)7}_9`={oI_KZ
z=JnIN*_%15otg7d&Q}zB&20?AMnb03JUGAYgSp2ovtOgCuiN$!IiqdKa$EOB_6HH4
zNwD^}|F}O)uL$-kMA|@sR2rDW#Nb8PW#BLxOzjpZcb*>)<x&N0f7b(SZF=mxB&pF&
z=fjzU530|p6zJ3*WWS{~8K-)Mr#m{T_szI+GD>{|HPsqVyO%HrOy=+t{o(~MRbV?E
zvY&9w^n&67J~#w!=E;v7W5}J6rqXcsy80$<TGg)=;ERPmOZPdI{D-P-Q+q=iJCYtA
zT{?P_n5DOfGcw5=5qM;VRj@>4gd`HYv+L_HQfjZ^?086IE1diHb$JApUoep~GKoO~
z1N6|*1)RHKj6LH|aIKH7(<+X=_FOZrG>P~kRFjm&M;yw%_#HHKA4!vfdv9qW%|_hJ
zgrP3p@RO%mYiX^{)S?W|AWS>zM!}<b>C3y%$58H!Zo>|rDUFabPwYU;@<a!I$Fbh@
z;%hE(oTa*c=_o4tl7g*LM-ZTuN$zH#Jy4FNNn{sLjXNJ*$mZyF2OjO2?A<Y;RaRfV
zF146(`Ib_vA1_ClLc`wN8sNCEG<-j8R|cY>-%TBrvWx^yMWfFzulTo|3yOy3V60sY
zu2-S=p8D8JTf>H2^L?@11tUuIztkE`8U&PCb5CuFl`n+bvUSQEd3^P&zTE;i6Rvkw
zK+H6hA1za(JpPu6$HWe_8n;5KX*nxOK0%?7IC+vTfx=$!2B&5|oSbYOXVh*#asX|L
zx5I-<)7Q1YX=0#@WV}QxH!O@kq+UcFi8T8(_HWkI!m;8({O`nA7r&3%2oc|P+c{2U
z1ii4&bJO|3L)WFgRj4RS)^Gl3%6TN!LFSA3L95U-oleb+_>NB}^IgS?T-`E9=M$g)
z{s0aI@Ka3FV+k|y)r_?tu?WNI$39|v7pMU@7tBF?X1xiCibkrbE8G!p26((vDSgUm
zdjk%hos&6ZLZL2GX3%{isrIS=Q{g66L2<OYWN}Pt4U{8UX!+mca$ig`e4IPw0k6Ha
ztD%XtdV8P&F;??UR&ARI_&p#jwgo+(n>n^(>@SaVA?7<D1Qi!|;nO|jpuD@)VlH86
zUWYGDnYAFCQ<%n!W0z2^<0YZyzT_=n+_L##Sj8p~du9pZWaBvbFa;ExtAzy=yHa7z
zJ<e1n+dbcN%&!p7xJlLR0jU`Wm8#j$3*PIH4%^tHl-evqyz{LI>}NI+Rctj$9&8wl
zzeA9+vM3?(Ocl)2uT}Jx3ZH{G=m$|wf|lKB?FB2+X9TRxBi3)nkECnY59Nr<yL7dn
zfN37t`k+86oy^-|nM;(n&*i0MwV0rE7=z6f*Y(G`n^9UVDzOR?T)M0OQlc8i`c{{u
z7edtV%oT6QVrYTUV{rAs{1Za#(^8P~4lXY)&2qS+_8VpK4p?rCsJ<NyLMA|E&`Vz2
zyx_&yS33BRWC1HnM8<L4zNQ9-%d~PqWI#UUjGA~!&T;{C>fEQ*2-QFt^ss(vFo+~o
zzLbgYsl3GP>rNkiZkJnlWCNrA!kn!v+nkWi=gKk~VdpelSI8`fH_HT&AqaMZ$+lKs
z@)+2fRkR)Ndz3V9J}fR)QmLbGn@`2dnWEf(Nlm#3QCBQbymywrAt)siR874;+r=8S
zV2k_!f8RuuprL4JYT~1kt!O2_yY@g{jS)3g&LnQ)uI8JVxb6%gI?@Bt-9m5Bgj6o3
zq-QR%xnG|}s-d?PK81;UPw`cB3eE3OBa&It-+_d1K%13x2vHV`o(>aaYIlbn?Ws29
zY2-XJC~k8LuL2=nj97!b)QF*M8+2vN!*2?{Hg=mh3juIjZm8I%1>{JlvXT$!psG@n
z*^c*$Ck_S{$jxu5b{|y%;3gl8a<1q{`G8G~PWwLSHw5}s{c?o$Q8X0-$*2*rpiVL*
zgtT3Z%9mROggF^efeaoEZ04hFVq$O}q(y_df2cpJnz+?osxChVS1#jRaSv;l_8l=!
z+LX@{KUX_tRF-~>QEd2#&J{D4g4s9*PzBmXwrBFb;XEy@L`%k{TYDp8nklACdvO<u
znD(^lOnHKn>xW~me^t{r2yedtpN}MU`>-(ilIYh|&IgWnvPa6F=p+8I_ADrc1|-hQ
ztJ=R5=EaS96&=3E=~-eBaZhJm1wtcK7UmHNronnxYi>cf${#1?1{5CkSPE_Jnor8p
z>RfQ9bc)f}p)hj?&;!aOY?|<w=VnMgFb+cGc`qddXJ@aJ*d}$i80}PNE)Qcn)BCP#
zc{_FR425dlu5w_mL93$<mw)xA8o8W1z&u8nSI*SwE;EB~>2faJUvk|u?zujm_*kD_
z?&Bo~IFXUEluZVCC{WF0#U|~2Juvu6$h_NR-fwqpM@*S6QE0`xslup7jKnB;l7dPU
zPf{yk#6^9?-K$GpkXbu!_8+#dqj>8_UwNQ0O}$ee5XmJ|gH{(b*~~sep)&3!SMF<U
za!y^T*a#&q4on&8A(h%C@HUuEGp~jf_>|d{PljDtx;#!OyenC28~yyg&2VXci)@zH
z+_Ppx)lQQ}h0eUw_vD#eJf-ohe_T<e@FwI|F#r%}`bN3zr5RmGPVTY(MHM_QBNZZN
zTR6WDJ@itmf7bLhtN4vLO1T7V8HKtTi;4q<xMQ7j*By6P-Ovl7z;7(Tl>>WOd`o@6
zZx`4uW;Jliu)P?&qOq>wfY<D5JTH#@p5<#<)6i|8P&cuHAFpO+BGKoWeHoabhWmTl
zuSashEHMmK=xYmN^OY*9OS!ZZNs}-&4?F7E%bTt#Q$kO#!4zVURM&%LTdWb+Gb|oG
zQdrHav0a}TJm#%*C@gfO?a)%2+36our=Ru7Zy36{QUndzzIoa!7dfrrYLxIqcEt51
z+anez5%lIvtuw{I;}hqs!z)a)V0=H*$XebZKl&=CZ0gJ^sP_YV@BHpbu;$rMg(H(y
zg-$nJGmK`tdAtZ*?x43&`_OAMOfDa|th6$8-2t~RU&xbskm!3waQ{WycZ@^bw5=$Y
zj_&lO0h^uM?>o(8%Eg>?y@;(S+HUueJFk{k2+1|gG+LCWe&B!Tepl{qd*E!h@MSOQ
z&Q*DJpaJqc!v9H8lH>_KH5AU0u@(b9aSqK#h@+0%C4!>Wuvr^B@!X*IRTS0Jd;Y>2
zIpuR4w1*Z5Jx{p`cA#yueLx}-C_q6fOxkk(>y1lkm-WA8<5#G#3)^`_tixt*q^=<m
zyia*7S*`-fHWC{1J-pzUUi=<Zs1G-g-oZ!G)2=kwk$3wZ8M#vxXk!y{jZbJO2WV>a
zINjg7w96dsD9XX_U*+`P_{~Siq=LIu;j?O+<RwE*ywRPe-0KhYhYNT^G?ep0OXz(D
zp^Bdmi!n#Lfipo4<il5+(jMs1aNu~|zZv>mTFPrZ8z13d5d~-ra4nkPdz-!ojc9;>
zoJ(5yHYBy_*M;cA+4RPi=h-H6$M5#TZie)gww<)V8DRS+FX%A$NfafV3FiyKjYyvY
zmD;xM1vBjshQ+5;oc=cvWd9?Y1~EKw#Y;5;UkV831tSm2o_qZk?R32yZx=C9Yi&~W
z$O;NoeEpm`d-<*H(4fZJr@JLSRXd6F<wv4&+Tv7g_R1|aZwGa@tb0E)ANl44fUcp~
zugOh(V9EZQ*IYu2Lebht-$G;1<x-i4YPNO{>8ULw^rI`+phodRnhv|Zx}G4<&YYWT
z>Ak1;VW-5$eiP;y87B@FS*~1dhKLtNta&Cb;{~^pp;@KJN0Q!9hTMahcK0DR?4?aM
z#}ZOeTM_L&xmz9gwnH*8-x0O1*6?>71<6$61{?rg7w$s6`bKK=R#I!{^{%3v&yPI{
z(+nc;wxG^fXC06Wu=O83F_TKQ7L#_aZMl%soVKy~_B!3~83x|FaueY*QOfzPb_ZCN
zWj7Yf0b}R`MNO#6W-JG(ZhRE}<1<I3`Z5SDV-b0z;As!&U|3yXsPbcrs*_MB0=O32
zWirutW_{N-#MlL0-9GNOv8W(NBlA4IBfQEm(rFW0l#UEC_1WZHAmjwC+fd?1`<F+%
zGc|ZFCtVlZvh)MN^WfxOTZEz1k<Q=7#H*T2E`%;Mh?~IxzX;Ripn$XT>9CUUj^Ase
z(i6Y+qrab%Lp&$GIqcMOlr`?S?yGjUbE2YipbcVb7?50f`geCraSF9|>63EXOeM&{
z0+^DcE%{Zt_7sRjy_M)m;bqh_A3>}wK(>fNA{iCj!YYq(QJQ@)>0CEs=ZrI;l+%rg
zRz<whe9);x%Vsno3Q{C7hLVWa1WVZkLT^KF@59)%tmgMWrU&AdUroHoxD+2gGygOM
z?;sn?g?mtOurI%s4mne-B12;xL9gZ4hU6EuuZ-JiYB?ii=nKm$YY*%TN6cLfN^(C2
zQCCRro@r71j4^9d^i&VW6fl$}2`mp5rAoE6F~8Ei3zEh8Q(?O?X}Gy6)nVpHCv@{1
zwsaATxHyDO1xI|=uZZJjw@uQxvx;g)X7V=1&BlB0n|#fIk}NNc;f)vsX&LJJwSyeM
zv)O~V9lNY+u3s2`gx2Jb*0SGu3Ufeu*k9j2$gKO2eR$t38E(xs=5#AB9_nJnSHg@k
zizRT76i-2)4U_C~hK$)0wN|AmNH=#xY2^Ny<xk27>7wak7uh^fnE8gig_<3DFMuU|
zq(l2#j}#@&EYC&-L@Qe3dtb=Kw;v&8-zVFfXI>Jt18G2w{H9NU0lDBFJkDj3$yT%+
zvs=wKd!*Mprawd5%lfm&JXgqItT-~^*o&=QIQ9=M3nmf*N<odi6QKbQS00=$%)ocW
zNuW&R)L0`6mdnLmG+SYeT=*6&{Ow2fIWYOcLb%W;?fwqZpTZa!2j8BGzU*+<{3hzo
zOVcN=??m>#y%)$+qjx4Q-rJeaeUX#kpPD=gnott?rwOmxn|}*syU@)8Y`;f~DJyTQ
zppM=*?|cv1I81bIByI;9{Y7=7$f68(u4tH_gbIxZ^IaX<fh}^;ea-!aO&~Ox$!%`a
zzeV(X@?8ypl)l!L<TpherEd6$Gfd?B<7iMc(-vuY_&>`&+;M0g9?OqnIeK{AOShX2
zV7IF?xQX&aS`f{P)FZ=Vp&y~E7V9Io|Gklny0;v?DBU&*Tg0_Yq@z)1_6pwoEln!a
z6*#LTj5y2{!L#w&X#EO63QzyRp<$v$?Jb+G*govOI6oz-0YkOPBllXa;)%Bl)hvuG
z38HPk1#MEso=<5UxF!r&=Yf%1&8+{?gM(VIo>>G^4wpiMQ^t%hK?;ALBF7oyRQdHb
z>*-4giXN%kf)l%f0=u4`(Btw~8fngj*-OR&tuDGKr(`B|!W{fIBj<CGV>n7sDP^1w
z<cdA=G_iW&h&J8^{E@W&aj3udi8RRifym(%)HVJDI5`X!>kO>ZSctl#6@9dV6tf;{
zd7Rn^m#5G#(>6xm2PnUWs(23&uFeJhc3<Hpgv|UPAd*VTuLOjM#M!B#4?53#OI!6^
z^UKajJ2wTBR+r=rwb^otNW|^{jhHT5BXF-u`=xs;X7>iY!ej5)Aim-S3cw((Nm#W7
z0OZ1(QR1Hi+vFLH94`gsw``_6n@GDHmC2r`ir4Nv09L*QbEwWFr$DK{DrkX(BkCS{
zG}wjo+$b03ULm2cj79IY+ahO@iz5U2c{<QzaJv7Dw6@u9McR^WLFdG#e(Zz{-JM~B
zJN{pAUR17^dz{A1OuEG)Uu)A0I*Sl@s-v&Msm*`9!(sN?`AFr{^Zv!7;5=*pO+(Km
z(xL7Ymc<qFz#dIiY^tw$+0UiFJ%Xo0Jfn`TzT)PAYxCKs7$iIQ$3|g{kpO^-|NE}Z
zUiV38nIB`3IWQnKy%0`?4|pR17@bv$p7P3d9WBB==(<E5*IVXf=5y-37Tef?SUETg
zjl8L6Hp4xyh9>MpjJ{AQ2xpxpyD2D8+D4?;_T+Oz_Gn1C)^H^BbFrk~V@&aIFJ1cf
zY|Cd;+l$UG?m)lb67;{LvIA_Nx(S}7UXPm-_Rp!GX{!-)g|79G*KABs!t+yHIovVc
z5b$&a6SNaOK9{5cQq7JXxb<-(!M1Ci>rAii4cf&1gZQD~rbHj^mS{2tUtaH#N?_)g
zsl0|+1N3I+Scdu#B&n&Y(kGP~L~SokPd-<u82GqiX89#MTkImJL4$>fiU&+-!A@9T
z+Ov>3=P+RMDj+p-?Z&0uO#CvQ@|oX~nU0HA4~Y8r^fWCuICSmx0X6i~%*ANv8yDe4
z?pMN0q&tQ0G8!zrQy{_LaI>JiuUF;a;%VD6KtZ}j$`#l4IMGBVD1AHwG8c;V8aO;`
zN8I5t+ARg;+}g>AAB6KN1SGt8({I;X2(X+sdDY_b?^)yQuR1@c@7uNyvvVOaA37%!
z>I@IHUmYAWc|Fc!cnNnOSq>@1wqrkDJ~?u`U|OR79+v&>L(3$luizJshQc5g8cqRI
zvr`XMudEUq(GOb0ov0$$tIsxV($h+E4n=gIV=J>UZzo%Y=g*VIaORZ0+Zt%0it8%0
zP>F3UgVEF!459Oz%6uqmCI8ji)F5y^9Kp+;fxtmieGc|bL2Tu!D>yfs`T;=3*wFdi
z2m5Vrj7w_6&tCIC42{`yi=+<3`rTpLqPS1wH-h$iiPVjmtO(X<zVKocfYUUynVsO9
z#B>!^wo_xa?iK$WhYu|fTl?^G?ln00pBW*@js37bq|_Izsvx#)+?A%3Y^ZgllM_k9
z@LZJj?65PzG4zJi?d++a`U>4@8fFp2C;C^|u|ho|JmuAI#Ych{p89YZf*#Ryq4%xb
z>~6qGu9+hoCDyR~FRlxe=qrgkkqOVB(PB&P(0>o<Sdu2wqxFJer++MNME+nuGr>{%
zA3E>nN!Zer0^}|qGFj~jxaXoct<idUJebKdr$89Vkwk<5n#^a0>6-h6(V+ym+5Dma
zE-*$JVDTaYMl_OsoGSV3$7-3})#$H#qccOBTwa>f7O2)M-Qm+<KhAf?Fgi^^DmsVh
zwuzBbJYR=RI)gXb*4aC01uBXW#HlL4S)wC-YGv@HznmJmhO$MVwuax3rRUs*^;?xY
z^DCKiazPrDc{ztj`|##p3IQl^#BfF}z6h&MrT4kbH;1ZQ^6icdP;y_dckwGnIN8ID
zITnPR0R^SIV29O`?7&9ETe4@lc<(Cds0rA3iET4`>=zA#8<>VbinCOIAc+i8r+kW{
zVozOK1z*A??3UbrTH$N)H}QgYxW9qhsBd4YX4O(e>C?1s0XD#>C&Y6{G=+6wX4iHt
z{Y<NbWb01$jYe-j#2zlTBDMGhZhx^)M{;inNXJV;6--4)Q01<Rmd@86+Fn<WZ6`g^
zk#xW(`_)6nxu#4k=b#PvUskyWY=;I+MmP1=XvKF3a*&Scx8>1euhH)RkGHoD$SUpH
zzDEQVP*EC@u;`Ewq(Mp=q#G$g3F!twP(e!RF6opm38kbPX$7Q1TKZkviQAcRyq{;j
z_x<KC2L-O{+IyepI@dam-x2nCFgF0jD^nqTLWUVBTk0FC&+dZ5n)m=uVS+?YU?F&8
zpXWieVt0kU+drHyenBx1s%fY-yrmhUsG=I4I2d(Mp8if;z@0&*00wAm@rp5*x)OEn
zpmmBI$Lf1elsf_jFA;&9u0-iPP<CHW=@H!9dd^(;s)9;I@mRK_A3oX#umTJukeiXX
zCDyFKRIU+K`F_;Wa0xrqmu$@nL1|Pf1vh;>xDo0m>^UR_9A%k2bzCJ(nC3Ab2gKY*
zF(S8Fs_NB61>WLNN*4}RkM1iBC8%$|3X;wzvD>jpq-_cJu*V~eNfR2*3Y8CZs=NbI
zJ>)Wd*!D92$e2mj#F^UV`|*&u`LaTEGSv(}fZsxsRPzsZ=MFOb-wQQn83b{pyj2Nf
z)E>*d)w=aLYwP05K{_5@c#_WESrSgq;-pnX+*}lAFWmSQsxJcSG_En*h$r9bety++
zol?foE{}8Rsy;Rkl~BnzG4{ccI==r4PJC${kd1E{zPBGgeq#w%ZDz-{GuPNrH^z=W
zKE_(KTe26;iXulg75jql&}5Y6t+?6f1rdh>!v~%50->ZX)1;xUaSITExI8+kbZ5ZJ
z8pm!!Eec<HGkSN}M~h4r-&m8Nrzq8^YsLrVbp_-E#TdA)q{3FCE&nC=Qi?9lipXJj
zGxM=O57T~^a6mK6oesOxX3J8YY_sATNh7P(v}DB~NO*8T<*WaSR6AWq6ipKG9w7-)
ze&}@8#EP4Ey<FyF-10CTCC&nLnG`$MawaG1{#ks3CyEWdAS>u<g}FhNcJ-LyF))Os
z%Uw672!RTI@X>qFQ;i`8cdE1sP@nB6$u&;jqX&p=<hNeIYX-o$7^c6ls+5j(X4jBp
zaXUJ&OWI0oG|zYgSxi|fBZx#{x+BiKV*%XkenVcQa+ymr1SVPUXiT^^sFBh4aNdvw
zH1SLuoq(Bu!7X#hhQXD^mZ{gbCla7B3g@RqZI~ZpRHW-_R>7@6^ui#G&*qR?Mcsed
z@TqRL5tFG2XolGys@iCQuEH2v$8F@$D|myl{c*@|EJ#gjCJ$LT+MBgL`m22V9OGNj
zU+umrZzVC}#p|~#gF<$2#b)<NaU2t4mp80qx_N_c=<)07fnbu2=ZsZ()yMis)u0If
z!mby=`$<fRcVO6y_lk8vR+apMUA`Gr7BnedIu4eo<di%`%#2WIjKCP_-57Z$u?(h@
zDNU4`Fh$YHgZ6<N)S4BYD`PNi>zEx<7q~_;qcDJDL%$03FB37l8Ebj1xD4i(<1cXf
zXuqjfu4d>N%XGZ5RUX1$By%^x`FIdxdM|kL2P;1YW&GjI5Fw^=ac=qGZm_0w&V#C%
zaLgCe`fMMw)D>@(n4ZE4odQrmmDC2*dR{$=#JB^8J@9Inzb2hryw&2%_cC($YBm?}
zi>Wf(5swkOyv*H_`n5S6S+-=5wctCRoagT+``wxEBlF0AYNDX^34Ir7{wF&8Bc@IU
zpYcLE^A}sPp&eSQ12J2&`za=`b&d^b){4-%^Q+>0JkV6?xVZTPYNd~8JS$2}$n~;Y
zs|s=1SFc>RoVpF2o^XBqGxSNK_h^Q#DMAptTr{}Xs1?N`%t8#Fzbr!meVYF&*_k*K
zDWv{}19QmY1l`lW9qz5>^RE2P0{F*O^w+<r!|Rm4fNt$C5ftkUh()%8y=}&g29WKk
z%-VFnxdqkhVp5{~U;wF%_<Iv~IG#1Zd5q61M?W!m!)xpu?GJ>=Kl_dR?U?6gH9Vx^
zp(8HhHYkgvJ*k1W_RQ0_Om*jtK-(CdE_v&_hyNc}h424DTm+gbjO;9&(7$cqhVspQ
z4Qx{9Pv4v5hvz~PDdq(qfbrpa>)$@ApS{@M{&55aL@7;=oVGSYWM)uvu`D^i%7)ow
zK|t3ZcgH`=+y17^b<e*XsH{XI&hyU`!M}aaAMci&9d&JOP4ZXAgB>^?=04C3{~XCh
zb<G`?%i!+VLHZx`?D&l_=)kbFT!mN!GMNmTgG+mYVi15tXCfSR!$>HTte$zD|5xf?
zQ+H6lMS;*8_5Z!ldku#?$;y@UUn#BKu?eV@bD}SGmemaoUi!g@^j~kADN00Y3~^h>
zbxHrt_Xk)0s<*w?(N6krZi{$w_eu|Z9o~QQyUAr=BJ$)*NmgPW1&sgdLaXq*x8q@G
z`CdyzIey~wb#t(OUEhJEyX%NAuHnXYAPccLe|^XToANrSi#|9YzC2Zi!aGm=t$_-V
zrBT-1Zw7)m1ad(0A`(Pd19aL|Bg>h<zL^HK2iBIlnhgd`4Zk!x@^~ZUrdlQ}$VWhQ
zn}m#*$B|@4B!>KPMl2)}iLB86mWpN|rc>{O2e<YOaBg#^fNs<veZKd`85CsqLA*NS
z#=s2>dBT(TKL1-{T7mW49eKn@QSEw=f5&t_Lc|@~BEua|k@Fmk7GGJ&n3U(CfVHSX
zwdj6`ac|m-blFQgEia*g4o086IFkEUVDFILmF?b)2ohrx)5|0O=Zj*D|EpUhosdzj
zu*rGnb69Q0eEe$5)cYVQ=!5Kw+1i7sl&PorttV{S5#Zv=tjpwtPHU&@0sl;QhP?Nc
zym!9mWMxB+VwKMctI~eMUw!nz^tg`*IZ!!IUO4@2g$CUSa!fvq<JPS^Wz{825E61<
zzJv8wybpp|DkoyujiQsP&@UjO_yR4HNYFD!z&wOLZLs=qld%UH6R?$%Sv6gHirPce
zbmrKo4ljf@vA~q!<D=mcb8{G3>s$9Y!cp|`-09%x8c;n$O`z9GUoxT#=vnN=QUD{Q
zfXZz;+NvErMfha5g*3v88GaAwFM>rg0L{FPBY|^A5lHRDu8)%422DlE;MYcV?04XF
zr}G}oL$Ju6{NRzoc+L9!2hO8Y<g&~t?^C6zBX;%cwU$AYnRWB*Suh{u3w{LL4m%Pz
zXM6Fq=r>tnU;zrEjyB`IBYW;z3EGBzB1pVGTn=uKiYUvDBNEMBA4`@XNa{FIjdU}o
zVL+Sj2E{$A<Arlj9V13kE9m?*T+A{P85k$fcD}n&7>h`#4T&gT$?(Sw!25}C05`6#
z?HZU82@j})UZeOXK?Ssd5HS$t_NYqk!91v_d!$&AOcF`kuh!1f`jJw-aTfpl5Hbrt
z;-A57_v91`{?r!&_b$kAI3eq|^DB}S4`*odq{Zt7ucIMOd`m7i!zqRPGB?hG0)7X*
zjkGi%i%v{K^x$cHxP>gPM|&S%7|3M@#eMn?m`i;<xIj%6>)rQC`qy3Y>a{OW+Jz%&
z2h$L$Ep^`kzuEQJXkBuYgf{RJ7Wq{CuO~cmy;ng#15=xE4cDE|DF~bsuAe~7D`r65
z7C}voUh>X&@tjKO!@E>Xs_c%WfU`H;S^LZul;>fr?XsyDHMa*n%QpYV3|B-GvfeW^
zsS<q+aYq`1EakSgfC~BWaRTZ10KBd-+6J_ja^K0K1p?O*UvE42x};OKgy|H>y>IOD
ziJ0C4m4G1}r!nV){5zs0^U=>12A?p@B~%x8GAubo{t<O6%OaF`3h$47^}CY8-4|PS
zBG6L(Xz-=KTA3(T%32zW4L1T(F@%Rv<k%DB`Offx+qsAY8)I$QqLIXuQViZwkeV_k
zC^-iAp+rJ@GAS@Oq&~Sx^JTDuCdJpv!NEan;L0Exo=LWU9F+O}q~_o-e5u*TK$(gN
zj>^*oZ<5$Z7T*H7_tWeaaNS<u7H69e7nkq5l4bBJOUu#I0{WgoW->6}idlhNr&@$w
zYzSHP*Ws;3rNa`Dk4w#%y2S@hj|x{<-b^c~S{tk@!E{nAu%BLOj<b{rCkj)I7~lJt
zuqM)46Nh-WdokP2@o3(u?^9n9b9pky6Dhd^n$AT%XW|?8af5hhA~r{vhoqrXGio%V
zj3zJu5|?Feif_-Keki|OmGZs*7q~fW;4&zelYPO=DAEFVgZb_zq#{M*OqLCiT3c2?
zSnu(UjZt2;J3HCuMnzOfJBn-*#$Q9+@at3)0K^tAy{$F_YcRkU@?*wfp<w~FPrkDw
zrslTB11yyC-?h)#xLFye-{#B?bwih$kQ<MG;1s~nDA~Cdv?U67W_NERIPmKQ@yJQN
zfSPLqV0@_6eVbbS_GOlz7Z<Igdq8T^PgSZae5_+P>q{;%veo=q_#9!VhgD8^Bvw3H
z_8E|;BF=1H{5~iQon`S0Z<k%vJ1wb|9{2sI++)_zf%>)hiTA{%J_6a_4kbSCvSkxI
zsQ)8vMxs#!yfN%YfhlL2m+x^Ah(Wrzr-|w32@&0q$vJ&!F1AAXdUp#3Jmg=tAs6C0
z#_sxaQh{{S@@j<Tg}9|{Nze%I6JtnngI#&zgc1VFsVyIBK*ZqeZXf}^Ag~8Q+O8@W
zCoUJ51i9Y0b3y6c7T{oX5DdoSdp21x+o~W@dbj{I3E%v&9pRpl*Yk=oj);+jN5mk)
z49=Bjns}hf6^zIjWh-<ksdDxy@V&^<9m|ELF|T5McJu3}YZ9ST6;U4ZudKSkV<Qhu
z*8;G{51Md)CvbNCkHC4$FFAfl&!3}VS)wsz{WGWLs6U=cuGO^3X2$7TUCfRfvz^SG
zGOjxi<+RAuEZvw^4JM~SHpJB7CdZZKYnTx*yaGM`yJT${I(BF{nWF@vVw)GKZVS7g
zy8mF8Um=CENFL3P%%)dPpr5VUUu}#eK&y`<gU*dvPF;>IH&JE5qU>;MRImGhGwm<x
zW{+z7>j)4XQ8z0;%x7+(y{R@c3*&+kf!*4-zwV;sfr2RDt=Ah_ncxtrNf1FrygyaM
z!jhIYy&cop<Hg{;kOYwR)xEtt?|xG+OQq@uJTe>VTT#Os{Rq&Qqt4nn_Ceq=T#)=W
z+_?*V)c6GyaG(`%$rT$OjBP&85v7hQ@G-Nrt+f*7NiC;{Z|&N3g5~G2CQavH2tw7v
zoywXk-<tK|<<g*@zt;|vu*bUyjMJ>R&}4+^pU1tA_*Ku#Rtq$sa*hKLrTCp55D=JL
zF)k{_Pr!8IBF1HeqJG8)k<gnyy=^U=ohr#Ye_Jj^O*z<9aeX8XCE00n9<RqZ$KM)F
zOoXd87`-n$Q@Kx2_*gy+<!ma@wQfkcHJhjhCrXo{-KA|}*1~78A*Egzg`u=g!QBcM
z>R$$Ob5RV;!Fk0#Ty?*SQ)}b)ILvw}SY-q#%nm$I0tIQOSrQvk8w0ehyM&o$qys1d
z2(B-iGgNa@$1BuUd80`5HGrnaEMQ<f<%vA>S!Du5Lq|c)kku8QxSnhx)J(Gln#|#y
z=J@QaJMBuj%^HOCKtj<qintQM&8#A{g305rN}}JD$d)RaC(^MQ=XPj34EGg0kN5mR
zT95L$C26?BoV(8|K7JgIL6I>2yq?0Fu>v2w-r3*9%C?N!cHEALj<^jBYIt->zOurv
zA$4TD>U+8JHmTejJbPsJSfRL>IriW_JGc!?hPUs{hX)IYub>%}GD^xlDxIG=nmb>M
zVEthmYJT}Be|x^-#a@q;Wbg=n=b4Ngo>@h9@jI6Czp0Z$uK3@4E8V|sPryxN&XE%0
z@{KiDo$9!?NTiRt6|e|=K@5?kYRbn%r*SK4U`@p~k!OG0NK3+HdzxZl*Hc`sBON8?
zByg6FMs}1EQA=D#C9{cxl7wXd_+A35<3Nsr&u&B#T~`k8a-^*Bpin@>&uS7)ewll%
zzabqpTsHgA9Oqv59Zrf;N=FmUo7^ruhDKU0D$}4YLKM4B+sv8takiTQCQ~XS<jqEJ
zg7Ln>ei0yjwgImuCap<4U|!O$Yf=CLMuQ%*uX+gMFf6voDvg4gusurG7lk`SQ5}Mc
zu-kNE?sF+LmU*;HqQ&j)_2l`h6M1QH08bLUV~VnGjy{;$Jfgnc&zNH+JM*D~ZHjRc
zi}qbaz9S{gedT&paQ_6$y|=kFt(@w1v^P#MCUxE{2B8(6Igu;;`YhW^9e&lZNwg?Y
zf|b#Vk{y7@F6qb2fOUY8qLZ)O-|XQB*hqX)dV}a;kOz4O!9*<wOQn<k?{nHMf32SM
zJs-tBj3<sCiHmI(cyH<s=N@h&tosDc)$d2QKDuI3eG?;FT-wklREEllfW7GfK87<$
zu4?6W1PTyU0fvsElbkB__*_26ZD0b%kLQConF%SVls}?8zhR2Vk(EFYU?$tYNgN`?
ze%mNky8|@dnn4~5SoJ%|>0^t0=O?_Q(|EEkdq7UU#gf~69|jI3wK2`IStf0+au2gw
z(h}q4su7eXQq2@k-cpT(G(_>$)QY<{O2{ri74-#AS>qGMu(FLO70Z1A;TVIAC^Feh
za&@VmaZsfyby8rrE6cue!p&5l1@2bCpnJ$`)d-J+JF*Ql257D@+i3-^j%nVb>Kx|2
zt2id}x$@z6RS`B~g5uQCTTDhmgI4boub$x3=?K*}=S+$}{}#5!uRs(=z@TBYZ_*UG
za<VLS=xoT15iHAo4&^5t29!$E#s-uSa~Y92N7KBvaBry37PoW7$7AOpF@6uyNZX4k
z4W4a1&wrVjBpDF^OusvBp>ijL3>cep(@2{avvfuhgB3d5Q5<1Sn(oZGk<;D;04DP3
z5vbH?3Qa0sfU`CdsC;8-1zd^?_QRX0>1O3+HH;XB0}isqRDHFK%WslJr^|mi(>5^E
zFx!=6+L%N7q5|%llbPvKl+F00bamf16F4q^bam?kD$l3$NL>{^^FNag_u+VJSg>Ei
z-HZm!-pFalY(AW8unvK}>D>}iC{q&p|5x#_cuPZ{_fN*U%|4GNNNIy@4e;t_Pex_%
zg2P0>wfRfNFMMbM<;-CEO<I(kkG_+l^(T?=GJZ+!kc_LadpaEb^PVHt+!HSk!9R9J
zN$!^oIAxIfHWD|rJSSt%=^YfN$M98bU=Ayi{E<l50MNqO>G@R|7hyk7`AtlN*)R7f
z+e52I4)@eToXnD-YRc$qYCQ`$<hQ{ti1}s@#6eH{BcNY@2AF)A{>lOkIc-J)B^`-{
z?*L;%TPTAT-=Y9=Jeui*r=-jnL)&CFaG<`q_n{k3Zw-c<ig|^!82&a(+wfX#gO(N$
zdy_UCydP9ZvC9kOH|x@|hkSbXbXe!XOqMiTjJ!eZbLC)a&Du`yp@)?=*isUk7ll}q
zGhN0XzB^;fjug0Y=v+&M@_Fh+ykOTuh_<z?Zu~Q~Z$w9|4P-%pq|V;801a`XNTA;G
zv4BmTD;q}J#aDW;#+11NOY-gZgd<86`9kESIqIvx$D6*Tcr?3TPB#Vf2K1D@<M+*T
zdV1s9uYcEO7`z;xI#&8pTXq3p;UDo?7*v?TYxtGWzaGolIUuz>R#g7N8VY)m>PG50
zyf4RHM>l<DNr726tn*U6>UaCf>Eg^|N7Q1jvX({(*;ibN@6^~>I8V=(I2V@c^=-T?
z^zMKB^G$)tFPU^Ui>|_zW1~|LqR^$3hvwMFomqOB=1^XS_^AjF`s3~IL-%12m_Q#C
z4L|C)Aoy=ojtUzPuKh*kE2pFzg1Ahn<x@VK?#1Zrd&sK7U0qJy)Q!gRfWv0lW@U^A
zceYZe)?=Sd?v+DVycL>i#Us6vyJ#-{Qqb9hgQ*$LmLiEL!}Efn&_mqYqtKz~1nsAw
zLC+S;ZCa<?;kfGK1}m$_V?ve&@X(5OYfGBXB9uR_Js{{>JRkI}&Zzdm)G5BAek2!q
z4^3fDIOWh11Im-xEKb_v<zo-(<-oWAj#I29t=dXtylfPiFTFR05jo(8-en0Zdm}2x
zg9wGJq+x%5+GnGTT_5io1aFPUF<c)uKdz=7k-0yqDDtqHYOlawbE(CxF1y+{-y(Ib
zYPF>H`->Yv7eD?kXVy+OF(3NUI!ay`$*yx((lC$LGa~18RN}t2IB%bE3ZI2-^F$Y>
zgCo?Dveh`}&^SMUE-n}kPH?8aH|ue`5X#F1J*vt1Aau5!7@X-Juw#B}j>`_A%uiBp
zj#U|Tf-_|K!en>8fkaaEH$_WfL}(avcg$_?^h_+R*Br<4RaK7ASZmqEF1W=cBRkWK
z*!PbU9q4qtU2Z`0*;^n1x$0q>_lcM%hWHj&FDP7O{Ho+WnvNS&0#yK?8F?Ct%cdO&
z$%zbxz_2XZhG2f}K>ioaa!)!f63)5mBaiNeC5+H7=BDo6ufh~p+Inbk8gUq}4sWX7
zi!snR>B4$WbAjd&PxZt-#<ei{;)RLDDJgg?k3Yftl3l&u41)8?_E6)>mp(R?OJ94c
z4z|?YdWDX^p#`V|2vyIiiI7zxoe85Mu-ynwu8LsCyt8j%{yxva1osQejlBq^q{edS
zDeByb;k5C%dm>+^1`D?>SE`h*w%on{ptzmaua)!i=p%%Kdx6i%qVUNf&hrtc8zeKm
zrs{hEV=9XS?~fKcZ`4@3OzXe&bK5`t9~8=82P=WbDB_;c%0nTRBvLt~ut3;6MyrC+
zZ|}y!03+_{c_p7P#eufxRl6}HW?ImU7}fa_IV<<F7RC6Ytj?6fOw2t9eLR#EQD3?f
zW9^N?HK|Cgm1nzQe<1p_VHk3CsdYveq0_l7x|A1ZOl@e$i_@#R12MPXGJ4~Zea|o}
z@-HKOt}uxr5@;VW6~+n0BzvbkFhC=UgCO;UC930J;7myznPO6x^OeNiOiduyn{#bn
zy27LQMe9C@q!V{Pmvji7_4cR6TiD;q#p*J8YRVjU*HO}v=33vjFwLGW$#;z}W;y<V
z6ib0XXauRhrP;0ZLE0{*7g?IC_`zQ7@wjPay7QY(7RVR4bRGPTX#1&lWv3gucy?#9
zKnrAR3$>Bk5~Jgprre;Tvc!dZbGxnYuM!`9CHlcY?zaOyc@L^}c2zG6=SpFZ^rbMP
z6t%Wq)@mGGq&xXv1+i@~10^e}t;3*V$X)|cLzKm216qZ$CPJX^fo5V4IEGpN_oCQo
zSPb)q6>Rm<c&ot^#dIuv$UT3y>dRY9iauK^r)r^sy>bU=@z_4zx)GUB34pK$^9~G4
zrT#0*z0)B2FPz;en|diB3GkB92@7qUB5jv*xOQTnFH#khGn-Yc!5R0d|De>i_CdRh
zo1-gH2Ihk$b9T<GgRg_7H?$*4VVfbM1JQ>X%b!%S&0nI&%R0G>dO+ejjBL@hTl?+^
zqJqreSBt{8-kN(BZs)e{=)*K(A)9sMN@9tF)U8*$b@5qsEpH!Ny037u9{3};WL^I|
z0>#TiG8^00t#2i%*pBgqLszrR5O{okgT-!d>NKOo8aXygb^s4q-}_GLD+p6Y;=78@
zgdk1Rmr@UFemkQ7$o3TIjv{_mZQi{dwqx`zDjhrM<9);Gmouki1l@oC@>;FseBc+B
zDx(G%S{NO78@=U?B0cJSWV8QubsE~Yr?=7_p!vH&z=ZLZt_^$1(*aPzesQ0+!2>H@
z?uZcy=f)(#mTJ&*Calgnpo96~8H(Tm()q2kmWJnU@9?r17LdSN!KciqqBYaUkuEO<
zlE#{^&}%mf^CLCSUwR0l!n0e+$84ez!*8MKFdM7O;)mA>t48r<C@Dq${ohCqw<0P)
zn>W(A`<uX3=yB>M=~tMMJl;%PKxOf9Acupij#>5W^pjbp_l<727KxCd#ntuct(xdS
zfd7I<`B|&BC|(ywD*inH<Fg{M$9Y5W{pMPZbJvI$VOgc?0Ikp2Q2ClCWM8x6@7pvX
zNAX(b??2$c=P1xFFFhE`)*CP{x0ktzWCPIqc@QU64_kK8MFkA<9hDE3xg8xcJ<XiU
zu?7v(H-+NS6X$~}KiDzH8*^q2T|*FU(0=y8!tM|f<!vUOqfwSWT;!toS9xoY$>Onf
ztnVtEzszlkXk@FL9pv}ZH836WFt9gR+GuEdz#(g@l&fWW`~sQ%M|W9B|5WVn2BekO
z7TofDXp<O(m7ksvd#rk#2o@`niQ^TieT%`M@No&+<hL?~k3SY<k<h8@Fv=dK&g;Xo
zsY3v-X1!J58lq-h4)7)A85)6Q)s`5Z4<-!IOb2LB81S#n5E$5h6SX2%gujVet<U0J
zT|6XpoK4WVVbH|`h6fLeGbT`Z*>d;UrhV*zvA9?9V1=D|5?gZOmNh6^h|nr_KiA>N
zY{0_YZ-ua2EFW(vsy;iwK7-*3HANfPdwla1=B6J(!>QNyG}2#hIKZPI92-}@`&6Fi
zq-(?dC3&KZkOZm50@nk_Bz`XhS=*R2**$t8J@~B(LE(Wv3D*<+G9XKu<atrhM14SV
zJ0n-d)VsE85n~zzPY4GLB00%|jk|G2`;G0B-xI4XHEWJstYLQ5xX;kJa%tQ1BF`pu
zHD&5lxdGcnH%ON7HKS7O+Kis{8`&LAi>lWY+wi=|9yc(7)45`6*S3-pWrm^I(ybL-
z_Yu&e1zf#StIH{05@Y2xMLRbM4|WC`H$1Q6X<Bv3cPG~O3HLzf;De4WC<Zk&H|E8S
z2TKpu|Iy#@t>L9DlYWwuwsQmKI9L(XrK&xBM3$hdelkrhm`f@_+_r&;&xvff(|T@^
zT!x2B!-xk>d|Em9a|vv-5QI_;;t(rIBe}jw;MrnI(axPmo7)w3A8B43f|DCGzG7rW
zROx5zroJweefpC))vR0#!kA@|>6zP|*JlT^)dvu^QGzMWSIFs}-x|p%pu8|ktadZ*
zyusk=bIu$XTj&jYWhKt^`@zY!C>QFj_VMI4s_b>eY_%K1vACrxVW7VlKe4da!|DwA
z4nmZJ7BN`cUzJK874v|Ig#ErY9$}W`tRvkz(jjM781^6XRAOj&G3)x0=Om|en9H!D
zs6buwkOrhX_JHGreXweN8g-j+u+#Ud2!@_!=kx}zHA#t@lBx1<0#(K+`eswXmKd15
z*lr-*XjfY+v_^K*p<Yltwf1JI_P}t6$Lz*l#xG}o8@vAcbQ12N;)M~}LXT0T+MEC~
z{vKbzo0>n0{p?Lu)}_0jN<LSPI4mAm<5Zeq515N;vfSZ-*0vPDU@VVcJMNzkrB$uG
z_lCM^_0te9O@gbi{So&dFelHGG+hrUg*j52o3j?2c6-{Ia=s3roWLSAX)try?MJX(
ziC!nkoUf}CBU~oOD0LZjLxRsNGe~D_e$v0>f6yjn9>R!_RW(>gRH(O(xv$RKG!WfG
z9kdGRD}%GBA;^hp6T3c6>ooKqv$;Ae6Oc`BQU)PQch08KEmmREyNy^hMz|k8d7?IR
zo_y`Nrj15UfzWVg(oNH=PFh-tQVlUV{H;ch3`WqN-;@)GZMIy@HxXt}b$o@r=nQK6
zC}d7yXkj@V>~)wZERd4%ls3IkFgvrxw1~$heD|8x!RA**o0NK53>D=D^1q8pU13v8
z`22^ebZ+hfsBueSBWimk7IaH><iK`mJ}chHpjo;Ix1Y26AT66Fs+c!!ADib$Z5g;o
zr#%w!G;&Sk;6u!-R%?~Qj0DcC@&yCul<y1Enj`c|U>a?CGwvQ(!HH+MI?c~47>X|&
zYvxH+s!kw1u;@3PbGnj0RQE!Zl*lT$-0Tka0GF<9^dye;8GYE{w|2cy0yhchcm2p*
zP?V8&*4J(GC$h4YEo+MdVlwC;0r25_k60XnOm3Z2$GGCue=`$ztC`^+WfILEk7B1(
zN~u1ul7!@A&|=E7Iu%rN*{D!cb)r3>$t*xo>m$OZ$DmOB#gz4nY)tfOGaU8JaHlTN
zgXtRLy7V}C3eBsj1SQL#dnn>{W(*j~Jz9d<F$u;*KSX2glk&MbOFm349)#fvltd;`
zB(&vN>^VAZ6I2*$(aZ)ubAUT-ou10sI=3>?Kv!wwp-sv2Qbl0>KI0A^8oEsM%`U?u
z+m__+v!msRHF~MEB^O6iwE?#-vu0N4+K^#Uw8zLK-e@|)7yth#5Dk%2uib)?(<xKY
zNldWp-{)KP@kat<8Slv2RWAMMOq0(LzcL1qNA3qXBr7V*mFv=0a1N`FsxPF&BV;v_
zeQT9N{CP7f8-~cLjvEn9D!VQ@3-aI4u40-5-BKf64@}j-Ofhdx>*&I-`pQOAav(NQ
zIF1&hZW*+Y)}aS);^y!9yGhknKT)~B#&og)^}BNaFB7$9NIlH%YFF=;>i{p%P+Kva
z-({l)u3XvtDvriQqhkrh5*svh9!TmW45ww}#*e{SI06|L>5Kx#rF_sryD#CBT^<!n
z7IVrWG~f-v%Y?*HiV!7%g5W-`WTcn@+^1|hYlt)eV%XR)=ArtqtWxZKy`%aZngfPN
zv)?HT6Q3?m_5Rew+#t&FGXy=Y&|w`-dy}Q|`fb|(1<B_$=uO#>>FohbF4gX`D`vG2
zKxKX<|MX^RJ0IGEmafr7*(^Nz6h8plzCXc`*^UHlfqAEdXbOzr${$HJD!QERv@Bdi
z5K^vZ@k^O8zdfP)Mf@26(!6l(DVG0M;5$mbIKhrhn7KNYt16ABZ*r-!<MyY?T_JnD
z7#p&%gv2_0i>U(<Vjg?bd_&J$t*GV{{Fh=&0@dp_QsM&)8x?j?*AxtlVXR3va`bHq
zX-ez^q^cF@Lw>QleXsRICr@6c%uoh49`k#OE(-!fM~b3~x4lsY=lSDxj*X3@5x++L
zdj%KRhB6-@FNT|xS;z7_4QgRVoa&{8dwYUfit$yDYDU@;nAk!rJ=<5N@W3g4IBd6G
zdV2BYRQK!W*D$R8HJNv)n{Q=Gzk7>s(8n<yt~X&gPrX>I!s~+4oKgtY&aD-GlBV6H
z-&QXERrJmm8qT4EdDn&n*`n(w_)ZK7uSSJ_rtc<gUK^x6Ebk%p84sq%r{k}n{qXGC
zIjT&c-L}j}B#r&0>V*I0Up*Bp5?}BVPnjxqz92*&6?oIeFmMfOO-wM@n3Xh$YJar`
z)pZm?mQSXk?#a$Kkz-c=2qG9Jq^p=f`{B1~_pRJUjKBZ<@0-Pc|66_qP=lo1zR-9Q
zw!Yo%742Cb1-LUi7hXAe!73a9bFa(EqqD28f?M&w!c?`D?`U6sR-8gyOndgsYm~oV
zjUSz!{`lHdAtF*Eijl}i>xF=>Sw>=U&@m$ka0Q=aZ$7z+0>PKQEFoflf1Us3UA#X9
z>9N%8$76<}{E2lt+~IeCBJb3b0*iPMHm4vQ^@JOs9s3X2?=P#x&;Hk45(h+9&Sob#
z*^N4DqU|TVBW!uQmEsUT>ui9>&tKY){uXAaO|-Ol$+7?2_lf+lKw=aGjr_UTgnsVk
z2rO+WdIcspKa!#R@wND1R45DOe^svhaWVebhLfrDOa_@N_F&a($Zi1O+k~`?tuAO@
zZ#_SRh2A#WxBU{n$j?5ZKYr79A{gXr@r7uJ*3`>d*@J7ZhrV^|KU;3TY7Gyy*Gk`@
zb7&AB+mPUzQd!~ErORRMwzZAoPE;SL!b0PDrn(2)qxF(U4cg1%DNf;*JaTd)*tQ+~
zu|RSMJ+O;|kK`w9$iKh!-!A~aHzwqp)q}ElVsY`@KfRs5yt_aBFQ`X5|MhQAKLyak
zSl{;K%N^4H`H24KpE$X;d!_RX^Uv>sKfT=Vel``_F_ajIV=<aP6vX}WXZG#R=GS$H
zXO<8p250a3KMx9j@_~vAAcSK6nL7{fh5ddte)P=z)7Jt6YGD76@^YSLp>+q^-0@a*
z^EY^{E`SG<gpCdk$B0n_A+sQWH}KG6*^WV{KsOXKJ2>GA%(Gd6>RMPd3>F`xuoZum
z;<C4O1ENby_8?g6r2|BJK0XLlit)g>9w?6j-SJ8yX8qd_TY=8S%Hy<kx`D+(2c#EU
zRz|SBOoQV7I&7`%0DP5**r#jOzc>HQK?AZvP{af1Hj4@Lj!clpM;8&3ALfhKi8TcM
z1fm0_G&m_X^auGQYx9pg0L1=20yTl4ptwVl{HMMIDsLQ%4xH1Jb7Rv%(b_P;9!B#O
z%8n@bt_V=^M_}N+tfq?q>MUea><uQc-GRsVm5d<pG+-+=K8^p+0&ns*l+P_;l${)S
zlb|8{_n=;kjJ5G~j6^C-;gtxa2{9&`GY0E!5xXAMmxx~%Nm%!8!XRhq==~KD-|GaL
z)^e)pY@3onHGuvx^@nkOQWR5C_51EZ3AU)aD6opB60w<tm%-H4Bl2KD`-mBcu53tb
z=hKUpx39-Q7J28HX)q5n!wLG#*;2T0Dexx|_H1R)--fsIzeh5~-$NjI!w5j_43RFK
z|7JzuKT1fY*-;k?Cg(GA*^o9L4937<_MVma$X-I%9)$AOUK4MD^3&^_5x8eAg&NBJ
zu=wm|jMo<h4XK!$OTHl%;9BhZFJhjA55PeFBa8ysAT&Z+Wd}r3?`F;6^pXNs5Is!q
z#IHMP1dQEqN{It-afM*u4^LM3|0_-DglibhUj?OpWtUWB^n2pW5_h29)ysdE3Wug1
zlf*;cpG+0dQGBpq>GNVqID6i}-X<BwlV+V&G!Hu&LCBTOF&qEbH~(F5y(P37K8QMG
zEJv(8`y!bougYE0%faD}04~0%YQV_bQ2UVLEEQKDAd&FpZy0d-o<NDQXdq%6CW<*=
z(vbXSX=pm<4);alK0u>b5QpiL-e>oNi)%oyV{UCV2c#dRA;r5#$yEQ9vrF9{tQqF{
z51ifJZ=BtpZGa)GVJqsA9aTTdr>G#mcR-<dVhiyijafVWU03R^4p>xJjM|`DBim=-
z1uj!7P?C*vZPNXaxL}c^#<V3Qe*|gQ3Al8xA_9wA_t0(xs4HRIv50>RHM%DDM!V(X
z9|u+h%AtS+G-afJ@e&+sXt!r;6-aGT{GTGp%vlgONmY{vwW^q+1pq~g1$E)9VhFFY
zFy<;e;4=3$=?fj!4cDRh69tNsNQee`b+I?I<{n?T?D@}c8I}`u9@y-gz)51u{sCls
zrfD|)7nbhksRu;VnPH@NH9+eAYFHi&(KCB+zg`C%aW=vgYlXRm;eEh`(+M}Xq#ty|
z@r~z<!{l$60i%G4WCe*KJ?BQVGAy)5)65}DtW23SbPLkEFh)fT60H)*wceykWRyBC
z@T7NKe<K=1jRaM@_?km=M>k*eT0xb%Are;u+%Bu66sPTF&<4>$B>8a<>!e585H_I8
zqPElXD`=tVqI;rqZhLeRm9vx<<RB--UpCP44TS}C92tIba!@u{74ghY*)H_Aors;Q
za4CGXrhcj1FP}U1!P2d2JtQ_sW)NmsCc|ECqx`B)5UiokRSg|qB%{q>X9K@{xvZZQ
z)f$2VqY!kM8nucdk*8)?QSxyt?(6n6k8;j0!aT^#w!b>m(5Z9tJdeQbh?k0q)jT#q
zIeXv0x|?4)pqc&uzq(X$Twqmn{E4l6>3IVQ1W0^FT%l$GWYDIML-3|<Lh~g_=Yx@4
zV-3s<^d6Ig^HvwYT37{e)17dy{%3No?69oP1l$Dp?0FNvadStm6v}X~3SBXRgu6Xc
z0Jq2R>NT9MzCeA3_SBvSCc||Qdl%IfaQ1_4b@VK4sSQxtMO0Vz6MyCAzClm`q)GXb
z>>yb=F%=8-cY<V}8Szk+x;AgUDspb>(1dRBqC*cy@8naMD!*JY!^j9~7lQ_?Bpfu_
zw49a<3RY(oi9C86fIt%Wa1UByrjq6pfT#JObH}Ea1SkTw+MH}Lj01D?wplffF)a5o
zl?~4MgaU)&X=s<jT8k)|i++HdEvLwVVur%|;xbsbcAgL2HDHwoP-&d~1p1zl5?Tdq
zxXMx$g6`rMpurH5Rqr{O$jp--Lu0g`mgJ9-U%X?}yS8k<k<ku!PmuSJPrd_Qy;?xa
zX2}X^(DHyl%nZ0-PW7qBauQ^0L%FhF|M(N)B3ZN=a)pDoY0YboBpZKez}phPBBP6*
zdNh=$-75!SrUrY18Eo^Mwxi6DOaO4oUu(KRrr%YkMDhYOcP3Ck`h8b?+)unRaq;>R
ziYuG>LGk9}=%V!?Y0meDRlRv;U!Na}^jnK>otjP2JjhY(I@1omJ}i=G*Pu}tV$>EQ
zd4`0B5KB<b@X;eWBwJPH_WJ*8*(vwk|7)^SsP;;9G))CJW#t}z0=d(unTN7ePaN|w
zesWrmsK5t|eBZEo$r#aQ$5fMSjB;z?W2FeXnSW5-tgODRI5#rKpMa-(8_e_QZSsNM
z>ecbTOm+I~_@?!U2ar|ICO+3~k0F&JWz-n~Q-jSN{&Wu)9JJ63Kk9ec{_JXC?jL$W
z8bDV8Vr!0aF|M3HRHsMUPBX_SgkKyUc?iF}c$-t!8-r&4F8OV2Vc{>=ANdf~d7=xS
z?>)|PqSZd}(Y|8fq=MwL*tyeB(Q(h8PD8~zCnThB`Zo5V^TM_QUmp)k1xo=7S3yPG
zw!@Pg`0q>lykW({u=#=E<dlHAR`Nx4)6Zqs@5}IPDo}lk55HQ@P<XL`qA4+jDfOC4
zlFI>X7Q?HP&7jCsZUf|r+^bUVNVmItb6f60)i6V62I0Myq>I8hyph2|^YO87DBp?t
zfg;giB&!xOvQHRqD2iIBEDUX~+u;P|{NmuJbf{*_K6WF~QNsQRtR$uKi%J8L4Q+_j
z?eI{bNR0HAHGR`N7n<qRf$o|${bhA{diOOKq<C;^&!Uq5a_kg8Io7Err`$s}OFox6
z&k%EzUH(45lct+pluEqlUppLkW!Yju%rh#ouwqXc>l@}@+AV_+^lI080ozSzkGiEk
z&39Zlj`G0TlSSeqEH-DDdmBHlW`Q9?pm0p4$!9nfn-dF;42K$SEpi?$+GO$z@21j>
z6)Cpep4YWG+Fhev<`E?$tJp2IyH%!(W6H93?$Iy5zP4Xb{`N<AXG-!I1Fcgr(D-v<
zfk^Pn4#tD`-FCVl*xZwX7~6pSQ-Zo9v(^O%dxq928<B}wjbS*7O!!bGZN60g2xS!g
z1(HRHnwX|KaS0p4;X>|Nuwn)0h1=_Pd3wJ&j%^Rl`QhhGBDZ85`a<tfjwh04^^iP`
zyct%?9s6~JQRZ%uI;mH5jAb)5gHZ`~-(HK^0~E>2s^cS5@w*?k*``ug->p5Q$Q|>R
zoTLd-islUzy~d8NsuFVuvb!jIGT~AygrrAsy14!>i9W<6Gp?-GO?OQ}%xSr5o{qbp
z5+BkFVY+oR%duN?7xCR-r%^t*AiDeIR<-?h$?QoYsHer)9&`)*`ss-KK2o~bc~W*c
zRgoiaP3mKy;92yB#|`x$Q&6dL51#C=xOdDO56p0cVV+7)ED#$*8Tl~tZ5^nW1u~tx
zOwN_jlOM}$cy59ySX=l8DX)XDApV@T38|17=FPjWCy>klEQ2JOP51n<@g{5+@&r9s
z9*7}IO8a;qNU_4PQ`f-u((T*L^n(iqx7aTz4&plCf7!WYy~UI3gFslbO65s?K4%ZI
zd+WuB;(3d>5Cf_Go36LctCDqZ+DUwMQd1=e55oCa)+o4P<0LRGi9GcpwLeiZ2&Aoy
zX(3HY7Q3*=Wv9_$lZH`s)7Q^qOTnbx@nmSDp##QNHdTP)8U~_gi-5>F_1BNwa=81h
zUSZqp5W7Z)59}btS=?1On3MZ)PYa=?CwK}k-p*R2$O+znO(h>i&Ot*fU*CK6&83A>
zMieQ#i_H&887-CKTHZxh;<T(6R^sfXT(iPs3<}duwo7roI%`M4RBetuIsmEi{*(^S
zwxqP)-;kr|5CxIWYqzGR<B637c!n8Ixw#~K)h|kvU|pSkbGW-8DEvS>=mlW7L?p-k
z$oP1J*~X-yCIfY`i!Vh*j{ymzHlMUjPa|5DSSw^nlz^s{-Okkby#{4xr^P5cg=Dx6
zrEQVWGDF28c616;Oq05OU=!vdnC<%4iz>BSD$2|=g1CkEre)~%Ry{8v5BzV}C@=tZ
zWL+5!eAr64(44Gg3gdl7E}L@dCR4@*Meu2Rnp#cPdmH0WOz}6IG7@IJcX(rNqA(lI
zgn0|R;#6jF#YSCkN346Kwo<Wr3=kiNtTYtKj~}vrBvXe2HqYYnC9~7Q9bHx9ykTR>
zJ@>&b!h0)hRx6a2El1kq`<L?FtNQhi$zJ>d0`BR-3(ewnv(JHui~caCNrqJG+LxeH
z-Gh}5>%NsN#+Kr-js}sf7npQ~@`UD~8u|QkIJ=p;^{S-lV1BZcB>>!1FU|2C?R0#^
zMUNNtyMVXYh}k4;%Z)QT5$XAQO=Y?=R4fn7lG;&AASfp*n3@JsBQ`j{Y#y`}!pVyb
zi48)GpRG`b6GmTg&lbuZypDeN;81~Rjd^K^BA_0@Mu8GVvg|7&WN3dOs*cWe&05jv
z8ndmQ2)brOJ<(Gzeu}0^qIcFSD1jkIrN^=RcNPEw(!J7ERoy!W2GgbdWFWo9Y|hiZ
zE@bH&@EeDs;Jxth5;E~G0aHX-TMtR_Z6z(=dMP%?4I|oO+vpqbQ+PuND(xv`=CB1R
zFT7iA7sCxRBNO6Le&DPPfhxt};Itidx&;U9$GY_o!T*^8Ul52UljSRYP*>mb*fJw)
zw9LC0Sgq(J7g&t~%Mhc<2mp?ZDVbeXs~X(xTNd)o*DAAj-y=4f3LY2-FDV_Rxy2By
z!IOu!>dHUaCKb86%8-Rc?9VYxSn{A`?a2oi*2rGu`hMkZQbtkRY*4+M*iT~nq4pY!
zbQYn|IVyQn=VK4<b_hz#W@3rK09${9+utDU5#v{z723pWN`MP_W;yr#x9x+wN%@#t
z$W`s&i{gc*jbwt@8uun*lkV-Ll@-%eT^$r!sO9~~Jp<Y0#?hOStlGWW*YX#J5p&J6
zXguwNTWIT`Z1<#~h#^-^<cX*xk=W-p?!LNEr0k*Ta6-Btam_u89_4^G16x(+Ai=Q;
z)@x;^z#4v`tUHJtPN5x^eeyoKHJ-muJ!WQ<P^k1&mUZMv(AO^WNjQ;Vwj`=FCMH^W
zXT^N{U_jS3Q^)Gr4lOM^)eqSe{?P>Y{OAv^zVgT5f*ocpWyvWpbX!X~R{Ole$|}6l
ztp&+MC2eQgl^Q@n6hBRsikg0@8UV7_R`l?t_F}iG&#E5x$Lo4!D486%6AI?(ux88q
zneWbR)k2)st$K-8Cs0p#PE6Sh&CqvM@=87%;+ToXxnijlX{{o<?!PQix2&$9K_Ae4
zxH;!Jcu3f}v!?O6M47bKC20Fzk>+HJ_C&wT74wnR9Ac>n30Ber6+x68IC>9scwGPf
zvtEmQ6#F!0j)UsOoY&I=@es?y`FDz5rue5|cfQo5NajYt>?Wx{zr!x4T6aWtY=Hf+
z`JUHniwP^c*lxoNnV_~F?K2YF{wAY<t6g)Ky6f_m>5o<FZ%f0uNBlYHMp~3J1uk-3
z3*bRG|IPqL-R!&d1$)aC9X{K@=q6oxc*kP3nHzAjy6qv9VQ(v|>Y@Wbos!BywD}lB
zF0b!p)Za`fbsGaw#_URD+AOPeUO1PWoCWu4w&&<v_--~d+bq1|u>p%ZYBNCOFysOX
zGbsR*n=;M$BVICAg*F%v*5jS#!urhc+AVfIb5c5(ZspS&VIf%7Cj%CM(@DrKK!%sN
zpn?7YlV#lLMV$0l4hzToD0o8A-eEg0D2KyuVOze-<aci_&p#}HtOP=?+y;ca#-NLJ
z1M;HKle<v&5Ei!&Y>xUyd}GpyyuM-m^<s-|0EoMQp6miE#;7kZzIXqCj3D9nwbG7A
z&35milbT=uIusTdiAYGgCwedsN|kJ39@D2v)P>_}+a{V@MpMeqH;!!q`Od_7rM~OJ
zE-il9gB!#y^J_{wU0BZ#ICr+szB%67&qEpa;p-CR>HlmWf4?wI>?oF=8cYKrmN+1Z
zg)Zb9O#HGpb16}+h=NO3*6t2>Zuzo`^@5CTsU8{{8UvvT4*fNvt4+H6Z<`R+qNBE-
zPxKA3u-hMqa>ZBchPt+PC7w34B;B;Y_T5v;RHAnqc;X@>!E_SSyHo!&c+5<YIOSV+
zh-jHZ$dUF^{#-Z7Q;2Ch8xmxc&nj0b9oqD@m8IkK=POt>xs_|;RMKP5Vs>!c8FJE0
z6TP|Jx^vRFUvk8nkpXP>t^vhFV4Boi9z&M%s8AA4@%xc?Q+GK?BsR+f2aFsT1AL-o
zki07<{zR<X-RZ<Lzwe{S2N8eu6b$;ha%_|GfmHs~Q+QXm9t1_#BpcnkW#VC)D{uv4
z@1`}3n%Fd<qItZ5nlDkK{iem?x_{{Gwknbx{mEn_{b-qS_bkX`-L$**3gB^A^Y$Be
zef#}F`q#qP-T7*uRX{s{^v+m#J7)9=)b9kHTNBFgeuBhySTBQA-k2wB8NkPEWAqM0
z;<)!39lAHMT!2x0nDZiBrCMVUCZT#rJPK}ZInvmjhNeC{m_@FG%byim#Ap2p@B>8+
z97wn5X*_*rHV0+2qaXG@UPMr5S0rQE&9#Pvdx4pY$nn@@97IFEAf$<B=U-*~;?U&+
z<&{+Vr0k;0bH{C)M!+pid)N}=g~!6!FJYDLML{JgM^Cujq?$$7VHq6sTH#w~Up9_X
zT&OM&Wj3ALaOci!nJg}VHUVp|A;F6I!Fw6Ls_R&N>G@mheoqwrSNzl)KYLezLQ|j{
zvD*ONowBydvlIOA%B>D-Uo=#-XTuxjz{hYGvExn6oIKnrsYa_PH@5}Qg%F=_IIHo?
zx$$bZK>t4-ImC&N9cX4@o!xX#<K^|+zMEcsU#6V)L<k$h=c1~rZEYS=yM=!G6JA2a
z%cC+I4xAKB=ZUU-eD1J$X&H&e4k|gSs(TalUL<bU0l6WVHXoh`{An`gg*U^229vQt
zGA14;aQ=ER|MYN8T{<>5ZOLG51~lGNey9})8UWUXqSdwV46zL8L7tprz4Xb+xyv2g
zOdS|*nu$Ul@^&NR(s8__8u0c7A~@NgAH?VV;uK35evBsqKk!}ov<-()nQ}*LDKZcy
zCT!$Z?cO)y8)8g&TtD*SdT$AWuV)JCfmo!-xT|wtV0kgbXV4&grCiM^9jOrX%MgKY
zM-10MieEANphYRtwKAZN_wGSx7zp=l0<jnl1z@yY3-9OPRNew)*%Q=^doeajv-@c^
zyPz&(ky|ayaYrnsHyItJACkXwx8CE|H5=cs5G<6Mm}C@=zCF7*gL5XenbXnLTH9rg
zqSeL(qJS^CZ^_H>7$6&RbU%#f*FiI?{<^>|wvrp5NSwDRYo9Rgho-6Ftbu~pHIPD%
z-vK$IB`_62V>=SmD)rB%a6Sug|7qU}sR7-B?$NT+!G<J(xmOZmW|@~5A#^co8L*Yh
z-8l92AU7ZehWQtRUQ9q~*4KhIXc+P6NT4d#d=foo(|J*nY`rDFD|Pp)`sam%AtZul
zL(UR#VH#bwwC3%*Dq1P`?r)zLW?TMtNDBX-9Fi#3b2Q{lvV=UUQdJ!cAYLPU2do&`
z@fJ|OU3yW_-TYt<B9Cuf%T{@P`9oOKO5}qa^sVO@O+oVzbm>?37Mnoao=dmxS*Nkw
z-G{R}=!;)TvlXK~v)ftETdlXTS7=rsjR?WL!**zewIW)pbrnE9y|}Iz#9dXt{%DGf
zQMwc)bxf(+4{On;p&7xHQ6e<JK58v58L5A{_bE1d#W-Sd?wJzaUM%Q1yM+e;$|s{T
zb{EB+IU)N`HWoR{c7?w*<{kwYgNUy3xIf>aJuKcfu?1-aS`L?BDZy|BS3E)&H=jxt
zCp%dQQaD@PJZL;O9NanoZqFe3f^-R%b3h-BJZZ+~1gWLLQj4S)vI3+&nofm%QgkE|
zUN&+&c1uGyg7u+qtz?pL+X1Hn3IM^z(IUJzXAv&u74rpV`U01FJY~<J-2k`!ccc>2
zWTWq{mTqMuVefwIW7l_YU*5&Jcl!ICGui9Wk+U`EQ5(1kW*wTc1Fc}M#V@xMH#TP3
zl$1oUrXpm)fM~-#2vqOzb39=gYUFj%F4}bZ)NI-4n{^ODE!<kkSMZ4@H0rw)!Rup3
z=0#8<vq>tjqPMX=9$@TsHDavHD5Nm0teol)>0h2D*p3CzYj%OgYm3hXUVmDL{&J`e
zra<8!;FK_Ogcj1%aIujrd#NWH&a3qadTX7u0W@+lxd<q>tL`xcJ?kZA7>;&2V2k4$
zuC37qq#~yaB$ZK6Off)$q3kNIayJ+D+%CnX67C98@b;v@obggXzW9vH)YqA^FW`|e
zE0mmugONE}2!qxzMCp9E2$6oS3L@_ygycFxZ=sU$&VA6AVX&tZ#3PqrPGxb4Yb}2=
zisGAYw$V#Pc&~pcmFuixKe&!Q6BzS|XI8@i!?-cXbFV4}Oe#uQD~;67pv)9bTCCcA
zM?XG~O|=3o;4;mMkn1Y3fX!V8ztK6}wAUmCIGh}hxw<T0E*&rGaTvGld+|&~D{7%H
z^Bx54u|jWP_hv2q6=Kf7I%%4$=gras2~nkrYJQpy-gn5Bpt$H)4{i~hJ8_y&#||Mp
zP+E>Mc~3&AU}igNqYP(S5-SjQmkHX^9uv*q0y9Iy)xH~c5Yf|cAiNUBM2U0kyT#d^
z`*M81)tGx9?8Y1#XLoD?GojQ=^&<0#JF3-(%AuDv<0Zv0H@vHF2pmDA>C5XeAUfe_
z+sk!j5b@n#U^k04q>c`yafhMw$xQ4yRn?AnYi}7=cMv-dq;SYyd3rK`wjyX^BfXM&
z;Q$Cqgo6=B3_4RyFAOJ&`$~XN|A2%Z$*vF>f@$^Ow&`-^#F!Nje{g#ni`bP-G@?G-
z`lm(=QcQ?ry2C*?QhY~N)nVNQZtq(jHTIiOB5Hr+QPzs#vYyp}b0XeVddaL*Z`6ZA
z6VnWYJ^hM4O|mFUXbv7yQy|ljK2yFSFomhv$H1<d$X$q=YBTsIJ4l`hohb>WMWJ1W
zEn6sd&2q8QM7Tqqr~5ot99Sh0cvOj2v_`CMf_Co|{q4<%q3t(&%dpKJEE>P<EwSGm
zSj&u*e0~o*t3@v`>XD5xh^SUP60#{Ce9oqcbOj$(f^}rP`~ipwuzfoEr7d<pB8V9X
zs<Lf*Ucr~68FS4iG<DIMUa{XRB<VGc`A|9E4*rr`vJ)s6P~-~hHrMcNU?bd3t#>Yr
ze~dtZUNp|=OG%*UeP3l!wV=X0M73h#d8`{Eyxe<UtV|}3>@yeIT#2rBf==5Cf>?*J
zUfiGnO2+vf@i*+$-rFQhXkqK8-W-qMbE|T3yL2qyRj!A{)fz1aN;}@K+k8&~sm2@}
zwiaF~z6H?UvS@_K2$XnIX|Fjx?5Hmt<Dd$;{FAOoJnOl@p7CA<P(OxLVzgk&_c|45
zM^j{7#jw_ua<B=FR}8u&7Zk35GL-g3HYj@41cqrMmj}{}u_ZlfXJ0*S-jX8K%{Rr)
z6z|M1?Y)|J07i1b%VtG<FTOZ|+Jb39{PQ3P<JSRNPw0>#rjPx=@a@&LXb!6sj)RRJ
zy?h)yzo+&t#6kAzp4yb@+t(ro?4j3!9m}NmWb<&TJDKI|Xc>qGig4__q!L?N!i6fa
zMJV%U!xcHbM<!LhFz{L-8+Fm<6U&#LX3YFu*7@@zGFKRHMHEgzmB;>oPV|lb-e%8c
zhWC3RQ>7vOp<s*!4-b@T45ppu1r1h}3-XlBNyT+r$hqiq(gC1O2>s&hQ`mR`Kt}Cd
z{`rk7R0*s35`<x=b3G}o{&fFykjGcQ8MmK2vsYqUIf2|QR&c7T=MvH&x^^A5N>7&@
ztk0XR#ZXCwb@k7f7i?6fZ_6VtgAwuhH-Wqp{#6g;C#?5+J7{++X&Jj68B^?J<a%6$
zZ!IDi0mmlZl~kvW)p6>tE9b0gDN^nVeSbLk(@Q~av$g0)V+G0|%G>hgIw0xfg9+&D
zg6?doG2dxX7GI>Qor3P&0~iYi5Z+B_QRoXxv-|YcD+S<EN?FjpC$YP^tb}vn5cN6t
zyJo$4aPaE!9&E^8Nr>kbL1uZkB_m~u!C68Zz7OIHNkF*y3XK9yo3_yBe$-0QEVxNn
z0H#}Fs#$6Odh^be_Eic8jJBJCC!wRO$EpRqHp-+`B<0o6a}Ux6bz!uvzh?tS7m>+Z
z61_A>Z|fTFD`iY}ioU+zN5l2xhCi|cP>unzPF0_8$Kln5{%}Qgo6&vPIS@I<mNE>X
z6$+Y-c9H9R`FVnC<bIHf`o+=4vqafOPndfKu3&?V7761<Eb63FQ1PhfqnnM)Mk+XN
z-i2>objfQ968rVMX%NX@?xq}OO!c|c!uP4=$c`85o5}!8o|QR0)dQ*Q8GRR76+~<I
zEM!UWvkNz(SZRfN^;;&(aa9-l$oY!&eAZiQ#@w?U+AFU%mTz^ufm)|%Wz1(H#*epe
zPw0&Vf|hE7yj(w}gZZJN%vG-@@A(ivCu!c-V!g`>6YIt!$#=}VVTBdO`MApvd7k<&
zoAkG9&#y`mzjIUdvR}@{4%|jg+eJc7&6SSzJF^!v3_@+O(PIh}Gy=0Lv&8qqGr(v*
ze$l#9AUziUmCRM^v)HfB2ZqZBJxPzOoWBTh!4^E5uObQN3PkzGf)VX>FlHxezANGH
zrEJ8N8X?PRl~Au}LM(#>0+#U;4Z_nAq0<+Mu#(HRnYHa21g9fj>UE(K+6l8<Mne^+
zJ(jc5J!I8O{C(Z?`}(K<grC8)y*pZ|S#tCJH6j$G0gsqwn8gH*3$0TsrDlTOKnOMh
zIyY7n(=~S(e7hD_gD5kqpoR;kz4`DXKa1=B*Wivx)Sq>6{;|yYh|}5Zdn(4|vg+9Y
z09yd_;^yZ&G{A#g;~3=q1gcp!GM5cGwR$6mJ9O3Pm0-a%gdr}qGV=?G-C&l9fAve7
zZy-D3Wow4_=kp+Wh3KH!1D=?cLMZm=SiRWlF6BXK+30-@<42#^PoH(<-Uz<vZaLRg
z28Z-%7@3`-0<HX*Kq=h`q;lzjB!hTkxbsiF{r!6WekK0v&;9)$1e&83n~kdR@^FHI
zt$iBqkdBhWCN&p$0{N22PJCCn{BQo~-p$W{YsM!zA+h)Tzk1uq%cJ5$#lXOj^fJ9a
zlRapJ>?Zjy=pBAqogkms)H8%DXsN(l|Koo;^|A)eKqjkD;d-n4fo!+IPlhdDuhBo@
z6#`{^(Mc50eu-}J_YdgTwc~&Dx$f}C-zlc84Lca5kUaeE8x0~JsZ)DZXSP@}QjW7V
z2(D!{%ZoP%JIpU74maCVMansd*V<Fbyoup6H5mCUqb-YbN<Z>ZMHNd7<IZpMy1%X#
z<mcVN-#O96asJ}OPqzQR?IM5rIiTK4gY)36nUVNZg@5(fA)gVv6lhLgv6e=CYX9$l
z2s?7g&vDM2;7R`R)%%}Z7VlFEX|l%>tS;ZI6a4vG|H(aFb_ro;Ubb#O<0$^qbJb5@
z5%zibXcN<eXUSK+(KWz#H4R4H)7S|1Ed{1NwN)qxvXO|#u~4=2VZsjB8kb(f>4=9y
zbM_VY=p1Yzsui}`*`wNrYXs}?OorW-Vyygfs{rU`>PoQ8w1H#~J2)zn6Ah1CHs=%)
zBk|4TJj4x*Rx3CrpV-^Er~-6T_=Pg9FjZ&+>P;&Q{B&VPWq_a-I{H$~e!WTEOHq*x
z9EpSnWU7liVD?IlpV9H50+_~Rqr^WJ4|sFxt{0>w^iClfZ3OjdG?)=%J48Kw^Ze(4
z|I^)BM^&}&?S6~65er#M3=~kLQ@T^6Q$k9S2I-VVDT)DzfOLaMcXx<1N_Q$D4YFtu
zyx-~G=f3WJ&i2H3-+S-4`!B{G4qdD{=Wl-Fc|K1K_+Knn2mm9_4hk9O2ftuT>JgnS
z%vpU*A>A)kg?6X^)!=M59A<+q&l)5_x9}<{B=h^*k@#2qpWeXmO5DOWx6>GuvL@2*
z0W2T_6u#Ukc~mB@E}(so1)=U&nu~YfbIWR*J`dxvirE3hyi7$}Ahp7&;DzJScB;v!
zXTlyB5#iT#-y%YvlaI@xi(p&I+OKUVH<A`(-zD`qM9Y!|Sc*O_QIfyi!oq?mZb&Qz
zoh;}YtC2L3wOsF>R9yTDNTvM@4LIxWdA40ywMV^iDVI>&kg@jx8GC)pa_HR#ne074
zwp@cS3Sqkr5xi29qG`{Eg4f7c^gP2k%+xw2Acj2>LAlN*Y(Rl_WEEHX<-?F5m)ZDd
z?@w}#+(niVXGV~I0otqx#B}o9=T~H4bXtAV06dE#Hi+4%^8Sg7oD84rY>_!p1Jy4#
zMLnP{3{sRjbNJ9v3Yj?gvYV+WN&eymA?;ZM*OZXg`0+Y~uZ8=XH>2Ua7Vi4)eOZ?=
z0PjZFMjO*1n3fcxDX)_Lc9{Ef;TpBakhnTgD4kZT!k^XMgk4C^Y1>sLqn)H!vdml6
zAZz+0zV+)kyw_dUKq5MP07P`%0^-wZf=6dB%)rg~(lkR*ynh8I@2r}c#_*f?NL?2L
zm6N+$Gi4~yW*h3xU=f4zEVV)d>bwNwMYmnx1$>_r3TE6Y)eMjmauZvFY@&LnXYCCF
z)Z+tUJNX1Zd7w`>;o*SXTWmH;Ucy9FjPy=)FZf-LEIA^Pj{8Vji~W30a}%GeX#oN#
zW13Dan`uRT+EGvL8bB1XH~@{yp9A%oe+e-8MYzchWAB_L;wd)kZ)>_(=}Fc$B_(qw
zV~Pm<__y+8irxbu>VE_2#^;Ruww8Xno7pI;FW_Xq;HJF`KHFgH<};xRxa(0%Vr{!x
zTU|2D9Ecf=Y>nsb8-8Ayk)bk&1=loQhh`iP=vX|(+7O~HlC!P>8}bbb1{P#CVJ6@v
z1X_BHltUU+<d?IX<);`3zG`ZuKw&Dr(q;+tW_qS7h#!)J^*R!a`^X&bAedbs>TP_n
zHqE&dD8@E#hc+~Uw!>om!Hb4Agq{b;PQo7Qi(65ydT4fb2@eJLh_HlLv}bWnTjL(6
zxja0c_ZMfP@EyW|JVT$<oDVKdedawai~?b8H;p5lwgIB?0Vc4%xKCjgDwF1okWr)k
z2VgWe2!p;Q3Mmm0k()Dg0S~`}P~mn%&PP)pXG+)2O7G^$D3$4OPOnUkRpmr!qTw->
z$~^BtPrtNCD$jhSMuXw60P-3tgXe_w?ae%;mvbjn8Fd-OQTOlRPa@~j+-lG=x5@*6
zp!XZSeRSkIXBG5`$dpU!?2Vy0_JecKsk8&3VsxoQl9H|PJ~Ef7i*0j=Ov!-WqoIWA
z0>@bx_w)xfri7(1Pvy$=+e?L~7iUS0zO(nG(g#mLPU|)&(5D()R9I)q*)?Bjpc~rQ
z1G4e;H*%>gIlN%pd)FjG@B2~fUybX%cHiNkC~Y=E01g%L*W{QxFNUDBGXoj+8DFMz
zd(+@yw*yAM2|fRs(1>kxOk4gVzG4RR*5Q&4J9Fr4%=?$X!tSWOy>fD@aLW@dpVNp?
z06|QtbGD3Ujx(ru_42iI+SVQy_#6Q_YfOqc?U;052Je!!a1PzWF+z4QeUmV)4Qs!|
zt0Wr)*LP-^Mx1e5lxZa`-z*?VPQ~;(Fq&0E49li9=k7WTU${_QtrSjum9-D7oM0sK
zD;Z8JTgBSx7-(;*a&r|~w-xdx+Y+zOMu}`29Pwbs=Z?2iT6r?+prumAp8nSKhf3&&
zA2ITG;WY-N)ph@f<1{ZF76(}D%j`>>Lt`-;7Aavpj#G?q*fXgG(Y#$iTHE>-6wjE`
zq_4Q%K#Hl}M_?G`kvD;RG7`SL;YGl6czn4JNOAEAk?{iDM67)^jPJvd*}NUaH5F16
z6$pzNvvMY0`!F4AQzZphbM6PEE#ksi@`-YYvzuw-Jb-ECm-GNNb@D~{R{Gh&Y36O*
z+gG_c)cTatvJyNHFDk}%lDPZTEI3l{FBSF=aY|1OyuNXqzDWRyxr<4=P1-UZ%`6yR
z0OQEPs&uX5tR=3E_z<#?<iXmE6y8(?WKgFJJ4twc_tdTUhgz=tHw-{t9oi_ija$X2
z>^U5}>PX}XpVIxQ0EwZz9?p%>NPCAPGV0lacIJh_c=0K6Vb`t%iSJJh!!pfun8xv5
zf;+O}(YFMTzWdFKArfr8jlp}_5B6J`KG5Zs*VPekh3CM&gq#SUkiF0TdQdX8ud-JI
z$h9swS*$IjtY--f-LqA>b5JLye`Bn|`<-U%^zKf%A@EgAu-Z8K)ngN>Rf?55Aleqf
zoIXI-3R^tW<KR2xo1?cW*q!ZBRyc{ddrF>;{F>ERh2k-4Y{vjXc)#9Qz@9DWT=RR)
zxg-7&KC#zcu~SuV;4ZW`2$R}$-$KQf<IS5_<R4wu`tmbDEJXsrk7lvVMD9S2(vJxs
z@(U)x*^N_fFJyK5$nW&!qvGVctRw6s@N5t|>uD<g+c?h5amMoDf>pi8OsnSHg7!||
zBIDs()wbDFS;3v+(L{i|lr%R*jg4WY=^{Cm;Z*5jpXBl^9|oXQuzTt;Moh%RFiE%2
zJN~m52@NCeoBa0|<JU;;kLXhKj{!R5ygTZYObVb$@Scj*LHm*SdZ3l5{JpcAZ%oSC
zRI>z{7OS!#JErFFexD*p5XhE#R3A73m;wy!QHvlDItuq<+A~?4L0E>B>OIPwSPwKF
zo(Q9Iqo@sOVvRY+CP&)5fGk9eD|O5BC~6!mdeuY+FItwoB`MOXH=DR2v+E9u_jr9&
zc*&X%>hd#r1_OyeHBEQz*D{5zT#Rz03fGpCX*1+eLDGwnlIm$Jju6r|u(^w&i-I94
z2F6-NhFh@iHsNaM(ZPySyq$ypW#rfTxTr#!r)a3fPPYfa)hR}RJ{woc{<aB^k(~bx
zIemGV9PzzfD3psP;ckPOQ3L=@UrX9x*uT|ob}t?FatF$+A?Woh!gf=tU?h}h3Tkr<
zeAesrKG|k|-z%`|&rY4}YPzcOCvhtF^`#YJrAo?*2k;Dx&^o4@$@P!?oj5g#<;v4t
zQ@vY{tc<aiOOYX`5bg}wjo%dw{^xL~DsMfwSQ;y+SKGpM$SrQZ;c?OKESf$R_p7mh
z8_mUbgg~3HalZns&>$nBJx6`*!NJ#$n0er|oZ!dVV_X1Ha?VA!m=mW?H*tHw;GC;T
zne1_6KHy}3?Q|BpLT?!>J&RP^dv^Pb68KCH++;He0uz!{!$-a`qPP}DgELCDqQKxF
zl;Y<?9YoLB$@x#pl>0bc2h&eFkj)(zOeg4Hg@$BqhLT0I=!=`=T~YcKMSAb%m4N1V
zcDhvAY$%DDAu73uGq=PpWQJDYR0G+ibM~$d&axPlnr0f?aMH9086avr>+8@yRI-aC
z{<lWQDqUPy8YG)&vxl&YQ(8Tb9bn6jo<W5+qGR`_X)_#UoaPsUl;v$i%7atJbR4zN
zcTvr|pQ-SA8>@=12>FtQJY&Ob$Quyf`fdJ7S1Q$1JHHNK$kDnzn%d|!*xZ)g&0##X
za5)h75C-E%&FM!4mXYockB%HSFWB9I#otT9U5WP2XTN~@J2pUAKx3~_=s;KCd8<!J
zg)Cp7@bI~Z^ka<m3tc(Cml;#X4`o`%5yXusq}$$|jzo5^s26y?KJWzQx*n!&%)H-@
zgQDj&AGpSZpLt?(5w^v4B1MM&H6x{VkJWZw4_>y_62?*UJvRvWf~AlLc?x%7<STNe
zYJmUw$XV-Jz4}b(W=LDaW9JVWR#pd4?h1=GeszWrS#hPed(ULY5Iuzj#kZd}d)T0d
z_Kuh<_Aie?eyy2teKb~)!RkYm)TIUfG)eaP;iiDAAK>UQqh^{)9ON2T_9k1YjmS6;
zJDmWoPgkx#EiozY6?@KKc-An2L3z|wBvY)&yE|K}*z$&9z?Tx<*8fSBsx7Qw|EyA-
z-~E48rJCaZa5)&ORtOHTNN5#sX(27S{k-4!TaiCZo0^nymUq$ta)ECKYwFRDVKQXj
zrGruDRefQLa;LVabakSx03U68Ss%B6Jc8|8guTsBA7E()9LOlo6f0;InCL=Y8r5F+
zv$;Gd7FcMKVbdwXP5i|#^G@XuspHmZuBWeOOvbHZWmdXOIoNt7$l_(}nOlj#Lsj%c
zne%r)dUT1!-OQq=Crn`GRCR+Bom>dx6kMY~E@=!VRyJ(gn`T<fe6T62S>1EOx2Qx=
zWrWID7SknP3%phcl`&^CIC_kpyg@`4kCiDNl5*Tr$suEg7)RGpCn%*WrfBP>&eQuD
zwwZ<FmLt0rjAX_6+qQOqSH)km8Z9d{)C3GsWD+pulHdUT49kcUZ2>iEulvozJagP1
zq@BQoJ6Z%bPQa!y(hE(Ur2RF|uvK)X0>Ef$=5+DtL-YZ;7ulp|TNv87E1+W%HI#nH
zl#~axm{xlkYH3d<8p)$%(kcTMsYZ4cN`^0xyYKI%sY)?z6t9BM>DvVQ0*1>wlf+mq
zFI8ds2y;xca#>x6SA%th9jZQY7*DCamv|hSbzjCLcuQ`^bihg|PMsylr1+=8RK<@s
zG(`2}40b2nd=IaNY*~&^VYD^^qoLn-TyW7+`^L*Wg?)dioqcTNP3i+}bc!Xz_9_56
z@bQ=S_5Un-E|~YtuNBMWTg-VZV-%&%@?G@2jnn7UemyJq|Bw__vOCN!KEGmd*AawR
zc;v?Qw^9_}RscdU-b;#FGK5R-zfX$F2LKLH(HY?Io(s8=`|`$(8I%U!+uT<5*X>@W
zN28&QT+YkUlDovi+(xXmD<#S30fC?|uVcD51teQtvgzB~b;ev=;lu9p2B!3$8*kx*
z*wDvIpP(i$HRzkno@e&)R-2y202*&IY)?XV-yRj%h~`ai!#>P1V?>8ok}+r&(5O_@
zRlxJDKqG%A*=-E<Vd0%;3ZejDAvaExdgj2sGF!#W-JhFMqDh*#ztD}Jzt0l4HdWeU
zmCgTXk7}j;UU@@kbzNqx_*jW@sU^kPe$V-Ddk?;~w?F-(5;f#+N>q@5Q*x`M-fYux
z!*#ggkHG;0#8KAX##pcSWax0`138tmtKTGQHhinG8oK6D+auA*1>y7E25alL-gQ-8
z)!MprE7tX{vU;rbAJid#J_G#Ca3Us~cg%HE*2@}6UFxg{q5brAUquA?`7t375c&U)
z7WKmx^g74ueJ}B_7LZv{E0HzGEHp}OyCGg=7D}se6gOXBvI*u@A0FQS-c2Fj7dHCg
zO6uTN0deLQl=)}G5U%o3G>r?cYrKiBek}&S53gW(uxzojDf{f);YB28Z+pxqfn)s^
zgKhsk&fT8rOl$(#**ypB3W+mb*!NlE>afBe^saw*UHowAK9}9JeBIou5B16Yx8%hj
zU<$kd+$6~p^YY#^s{JHBmix`8?q|fs)f{<j@j8*>F|Ni5$@8=<6VQfU#G0g&|Gywb
z#RU4v4^Y_=bh9?ksoP{7zr6)zXf-SaC1k;)AzBYOChCIr->qD~4a%{>4?~h{$(vw)
zcSV=OEmsd_w5X&>;W_FK2p5SXeBySg%ywEjG7DN;5oer1%8%J&)BNWpWY+gG;600s
z3VI%FopZyR>Tj;jp5@`yLPkiF#j$^Q)c&x3Kz0Y?M`v%lwF&Toke|Jdaz0fJk7!0g
zbg^jI(((1DwDhcF(Jr8diO}~G=v(~9dQ>8`jA9hM3j%n%qpli?xC1Z23=+xhF#=*h
z5_I-bstTmR)0lx`M0zvMv05Sc40T4IdVX~iAZafMsoH_(xrDmcpJjoJ%_5U4uF7nG
z1&M#%(VMCdD`o{@gibYTL$g_RqjIlIA1q0BBIUl$G(s?Q_Z5nvv<>OMYD~OlsZGx`
zBm_u>fKoV<Z(~b_#U^iYJ(AVpb-Ua?k1bhRgovb*g@g5bS`V<@e$4N$JEUdoyC&!c
zPr6L@*<dEJKvCqsj_@mDU9nO*%vaXIo<d|7!_R-N?;LNEjWe+8!eRtme%;yesNP?)
z>SNmmLm;8pLQIOw6D!ot-dNt`=;8hKKfb$Q&Uimpkh=%(_3k$N*t5igG=aIS^Faz0
zNlae&+@H#C&hnH&rODz&ndi_h&^a>~Rwrig;vw_rXb`0AZ*xYJ{!x|Mc@K9FRH=ri
z`^ryhe3vLvnOyr>)BI4F6txZFK|AJuO_s_`@mYp~`y}fslI_I>);kNuq*Dl%S4Q`R
zSXgPnEX8|pbl-I)s0M=zrmHv5Waymed>zb4IqcmFbVTudO0VjsSfRAVsgoh%ibF`M
z>l1{aePGZoxh9$I?hwVEN_A)*%rlQC;od0xWa1J?@(eb$R{o(l5!}%nW+7m~zE0yl
zQRfxEpVFcI$TT{^&JYp=?l#$N0i2qMSBNg>0MuTxD*Tyd$V>yj%_jzZsmc2CsGxt?
zFqhlNX^X(^Z5cvp6z|@S*t^ucmoa3cw{*(z?MNa8TpT6i_F-g#5IT+|Z_IT!@<WHD
zwzwEe&HSC&+BFyP<;gfo)lBpN#5M$7b;q0Rq92@;oFXIQmHE1&wH~qVNBH!IO}KCs
zA@`L3^~Legw9uHjiA-yD;1g?EcwJ0rx7g_;omb|^asRfUKlAo6UZX*ZlW`}Jr8fWY
zd-NBfrv9}|wF}-6F@Di=`tBN>yDDT4(p@WcTwq-4D=3|%mKi}mWI6p|P=GlWbg^$G
z&J32!OraxB<2wHNN&dsS4I>^02c*GRu$i}SkYvXeJAJk+G_-6mr7I_5e|dq8io#Y+
z6T^7B@SbYQ8<@@G?x9ZH0rSyYccnv^n<U)UaRKV;6QcN55--jZ@-ot$I7PzXK{B3D
z=pC5T8&0KXS+!#XwxOH3)Oq-5sxYt(jDF6A_0?6~G%Ad%&&;7_p*vC5!$lVQ^3{-}
z_a2d?s91SrSwRGH7<;o=3IQd`u^P7Mza}^PEW>(%WRYGmLHuNS>@s)IwmpO*$MYl8
zr34nrZl^M+abMJBRgu8t`XKA%0>3e`E<Qe#S#f&rEYT6<82AkOZ7%H1M8CshU@+xl
z8K`u*Kk1(O{1fC4o=hIbt7^O#OiR#<?MT`*A1UdSOzA*2_yYI(LEL^bGe$1<*uv{$
zv(P)zG{e1@IUpK<rE&yC$+MT`X7tV^QJ_#4AL}zj(d*dM6U7%DOp<-eY4qNeAWcTV
z*%Zno?3@N=T!J9~p_+d?dQKgW8ug=2TsQ{xB^F7_=n9*`5g;ffvMs2U(xp$HGDWAV
z9m7S^q}D}JWmoK8li4nmDv|l{$rOmfDumMxcYS1eZ09x-=y6|z?uPsc7&#am@4+is
zPWUphnL2iL*6oG+!5&MdKSeiR=q%n_@B0o)+pr(&YS6S<;mKke;ze2_L9L%{hJ{VZ
z{h_k;OoC_F;dyx72k(A^CRmqV;-w;})C}RApWA@&5w-}YjyF%J#2^Hcm{&oxxmNa$
zJ5n9yL!0qE7AQz%qXZb)qBfM3R|B%FP`0i43vlFGAT|~(O}hPo*vkho$KmXn7H>7M
z1dptm;@m``0Ic~wKuh&m!jOF=PUNs1-22b4LEB~E)G4y!7(^58K1H3&yUNU0Wjc`t
zOEpLB=c)x(qwX*}F}&^2tLh%m7n!x24!wvYzf{S}FxaK^>v!FwY61MA&EB${E;NG8
zWP&tXX!nN;weTNL<KJ#&C9|$Mbmb}Wuo7o{AX^EVk$O;2kuQ47;ueY5^XbCUJC)9#
zfmUJH>6q?^9%0RkKP<KQrnW3)(VnEtODnN=AUKp}qZ9IL^($|b@&{Q0cF7SLe>ZHs
zVX$$9M)Cs;$nU|fP#=`VO!p&3rE3B*qFt6t<KGZpO!HgzMXBsjEmu*~emk%G<E5Fp
zddQ7pj{n{KRY8GqCdicaCZ@FAh&A@nB%~x8mWaMd{W1H|n=Mf=#(3{{D3f_D3@WX>
zFrbdIegvCdoB1Qw;+nXiySbDh{l?f(fS~nwdEJbT>*^CEKEn4BY18W!dGGFIY)i(L
z%kG@Mf$>54!+@(25njV;<C?JWb||ohUCa^Fjn$m7D?H%wPKKAFh?};HU428L7vo<n
zGru23aRsOS*@k}8rv`^AF_LM7LDmHGml*o&HlSx-L$D_DUfz+94-ex+NOmZ+_9fjz
z?w_GYEh??jK~?ux#*DVVeDZKoMT=E+s4m$CQnp-Y;IIiwo1yzIPZe{Zldt%jJaz5n
z-^)`8t<0qi(ww<vj4#b=;}>&mvg^)kRqUGWsLCbPv*Gtmvoy)ol(7TG;r`nWwZKBG
z8j)PJ>kd|tSFR(~9at9l^~Pq&+-?X&JOZj6zNz|Avi__#)J%)AV_68@LTyW@dT^t`
zXsoNxW_4F3lo=j0niI|#A6`f$+3(g9)a-Z*(`N?pxJ$gWc?n)407;=(e=AWS$a}+~
z%Z&n*YHzq5e_XdKPW)N4swPS%o$o9aBt1B?(wiPyy4rAY=~)voTEKbzxoOH+WKiAS
z%dkhS7|$_}_dt`Ws`mdyqdH~of>0UGE#w9Ab&u@2<e8NU{ym2-I$b1<AVK!GGNEVS
z(&E?5&4-tQqyzq3djBA{Q6xTUQeWr2qo{--3OSdQvSn0l8Ikjfro)S4x>w_on%q+{
zIlY_sCJD9I<!l@B0djD`OFJP+DhJsoumqCQ4Rc|hHy24|(21lMDFxPSLhV7|RnmJP
zR=Wb8?#Acz!O0b6(wArzIJ{(Qn`FbpVi4C7*bkg#9VfC@PiI@{qpW<sEKs~n5?do?
zeiANLix4$QEkQ-v5YJZ(J^=W0Ia2nR3xUsX)y|5YCCQhj4shY`4m}30+5G+|?KKMY
z%uVy%DH7H~z7<CeyS%&cup=3{mo{E4^(*wJQ&FJ{HB19dmFY5$A3OGyu5JqY==Rkt
zg=iYTA=L2wxh~2ezfGX0=&`#`gb!^)9gxg0A7Tvq^u2Kw(%i4C1qExhPmb$XOzxQ;
z{ZZ<2SqFdCY6U@C9b}SZzl58pycAA=2@>+G7pU`Kdaf0O)6Lmv7*-dpCJSrD8qR|K
zd#RA;M`cO5aYvHOMq<2>)~3vDeul_R=<<JuYIXfNQITc7d5;~yTRDdz#rjQ9Wyp&j
zY%q#1?Ge;n*@IBs>v=w5QdZS@eFuM&VmVN~7`$1_)+3oz>|gQEVx9&!_JH}P0bwc|
zfwWMZGyxIeQ&4@N)~a@|B$9OpXG0R~=EYwxgPwv&^G4x^EzNZhd51$Z<Zuzwor(eH
zRKgjjK>jC2QSpxvZ3;0n!ZPY~8iWizw%UEfumY^QynUp};bSTg%fvFvnr9d#@}6=#
z160>Mef7x_cq2GYRKg7I#%5rwM4GOzMj^y?Ao~(TQ}ckstWTCB{Y4V9JXzD>-1GCv
z%|c#<^_^~u{+-@NH2Hw->^>H%I)g}9Kpv}3U<)b%hCEy@OM5xG%H158ZPjlUF|;q2
z>C6hI9-O|uZ|hKb4*wDE_h;qw^~<Bx>H4hXuVqi)<qz_*eD8F%Wv`@TEk-b;cf7}0
zz7OvSgln{M&vd=g#gGxeDvA}#TaNE6U|}_~n513Hw1Ra9){Xbct8p`~m4RL5#|5^E
zEQb54T<FtC24|Hk6?)3+V9(Ltg!cR&SFtWF4(4ZWvpkn%RRrk{B9oy6@0kX9yq$T=
zl>XEcwg0P1R$Db~TDD&5P=li{E^@W;!@H}Q;$&iHS2&h4T458kC*cSCd&#Pln6ltd
zMurFYQJBx+pP|QAD1C%b2`3x<6n6OKe=Na%sMr6=kAjCXyPkIpQoox1g6s`oZl=tX
zXgl3P8ymQUeknM@^l9stU(Pp3iHWG}nyf*Alc@S4gt{IZS%WNuVH4tSONlOhqrh|Z
zKl%W1+GrXY8sS;(S6A;QM?13a1|LaRO%E}J6{&{FF^lKd??PSbhn6|>vv=_yx`7|h
zdKw;_>8=DjxI5oN1}LE-JfoG5tu;<WK>}<NNHImaL7GPBiT~4e%TIcb%VhXLGVvhE
zUoi*!*tYAUUq+89f<xKW{qbY`J6DG0BqEf(M;G$c`=-Q?wbH-!8RNbpTFcj|IdV%C
z92e!_l_SrYN2&17{yvXOgb3>JrF4?|Km4N}+9*Wi$5;gircF8v5T{C3o5jJV$`Z5=
za>BwrC;L;nx_EzBj{G~nd=rNU_$icWhl4-19+;!49{ks*@W_*`$qcF;?=>t94YayA
zc?F|3O-niXnt#Kw)54Jd%!d^IL^!FE$J%0xSeLQM%qjS|ta3HC$HUt~zy8G~^nWf4
zo{tlx(df=Aze~=3s0{wqADi$!;IKu<+sQX6)BH!bDe@Kh`wPR$gpil|&AXqDH-7p!
zU#7+_G9P@@!9zVod*(mB3X+m{0a<f28r}8jr~letK6c-KAN21kI5hUmvH$otqM*nz
zY(4AQhCgTh(|_%!*9tBW+*O`!JXaLr|I^3vp|B_pc2=AAlhP>)3TtFY2u?T_?gLO5
zMnG5n>)x^N<-+=Grx6%oK7-4)s1d+}8)5eGfmr)w08JSoj7G-?JFPnJVSsR(oC7JS
zKfoHxLIYtb`0-;U6)m&o&j6phl>7_G0>XfP$6~Vf<<q+l2*qkKG^7S$AVBuma9kOP
z+t@&RcXIP@XBRfQ21W=5pt3|DvQ~&0VWl_GU4tqI7?Am3gGn%c0zyBdQue%dV;tww
zT&O&h0WOjcUV>>m)l@BfLL^jmX+IuN07(cKK!vWJ;`&|Csebp@BDnitI?8XFtQXzN
zOuMOERyxjiuG!@MuB#0>GWQn`*>9I-kSdO+X3F?X-tEYnLEm6G?u+}lja_7N7>UR&
zv!9!g82kdVJ^cyk>vh1+c@LpAniHzg{21F5ZJpVublzZY++**L<DgV``YXiFBz~a4
z>2hnX4nbre2>!dP@67yfVw&l&8epfGe^Wrb9v?s|tMgK-!=BIy?6U8bBuEU`S&Y`h
zPl!%Gt^u~MITEyG*UDIod-CAVLRt{Yw%{FdyDO+yca#l^xVX0njTT^!DV-7vASOFL
zfe*4Gq|QR#*q@(Xw7dosVS;0QY;&LwG=qTo_m`Q7o5W+0g79Tvs&ewL^`Ppq+#F*8
z{XjQ_FJB%bFaV>ymHF4r5HTkxSSgiG7{WPE`yDuYELG|+9vqKF^gx*dz37bj-70wb
z<o|A0kc@mtwc!?EH*~><{I_%Hvcx|W&~9H$c71tdWAD>5GD~}_FH2BLa3T89B`d(t
zi>Dvbg)axHWFv4WPlYwi>)Y=`Sk={pUT669<zeh%5Kq0_AF6HZ1w1oZ*(*RVdho&>
zYrx=P(*vqcK!b%NGtKvFxoQU83S^xX;KgAX`;>3f-ps|Rbg=ki2l01LHTKCbq|x28
z_;Syi-lgXwxeRfmZLvZ^1rNX^9R}~63z%oLzK&qX9Zcj`-E!3+=O<fGA>Iq&rIxr0
z3T;m49FL;7fRJ-E^yxz?Q*isM6Q@a&{N9GL;6llA_h4`QTSR^vFa789gwugFFbFbS
zx0wSO-YvmH9rt8}+Xv;RMzU`6*}+W{0XC~hq&+?@+meu9mkCCQr<xb2a}1ha`8Vw#
z>|n^V;7Y%hT@>R<nFLrg<ILn0&{~ze=x)mX+-#PI=4m}#&7V^YweRdG661ZZz8)HY
z(o~)5stecd3M=lI14#Nqq#W?Ha01q(sG|+QQff8sVESSNHgy1zHCaTq;Ynbm6>-ah
zZ;_f)<htFN?Wtrh9=dQn_{}6fS{34zT>h)E*A&rrGwreAif85@#4|^_9?vm2BzZl9
zIb~OdPW71NU3FO0yh+=J^JM_v3m)|d5WIBCzdCc~4244$3Ko_1e<7E>Ydl0z)K{kf
z3H0VJaLPsBB%DC#GFn`6M~xF+Hml9T-&x>*G+mDp4H7POUr5ue)qFA4D<g9r3Cxr7
zOSW%}-`#@)lM`Yyt|2RL)84dTcv|H1Xu9N+SF24r$z6~ExMkxFy71IWScv44AJ}IN
ziy0Cn6R<aMG^ga|fE6%_U%Xz-?TX*+vLu-n?Mer^dD0{^_6u6MdQWaQ6vG~gWh~(p
zkI<b67^;QC_uAiNrrJ{=`vv-SGG8OI?{7=&3t^jsthW55H!39iWRyxu72n=1S8m;5
z17tuDmY&|Lb-_vT8wohk)tr*5ml8tS@<rMGx+-+W8lJ@HM{<}Mm762Ef0LkHy_{W%
z%&7zfe>a<Tja1V1S62Aq9V$a+#6Txtr1w&t78wX1V<ds`+}pHYoFzbPpnSjNy_Fpg
z>AJfC7@7<8j67n%-@1{s7{`34g4;>0zc6F}7!lpTJ8(F_cRM0E!VvgTW9!(rN)XH5
zF@eZNcNguLPtni5Al6-9Ukm$Rzezccl-eJSW;+_2aoL~h5Vbwid}U6#rH^!|5eN6l
ze^@A7ZpY8iENtn!7C?H_?ofR$68I$_dg_)PUihu?r`}Q)5@R>v+}69{g{qK_qV{9@
zm-Vt!qbiuPaZpvfhvb1p9@Kd{0(^A2!@}8H>NcG>&K;Sd^F#KlMlk<wyy&rcqm8!%
zJiiye!KuF8D@o5lxC!G~Ghl(;t<S%=081;wcc|hq$6*WcJ1efrQD*5y5k2LgPqVl<
zZCD0-IW>P5SY>(gtCsTzRrBe%vYJ9upYL|7*z)$U)%<lvp$Zs^iTco{$<GHOHi;f^
z)q!+Ou<xQ@5wQZXKJ0}Q!XEHWDu&OIBQtL~hyq>|8-;Kp)7G2AJvx?My+jPUmAmhA
zd(}uiUvui#dMXlc1X{riA;}_PAk}vlg1CBLmNo}c?@3vxlYUSkyR}?>u)$o;o?f?%
zLYs{k*LHz~QH4URL%sW?QcMiHJSFkUV7~Fk!VlRAUFDl5>CH-*9W>gP2(w0a%8W5|
zVP+*nYHJ~`d5u21f>p(8RYfOd3|^UKvHVBjt+&#*7lpOzNePHv59Zc%v!72*)(mj>
z=k~3E`~KWWBYS|)-@uH=zjIEug)$0y!kvvmYmnD~-ZzV&QQ}uFQiNYBF$;rz=Xlaj
zA<CZi&|^XnTFBDg<lWeE>X2JO`iy3{pfxGKlXZ%XGgUd*93Pj!V2k%Cx{2vf<vDe*
z8ZnBEMHGrgSUHnXTD7sdO)b{h)h{VmqWxz~_V0jCDNYhUI(ii7tbh%f*jVliUnXhu
zc4_ZCCX*$Iq=XE9_VzVH|JA|vy(dEE`COtie9I;8<ek7=$j9=P;!=p>DkRIEfa!Ls
z%5NH3`R8H^Js9j%g4Y>Lngf+pI`3z9lyod~f-HfbBP2s5S$Xj{L7jv<Lr2hioyubo
zUeMYsZvo)goNr+x8z_j<l`*)`?h{VsH?^@0x$XI5Ikz=XAIpmF(Z?@>k>=y6;miq+
z)z_46)!P$39V}k5BRe<n{jXD>%}bD?XB0xB_ZruuL#X_y&u`_^|D{M)lT>3d2J`vC
zQbX9T%-HiORb&;N-#Gm{z;zPS?*<oC)D&^`Ph~HNwz8N#Vz@_ar}>Cus2|Fad=jCo
z5qPEbUIKj14e!>3opVL8mSmFa^vv)62l1`ENq+nVp2cjv1iu?og3jV#$I`2PM-<3d
zbf+U93Mx8GifFm5dj%`t9OTE0;n(FakCqRc?31k21+I1x-rB{75wDO_3@@y>4*S)(
zw<5TRMe$hb$A@uQ<-cQFvHt<K_0H?tZX<m0+PPju;coxcQ2u>SB3y;`Z)0WlYy*Q?
z6$BBe2UHZ87gm3rg+Kw(z>{9A{$Dy61uiiA!iwAo%X`(vJ_|T|QZ_e&I-Q&8zW|H=
ztnaB!%8&8}dWng=`4*a_>kt?&tuD)-Yf@V`b_mnEG+JJKPX9gPvRhEqiivjhan6yy
zf9c+Y_5{{x!mgVCNv|bl)yA=fHn}8jR9a<)xjYm9nwNo_UEt$+{qbS{*am{uci|Pz
z)U3YgvYIx#!lc0?6b8BuyHL<rPPm=<)P@1I*6nKpXP-IvOFep6QPGHwln4a#-yC8{
z;nduBg#xAV=zhY??BQq7NwiDG#iZ@%S$S1Y(-QyJh1-1~Lnd4rt2SNJ!sT)O6c5FD
z0^)P<gz4}6dh?~$O3V=oH2~-7YNIqSGz`KJZ|0GC>t&BpyP01zu{ZKXrivcoW)L&y
zAz{0W-wa}FVEp!2)HN3a9M_MY_1?g(P80|NFFRg~^Mk80>mHsjcQ&;1jeK7}+9C+A
zfTi!nVaWrJpLL&8w1;@unvcilGdG~q0fMh#lgxjnRV&{L)yV5dhw|O!glNMxKnD$Z
z9mkk%e%K0{Xe`g6q6Z?P@syksEU%b`EI9~Yy`WZ+3rV%Cic=%ks-J_n#bU*()J4fN
zb0K;TGyhYp)_<ge{kK`IOxv}x8~(<|UN%1Zz-Pv-L~u7LCQD|lSl|XdpDSOTY<$+$
zFl-7h0@y_ObsF3+%b1*AXiT--Eve!18tf&&o=xQ4{+z|g7`}i@%$v2>0Jx>ax~!0<
zQNz&NkGk2D(3s-{s2ez_+6Cg!)Ki_)kyo1se{^ICr(XFOQ;l#rbJ~EmdGclHx(KcZ
z>x~*OrQQ^zi8PPA$Sf}#dF=`wtGF=zYo4`isdLE|NcQ#ZEhSN#y#jbae}*{EJR!F*
zraf@~JhuJL0ZcgbZ2)@XCEfc3Hu^NqFCm1Xbe$<$jZN8Yov=)7D-Y}w4*%3Xf%v);
zwQs4Bi|d%D?Mg<?h`D3G(0Rm)`L{vAZ9Ek%6{rkNT~X)1jA)%EEW8%zv*<+CQO|*|
zKb`v?!x(rM+0k$g!@VYG)cgVT1r!W<@MVOU0%XfP0wgpMz#R)C5c+zJTLMSR>rTEd
zs&;ojm37K+s8Ej72jXbV!50!{y9%Z4@#r-eQflO;dS>0r7HhD4PZLj{&pr7CNXbWo
zX%Cf!wSb`5vf(9(8O6|6C@(a~dAEz~!Pc06$Bi<?k;*3HVl{K+`YWHJVPKK<TEhFl
zE;5;qCLp8YyicS#%qP^$m$=Pd$+^)nJFUvbbWuK)XMZ{w9Z178D)`(vt8csNbA*{W
zVo%NA@&roiul3%az$PgR|Kl;YP@KDU|8t*EylEAUayzs|vTQht7o1C%?O-A@RDwh~
z%l|_KtP3#jhBFV85EU%E){jr@KWvDklH-D2%=JnIH&P%`@V2)<{)2oA8~#wO(nc*T
z#o-x=qjmEOH2trHxGiT6>D0`Ny;&um#Vy?Rw})}1c>AQfBmVXyovkWzO+DyD9?^tW
zmAKKxBeRpou0&sMNnvj^$BPX+er2I}>p->4;~e4_VU|82^GdFO^ylrU^kI*v<I&TG
z{l#F{;y%qoUj<IJ&roO|m6PQa$*Ul2omx_#n1OAOMs_7?v4zb#uP<AtT6k))4Kf{z
z0g+mDbRdzo*#cplRG?bHx@Q8pf~EqBGI8nFDhzkjM=A2`L1EfGH3pfnXcRA0`6W3F
z-VO|OyrE4)_%ClapxoqTug{J^6nN;9(R&k37@NL<E(OtfSZ;ZCCGwq`mK)x>%-CL<
z#b5o)pQ)^Ed&^L1YqKt_-r5M|Ig~#-xan8HFQd2=8MZq|0i}q&TJ-dx+x?nU45NbT
z1tv-<PF}VvP+%)YRmksE072&&z7pR|l%1Yfn{?o*1(UH(H?ILVAMf;OrJ-uU=xf7d
zhk12k(!XxDTrIJ}9%K}mx$ek}?3zybYW4eiE@$0=?zp(WIQHcqE-mmq1PJ)L?G(v}
zAs)m!<z`}3_3qJm(aUSN>+#8KZePQjzOn?Q&Wwv05`KGtt3AF=A4}BG;MG2gk&a9i
zl;c!*z`-!e2O2V)jb=Q~CmZ;UKOH}nQpI7SzY$zM8Z2=Aiulqm@SoHTd9f_fyN~`C
De;ua!

literal 0
HcmV?d00001

diff --git a/docs/images/robot_report_example.png b/docs/images/robot_report_example.png
new file mode 100644
index 0000000000000000000000000000000000000000..1cf36d8766753d08938be73c87e958f4c8d56068
GIT binary patch
literal 183065
zcmaHT1z1~6_BWK43PmbFaVRac6nB@>;!bgQf+V;@kQONJ7Tn!~YoS;O6oM2BP~4s1
zeCaE@`|b08H+hmfnVECXotZOdj{M-Ol7b}eBhp707#O(HQXf<>Ft7(PFtEBGV54gu
zF;a?QU_1r@#Ko1Q#l@+W96;s(8#4?Hsju-G_dlujlcwv$L`D6$^Car2$FmO}(NEup
zQd6r{K8X>1|CNoV@MrYLdy~xBnpH1D%FBHj8H`y%jrT(D5t`{Sz6lwCJpbWrz_%x2
zvFmldn$d2yiX_3P^=y19&0LHnn$BxLO7-L$IV7d$mC(Hh9e%>BclCAC<-Uc4hGHvW
zU$nz6$&|<j)GWS~fg^4;MwW0)1u>!y2rTx^S_Fe3m>rWxuSUHvf*&ERtlB>Kt-UX0
z`GWbrMaHk@lUw2)i$c3t6?(RG+ygTV&O+UCP8^If&nOF`{pw7LvSEVekn@*p7}H(U
zc*_qPy@Cm=@L@1WX$K*}jJWs1ZdS^L*n>29Y5Uahi`wB8b6jIJeVLI5g#E7?XE$yw
z05|o^D+Bkvetwf6l%ZWBJnte!4kVN3b$kkL?j~WY3egsyefO(m6Awe?$pCHar;Eae
ziamiRSdWAC&S!tT36`hEBVOzIP;wq7r_6ibxIy~|AlpmfWp^L}%k#c(PsjKnd9h35
zZ9kgi-a_(LhaK`{+8-I<FY`$=La%w=V@ldmAsC+1<%`Ps{cIAABgd*D>SnG^{rm<x
z)c2l7z+6<4AyT6oglpd-O8z9fI+D;-rfX^ZBG0|r&#Mal{t3NAIQ}xuGg`HiPKCpU
zfiolKpJskZ@tlT|)MR8rQ8)$!r1=9Bp3DUFuM2mMWe&xEsX5w*yy8(Pi`04KK>NJq
zbvI?T|J@T^K|U&Gg?Mj4)flS8!jNYygR2oCs^0@xutt1w-(x=OGlF5nig6P_UB+EI
z4T_`fI_{}N-MibN1%Es!r5q8w$btFXUxel<#?(R!!Ac><bI}_Zb%_UmfZU3upMwOR
z+ar6*;5&``^}2krg6m8qf_`D^RLI841H+ca%C|kYLLwbLCYn)S)j19^Bjt85<&9sk
z#l4VzOwYg2<3_z3DcNPgY6EP*-xY}J<?;Te`krj@$s&JNnw@7%q11(VT#lGPEme8>
z#~u{4!!}D^QSdIl??jeasvjAa#Vpo^(W2Oo8hX>I%?3g>qZ`9Z5Q!HGRCv-?ZW<@}
znOv^!);>QWCt)p<@MBqfMI^&SSf@wLeMz6=;hXXcub-0Fg<qMv@r*4hmwxh<J}kK}
zxBX(mSFbzb&HlosN4BmW7V=m8!Lq18Hu!9**qedjtz((}j?;B1DU4VSrePy^YTEBq
z^hP#m*tD}Ez_<U&k!~Q{obKE#hLV@{r;3XD$16N{jZ$xW;3#bB%!c;%_6;&(D1~o8
zk=>=iWzUrN=RM1J7(>A2{=9n(cp8Ea_L;J9T~nU0VySmft}bD>_=-HhHZpu3eD5nY
zq1<ORqHoU3_f$LOSn=b0*()EHVsCZORT6IB@$AG@!cXb2w<FcXNbGdBBQ8(J+kfg5
zfXc)dBY65=d_DMyal}t*g<!H@0e4>-NpU`n%ze2bMf6f)xlhhiSS7Gjbb>}F%4(T-
znbm=uFQ}HLJ~~K>{t)~8v+*0kaY=b)9Vgz+fa)J_IG?2XnrEs0cwhTM&tE-LZJn|f
zPbflPv?6C`UAFc<RuWxL2P3P+;C&O5DoxUauhLahns3!3)Qq5-v{xAw#ygtCr%&jA
zIi-FT=prQlO1~)R^+=e^AgrRxb<z1u`ikL(V6UhBspZ{g{?9riJ7~gQn?A{ZD)V6F
zGsS1|&#HDT&IHJ3Uq4`vM6BbYj2YM<ya5eK4So%gKjmy_h3QVCq+Zd+JbUZ=T=rMY
zq4euqXs%GMN$$H`Je7*T{J_RQh(v=#N}y(rRF1AmeUEbZJJMm!i#~o+vT7>6gh6^m
zdY0E9TAmn|Xn{WO=XxO&uYF^r`tt{KJ}FtfEqH@^1LET1V&d}V>a`5vT(eTQ+?^CG
zIafNORg2t|GE?nUT^V~lmNsU-X}hUI8g4F&lb<(o2#~cLuYFc~zgC~ADIt_dGPHtA
zvP7jsVJl?foo#hpIJc~4wo8^v<Ehw=?6e-gDTNM29iE0ookHG_Q5u9_sL5&WNmEsm
zdsC>h>sC6#yIgX#W*i5xv_-gOJ1&rgN{SdMTesnl6wYW1_X$B}DUQ`6*48by5;yk7
zLF0SeKREVTrMQ#Kl>m0#nQ4A(HYDT{%qDM_FqW{F5CjOCQW}4n(7-XgM)u`^MWrr7
zaX+J?Md7Zkz>KgY2_p$U30U}M_%7K}PehMNSOF=BQ`l^l>l3)}RtfoIH0ypKl1)sW
zT>h85d6ErRqvfcHl{u*q1Dl?;$G2Kom=Tdpf^FTvcA-`Q-<;qNUDLLKtE6+Be9YMI
zgJ$ZiitNoya*QvTmWgy2wV5s$cNk+CLm5$8$og!}b4@etvTCcU%{uOSN?RdBQ_n>N
z?o>~&gk??7Y8d>!j=;?GnR|67b;CQ4cX(aCxNy0kwgIPNr>ff}+ZB8S6kg;G<lMZv
zE*~g_D859*M<k{y(X-G;Bd`nVj6NH+b#-?Y2hKU=^Vg)}q*|v^HL>bu>xJlU>gnUw
zQ>Jr!o$qsWwKsV*tu_H2TLs>Ox(lCtq$QPXv3GP@YE)~|b1Y~KY96)+*@1T!mudEY
zuG_<6clo9r{VYP)h*>}^MH*!q1@%zZCX~k>MEFA3UO3cy=;EoDxYybl_qosU(IE^a
zuz*TzuR$N3z}q$29f?O0K(ce*4t8I%%Ga4fQ6x!}4SbbCeJ_K_J`o<j`N@z()k1ql
z0`rT9Pj`6`{vv&e%lG`yZ>Kl?I}q>td)oK1;yPW&-(tQ^d=Yw3|9JRO#lyXb{jj7b
zBjnP-VIjJd?y)8Vi}uBQb2%-Na8hUX5Yl)8DD$Rrtw}9slRYQD$Jly&&ffQ*-N7cC
zCSr{AE@s=;yv+@7?c2j?BEFKT@~r}{g3po<ES|1EjD6}t-=g?fS~tawr(ak)eJrLl
zO;EUz|6E+gav&t`w5qFjh}4s2oL4PwI!Z!DR$(T3f`i#+cGI3>NvJn5teveB_^tNg
z8Xc+PV49n0%;~G$+<=YG$8pDV8ySsNvkX8*Y<d%K37$x}PM2pt{%XZ9*GG5mzPmfj
zj>WEFDm?tCPdj=1?c=8jIL#kyM)*gzw)?i_r>Go^9bHzB*YcNlVTeB2VFAX8XKTTV
z3fvGuTL(zDw8~3B#xEYTlQ<wC&MD||w0soT@>ZAl^~c86EBf;;{|^5Fe`Ha=D!u|D
zjV|5AzG><BBO-$^kQkWZH@pD1Oa`zyA_s$NG;8VxCCn`bfypLZ1#Swxv%!tctIDe@
zgO{y+P|J@a&F62A$U@~q*N8-J-u@~`d0O@q&=0?NgTu|#O&mg0$LwHG>oPK_;<Iti
zK3RQOJsj#DI(#emYb_+>GSQS7ptlKiT4Mjjeo##Y3rN`0&T7uK`@R&PqcKrtT+X0(
z0zAnbUmFk_;3>;0jjjMx1eaTCTDQ7PO%HE<-YVA!{IshBs`eSVz$ZH+E4O)!)NJl|
zQk}|IgnWd6Y`^|g(J<3dYm0Ay8g3zM`)7u1P*eJ?U2c+75iA1V1!i2o@9}Hx=;^i2
zn4(5WYbEp%jTTqwFi&w5_Za^qaH{vGMjh35;vV=w_JV~6?*oM;-@0SvsRqPgk}8{u
zp-g-;f6{ppXKRK`g=`uxl7Dt|eco-ICvo0|TZ>bTl8v|e_|1yt!N`rtmtK#Q*Kobw
zng|hK@|Xjv`{%Psg$TYW4~EULDa2xdVyaOZp9}Yb4T7)TF=+TQwW58&Icqn2?Ynrp
z=Z#O{cnNej29*~GYfB`Xk*K3+ed@GwHvXfepu)afuYuCBbw^?}T!*K3-lqL~`^lBd
z?#`s^qut}VG|x!8isQDS>%;qW_{BGNXC?;C8kf;QS@<l%GHy;Nw!H%weKmcCKuE@D
zdV&ZCSp9l-$6eLJZEb~kN#Cg@u4Q|R;an9pd{VJ(aDAb%Z$RAK>*Csy(6$S%IV&5P
zN!t@dLXW#o1l=-FZF}N?3gx}>NMWjBFPZb>QqZQw=voL1o&jmQgm>#?#^gN9qD<pJ
z4hA+^O7g=FNE*hEg(*M0J=-|@;^s^hg7Is$uN~lT#h2MCEf|Gg(tf=d24WkE*wi`3
zYY=Agext|68k_U3Ec%$Rv72B0@e2>ldl2|mM-@XV9K$R66os-~-@C2G#r7ogU42_D
zQ20K0f2fjA)UTY3PPPL-yD7sbaVb(r>B9o1&-U%TY4u3Fx?d=7wC|B%rYUVMFOR{1
zE<eDyhxrr(3thrQzcDaLG4B0Q#=wxlB>Puc1@p~ceePgj1OYJa{?$htef|B4LVwWI
ze_gR+0x|BRe?3KiK4;$fyEpb=Cf46&tZsB0hM20jv^4svYT{sK26VIpIf(|4)S@dM
z+DU0SVqg%x{{6v}R(Z9LfpKRR@JZ82Q(lhW1Z2x>WC}7iV|KH(`+Xk_K{tMM(bmk#
zh}zB82I$D|CiL=;9{lL??`oEp)PHnwvKD%&DX&B=4stM~=4NJPW_>CAh?<&O(81K4
zU*&_uU*zatLN6_yob32nSX^CQnO!-UK@JuyY<zrtEUfG-?CebF9!!qzKqn(NCZHqj
zpEvpYJ|D~+O&kDrP5=;)`uBZ}j6u#$LN8zbX7sPupU-LL2KYB8pyOY|LJyGTcMA&}
zGb_vgMdk!B{|B<)Eq{{zF|I$^3I4trznY_&gE+|6)(q$*{O=hT{Daf~*ZA+}{F6`#
z;AUo{`2m2YbVQFyn2m>%^)IsjZu&n-wf;@Y$Ibbll>gE4AC$kxz^`KF2(oehJ%?&Q
zfRix0Aj|(%{ohoY|0WY=<K$#v`-|*9>;IcZ>mO+Tv;Mzn6deHQX*Bx%c*1}4_|Lk(
z`U|rBUjP4)hd+hwk6N^}2|p5K`IqDhKjMuVpu@lr#gP6W_Q?%%d+uT8Cj?c;fx%_|
z$I#Q(Pj5zxv)??=QZg;r{*)kfx*hVqIxjvq%3F4%T|OjAs^rw0eiM2%yw@`1?YatY
z;n{0Vu7{&o=dNcxg;7H-$(PM*se(cBPoLg-K<$h1&tLWoQ9KGT`Kl+P7?^hn{_(5w
z&fUQVf`4xRP54XO*H=q7!{<@t|KRt4TC^j~`hW5gr7pksAnE(bM#297e)e-3Q4GJ*
zC%kt1ndJOVQh1btuY&NY>Xw2AqdxzSM@W7r+QI19I;E3}^NO68`aT}{bBdV%F*It=
z2L!Az$~C{7zVCOmtr=++eYX{*D!KX{?3Le={`1uGsi5a0LeQ4nNrB*pIS~pXI@NZ4
z>G*BYA?%;W)m?^xS<@hN@?0?C&h+xHHt)+X!u`fYa>#!s`5=kr<3!$n4^wer{`Pc4
zGP$7h!9PFNlmWW?sfZ-G5#AGCr}d~S3#)hvUN_bta<-ta|6|%1&<nSP;rHeNIj0zV
znU=(}Fy)R{IR7j&>{@6(bOANZv-Fvr)va`zE@%6Tvl_fI|GYM$<PVm^1K3qQ+%=}l
zgtJ<~+5OGfXz5J;nTatodM#JGx2bt>EHlhFyOJQotY+f>BwoSyF;h&#f@<VQOkQSk
z!SIq+Ur0Y#cJXtzR$n`PsUrNFkDnYtp)ORLZu^Vge{Y;9VN9!}yy5V&U%J$b9hf7;
z5B*XZS?zy)K$reu^8~wM-Z4M$xu<l)iDL;iyOdK6d-czwA?Tw(?=y#9_uS{nZz@F=
zF|HHLvU!@{|I>IxsVD9vBZH>S9zHW0;6W_=9|_13ABFVR8m|~sdwrKFQiq0&3Dg10
z>3=pkLm1D_iO&I@!_}^P?bRM|Qk_*RwGx?;?2pUKJ@nE`u?lh3X0TjKHsj?N8_sj%
zZ_A%;eF>^{nYtM)(>vX3za6Mvftf8<wD;HT%$UtJon#+{Jb(K#{+&h)d!DRpmju03
z+B9^hMUyN_<e#OlQJy*ypucNpPAG##Sz|tY;KF0oU4nEI43|s3DASmgA$-?&(95--
z?}+I8C6d@DNd;!$4|_FU;aYm!Pz!nZN?pFLsoACaB4w&xga&cPob)+F_!@lpJ<)*v
z=mD2FmgUZLI)m*@y2JwGbEUY|4awDnGM$wqhn4I&lL@n>3zjWpt7pjlDj<CGd14L0
zAM55Pb(cY-jHutLG~mBBfM~)4Q*B%h;(fb3!I~}-Am?tNc8$$R3bbx^i^rz6YnF)9
zk?SGC!GWvtbU#P2Ps^e%kuuTgh#R-frRAO$Yqbasjp`{sD#)GP{ZO)wPAgYn3<H8a
z*#;37Z*plB)#d~dZR9H(facr0V+>0lJ%2;}<q=_s$IS+OA0<Kr>x<6WUQKk`ql2e#
z$*Zd0$ES?*ixi>}aNT9+dI=lALZK1`-4Ao$;;T#iDI|XTcP_kFQx(>x37Ol@UN)Z8
z>2y_)2fS_t?a|^8GsiKg756pN_w*RzkMygwTT}2mz0phFK-FBGbL?0cHbt<}l5KE3
zXWl^7efxqFq?7t?^%gY`9xYnpt79bAwQD<W%>f0%;>Y)3kBO;+%vr6*EJ+0D4je6i
z<+|qS;`tb|@Wj6k(pMno{!0cvyoq|-9_NomS*DZrGEpzZAw2Lwq=;mBKAe@3*G^Qo
zauC;1{D;jRvh{EjRzX*ymcOQJ9i>*H{=GyjU!J2}zjcCpyilII>G&kBC>zdu+H%T3
zB4VT>TK1t{LH+TwK|Wa6qh!+Ki$hq&oe<4_&eosVS{#l?`PH_8%GR+P_!_q9_B+$g
z?5;>bEl>~F#?`?ReIFje%cM8L;{I|h$ukJIZ32CUN6*YShoVTdEl_To2M(Z15?<%L
zwg7VGaRHPx0?bnCQnbzA$sZL%t;Xf7xl8{(<BaYSF<t1@LH1Zvia%RAQxBReLt33@
z)SJP$3}$OiMw6j~t{vU?_eVWa6Lm-RuxCZ6%OESkCzBNhd-p=WQB-1!Lpb@gNV%+D
zrSUt*7)ui3)LTWQR^YoeqJ9kNeVy0g(2gqgF)%+qbKE@jJl#GR$`cMtid6+N$SMfq
zlMDPc&AH43N4{ExhFa<<@pyjO?Mb^%HeyCcaUPLVNdkyai>1FA_#(w{tgWAum$Vqn
zZtJ0JV5^;BjAcqI5q?lNelx_$n}yl19fL>C`{GFaAzlK7-i2l3k1-<au}Y(AZ|fhW
z3Te})<K=UJ!xDGW3oO-lw!NnmE_(2-%4Iel+##7dTSkk)^w_cO;@!1gDq<;X#|TI9
zVy&Dejj$H?qiKwMo`5HRslL9-4n>jc<&}}2$Btwb8<8S6QO$ds7NKA`mxe5lDu=N4
z+auCtMW60iI)#{#oZg@J0y4;6;gWu+2V6)|0uiD)ZNeApCP#Db)sLxes?kEtaNfB(
z%D2&2=Vp+<V=NVEKYdDYK0URe`BKDc;=|wivs!^VACtr1>}`f7F}Y(WJCD<mDw6+_
zY25t9btk*6x-vu~>=i(?4BReYwpz+}nEx;pFrd)ME<{;oL<Gx)vtC#ya0xEnZM-^^
zrQMB`3$SwD8jF4ciik0TCCrGAU&%l+b<DYj3whqI`rL|RAO@3b9OOGnEl0B1_eX-v
z`eR<Jw2OJa)vPoW)k^-$*zyZ|ILI*{#2L@5r(J9=hFcRx;eA{;L4>7?Tdf5B3~V^S
zo`O1BR8tHkv8no;(Ht}<aRankJx05Pfh!&-Ta6=fR90HLjkRG_a-?BfqfprnW*5kH
zg>IvY@a+|j0C)rxx?KFOB7x0B5;h`9MNtU^rb+EgKT-oC6SF>j8<vf<KbvK*dnG_2
z+avRB;%`GkboD_uqoG74WA(Fje-mcS)j*(+X`|`2wl<j!`mkxil9sI;oaqa*w5>_5
zS-X1|c?GMny7C1~ze<n>_n}W?W<X`BMuqj9X}5Tpv&*GzeV=Sspr;rIyk5EM*-N~Z
zk1aI>@0hikKHYF#)14tMaLG((>ULD}<p8(a<O2HDre8Tx-U%i+FhANqEZC^8ccxhq
zaZYP(ru=>0t5#076}^9L>o84{K69?icfK4eUPeTG6d_RVr|Yrtng-@^#8lr0=b5t!
za4k_Ui`hWj((5(p5;)AcW%OUNBP%cl{@%n7x)Vj^?wH?&jk-K(Tu8!6Xv~6S)Xi3#
z@8FBvjLlSWcfA0>*+Dt9v>rQW)<ySNhKo0jU5Y6;4t#jL19v>-CMV5bK+Uxp#tQcI
zklDn6!fWA|k{%~5>ggoMskZ6L0rn|ib51xfY>dEZ<0-=FM|1uZg}mdc7fYG|y^HW}
z!ex*)$Id+X8I~<t{l|HoA5MLrHuzaQUb0eX{5{uYNBc&8yWw=C(hNpK7WK~1%2TaE
zUF{JeL!3?Pn7O5GPdvCRCgydBY@ST~2Z+w&#N+(V&VZmnw$+o<6_J~(^P@b?Be_eK
z*>;gCe1EiN|1z7nYl2vXSDW-IAZ~SN-kPLWv*^^>G>97u|EW<L-!DXp5P7axj@B0O
zl!Nzf1rCL>q()wzf(mYS#zliB)Qi>2n%vb+CR}N6lY`ux&J*A|xxq!R^>30)a*gvs
zfcD+u*E413Hk$37K8lDG(Dy;tSgBZ_jHyba)}7G8PenO!*YFS{YYu?O$4k^sBKYQ}
z7p4!}%|9aU+w;ENSMTcx<_FGJDs$V+8eVFaD`oj_u+&$h^cbO~C$pv6P;G9=9@F$B
zuwhTxgBdSn6+Y)a<^`22*ZmUu9Ish%&gHy%<+Rx$JcTR!Fiol=5q)wpOzO=bi0soh
z@Okrmlbf-*fwQl^z+K^w2;T*3e@q!w!FI(>N*Gsd8A=7@PJV_>CT~?qI@o@^^e&oj
zKDn-iA8YAln@W4O#xtm~Gny5m+RIDZF^{Jad&?ehN)zOKG#ylS%Oc<=pWoC6>#P;Z
z*bea_#-|WA4M1G@41}R7+UC_uHQ#c{IUX#Qch#ovDXpj$d<-R;y3b-gUL0R)U?s$}
zHBlCOvRb1&e~CT@7sZ04Sl&<kWz+iEydyaACF!g_PP6`7g&`8HS8br<S3eK#H`WeU
zALlMu(+jzGTan>Lbu(;4J_D<UO<N>SJcmh*?r>%B%#+*Jj1-v9K!v!v&hwq*NSC!5
z_Ia9R&JTP0-WJqG;mgkx@Pl0#Fl)G0C6643aiKGHB1=w1S~Y<!m%Fc~j!^S1>Bu;b
z!>@iWy0;@#IR;(_@p6}^I?_@PY#3_JlqLI%3hJV3hJ_J2BD29rjHLbD4<lq+ztw?x
zIB8vA26yL+R7$UPWgR-(y0z#as>)EV%9Hhu-kk>QI!dpFwgq_0hW!#UAp?9qu3&9g
zlT~!RHY##^MH`E}6eUU$zVeSvkPV2q=ob3Z?Dk82vp;D7P9|&N`bK%-e-Ed{?B)h0
z>~@Rgesw^<UCn0F+s7huYjfE--R9k#<~p^K*x!mmF4;DFqJShfhj#93X%CTtJSs3j
zU&kXj4@}D<??y-rgx!upULJn?LHyxX;u1lqq03y4Y7?5mHNEABB{0PrvEasn+OLO1
zW+LhVh#ng-WURtK#Bd6SrR5De*MgJ8W8D2<B#~}zcV)5bPC|jJanG%JUnonPDJ11|
zO}Wj>z47Kk|LrNH4uGI@->&NYc=SL)`?73a=sMT!;1@FcT}1=Kln=0Z#|3nr=8B}z
zfV53tNmm3}r2DAX;?sdg_r6Td+qLR?pQzDL2_9BJM$e?_)0Uaig{<p%cBw{!R*^ni
zwj_KGaky?5i4@>(2M&_+ZKI{`9JkxP2gh+@6(p0xGd!vVQjHEPcMhGNrSYemL`qvf
zi69jkh2sgx?Li60Q7iiz%V`IDuLLB#MNT(ndhhC$ywV}Mx?zbDX&1ac<~ZD{_&Q%O
zhYg4D@J!ClIiLs9q}3lta&BV@mbib(_oG<to%>mI&~n=iR`-1UOf9Hjpinu-<l@GA
z@(M^IU|x!Q+V~A{1SQsY%bIn$EW_+9u1yDl&(l3Fq#MB<SnQ6ga`j{aEnO{&6)lI4
zF551zYKG1B7uN0|i7$|2!o<*i&3}bCqEzpF)5wvM{Q8&0*;<ZswHO;=vt<4ZH$shF
z@m*7{Sk1@w`!}Lauxi9U{XE=TXl<HGOIvjx8auIL(%Ob?X&j%B0(r}<R;=64nep?7
zyt!rJxus7E=bN>8#Xxqvngjm~@Dq(^dvU7T(^NL{kXPJTxje}U6`D`XVI5Oj6BUWk
z`BVbLj5xX}yj+0M%fs<W)tGxQry?NgoY-KXq@vZx%3%i|+L%_LnA>*K1HtTM*UL2f
zVM4*a{E_Sh4#W@SclxYA?7h5BJ&>!ywk=OO$75+{l2+^^?jS%_jCrF9kK#h5&oH?>
zXT_uU_!;loWh3xe;GZY=@*6*#p}nW<9lsv2fstMU#XNe}6QvvGFr%XkSp%PgFM_vM
zQNEB`U^3o`SekI_W#Hq4jYC41hE#j=W&h-==Lf5e^R;vy{B6NxM$P=0Rx|%MSoej^
zseV0-kDSnNY@5WT2{3DFLk3Sw%TH&hi-s(^D%|?4Cei)iGR(WK#-_&&1o%39`|KJ(
zJhhPlcfBpwV}9((EW(a2r{}czz1kd33cAF)kMFjWB@r`Z_e%x$v999@wBO&X=~KG~
z9tHa+V9O$%&O7E$KGB0m^=~pK<qMAo-c``yJZd<py{*x2El-^Hk@Yehgu8YfCoC$F
zR$!LRJy(`7X=5I?Y+-@cA@p346zrP$mm{d0bj4e78{q8?svR4~(!70Wik@o?$jfoT
z+EuN>=Vilzt+%`J0(&j*s5Mu2Skiisr*Ff&4iD&0kEBF&uB55RfA}_GpJJ)-M}D-9
zKWV;9N8bSM8GOD?Ve9V?3ip)7e%v53wN}~2W5A97uH|&o8Z+qI-M<~+sMx#N>RpVy
z3u2Xw-idxC%BxmMzm1DFU6bZ<MLMNlD%T#18S9Q)cku%%(iT>xjHd7T8{0FYUA4n%
z+Y!dAXT`ugJ2-38%1stFe4;`JWU=9sO&E5x*A+gT$_ERVLFCJCyM-pe%@P`EasYLJ
z@~S$(04=oE?I6P?o*`c=<5`3Vk~=MqUXc=1^LAeD<Zz6PLOz8v;TahhJNy-8Emyq{
z8?^q|3$Rm#Hp*uO?MZ%4HNz~C(GZ6Vt?^7T@5|@MXwQG8X1J|#2E;8=2PM);WX`&L
zV1M3V1eqvXxyGlP>8Ao;y*0(<VS+R#jP-E|6&>k&pWu#oTa8Ye!r_R46S)1(Y?U}s
z3K@I*P16r%h@rpvYniyH?W<%%{5bHR(YFUQtd>6v0VY=dm$!9WR@2LACGa0j&Lx#x
zLAqsC<-{(8Wi+|?R*mMNCwm)MD3OJ^zKLnmwKUiCYyE6E`_TD~XR=dnqa|)iypQ8&
zPTL92ZsicmA5sCvq%F<+**JO5CF(A%Q;w^Bm-!RP$QL);h~eDyBKT8X4y&N^nKGVT
zJzU<h=+VVNygKeFm1mhL+&el5iwP%4P&w-KtiDD2gGREpYT6KAFSZe<W`Q(px=e>h
zV7CHlW|6y;k(WO_1(CbeV+PnZCNSy9&>$Yy`UH)T0=3%;(!FFDAm$SaLOY-8iz)C(
z_{W$hAC}pUUdQaNHcLx84&s<)1878H`99hlCAZ$!JKV!Us8nxX>(N|k_VYee9wrJu
z>X}@7YYM{!CF#|S;H%|<av1s$72|`G2MBlML(>A=uR?4iRIy&or%YfE338lF`==<{
zjgm$(qpb*dxJQ?w@c9RQ@Q$-U8Pv_=xM576g>)?0>`uD&r4j;na{diE#G^0jn31f8
z?TPW^CN|yr9qFE|5Qx-w{3x$TEC72n&zhL;=4{EP#^1o}rqQ-d4@=DTxK&)=^Lo4z
z4zaG(MQjw*$DUG5&ybdoc3cmRxs0X+U!-p#3Mz^=xY#o{MlF4~*KasC)?|BYhU->F
zd^3GS6eFwPjQ-$2$h5l$#p(7q!s|56avuLei~SJZJ^dv|j=IFQxo)(<-UOoK5&3;Q
z1(A}ymg-q<>wgR>Qf*Cf)P6Ufhs;kXo2Z;c%?qCorb?oa6DH%s-_d4nvl_|EzoXxL
z64VTs96Rj;bI)C0Pi`!@1GPK?iBspbnvyhJ<ld>@m|5lC6`~;hjy0Z{%w45XVjlix
zm9(|AcE=^LSWOlg7N|o6EQAu&c*=Lz3U82<mu9UtL*6#Y1$-EhL;HaVERm+`^NO6P
zEccz+MugzU)U#TXlg)9P4#_nQ9v&*rvm9tnEuC>BWulZ1B230=qZTopL?7Esr(=tb
zPjEk2C9;eSyfB%0eSOd{+Cml77Ih}B0J2I03G;m0QN7ec+lP5GvsdfoK+t2r4ySzd
zL<qu}3uE<;xk!?sZXq4b8vIsS11gQ>%q$N%O{-_w3D}`Tq{=-+WTeQF3SO>40Eb^2
z*$M#N!O{6&v+2Jf<?LqI{&bG1n;%-Xn~+vM1aiaYTk6|ytCf01uHqB(pzcbqc>xI9
z^3^2ncZED~*?5MPvV5MOTazUgkf&qGt)8f8P&<Uk&SXyKysz&EabQxAW{PKxA{)5f
zd7cMpmy=e&v(NP+-}_DDaqdITMr~>jliPEeVNXoaYovo%B2MmYD=L|;vAxzW5AB@3
z=?Z-9<2vG#bPNT}gP8>&^|zN1_0$x!q`d1hYj_}-UnK7HR<_-k1T|1Y^WmH)2%OAk
z9q4*R`oIwri)m)=de;Rqz4{Wu33w^wdHS@>`(#|h049`QB<I~xq+Zrd8c<_F&o^GC
zL%-me3bRbuqbc>=-JvHo@QT)XMIqo4*W|n<Q;|M7v(Q&tgcv1cMQC#>3LnHJRwR7S
zP_NK8@vp%5sNoD=YBwL|U2^hF=VZ<7{BCg{m%Z$n;9gk<iP^pj(V~<`dD-uyXrm3E
z9&8z@5+Fy5^b(I?Z^!54;>1U#dG7K#%#_tnWhP@=3$tR5%d)g~Gvl8`Vn<QAFB^fP
zSF_}wp03*`<K}Kcd61l!ZadIPx2+GCHDUpM0r&A`hzMjNt6Zas!Yuc1<ex2Th$q%=
zqrC{IeEVk0yxf#t2P19oXsf4d<E<YikjFt~DfR>8+gQG|-smtRm{pHT_$SmlaotlT
z)@NwzAo}m*hhHikK|CFa2s>ttX2IZ3Ne>tS%rIFXfAD9}jD~g)vr_hq8b?}Y>?mEP
z7<D3pM)|Tt7vAM@E3Eb)<LpuMX!O0Cs|kuCK*BWlhStqB>Z@YdX5BP-jtHPqG8UOR
zGHp<l_i|ObTd9+M4!9dluj<^Q*Nk|NH2v*d;Hm?jeZ6?T+7nLZd}1n{co|>@yr(m>
z-52S0+h`B#!VM*2GEOJ2upqXs37e^VeOmHsVv^LZ{OaOvG4`5niU3dlUJseay}Phk
zehU6n8fQ6-PqEsY_{M+PhJ4Zsi3VUI?{h5t-LvcKR~uNYi=(gexm63%c2osaPIq+S
zi-_jxs=@4zG2hm9&2}y}zt8?PuFF=#B2)b=IRT^N5mZDOOeGX5U*?j?Ib0#1iFRl4
z-M0^VTMT1$B&{a_R8pj4h}>)6FIFK#WmNF22~F3|mZM=27PN73nzPcp+ho0yn_z*~
z3czR$YXytvZ<IP9dlJVq?FUQqb!%Dy(KqJ!bNofP^}w0UvZq#5Q0vJ$KZVwWbPxWw
z>npZSrXRpLmSrDrWwDAuEo|?HME34f^u%JnWNthj^@X>euabeZ146ROwOX-jsW{}B
zgV(u3)Jb%Gw79~0E)Nm3_+9`KeYeGXESjqWx%hQL0_$2lfQt|M>*4n!Ei2dCXrV;c
zun-D0xxmNrk2JASAflb&z#uB0H(Hg0V8N;v?LBuf(4n$=e6Z*_>f^|{cjomwY<lm7
zj@LqX;7Yl*tu^hLI@>vhY8!w`Jr+_<;$NagPE8Q+n>=w7;ye)Mom>AH8Y#$@jNGA}
zV&*t~(r;g>aD4Chp+@2{oj7N#h{#Saqk6vq<k<A+Zng;2GWrE8!kxon=#=FVUpbs0
zP*yhK)%CvB=&LGltr8kiSCsR(VNd_^(YSj9P<007WNt@kHjn_V;bdJA5$W8zr&!M>
zFV)C-+nYOW$`3lokZoCgp>ysZLMr7b&$cO_7Z(8oW7$6xc~8M5{zno>mzouf6x4Zy
zt8a;$ZCB(Tnmet3<9xhVWGy3iWaszzmLJ%XwwJ$q2SKmWkPC-=k)8gKDGR>1z`Q&f
z?#|D1PM(-}H2FDu;t^ow5?N_E0%C4X!UG?AivUvIt1jTmJ5Dk)X;qJfrv$lfx-F4<
zd8~H^Eu$mt_%n%+dIwU8E2v7k+m$rgf;Q-)LEd_l4g=J>Qs<k<{he<+&#2BkW3^y%
zfQ%N&+BqJBId#j*Q#7opVM1?sk0T4yKQ@vRT)@P4b~%Jze1BB(6k^29U?@H9?AidU
zZ@l=6PlE~-onvR_!a`2_psk_+lTEl1Zf?`w^^IWm^^{VphjYb4wcD!i9xaQ}tFi$o
z$Kw%6&l>e}{~6>UXT-YukE184y1oW$Jhr2pZdGZg8S|g99@0!2(f!Npox7(3B4hG@
zYN`4a?Ze<$`d7(ssphUhH6$yYhYa%6;iSs8%=ROD;NY!hIcJ7s?rUeNDK51#?eEqR
zAn3*{MB5x7pgLXGj5A=V1fyD((NXB1JiXs<JRaC`!#dOISwGjPkAqH!#I$<G`a6CP
zO|0ahJ$|@Cm~V24R{Nh@-E))4y`5AL(w(nIZS{&Zv$DzLCt34$LJ8k(t`uD}e@Llq
z%)N8(Q1<;d%%ibtK*B+3t}vHw1|TJ|ohZFsZrVvkrr*HCE)jqo`)9&Z6iD!cY+B?h
z>IJLybZyaOuSH>XJd+Odn9Wp`cM#958{)o|O#fWcq;nnRh6v}_1((&>1Fo5&5-pCZ
zuVQIGe4}O2Tf;F&1@$v`A%+LRlP&+W={YRFW=_~?opN-<9@hmI?fXc^zP>%UG8%B5
zh~DGWUMfLH15AI^1Z;Ctc^_A;%VH^(&D7Sx+3P@HiE8Z+{Vq}89t(ldX&hF#GX2Ei
zC`Mu%=ZkE4<2nvMxgAG&YdW)60NiGzw@1)ppHhSNPT0j}$+z4569GVFt!`uY7Dvs%
z0)^>giR{BR&g=8WT=jx_fi8JEGJe@IOp;xczlb4(5sM?o=lY@!J8w15`=J%<+vyD4
zcm}g=9;w2m2vhxW)=r5z^#HADT`NwN^G`mJ>%z6|T}p33NUtn&4*b6pqkYPENG{_S
z-xY5K42*N4&+G_2QWh}|s*iyZ;`d+?BIRO%hhZl@7oSUIOEfCr@t8F&s}DytPfYT!
z(Z+P$>{F|nujNxh7AetL?Ib;xsL0g_>(gjdlY%vZ2Zig_!SskPRlqg9@!`{(UWdN$
zh(RYzQCyjgceHO6k%A;sg3EQ<;-!u5+Bzclp;{8xRpp9^3rNlwJ<GKs+wIY?K1&6=
znT#jeB^^j=(Y@%Mbj^hH{*@ivX3T_oV+)@a#=TXgTVPFOF#ulrjV8n8M0hu(J#Q2|
z3iBNpyuV#gDcR#+-`!Ka^(i>6j6Utm6?-{jx>!7pT)nw(q~gIV$y2D*=3lSZu(Yop
zJSw%1#ltKWt#aB4*D<jFzOqW5kieGHJAn42jCh>om8~4(NP`j1yDeKo&jT_RPm@^;
zgxy!C3Rd7xKm(s2?s>pPt*FgLyQNR_)(RpYx;Sr4zt-i>zK)r5@ias@RJ5KpO`7IU
zWZPqwFUTExrpiXY*l0rMx?CVX9VBxe>j!GFK8;7^?HTbfz0XZR$9{3oef7SCyuDw-
zaGp{>nOT56h*kzs_X@u4s(>w`{#N9eca2%1ssx6_dL@4_K6n)#%g3gf|50%2m}8Ou
z^Mv_Yt&0(747MKE{*Rx_;ECj&oM^MAqaRdnf(8-8RZ<rL2Cvu*^S#YKav0VfOHnIC
z3fPN`F!>3)U*v403NQgyOQ$yQk_b6Er-Z<_w$^q#GxaPsv5Ww|bjymF0m1WaO7f)J
zCB@b09qLfx+YPSXbx@r$$~$huvGesUoP=jsWGtnHxp8Q8j`I&qj(NAb+4uCd^A6W!
zzYZu8$MVp+(?6qC9OUI-0up4Ry`k%#NFu^lks;%Gbpp~Jm`qIuleJc5sKCLvc7P};
zRVIU@?bouexOVD+dMYB&o0hqT_T)~L*RqXMY!nHM@wFK`pk}oQ*~QM5>&s`khMjkQ
z;j=acY>gGgu3K-6=GC!Oo*#kZ0ICIz-w!8rKr_=e0bbs!?l`nBMy5@8kWM+e;I5PW
zBKW<-rK|J906?ANP0P89wU7wD$W<^oIz?J*(4-{Yeu+IPwK-ECNz95c*`8>Hd@h#O
zoZuYZ8QQBfVv%mRUxt^QKv)Zq(4(9k*5Vu>DAon0`w&N%h4fsqH%N~r2I1p)_U(Eg
z2)~X08by6VhYh~1R`pE2%JS4?MQ>;$*P%QA0w(zB(h!XMCWjDk%Fa7Ss|J{9Ywy%-
zrn%Bj`CDg-Le?2|xcB=PYl|%n7vRb!+vcR7VVl0mHv|!CRzLUMDoC=a2IYNSb`(OV
z%Y9CqQ_3#Cx@e!xyd-OJIM?^lG7Q=Pw&BfFigYSi9lg;$LOUFp;MTYv**HccEc2!z
z?W2H3mon|QW$CYB$GwfVH{atN(*X&}Smqx3T!00ry%H7ZhV0=5r>%@MRxxutL$Z_j
z5ZomAkJP=W3$Z5DD*pVES8>`^%HxGq+rz+yT>0WW`uM|p{x_^}NI_geGN~<dyuc`^
z2y%+Ak&>SqDX`0X%LwxN9ukjq3&55x6FajW2C%-(TQ=CeP?QH;TQVMjB`Yjbyg}%B
z3#=Z$Sv__>UrC&yYl6D>bOvD02tw<$&@m>u66K@>icME~+$glFwnQs3Hm(^7nCD(A
zsD?zqMfWE<MSK0JTvw~S>4M>R=u@v$UIowF$g)}u`c<G+ool>MOB|h7vFb$}DQd$q
znRFUzEl}xE(1lt)SK=RzTN0ix!clqcU?yBc^J9;rc8mA%C=~6Uw-ESsq?bm-cMI`C
z?|<uDQEJx*-MRYh*l=x#HW4#Go`(3!?&t;G!{uee<b?NNx5*OMQVnWi!6Wlr6Vt2D
zUy<rJEv?DPf-x)xa!7`{=V-U~AmwVLfbLqXJnXsZkrwEVYD%p%&75K_f>BjxFb@K3
zK{^5F8Mn8xahjXd%uZAHS`TW&&NBQ@dG3*<_O2Oty;T%G2@^c%MpWCII87hnBPC@J
zWszgmV?OU|Cw{WDUs-8@#`f<X<+^nG%Ae55<k7-mmWc2RcLD~0fz=WCYDDK#g^v&@
z^{?!)Lrlj@gA9X<deFq6*6F?udbM|bifTzjCM658pX$oz8WLZ7@}EG8klV3}!c%1U
zl*xxDaSK|=+ARZF3vwNn4Uoe%wlt>5b^7!2hx}z(+$KG8EFwGixpW@^CD>*?q6bll
zuB%}mP)aj9^X&%QNpw5MD=FO*C!9(()|1R+<T$%)YSxFk?kj{2o%hx}wV3r=exlh-
zL9Jc)83nHE0rH}#Ck)iN@;dkpVBeh@X^n|Y^}>_)=3b`e!|9V#tDMe<GobcoWfa7z
zDfO1S@Du^meUPBrhsbe001SuOEcbD|oYHWf9rU@LY7(&Z7_UoDXT-~Z8<cKYwD$!a
zs{JhVY3Ejvi3fxvcS!>kc$1xav1lJRPey8V1>&{}8Xrt8m{E30@h&~!4!>YPr@^!J
zdD;J!2G4#)Q1b>utfp^BNdZ5hQN^l^J<*39zUd|OdPCwfgla>nUT^=11-bdBFl38`
zYv#TD7!vHFzdO2&FM`*=wzyhgR>;H6NtMV6o>SzEMW$+2zdGm#>?krqJIrJ0q~#gm
zX#$hh*{n>xxtM&3wT)d$Jgl|nT@`I9#+T7Q&43bU+|Yz=44{ih68Lx>uQ$ST=AHEx
zcbPb4KyzmSj$}BgEwKExbJQ;P*)n2yTXmej3^~;b5_g?_{3lfL0g>eb4#V|{hDrx*
z>vdw|)$op2Ia$2V^=>rNYG?ccr^oS&WMS{7v@$OJl>8qS(`YD7i}UrlWt3TJ(bRIx
ztskYgRR6uO<L1#;)G;xb`eXfwVYe?P%Cob!W{96d3oL)LXIo=VFO<1_nv7ihN}s-d
z57KsZ2=jGl5Ii}f1aI4K{H%)g2B@Ym1KN!X(x%lFY#mct4lc-mE**BwMP_>{b{t<m
zhSGUcrGZj3AIAgRHi()d)eCCtpicrOrKO|@aHRmn`mIgGSC8~rW@{&SH=Vs%KvfgL
z2=+@va{d>LL`t%=q^oUf?lJhJNyFhli6A}Lj+54`&~>{CNX!lx^+Yz1jbyGI4ddF!
z0w^WWnaU&Ysq>cH`LFf!NF7dAqSORNt(O+5NTl}Zrn~pPF-ZHe%5ynd@-?q!3Fd^r
z1#+>>RYfTjZ{)^i-{raatEVP&pCT{EHT0oo4tnID``PDeXoV7-_Iz>wMu__9(nX0R
ztYo?O#5p_4R?5k0&5yAPputh>E0FFsoZ5tBZj-{J(HKt6)rzeA8Ed3g+99MM!6bPa
zDx}tS32gGVa=onEVfVRe9<5p9qH#U{_G9h+5NeqGVD-(27w1Me8C+x<fNaSvut!I6
zj3H!l0IKgHgf;SSm<_7FaW9?qQiZ<GD<~3Qah7XzaL|gBHN6tpoBqx}wy^n?o;${i
zuJF9MA2Gf<N;t%uqu0a_nY87Ik%@c547HkwBg}tWfDVYxl!hc7Db*|NL`|i8SXpab
ztz~2@_Rzf|k1EI@F}>U^@wCx9_Z*%_XSZ-Z&gnLxJ!{1E-8NVN&7VGw)@yWRdKBxG
z$Zbo9z+><ZJ;<C?g5PzQQ6%NQ6&;v$3Ok3neftp~YSwZ21A=OID6LsezApI?S~2mn
zGBGGQNa;~-LlCka70s;I>;|1&P0~K3Qn>jsv)UO%d3;9+xGID~(q0Hj24IL>?FZl%
zr@F5u=Wl%DuM32a0T3-1Vc1@jZu^+^MLc8qSbC${eBPJGT;3fnQC8z6(m4|0v)P>Z
z&^owmzGC_AT+@v0eSDvxI$$RL-g=c~yVYI`hZs?^c|Dg}k;+E}k!vS`@>|P=#S>b;
z>O=!dAl0GO2)q3ZF4+XE!5-8fb_=iEvSzJLJ>OkbR4e&(LI=gK^3JD&Oo)!=^FmLP
z@<W;1`n*umrD^lMap*uJ=;_Xk0+yZ?o9VhzMS`-0LDU$G*FPG@yk!*dg>-pzTH7FL
z;^DEjeUU^s>EU{Z<jP_YWnB%haYcQ^o6B}$kX%xF#&sr`2YKwD?h$?lONnM5W1IXc
zOFG-SHPoE9^+ivvz5csxI6tm-)9TAP4*<!ZvhRL#zBVPiUfZaE>!#<tGET=jp{&4-
zj{s2Fi7;tW)6SD`5H4aPKzcILkc+XSi7anVM7O8ex$Vfy^Fcw)I)JKi$y1NHll3P*
z<-8b$$yE4zq{5s%aTl7atyQ5JUKjSo?L{inphB}~O4&l&<e<Otg55cya#-e%WPUIn
zo5e%?&B{L~>P_pZS7^Q4-QYzdi!Q0Q?4|2JU2-CXVVp|&P=s!=HZ;UCed;w~UxvX`
zx!zxB<9K=g%WBa68SS+fz%hgcmyEg9Lm!f#Vx(Oo7l1|>F`@9#e{#kmuS$swED9Us
z9rcPSpBSCAk(Yr$ZKh^%t_C@03b+jO-RoH|M@cmeQm9}l$ANKe{;}92{I!ZY9o)Q;
zVRGnP^#JyuE+rE@ywJ{japNj|QqKg4(fY=E&{Iml{uar3n^Upiw8N!g25Xz~kBkNU
zX&1hKD2Tc;e5+ksSTBX8%gn`F?uT}%m2T68E&Uaz$*Zw#kFlF3p5nyoQwlSF-=mqn
zKl+`{E=P<8H|jjVl(`)^*F5DsTT4diJf_T!4lRGga`AXf>g9m>ral4>8aQKJ(Ykp8
zT{g&vlUXT=S^EJ-wQVm(g)@(Ta>UfC`A+JC<<WUT2}n3L^)X@U@tMB+NxW~66K9lD
z>_bC9*$eqivH{Hi&@@=fZZscneBvGtoqX!6i>9R^f#nqI^12e&ZMQm0$0Y3<dFu^;
z63Zv6nYuDv(&sN8LiG#XFGRI6gj>;KNL3XIP0;c@YE@oq9?OH>s|GAdkO*H9dXn$8
z2`HmEb1t~fdtYOjTjW0WxPDA>*fMM1o5rnZdxMz2TR0@Rma1@gjdE=D)$15iO%7h3
z4!O7-y_*27Ku+b?<zmAn!d}oA-{30<d7eB6hu1Ewpk`+j)4A{y0I?-mDSG49*82-$
zn3JWePvFCW3nq`aD85z!>s`<}Q%C2Ke5LEj%z9QVTD0_GyL9IN3#(QBG+0l-Q8-@-
z&T(;BcvwbCoC9XoVnAb5j|a5-of^_~QZ%-_x8yP9j{q2@2Dg_hd5H$`S~Y7)zS^Ua
zcW`3>JJdV#3X^Eu-^pI$8SO~Gz^`aDZ0P&(1MQ?$?2}%oEa|a_%l^?56d+%WTW_9<
z5phL&KE3biZsFA6xTfIAA#*g6V!~xT!D>=e@JyZn_PPvrHKn~DLcfvIC$c+%OX;%d
zRA-rC`5lh?Wg#~$)Rl{ex4iju(^Mn@N|Yk|maC>n(V+QxOZrx@5C|y<jE@p$Dgn=^
zmuUy;4#UU1kv=m_qv&j)@6PPu;YwummYmYgtD`u<e`7#4EHZv-tK67mc;||IDkD@W
zRHC_k2@(Y9-_EbZ-QH}@Bg6vI<H>+6G^VQFO&J>U1X5UvSt@O`m!l~blaLhVVZqB<
zT$}UB@jc=CS%;cgYpa+qvf4A2%Y{6)JLo{8rF@xkj-<?Y8A5TUx+Apu^=aHH7qDfj
zsC;*iX}>;X!4*eaUc1hQrlS2oyN~WI)a$o@2S9pOYiz;VTPMy&tG^U)<a3RBBu(o)
zLwfg)6_#wx4@OwC8g@fymj_D9AG`ZFz1Fk%31gXBD8NSg$8sMPb~X^}lQWP$-lqpA
zA6>K!pHJE^ttF=@GK0&ijt_dJ;mOU;$NZzzr8>j#$*hDEG{&#0b7X;9Qeq&}J;TV~
zRZ-+9jvS5t;3tXVG(6v@{mM1(B<6FZlp%874#sA2+{$zL1L3qsk827Lm8+;&$c4&s
z1<y32b~;1v<fGx4cinFTQ19EoQ0#nt#Dxy^r-5~g02qfsn<$7!#4RbMs=Q(k3s=s1
z(^GQZw6i+SC-!G}#MP43KvNbtIYQEb5eTtc!D%S})>41f9(lF*5iT%V-LPc%r_YAg
zp{DVol!zPD;^6doaI}fdkM14NSa3J}vpJ`h#|3iN6Ys2mj}qL!u+x$fIHN^;O_IGF
z&T3weVs>MKJQ_xt+OA$EN}61Svb1w6J_8d*#dGInVL}Ju-%TY>NFk<8(U2-0%xW{b
z!n(e&3Y?!30cL2d3n42@z5IIbWV(>2Y0$%k6&?}&cc0!+?VB(bBxqoL6>!<EHG@G|
zD&p8ga>eI#`z+7t6y&^Qnmkc))(+)5HT*fv#-4vF$6SYTE6hh|e=quoKf_`TfFTpW
zIU+ahnl!<USbcGn++Lu4`5V-;G5zH<DBqi9V}2=w@EskFN^V@y1o?a|pr$DAxPI#9
z4c}^#Lq9OAptkk0EeC2^>ym!k<0v!pu}Q9777)&IeWRQ&M{*hBq%$Yc9<YfT9f)U;
zt;&hHFaB*MZ_Q#4*}XU6p<nBj6?0LhW8JovvZ7Y}DFF?M3e;xGKRPD2RFbd26dFRK
z?DL9BN!|vWYSnq1SUJL<N6XN4kTO3=p!8LmR5x#7Il0coUjP^?&nqtauV~X<w_S8E
zDNg?iClToJbd#&#vrSRKLgQ^uvrnd?Qas<7+;U$C^BQWiN%wcO`$+Vt3M7Or!|VQ~
zpMXz-w+{;6#H(AU03?S=r5YEma)-b<ao!RA`7UKC`C3i!DsWCd&EaF^II>vm76tA!
zCh*xof&R1bqIgwE(1vk&==Ki_tp*b&%k+q`HX`F>&OWuK<B`M8`&84ya3=!~+Ft?v
zewbBuy_q6{P?8?aF-DyF;nI`}9>(MTUke4HHJfhPP=o7512n+&GDJOn`A@9BsLQjn
zmBifq1`hPeQCJNylnyYx7_b~AHMtQk9*xOBK5)Hu%rg_HFTZSC%FhuRGgR}y`g)O;
zXEmPd(?9B9<Kgpis^Vh2SnnN^mZZ0y(0u?d-39(jTC*Q}r`jdVL~qBS@g#dNG*~m~
z{v3lT`k!K8WSx2^rawpP_pwu|fuHT+l%Z|xw0SO!$@Y)8vHle>-My1c%BuPpH`jD>
zT0Ggg+G@O%=3-z+8p~k1G@HA%5YBXCnqn~a|JeJ=s5rKz?I<J=APE72TW}5Tl3+m-
z+y{btaAyJu?(R$o4#C}nJA=CfcLp6~W|(jC-h1vj_kEM||6A*<)oZ0m_jK>xRbBPe
zv#YA}WU3=+6|SkJ?Z~!0Y_!v3EJe*`+ls_|;V*HLEcmN=w6X%|dR@oOdR><lF7B8y
z5N=2AxE##MHrC{IXM-!^phFygFh3N<cW!)Q6xo+OWgbvOo!@C<tGprkaPJQ>-nyej
z7qxS{@*5MQ=P;u$s$Aq}!9#87H-P~20}WUyqiUH!?!6(dFZtC&T(@c_xEkw5xEk{n
z+P-lsjG2!!6H$ztT2w8<0<a<z8=Q9^(}zw4(~|%D=0Wuz_vm(Bj5GTBKqx6cicMi2
zwG3W6et+_38IEx}syOOfr5TuC^~;w6lZ2=!ia>b)T5|LmS`1I=a~uU`(*QcyA9>Z^
z2xd_01PGBFoSQ0ChTR@c5H;#hUj$^}t7OO=`n~hBXUv)(EB{iCBqo3VBq;*Gxm5y`
z4;9~hU|b^Rx07^*DylL$RGcNg^A3MRae~_!vLxJ<HeIZhzUqMguk?b)!D1VQlT=#a
z&VSOR|Jv()iYfroY9Cf~{PYoRkn4lgD~ei7R5{s!S<(q5Dm5XQ`e!j(+AQWDODF$I
zR}j0tcam$zS@Y_aFO@&$n;WmIkN<wGKh)!|fBKUAEQ1OJiD8Rc-Nztcq<24E@0<H%
z0QpmJ|7S0X5;ZWwRiiaGg5Ff#Qgek$p?gEC2<0#E|8wepGAJ}r6<ydO?j#=2$Gv7L
zCd`(8rW0JK%D7Kie;v(#j}WC&_XfupyRRR7eq1JAN#(yY&iomx@_*0MpBLyoME#%w
zM!0(E5cZJ=tT}OS2xA=#GKxsPEBQwv|1W<1<c_KC{Ra|SVkn4Bpui<Xn6Uqgv;NSv
zXt9hA+Aey#3Q1J4;aPFDD5|D!zE!k@lwRn+1@Q;I|EYwtdZ_1j5q(Vph#=rIzGL=~
z_Ct**rFf9i*5&w{+rPb=LncaVb={O1l%aSsC_WceVL>nO;-~O`Gt*+w#}oz$!ozo^
zeSdq-&jYB0_(tSS&ph#M&PcyMYAgPn$iMFSx;^V9j`YtR{LL-@xDOvnDHQ$w9pnDy
zTrpjY$Lyg4<BFMoPy+ug@jrx=cI!4LUE9CbP=0;JV=)TWpQWA~7I`DTx!J!5rugw=
za_paQ;ZKwBm%Yb{D8*SlsZufj!<_vwlK&PBo!IxmH|+mm!~Xl=9||Ienh1OMIR>uZ
z3F&_Z_7RuDVDrWE|Ku3`@*z5NQ1Y)6I(SC(yIJ_3aejaJnBDQ|zuB$7%I>efTK!p5
zs+-}05&nn7{xSi7YSfQ=50dyF{yQP`muH~PwP!#X4OS&V|9_W`{q;V7nUoKxSxvk5
z@5PkA{QqBv=v()U!T>)pFa6cON;Uo*$$#(tqh9}-z@UHB>kn=FN4+RMBA8*tfAj+Q
z`Ck8H$^K*A{;_2Lva|m<%0CQ-*guZ)UrzP^dmI)8oISy_P5XPaiNYy#Vpx@Rf*a4C
z|3?LW1?;}FMIjSoI1%Gve~&>Z9&6m0U=J-CS1|m0{OX5-ruReH{~l?fE`|b~yG|;a
ze+xQ&4N!QpjY|ISht?VY6DbNTKEwapC#Coqhm}1T|0UY|58AV*LBYEcMPC2Ei<<5|
zet?fcZp`g}k8{OzQQ-8SDf_pG|CzEsHSZrS`%4`3&x`pV>+|3rTlN<x<!j&zZ{tk*
z+d%t0%ZKeBl(Q8ssU-4z6gd$LG?H@9g3np|$bEly-)bK#`^yFYkAL{e@I|}=3;<Cr
z19_D2!Fohd&R4q|>t|$nvUwS#*_s9KZx18|rGKB!%In*rZi((bAnu=xga$1}RJaeL
z__nKut4F^H?os#Z#k!+2ZIhU2>#cx4q)k%6m#S_P{ZI)=!AS>>N2gn2F=33yuGbeD
zT(D+da^LmVnMe)LrSlJY7N%A1YBx`9h18{+BvOr-6>)ggjp}gJuC@C7_s+Ms?GAE(
zj_Jb1P1D6@(ME1`b%AzlCB#J;@!2wl*N$wq?0uFOr)`5gh;IPR?$82R*2K59Q&)^i
zogA=DKE5Hbn%qk+dQZeY(3YsCij)3POO?Ox(f^sUKOficzR2_IU;^g7^RsvdsPh4h
zQijlyB}xPgSlUyu*F$^#R<4mXd&4(w8ENinf_9`*kAr@aI-0vNyuas%>{-iP`aG`8
zXSUQc)e<+yM$g{iv!=VB@0=WbCaf^NaY(+Na;3a$it1UG(CVXO1JIeWjqP`4l4;I$
z&asZ?=&L~3Op(VN+4*ttZD{ssP_#0`Eb5sN7XJH4*VYMZ)z`bcMYuKi^EXK7zzIkr
z1@SE!=mLqKGesDsPAS&h_#)7aSCBrnFp-t2wRH$7aDW7Nf4;>&@T?9()t4v=(sMcb
zE`D`2zifO?Ze=Z2Cb6@s+|vDWY<&<n=R<k>QaMt@vz!^Z!De?o4e_ZQAa*rh9~ysR
z)9&EU-%>3%Emz<`lcQhRpq!&m)0fI-_ua$x)kW)dWOa>vz}pBLWu3yQNQmk4^l<EP
zQug^8pGNrQIryfD!$eofDUfO2q`zh6&E`Wd&O^b`VKUB?v*6EPX+mX=vqI&L$E5pS
zstwS>j{3JnX2^agI|>J1esbiGVz1ecq0Pr1sHcTo>Y0;k2U(|J-8Z*JL<N!28iynd
z%Rmm%+0DEQJ~i9tUg6K^lb&5aAG4~%Qd|^)qg`39s}cvD+G)0U@DpAhe>6tqSVY+!
zId@o}M%|n{!>`RsV=7B+AVW8<;MNm~$gTaePq?t;1N|5v@&>F3a8S}9W*<-L|EL%l
zjQu*tvj-Y&nyy$As(&clj@Gf@0Y3MbjcBPg2_r4+Lud11#Em$!-<%pZWWk--LqbWF
z8(uLWt!Is{89aAGDEs;W1upk-<-ZY>*)}P@(BrmvmIRxP<Z$?|W3j*}P=w1K8e!zp
zzcDE&-L?N=m#c(9K`?_kT^?^4)p4WCTGTk~Kaul)Gj9}8x&{X^ST4C}W{eZeATR$f
z{Mw;%fHsD<iS>rkH8HJLuPnWZ!!aHQ`D%xX_KEHk<m8<zXgXnq{f4Q#@kz6OF>7Lv
zTy2xB^j>W~)42`_Q;`pV8nfkU6167Ww88Cu)&W~6tnisd+nE=zZ|HsJpM$`&$q~!E
zlZ!t~rB!2)(_|0UoGo`x)b)V)FY(x}mmhvw$TxRaXpH^J-RMM4gvuxoSY8;Nc)&!-
zL{O684uBiq^#JRh`-N!>$%iB|uxgh~hEDgTMLxY7Zl>##63495K5!B4+1(pgzC62w
zJD+aQuQH8lr2+=V;kDk-AQXXbGj6U88O#{t%*Rq3E<multz7O&#_3}7PchoDVE4KB
zwM&o_`XDwr$N9O;OWYCj(w3E1IbUf)WM}(xUbDQ{e{dUdYkXRo&6`#OXI~tv>#<b5
z%@omTk3^A4pe)`HIRg@xHgn35?AKO6LJ2kJ&ODX<J?gRv1!%D@sj!um7_<;wtjbbp
zg;PI4C7<KBVs8(Ckf8(uJ0FFc%NwOD=WEDVop*<^7SwB3cAUgmdD)`$f|wc*nL!(B
z%2LDK&Xts7vG6_ECI5D*v}l7;1S?2WXYVL8bmQD7%cg9%xsANfoi~HDA|_x;Oz^aD
zym?K({zLp?py_q*`i(LyJB0^`$QzPm*@$LUn%}`|Es4QZ5*2S)T<n^<=Xkrai2Q)E
zOBP?aVi=%bwm;Xymgs0FG%!33ywR@GCfkR9#`>;62rJfg0rEClUw6)C%<ECx#i|Tj
znQmF7ZKdZe#o`3`Smv!Ee$MPFDeKe*a@o_-c;c>I;Ns98CO}3#hhx8=x$KVieRZn}
zi^h_~MWDS{V9etUR$oCy(#JJosESve5<)kvnGNQ@fUCcFKi}<#+n)}K@Qcd{6N*xr
zB3~9inaWc`mI>}7)d3bBE=I7A@XvY6wR_Hc(=-&CxtvOkb@5&|*V8p8ok-dtS$uZE
zov?th0*%0rh$_CkV63Dad8|2$@ABl`)7pR(4`Ii60_O1@A@|c>JRFycJL+@H#xSP&
zT`D$bE|&DGRI7>mDBl)WS;F733BgI&sX)uENtN?d5Va`C!BOaXte{=ApGG|VNVB>7
zc+wjAAy&aLTxIzhv?DsSfX>?kUkMGq{qjI`7}XQvwcb=QKx6cyc3m#jU6-f<x(7)c
zBe?M8Wn>C9j`b(5Kzy2U934^SssR0?K=oYm2ZDo7eHV2)M2ll+&^r}>=|oX&D&6H{
zKNAIwVPGK<m25*alQ#`q2Xhtkdj#@#-vV#SxU}?99=qmt<%Vdfe9gBNiyoR(jZAgr
z(<m5n(Jrx+bLeG5b`P1QsP>-C^wi?XG^A*;aH*{RVf+0&S!c$6tWPC1mE7!k;_WO}
zwJFm)$-?foN4pG)NRt%%3DsO>!cq_~63sH}O{9`eIg@r%*)+L!Y6%OXXwKdyyhy93
z`y^*)nPmz0cBNbEoz*J1T{2_!kN|gPf__>CFyuE8cQV~u#ARWH+oAI8+4QEd;ABe`
ztt|;2I}jE?>Y%bFcz4qxs*k3*HC6fAOyeX)n?`=wpp600($rSjl#A)ymPH^OYh4fQ
zURu;Hr(wT>5uLJ)exKKgRH#spy57n&(M>INLWB>cz?-+3a<cL4Zf36{Yh`yZq&?Se
zqB)#yoA5tKx+=x!UXv07nLfYhy|;6^t6;BUiV^Y~n``VZR*e>XyArPzP6LxyVAa6v
zCk@@p8dR{V6=>TTY5TOqZ1c5TK4+wjT(96qw6^*Zn&}I`jn_?I*;=6d+kP4wsZmu9
z%v4LBZ)7gXz&5`E%#C0<bkE8v{w|}`iRh5r$STyo3Frc%hm#qn>KHE_de8Vbm5Zgg
zvu$IwZ8_G<j^0VitHd_OCipW9qToQxRPb6k>b0z@Y#eW>4hgbd>sP4x)DWj0!Bwh_
zWtAO=HQ-S2y?`K{YQu^Qx5nw3GFJ&}pG!?1nBGGF6(^Ap0)A;zr~jfym5qQ0fd41j
z|6hB?@?W$O{XBPzd)ZH$`TMRB7{lIe6M#=<$*{UN7lFjJcF!vY(my>!-}qRsktW*y
zL$e}1i4f0<j(gm#=3$b>LEVqIGB$B8x11qDsTdJ2hH{*j;YC6xE8e$RKr~4P@eL9&
zPQZ;Jgf$lZF5+Ylq+q={+FHzGSm3_NjflmgR~5q`U|DBbs_+P%u+SY(b)n9@6KAU>
zghefwN-06)YX0In<OKrKJj;MKScMo{>aYuY!88@D;#+mE=Ir%xC~s@@C{Bcun$`Jg
z^}Ru5wfFabL+?-^?i{e%P{*PHjbW21e3!5JkI!(kQRt15Q}=ieaIzu?qR~;$eXkr|
z;SOMZK*&x!bD*WgWmR6)`n7mLXuZMMU4kR)eKG3$I+!hbNz4Y&iwNNQW-O#iykx0#
zfj&<!&7+H|SSznUaw`|rCnmkt>4t+;BCT+$^!;5^N0Dpsr}DZqeC8K7QIQ*qX0)k9
zZaEv(fB>1%r;?rL^*r8V*8CfOo3~+Ow8X8c?3@PrO^Vrq1_`8X(1S%f;IIzu{FGg-
zT@(ENNve#cUz|X0b{wOIY$3UZq%3Snm5`+ah=kLnYS_dp&@wjmRe>7Z5AYc@>%PPl
zXwK=MNvA@^&J_R+uL{Br87=3@dEP-tQ(aPcCroF}=RzlWjH=ToV>V<piG`tA1Bo#w
z-2Jl^5;i@_N$*<jTxFjsn9U34;&bVo!-z(A8!g^whuZ8!4w&Ta7%K}ZPCP)YbOaXb
z6r9lHK!dq$=n^dYIE(izb*ks5AnfU{Z7b4W?^f%7m4A5ZB(61z{UR&5D&!1OiHzf>
zt*i5dk<Hg{E-iZgM6%FNH4?L{Ux5;e=6ZmTct-poy}&^$n3N;prn*nR)w2e{!cDA}
z7?4K`DdSx49{ly<u&+G9h-WbGqZTPNz0<GFKwwY7-SuH!+xWFXVaaKswVybgcP)27
zP^pFB<nknmNF{M$eiH4IPe#p14cAou!Lf^8GX!zW1eh^M9yWLOF?dUF9AIc_$r;*{
zx;FNGK5le8d(wTVNtS>J*A0;|svlm~Z6={!Afv;tQ*9nTh;VArokPAVb(g`y7MVUZ
zfyiK!imZoku_aA>UJt-aZAvlRT3mRy39SBJaxq#4-uNmw%sC`QTSHv`p&K$KO;FRE
zU7a}X?+uQ9htp(Jn`#+0515@|9ZxYYUFMw9VOx@Rko+z`kA!=5PFMU$U7zIoq*PXe
zHJ588XEEPg{ft5Xg`2&^_#8h-Uv~iiTbMZljb*Qozga-0Qjt#XhFy)T8e?mnKs3JD
z^QquNUFdkov(uX&{z@D9S+Rb&SSjRIS>r1_W4tFl9j$S}U`6a&+3#M(=dP%jE9X;i
zr$&CV>U~rbA!`x)LoBmooIso=oYJ>}u*9pVkQWxjCCe?GuX9_3g}<IIoiyc+UHjof
z)9%%_5?ca`keW<v3-Ce`p{O(8ZGheOAl*SWT4@Urw;C<hHM@0vm28Pf`OmA)=b^)|
zvQ6L@{J?(c%{LL`dGM#lrXIy0&o!+vRG_&O=wwL@G#8oZ5N;c(@nqVWYpfi4kEp=n
zSb~?sZ(^@*Yh`#J5LVdsdCZ#oeUE<OZ5QrCUj|*txzIPi`!U)YEbu2g_Sd~Am)p%|
z`QCosHhypC?ycYoXH+I{BjgosOm7P&!*)<1G8@sYle|+q;hrVA31@VD__u9DuY=k^
z(9)^SPjr5c3g+jCtZxp+I7-^`GL-ZfTr*r+g>!XMmRJ;qh2CMLgy6QOQlzMV9dX)|
zYtDAt$)f7lZX_A|m`t|D?Q9nvJI5P?Ct7;ezi;_590(V_^6b%9@jQGqnqtg)F1q)m
zK)JMH+xtD%riGW$b*C1`O2LK6Ci-%!ED5(YO>&oG;+#U&PEV+O)L>4fypIP!>jK%I
zPQ7u;n>Q0eAQz!3Hs&UlJ@l$U$Z?Hb8hwzf@Vbz{o@ghWYv+DeX&;*pZSA9j<Xqn2
z1a2J@I4&d@>K&hO)^h<2X*v7ay1H`caGjG!JMUHC{#wZk+F^X!G4ue>U}QI~?G5!F
zr$`dD5t&zyCpCI0uBG-e2{{q9_fBA2F`J&9B|9EYwPg*en-&Sld{qSeWYNwr(!Qsg
z)G)FBK2a2@J>)s0V_-<hB43=;dj}oL!gj{RU8amJz>2V_M|_uO0Cz33MT<|j#O=CI
zh~jH+K-UsmqfiV6Q*mRJJj1;4KuyU!Yt|u9Zqo;9RAEvu^kKRIEw>c7xobQb|JnxG
zVRkx1-s+r*?`|?_urbgq{aIJqZ1~DpzY}!#TG|l76buy73m|~<M}AE1_;nVGSlB(=
z=T6mCyJNcgtyWb8KTgp5&&WJ3JR9adMlUTt!cMZVsWNMISCu*=H-n7REk();%#?Tw
z$X)p8#h50&)Ci^l+%(-jb*3sUE#*X>SYj3Sj%X?Mp*$I_Hs&CpKrB^YLi_y<4DNnH
zyHU*Y<vv|8UXA;?I-6$x5QF8|O{XpA#nO4khFoonEkqp2vxlSOV`F(-f!@$}*+Vz$
zjJSAvp5Ykp5x;)WLp$qPbYrsXIrM!XJE|1IF|=2}Mjk_8=RTAm`N{QqEW52<fNnY_
z(T<#QE=EfzPY7Z|=*Ty9Yc4QZUvni!imj*kQLE5|i#BYdU?2nhVWLtF;<yol-WWJ1
z`CX{l?a=Z<?0eIh;=*w^3vJLSm4PD*`1Kau6cvW%;}wamRB(-*-;c?2h1}@PFk0_5
z5srG`pdSW7qTCXHCNe1yOunz?c@9>x@tQfX`&`_dJ--_msE)u&6agBAgpnMn*L6Js
zLwFl%i=FXo?-tiXWtXE@@aJ*1V8cFKdeg9+3%wTv%kDliO$f}Y;2s#*eF0PTDlx|l
z9t<Xn@)+97t=svic((&;pFe$mTuju<sez4^8tC(-l$(2S>?t44u=V<?AwMexi7s01
zuMzs2J9FnDH6%IQH5ktr4H^Ul=3H81zyzJL1w!+@`(@&wML}rqXir>B1MPO~lKMvb
z!PZFI>lz)Ba2#{TU=zlK=mrH#cLm0PdDaE5W@KS;I12NOkd?OL@fUY~)nka~(G$L6
zD&3#GspTF+6~#0}0$mQcuZqhTr_B?ECnJj(O_&m~Ydz<yqtNIzZcY-Pi4+E5%}8p?
zv0CTWn~O(0BCu3Q4ZD{J-%_%A8_)e@B|=#6(hNOpPx4}alI`B$KyPQ%UZC7@R^-#^
z7E7rUS&R8nDTPqkGWm<lAtme<+oUt{>FLnkyei0kh4n_e8UvZEKT*$Ty%L4{E$7>f
zhKYG5zBNOzv*}2;gTY)A9leWk+fQS7%;PrI+P31S=v#0d!5!n7Z1T8KRDZgNL(vO+
z_mj{-d4<+F!;920KbFmcP=cQ3lrcu;U-x_WC82+d;#P1;7~>DA*=+7uUx%2C9l9`1
z7MKG@XChsI&q^>~6l<!kU0U|JWZf?QAYS~QCUj1HxGJYoCWeQ%;G$EdfsO2qNWF7<
zwuc{o_UFdhgYuy<$<q(j*PEr|1pY$~ZlEU?mJw{$QZ4t1#742tQJn)*p-RhjX7Z|)
z(-F^F-A+^UHwgy@U2JDJ)R?epK`G&upLMgvXU*>qEMQkjp;}HvXH?lBpl8;bHk{Dt
zhZSc%8%s_{K_Uz<_iK2+s#gwzkdDHE!O+aa43uddbFuYUpF#UA9maBppVfe8_omj!
zK?T^^Y_##i_fy|~)pEtewZoX=LvU+OtnTq!*HIqj>eKd#7_{37$v#D2<NGx*zcFx|
z?7J42diUQS+KBONoO5|As5?9CLX<QoC8}^mQ>|9f<!}(VmwBpeyQ)kLofFmhFea7@
z#lt_yRtu%WN+CJ0rXGf%*q8u44Z*nysE<)J*USYp+Qr2vx^<KA@L{OtL8R9&--e$-
zzC)r|gk{XT)Ued!n>1DM_wY}p(YQ)>^c#h7(WI%a$ztE%6S@QXeR&R4?P_++ArqmB
z4|@TEGja?T=${u48^li5hj7d0P#|dCKUKe6fe?-PNWnbNzogK(+0@y1aBO913@j}l
z?FxEGt~<JkV4RZ2h{0o08=Qw8t#oieLP1SCKb{=$9lsfG1EF2R-&hfP-&{W<M2xth
znq}Gxn-;UE)@iPMyeiL_Ddhep?>ze9X9QP);sh(K2FR|A4nZ8w3umf#i%3f>>F#3^
z$R}*1MFM4<b*dW=3z%@{-MELWZ1tPF^hMV|ZfsgUH-tpJ`(urc9G*ylg7Cd7D-^!6
z8E`qBW2v}=<<zY8P1KAJGgNQtA`*~h5a#b$bq(xZG7o%z5G{NXd{#@<#c;@is*0pn
z&VKvl8U0b>dr6GAggcTU`1F#Y&rqMSd3boe?ASqS>S|_6BloJ;)s2VK(R(Rb!EH0u
zQIR$^SBXs6`OS!I1|`EJK_Bz@hKz!5yG^2GA1C_osNcI#7Kmep_3XNuYOxKCY>Ytk
z(83a*LG8BU+Wgyja*$;QH<o4I!91kw?Sd3MVnpZT2fYB_TMs_|ev{C@^F)?iN5rIh
zBmRA4CbF2&0QYX3(HDGF$^3~|lH9s4k?EBIa3v`R+i$j|dNY&A{bhCQw@r!!d-sYn
z-w789%w6pU9C9KePpe5-VeYpzi2#pLCW@N#yYP=Qqc(GUbahUvAvr%(GTpUaw*~kI
z7TPe4jHc6>S3brW+An)-ev&X`p^i}RZ;r22WMR$h)zQdvbapnc)O+EOsHFvcua&=b
zHr#oU$`K)`Be#HgpJ^*kAFrkQ5%ncFPHp0BKA^BjXP$_(P^MH&(XXKPb!uco+_c?B
zRW)kBz*AnGlEf{Bx0GzoB-1H(Ry#*>O-7?cz1Yew=2|&<&7GwLnQ}`qX_qHB3mxji
zlFir>;yKpeFs-495-fe>morU#BYu#agtbe+Qn=&V^9`q8{MJ3O-)~EHcb+i5SnKxJ
zVJVd=LULC>88{2)ztRgVFFu#VhMD1H<juEJE7%c40;b3X_U*J97Bl7XvimanIR;mX
zi(G@68=7pUKhtHzA86MHk}Y`~&t+$)C#HLMc-9`y5=iD7K}U997RP3qJFLAb8*ehR
z@v*k0PS{ZrG09z@aM;efrV2!)4_xrY)hoX(FySYJj>|mnSAW5Yr9U;j!=4s6yp*7%
zWdtyGOyh9G*cGYH3fIiF`>yYCAYGfCMpLm9N($9F;=%CT9T~~~F>XgZQZ+7$S$-l{
zIA0v_xE-?@T6HS)GQUri9_{wyTfg6ejPFr}1<npJ)do9KCKGx#%mk`b*`-p^6UJNU
z#!L-r+5vJ%$!A^CFf>@ckXDYEnow(p=T%qoDo0zAzl~U(C3!Vm-jkY4kFVwyU#^i@
zs{pw&=7I(<qUwt?56=v<p2n40vtsmv#67n2Ywj~{<`8bt7Q7BD20rRx55Nvz8oe|8
zvM0m9G%NyAHOzD|YG#ss@nv!+{+mu5A6M2aqJKqHD=9qjMad*Pk8{%!ny}?;+$^~<
zW0bhZ16IP;g%(-CO(DxBR%n@#=LeYY_=gDRMm5(R5tAB{it#}{yXD!}TMXVMRi+B^
z13Fk%vUn-+FN>w`|J|#GdJ8`Xh<$!CsCX!1;+}EUzlG0GGU%vVFf4w>p^0Hi*D2)D
z7S`PPP2v`r>qVjWNe7HsVx1v2w&EGa*Dp;wCNq54w+Rvwn2nV4#>+ocd^l6STIt>=
z?aV~u#OswIbjagAYjF@Tzh@rBD2EY3_QS408C%-Igg?}*x-h}ni`<kUE|`aP=KUOW
zeTg#;uuxet7l<WS=cLfj&7h#}M+kOZ*``ro7p&>frdWs7f0)G4)ixcDnGI@X+b^&%
zm99<ypu^6jUdi6c!TE(A{rA#GDaH|oZ<(6ItMc_!4O=a!K94(Iar!yPgt)|*jex0<
z2Gy9Rn-aS461t=%?41t(APRlN_%4qguT)DWgx;<rYtYA=#35?S*`?&#hZ$qnUmU8=
zs8;$MuTc3rixNE|39@>#T_ZYva~_z#n2#TD$Lfe?4`%H)Q2uOf0FaiE!U=UPnGd*e
z;xT}J)k@=zKKE*^K%Xw~Hj|%UZaoz%GP2`kGFpi|-K&4k{LH~zhN*3T^;oXtk;!<j
z!G;%458vPD_WvBR!#(m560<8kI(NH}+~zaurt+_htb93hDr?95y!_Ti!Lf%rye8n<
z2QFOQKN@_KQ8mUTk(KB8{Jdx}r{P`sfXTi)R{;z%!Qm-QG-mulPsDk0qXpv80W`Dy
zA}NZnsT+jxLWmRgFw+-}bRmO>4eXIVVO9L&+c+#2DyB8~?&nu~XRFDhUxHO=xEOg@
z<l@E}5a|XNr^_b2vBORxs()kjKYq;k9=gT0-M>@hbbM*zaeZ0Pf&rs2ctg?dmLyz<
z7&(z>QoGvk<4nzbPZuN!2(ys<M1)<-aIyZetBwJnls5#l$%7hcE00yZ5hCo)5t*D*
z&$a<VUYJo{=n`7@oGf;N5?+fu$vo~?en!5P$)-m*oz4@loxq9p=5lowGp4?tbtxO=
z()zs3jKHvCw!*oFJCfCyiS8G<Fu#b(`mkNl{GyqZ&6!Dg+WOddZ8-UJCE#`$a(juo
zc)uiF?3-HC(wj4Z>16NvS^KZgDC<WDcgdIRk)Egz6v$Vuyv4plaqAbGUHUCiuPt;)
zT57tA_X|04nK$G21%x!l*w%A{-a8-9(0H(B=;RC}&*eN&yyy(=&g-fy*3qz2G1%>l
z<9bceB}bwm`mLj-(fd;OQi!i#9iDwmuP~*$j%u&xL@7cS!Q9E9lqP)lee~*&?yUC_
zb#XkNmVwTDm}H`E@@7y_)(<9L2Jx}WXGuJ7t&2f+J22vdMo#1a0ozXJ;keVrpqdAC
zn~(-aR(8iRj~e-WG%TQo850XYmIP8j@&YlhB+fHqszVzPBs@)<pqoV!fr|6zIrtaj
zTSzO*zI;G9BzRiuRT{wG)MR^Ei@3_%CV}*Tu@zpQKIGkN#7fi{=2E;sJ>{^F%bk~g
zbs5^Px>Cu(x(wmDt4VTHIprA0Hqxwf!65n8;kc19*wC0Wi*n&gk??$rLuvCOJ8~8d
z(Q!wauXfpoK3A*p9o)k@tOU;K3mM(PZ@o&~aQGh?Xnb%Rcz3<qVP`%#Wyp#sui85t
zqYNC~<8S5+hY0!Cu+48MlbeOpUZhDe)Bl7EmAU$*rBk_7G;d;OcIucjib1u(xo0W1
z?!}h^WD9Pe9e_z4rh`4KZh^B-M@K&<nR;M@migN+vvkzvCxksMnXczlL+&=q^dc$C
zH~^v-K9ZN0+DLRJ5BXELz3E=i6Ttv2yx;ijAH`3TnDiSm&JjX^{CBz>3$cxKLZ2~<
z^EflR!RNMc2<>G7Z3j9yc2f1SCes812rIMF@gLpP5=&R1*v@M6>R$qyclm;NGtO3=
zm~lHR+l$_dG}~(@@KC43f)+zJu6deT4JO{NR`H!TOn<oc`mojC%+++I6a)TF<Gmjk
z(*yT9>`^zeK$&{%bDBN;99r)^Pv*3G4pF84VKn&QbddK&0cnB31{~Xplj#8qfXsFC
zhx^%doryz;U;N2Hm7wYAY+~RRoSD8-=3Mnb#Bdm>ufl{SP0LoRshXh9*guxsqlW-L
zL#m2M8osdD%NPDsu;N?NHQRam{Nfs{-)A4_qb13Sc4Ki$lA=O0xdVOaz0gwO?HFj}
z+M<G;F6m2m>N(b9et1zm*qpbrB11``I3vUrX?Y?g86AnKJoPnsgS@e8?WX+dshgia
zk^;VPz`J|wNvG7%I6<e_KGWGcbMcK|3>c1>r<G2YyZf9gh0~gHgDEwYV^hxVE%A*c
zTxu{7OSTs<9NVB&tvfPGN=I^!6G~r&RQj|*L8ji2LLiSt?sbJv^Cn$}RNEFLROP}M
z@dOrri9a5EF;!eN#lN^u-~cOhwyjBITg1h1hnMxj%z$Kkzkw&v6fHiF0yMv_mp-{Y
z`s#3azS5*Gm$4+UKZ*B6`n^^P;fiy&xdx}aDd~-rE$H3dN7VR{XH>*_;yWrPU+`ZB
z3me9m$uJ6KDE8GSgaH&a6!mb~x`74ZJ8wX1f=Xkx)d7}9M<h5BFDN4Bs%(d)JWjSB
zI%mubb0rF6QdyZH^3H4L3?s|$QzvS2Q`&Oox8bC`ZKrx&arS0sqJ^_!`C62>FUsRC
zzPHWkN$tj$QYO7*P-=#tlW$9rpuFdBYO^LjMiA~7e)30F0x3Sayg|xlayw3QBPSaV
zp*Kt!D=qi~X^Q646ir*TIuSa7^>SNZG||BHbUt_|)`_hE6QcMkLe7v#92$8tKtg#U
zjbL8Bs+@ljUevp>F;h87pHYNyA*Et$r-g^+a}&d2q#s%CMZ=H;J~}fQa?C1a>XrBO
zm1}3!O=aJ7Pom}#4<|}fq>S7+TIsyQHhn+?RAC1AO!~|Ndv9~?-}D1SB29=j7>iG6
z$}zb-H72*;N;W)$XjcdFuq@<y6Y3EHmIH)ap~Zscm!`ojdgjn9iQrf61DkQ=5%Ue6
z=RSmm(aU^C6S-#@ik}kC&#OF>&X|}E19$G4S^<y3Xq(L*`@F1qOjsQD+5)W;yUcP`
zSucZwU(Yg+=(yTZjlI#HQq!4pVRssQCo^78)J{0TdzqM^c)l_S^X@Ovi?3_?EzfNF
z@^51PO%o;#f+6_AFC@r4dp~IM*YpYJ%8rIzT;({^BzV7g)mr_0K_URy2;94UUce(G
z^35#TygwS$3to<F99ca^nuGCSLwn+=5F&Pi`8o^&XR^^PlgyPhd?_g@>rjh>>Au@0
zf~mqhm(!OKQkN$A**@JTlO@!3q~cAHHQ5nJ)FE1NpI@@aHRCImBd?Z-*&2I{bPY+?
zI68Q=VU{@fN^ACz8^&G!?HmX6?kbnOf78|f@+H8nqWo>|62P;oavZ+lsDnkbw~!7J
zM4X&+xhoDDk1Q_-eek1fe~uZmH~@`z#*|{qRK%Ur9ELCe5MOFbmov#zB1Z}8o5+_=
z8=Kz72Ec`uwv*vicCRxIOc~OGFJZ=}r(N92@3ks@!wXKfHf&x|<qjkV%thM10fR*H
zuugg8*s9J~eN6K(mBJw^=jrb=zb!W%a-=^7zbxp1aCENQc_S(G8=p?Nv!XOd-RjiX
zN9kI#c*VOol+RDgYfnguM6m8H-n5?aYe(^`$gHQCDWRfXiAwsJS@TLGzDR7jmmzA#
z8sW?MFCDsEs#^sQ_-Y(-65tGUz?IWfbm<yW0^s09ef(Y+Qu8<wKt2afcm6D?qfgwU
zQq#YZ>l3{@jZ5cS{UuhnX(y)sOL0+i3vzz0)oHat?&4u16*+E(qdL9@oi=|c?~t8*
zy%EXX`Tn#avq=KyUm^;M$LjYK_XTnkCf&z~%fm2daSMDRQ@A|0?<B)^+YZoA46i~8
ztc=N_OUmyF2|AyGxdp@R6aeuLpBO?*gvFTK%Sqi3%ARX>yO!?>6CFLU@nbaEjpl1_
zzR)Js&u^XGR63*!VF&sfmxqM|s?5OY=}b_WOvv&qvGu*mD{2BcUvVCn6Qk*nX0Dcj
zXLQ9&s^p7gF-9T$^yOhzS0;P82;#9_i@o*J0n|618($>V3yN+rt7P6rfr4V%gkz#h
ze#ad34U3zgE^P4ZOzKYCV&H=Ox;AE?+6DuFKj`vUR>GKQ-o8R;xh{Csd^NIg+OEUX
z2cf;>?+sm8H~(P0U!b0IE}c7I30Dw4@Y(cSl4m!%eX?<yxQh8ISKpj?({^fe2Wo|W
zh1j~|Lp$Wr76Eh_*sHTxQ73L2Oozm!eBVy-{AoQVh^WSS+8>w(t7rvgjU%6&PTg-}
zX#b)2xQ~B`nI4EnD9z*EZQKdMAx?;D{lV9_tQf5uwHU|t@a0fHUvysW!N_Ko@(2eJ
zuj1Dkj#1iH{<c@7z+G>(PnS4?m_9lQ`y)Q~&(AeX_Bje~>Iy4dZHSX-gL4dA*e+W-
zVy<w~<J0F{d35hpep*dYw|+NlX;EQ&x_WRDS)|sXTDqLD!Xxg^smUF0dnE0jzZ)Xc
zd(laD>=G4kaznA-B~^6(1^d^uK-dEkT(*=-`wSZ7bIJ^pYZnX0>{0B}^j7g537L8o
zPjGL=`)Uk1Fh{ZPj3FBVO+Xm|5vJt6du|4)X+P-QvhJZ{2$9cCHyc-x3kqnM@$`o^
zRbyb#-P6YfJ8lee%U)k!Y2HMhyj^%<ud1<go<llwa3pZPvZeW5*{a5h5eLWSQ6F~~
z86OnCOBxklu>?HE)_du?Wp+Cz{Ivm*q+j9uxl!RlMbm5jT7OZ5LTG28&8C0fn97Js
zi^Jn%qvYOCUG58fV7*g_XeNXhkzYtsvm)Hu;n!aO(Vxxa+;c*?F+j&B8g!ai-fN0?
zKNPf6`LXXp5;VK`s7C-PuuKuCQ5}iV-O6^N(fiuU^jqQzs;^azFHeBrGQ(uw{}R5q
zqJycud56`OE#JZyD1qZzJByR<ML>|ZH)VA1I~tPpnOw}CreGE8<th4OYUHaezzDox
zwww`hbHJ>yQ3C<@Xea?V8KHGy{-rIG=qS=Rng4z`99*8^sD)RkE#|WulKok@|DyJp
zzNY-TqgNt}ctsRnjj5H_m2wk<fteO2|4sB1uNLo?DC32NMWATHH4hyBPAkg?NJ17x
z-kh49#%%F=Oe%p*77I7VJ45^M!LThgVA;^z5wYUSwU&nr$r5l%b)**OUZq&)?o>}7
zkJXlJn2Fi4QDynN-$W&bZ$6UyIhylUCIZ<=8uMA`?E59o&W=@B9vMcw*QypkU<ax`
z>Knp45sDIycf+o!;#b~F?MKi>X2?DX#kowzPNnna>!ctSJq<&_-Gyo7gZ@-~!AC7_
zD!79om@AQ@{XA@QCFxm=D)V8hvn;?k;TB}4GW*(Ap_k9Ym~IulDwNw{^waPSxvFv~
zB6ZyoZK9DVW1{#Rp2()(zimi&k(O|p`#@HTKg2A@?aivTLcyeae<C^`^(#%qD~|?}
zP~pW4QO}a_y<J5&Fl1L?S*md$Z;7wy-UiSSnLM;1o6Q^XV`FgQ0@OSg#(auSm}AiW
zWH=*O#>S`pG;9cE1xD)%2V<{<cd|A^<>wzzCzTU(Fx5!c1k~-#0bbnD2%L>abD3L^
z?^IX=z&-n9f?p@yvKWh*f%UxZBg)3Ix$(pY`?~ds7#O}ogPKA`Q@LMr3^vJs*i9`~
zz>hoV0?wJev>sBV%|xj=`53hg&ghhA4z*WV&S_WDJ{$TmL^R&LqPnuTwFey>_9?Gu
zgc?5ytT_nU%rz>#JOHHdyJc7iYfM0F5#68OZIzSKzLR<~&ik(aGxj7~Mk|Hl=N;zH
zUqe0>lYg;}jd}G$=PO&q>~gsmZ@HVUR^8WB!XAVkisaC$X5NY_kU}z4?w{c^P6F$e
z+DD#0{gu`DAx!x;Q%h@{b7jklvjwIy<#<DdUEf<D9M`1)?`D#VKjzV2eSCX!b0Z3_
zKbB?w7S|is2Gntem@*4+Nh>zTuZO%LKmW48tR|KA*>1{HL+A$%W+kwtdbO6@>0;CS
z{ir3ZLeJqL+-uBwC{u4OXIkGC9u|8#I-BRbvaJg`D}qD`GHLYfQ^|uO)0TR8jrSM;
z_>X|rFV!O^zi8O3nw!e@atgK{Wh`6kt*H6zNCX*l`*8$5$6`_e8?2!VV6-%$`G}P6
zXVjI3e>PNuSX(&_2`4YdiVROdMW&>mw}q`F=Ic$UvaflxY@>+3tc2I1G_c1JB)L)d
z(V5l&pS7HAzwa~Jm@q#s3({!Nw;yZ7K+!u$x^;r47Wr1NWhGrV@beW;Mf7oss^7b;
zYx{KCaRMW4es*OWe%9Sg1?h>*6?K|6u5Vt_7+C^O2K8IqHp-OoO+&qOqh_)O1}__W
z@G@CuKfPtUbv#dRWrmbS#UI>zj03Y984zyQaQ}=YH8kZc5$F8v9{=^!hj8dv^4%?q
zrN~f;=OfLEfm|U&uy^Ae34Vk){dNr>d@5+Yca^Q5$Z5}h62u9P1r@%iD_k(w$#K4)
zwaU)6cJ#ojcminI?sYrq@vj6<@#^W1Z4u&4o7^|6IVL6tQngWyB>iu-n2%pIMt6k~
zJU!nkaf6zgv?bbxY{|9awssDxS4oNIxi@{g&X4jf$L-`u<B{6u1s5DHRq3a$+|s8{
zgC1B970F|1w0dGy@0}MnpfMuxq&NDtsF)V<7<65NRR!TB5dcLqHqPdbd!7$Zr0p_J
zP%bd{tbNU_o?B3T6vv_gg#uGqnbR2kB%g8Be0Q3%aA~R+!v8*jc~!nj49q)w(sHTg
zX?~9rW_8#H-(SH`u!5p8b;y`rJv1ffVODeuU@4RL>iya_9It0WV&DSuhMp0oFS!mE
z2!MYK@G#Keo)&~ganRS#aW6(3uqP)dXiMho;>Fqtbt(}7)?a$Q(E#h^6;qKX#eeAf
zw27pz-I-CxGn!M11Ae(mtg%xC^s94m#uw_yyBHD}7rFCin#_CYndq)?%__fZH-1P@
zp?FL9ne7i0D9qYWnbPDK)}kU#M)+21J8Di}U4CxbFyw($(kWpT?K+j%G9=m4L3_1P
zOr`f*22hyuU~9gnaaG9BH`+B_*9;=$mYIBG@X6ZYbCOpo5TerSQ(|E+h~VktHIJJQ
z)@DAAyXBXWcRiUJ-opb$b)pALxV-mlk_-c1Ei$}ba(Y!4MhVVSOx%4uvLxUx|0{Cp
zN#d=*VOaIWqtz`-YdD9~ML{~f4K(U)NF=$?l%k?PU>rjq(&ToSL?*Eu@Vf2zG<O*W
z9t*ijUPIA8g{1S4y0O61jB?3PvZ0nnp-qC&cu8+k0Y%cl$r}BO6b^Kfyu}rE7i-ec
zvuv{QmTVlx&GTK38Be8PbfFJel<M5i$n@c1@dqhxOOr*bx9TH6jW?#$NquN8qCzVJ
zVB6WEh~kc!sksH0*NslkQQ<+A%qOX(4-eM7Jok^UP{iCP!ZZS5f|aM_qGjRhE&#p<
zWzBBTSDS<rkx#i(O3h1QB{0}dQ8i-gYbl2)5F*Q-F^Do#)i=F0=ZBLX180|s9<e^>
zpYvvn^Ei)*pYO6f$_qy|BQ&!e8RwBFL;B{=<=$aQE?aO2Qh^OW1}<>lbfgq~EDuah
z-mCG65VnF^1;S~Ao(|5y%u#Tbr}eTrpdp=Rtr#pfJz<*odQb8mr)R2kak?ZcwUJ?g
z)2G$Whh)WJ$TEio3)gQF2UO4W;o3pjnWoS;%hy$Fpv5_$%;20oKc*twzGp7HWvRUG
zk6r+e+~@n#MKUc0zGh4kX>E^(dgG-gR?9;PQ>wqP{b~h3tdr)u;i)NhhSjN8SyQjw
z^7ftp&pWp>${Dg?^rJMMuBF3f=#p#_Ri-x{>7q-TR4q))Q@;(&qm2bq6}ZpG<)in*
z67;!mZD8vKj)H_gtoHRiZZaN4Ki+8n!A)=C4HW-65nysV8xT%;!auo;tKp`{z9wS`
z*G&K&9CI2rYj%gqQ1z=~;NnAU_3LeRDA!p5WRN^I+Wyl6_Cv>k34Wqyq3K5%phWy5
z0p1M#q?g(pdGYUZBNuY|7Z!5|({wFwB`O81?>J5&QKT`4m!)cJeq5flB4PO+5ERa{
zUjyu*yk=GrOcikX{A1gtpG=e;fA?&;V1`!T-13oYt-aF<nO?eR3M)%ok@o^BnPW@@
zWh5S@zwS>L^lIZ^OQIvlJMDA{s0R~;K6VP^Aw8FQ>{t_lZ6wO;?Md-ww{y55b?TJu
z+9gY8>}XRox#qZvO2zk)DvD%KY7Ddxt$bc#`Gh&?h+Hb`D5yAqo95=eWdf&C_{wks
zGHcu+sNQ^ISo5%^c&^4TCy>B1%sy#Y94oL<uxcFYHJnDk#>}FY@GQYkOS9y@<1ZIX
zCFJk$qBv{cb6^x1vlrTIs7WTc#Y#fTLU%RjjI`et&}fw88QOs;r;*18aL4QT6d-C_
zfaWG3sGS&|P8|37gSCLevv=TLKQ=Tg$8A@#?R%9oh7?KmA(2*80tCd;trbeCZ7Waq
zF7g>(Q&pI^9h_4ho>^Tufh1olLOPxV#hE4hd=oNpuwalc$*8wvNU9&u@Q?^Li?LRZ
z&K7wytzBcmTX;X-!uUprr)g_TvJeK!vJ-BC$w+X9Qcl|<*DCTgHnAv!9TUsT%leiz
z%=jTbFw@*;GnzkcHjbVLdMXtUS?;l&EHN~?U)9W2&oY*ZvT{8I+YmLn|LB8XLp0sK
z%?_zNn%<mxx!3M&u^9`TEA@TdE_pgNY~=yow|rh0;d%YAwx2cDCf<09TEMO?nB@G}
z?!Ys9AXz&gq>|0`yiTSXCtrEMp@he^fD}oEiVLL&M5kD>o=JuC>E>|ia2hom;@)(P
zJ8GNt)8CkTbZB<MT?~~Xf#QXLn~ZP%juqU8DqxH0rVWR8(+mJUn=Qppv{d|-UHD7Q
zIC{yg`Fv*2fA#*|df+DeQFx%m4xUAuP))WJb`6GD&?g*|1jn=<6A9LD#dTDXpdEdD
z44m=n#N6qxK{Tu24)9_1*QIw9c)(;6z{?8<vCQ5<`5(+r-$l!A#;0h{lPx1mn+qy)
zC;FGChTT^l9jhg`oMe6Ggw;RYmXO>?He06U>LKZmJeZB$3g}p9J*VY}=X`Q(b7~UF
z$Ak&Fa<_RHOFNR_<^Zv<S@zl5Updu&lJ^j!IA^3e8#!Iq$`WV<7Qu@y`M$>vy6QX~
zDWL0~_e#Mwr|;?0=BrfTuT@zx*>TK?w~06qvf$eqJ?Jsv7X)p0F?Mv5J@fb(QVVHn
ze}+7zyw7<<(^l@;sAy}qO}f6TW*7-VeQ)F`=6&@9E<Flwq!K`xH(pIgW7pETM5?;0
zr(ZMQ>eR@wh*oj$(k4zouSn2lOZG0lHLBpw@QTNuY3;K~>ND2$FR*IxBNa9dXaiBz
z8F3*&|Gg~ufb&R&T@Zv?sdzCzfdi1zh!DO0_Q;z*6DzrExQ0B^UmZW{-0<H1e4WRF
zi?L(jv80Jcs%JH6&&4Lvxc%4b>fdqi=p-ISk;yF7wz@q`>0sA>NB}2!BW$D#9k5(o
zknvbM3TEWhXsM{LE(CZeB*GSI!TYvxFPy20hpl@SMRs$%BdV%Qj$Hx`r@;^3@W<rI
zE2@Ag0u?jqWm0a2I4e4IA_*g$B#xBvQ)F~4AHi%Irv1=ElcX$kYC<Py`eXRrbGKLl
zP}MY-YqJiVWvhPLLvot=d@iBF1s~$2(^C(J_~8<kz1Az8DsKe#);vm$KdHx6%h1{^
zkEajb|5R0$160zrxK2xaEq?QITgfJ6wHjl<8_H@7kwi$lf4D-IsASmUDJ;<}epP|o
zl$@_(FSI<O!vUEW_+Y3rd<ki8IRD9#xjBzMF)m|&GWfm+xE8aoz`D=RY1@Otagp>+
zQ@FCej)keqs0JI4zjLW+)Nm?e;M0lO7fPn<Cyn15I1_#3hxNFfOn`)Id?A=xSf?R;
zh15u5d9RF&=b^S(9#gsHe$jdEm71!?Y?&*2Xv(|Rb`UJwjGlfW`^HUVejSyA2+$Tr
z{v09Th43m^(%`n3$fcxmv1jm(ANR&5Y*adsxqGuKdHl4;d2Xptyz05n#6cokK8l>I
ze_?v;4y?VjVqhk&kJlOMLW&bNt^u+65#O%2_ZVv#+4NEdcw8bAeI8Xq_FLW_?ALk?
zdv7{XW5<5Cg|q)U%iu%ccf*zNu7p-E+bi9z_HsF6=(|<To$D@Ra_oBEiyq0dRV|s8
zTw(%0i^07#HTWRy>x`-j(!?T?{dk?Yya6iVpjncA(vHnHpfB*9Y9Xz)7Px;&T0L#g
zD*3523njK^uex}X8!3MGyUYpBS%z2aLiJnW(qpJrqUIe<Lsh7?_xiY})uByzIO(!f
zAYsuplPC7pJ$)SeSpu&3yvTGys(n=}jp)m(FC47o*E{rA@1_^^THp&ITRhhiI6)=3
zW4q^MvM45{hOdznDsP;3yJm8HdK7{%9c}*Md2+cCn&`CCX>y%8`+Tku`jNS4<Xf1b
z#|y2UO&phR@4$O7RZ^J&+S0E&8n0W}_TRZ5*Cpv>vuX?OiSl#g5n~*LLc2t;pA5Qv
z4_@?%HKcb(?yTi;RSex*inn6iTygZ~|Gq~qHNEgZK{r6!7*)%7aXp~{>FBFSJu5$;
zGe-ggxA%P=Pr}1>G$3zPk1<(%#@tqMLCV4CTlI1#i7Nz)cu&s4CKBNjH<c)O%M6<H
z3^-h>%R{^mCmRRkgI_Y(#_;`I0F_Op=H8&sn54;kEgI<q!n+JzCBSSw{s8dO4+3zt
zw1{**gnfNz$ZTKuSy4ENkL+dXRkkMNn3S&5O=CM+2HMxUkR=r=n`Zt}z3J9_UVVMu
zK<YtNimZ)!&TDR|0Ph<~;9GcL@UqAXQul}r5b<VUe>GGT3P%TZP3o?S$R#t>56Gy4
zHKo^D)85bd%<S56A4fv`Nmp42TFBk7+NebAoQ|b=eCxomIdZb7tc(-wVfGeY6ss%g
zIZd8D4jUdju&V9iUw#6-N7g@bi`l#jCrqyIQ_Q=JF@6TQ75TYT{9HO*Y&?>V%gqfP
zC#AaaQ(<z+CdMBGLrR}@!=>OgGN$&RJ>)4awp?f2FKJ}RV_)d~27b4QBo;`XO~<+;
zzmI9}>OccOv5AUL5EwkGcp#WX8aczB^fc$u!{y#3h7O$wZsMujCKQh4KsM2NyHVih
zc*H?U!;@(}85>wKj_FHlQ_>4V;>et<J+jiL>ILO|BePx}V{WSRWDb=6<Uab9>4VT%
zch*MEW+GzGoO5n#^S8Q@C9ytC7jzQGeUeNrc&GEtb_-`f<(2y?UTbl*`<NSO3nfmh
z=ErPPr*kux_0y4i=x^AlwJ3b#VJ<u@*E@FZe5dWk$-}4;fwsgR{&E=CIXqt!A`9W5
zxz~4x6?5xqQXs4*t<hR6J@bS_RhU!tYZ;@_*5invjr}X3tq(@xm6r1uXR{xr3L95k
zQ1l-cis}gz*z7T)XZo4M^&D0|#I5FRS#*dAturoF;#`BJLO4y}%;{bH+<;Qi2AMX!
zNn#tlE5&3z$NyQi9&K3Os>p{7^py)5qjFi+w`@STMc4b)?VuRvkd}j;^~-&hZYp*2
zFx*EK9%S10g}JPPw!Mu)MMwOL@S{LS0t77tLgxZbu0zb(6%V>WLDp$U<62|jATJ+H
z!C!%mj~5S)21Yf&`mUa0C@GE>%xH40p>N4DuWbd{NUT%PB-p2}t<spd4#kQHNe2k+
z7;}9kPeHtptf)i>Td6qK^`Qw{S@al|caWJfXNO;Ur9D$+O>cSyf2aP<)bP3r=pEU~
z!5vV^lE+~vZf3l9e4<Ud^mJ9N7a@`#7daPhy+ZMAyTf6ZI>;Yy8AZ{AScs)Pe`RnT
z((QWVk6LP@Pu}g~P`s@oBcx#?l3%V;E-xBc3L(Z3^{)46)eLWsQ+$x2;sO5hGon(H
zZF;}*Ejj4|_4!X3;9^w(n&3Ocx13l9P+Ts`K|Rfb8yc0zhJ!0n5vF1n$Lx$hx#_=*
z%3Ax=<sw>0c;Kw3v)Tua=!lPkWTw&B*ox18MS$G8NA=vd2ZwC@I6ZIsaHx?=RS%z#
z@c*&*mH}0D%m26{JQC7Khm>?nryw98-Q8W%4T91o-5dew?gr`R&~*qY>5fD5-`snj
zTVM6LFaIxo?+)i|_Fik&teIIepU><~Z7w(zH&=CdMXFCd>d{KUG}O9R@5389M#D>j
z<YE(KwX?5Xh=WF=B)--Xiz^_~t&SuSBAztCXZIP17tqrfVbRF`K(%cFtgJzI1{yaj
zHc~esQMg05|Kz|fA!%5bY6Qn~G%6vkW{O<czLiG$*nEfgP6L;t!$CnVo~U-c%IRQb
z`Qb_KqB*yRc&cdXP+;;kvj?c;<uGMC#s@uYeI_F8Uu1RvvCj{Q(a@4S^?thR|NBcc
zHv}Q((57i()8F6o@7aSF@IuTT)<4T6{Ga>gKiqdBfrJY6C!m=BzWPzyGw84JqW?k_
z34ML}sEuAh*E^N(XWQVvZXu-f0>Dkd`@jT8Q+<Vbew@rm@xuApIL~ikN`Je@rwF0g
z`sv&j#09iX<o{*-FhC|nm{n}vGBEDre~sd2f4cetSGzwZ3-}%6%lDAt{Yk$ykH;Zj
zc7L=VM)q61`dA<X-(Q0xtCb1sdqiV?B?JI+(M5wXx+<0+d23GhGsjfijy-nPYdnkH
zeCT$AIAGn8uGNIC-Ha0~{%@e@;GI|?{uT}YF=u%D5U3n9Jn7uh0}wCdWMr;XQ-jkP
zmRq)K8tyVX6s2vv<;?W$JFr^UCT?CD&)|P6hwlt9NMZ~*#xbh$&HL<mK(K}!Xq;i?
z2tlZF+L8&pn$LESgG4c;hFGHziKrg}I4=N5R7dC!?U?I!PJQ=K$lczflW#~hZ+CYe
zzx;7`firaFoi5^~m)tp_Z)FKMj@}Fz-9rG$b(L|6%L7<><G~aZza-*_#%r?tN&hSy
z<5E-E^hOB59y!|MPex%vI7m`(Kdrd`<4X^iUH>ZQDWCH$jviTJfeg}caWez;Ftt${
z(_pJuX15^Dxy9<IdE)inr$DMH#oPA!8+b{!<l{63o6a{#`mp}Z18xo|KVy0{G}Ce1
zHga<q;Ds8RSL8+yG`gSjoaOV#A?mB_q}{f{$w1W3#EIbFh`}5(hlZ&VZ9Mz6G|@5;
zQvb6OKbmzN$pAL(30bHDavrle@}LH#N|EOwE13Q|&7Pv6R5v26&=gS@oB3=w!+3?P
z(jB#k^`U-PiB<X5Oa3Nqqff+i7h}>I01SmM5ZDL`34MFi8mDH*7XY+qqO==o?_(dC
z{{Ts;x4mEe*4^>Sr_<otfDlk+F49MBg9tB_ey7#n8pZVPdb`Hh`X`-;7QBTy)<;6C
zd6Xv`%FR@owJGOXtT>4l?PHxwW>%G$4dplHGmzFu(84R84+%qU7IVFJP)D*cRjEyn
ztgw_`Jh>D*i!+$-<Iml?C{c90KlhRZ(G|l}CI%aHd#y@zXFQSJ6%Z|bGt=l;Kla%t
z%&aqm92LPX$iZoyJ}I1d-djk#^GbG)Uz)|B`^%}@m_p7Co|V1ZLY-^OFiDG$H_HvR
zczMy>Wqz6=uS~xkmoC8u%<9>R8}+IK6rFpXHMqJb3`g<#fCDcnpc;p6$46%wgK(@0
zSM%n<{HtNRW5EMewhONt?9cH<Bk|G{jAdlh5lzPUF2k-i2V5DA)2N!!2kPj7W+_Uo
z;?l|duR1-#>NltRtuHjf%(x?5XlydM6ky|?+T6W|@}&!SOL`WA3AtoZ_XWN_ThV}2
zR_V60FEhBjKSAedJ}5E*D#i#v74d`Gn`%yM=lZ=QuZ_+2BPmu#vt+A$YTH>Y4(Ma(
zs+Kn=(-LCeMgl8o+M<t2$zFGto_xH*A};{ctN;lUFSU4!SMiG^bTy~ai+rhbetpb?
z&w=gliCn_~5e0l2dIrC)oTObd+nP+S8*K6!8|}tnl6WmqE<u7{FuxGyOKBmuf%Qzl
zVG*!X4HrAR-*dMeJQF>Ol$;GUiQ|5BNw}}oD0Kwa!-Zf7IduxmlJ0qH4_NAGEwj{@
zzqZuhu0>wli@Q++QTrSM1752ZgmX^+fP$lPUKQ^oJH`($6nQv|Ke4+i<!!2Lp>Soz
zsmHy#1`f7^S{~kwtS$iTdR&}RDPOpnwuToy_MuBxv8mI}_!5~^<E(^LZa;GF)h7j5
z$}GtA{>Ybr4rBFufBx)8or|{ah6jZ<iY+6Z(b{y-k<L;8A+x>FOnxf8ei!EJ5QO(?
zQ#obZF<<8XrXd+X)QVa5=xE>IH5HX&xz`y0NYhsZL$FT|__5jC!P`H+*-wpJzJdmd
z&Lv)@l^7I@7I=MOVx1SPIr&Nt2C^ntsCxw2Lq{*cbJZuD)M+yF9+XNw2--PsqaHHA
z3QbAeGc2gdw~6OH`{_OYh6!(4sz6nIx>rXJiP%N*E7rw(m#IJSA^H_wEVpBp_|*iH
ze*Ld#^CuUOTEqpN65sHu?oakl$n+1=<gM0$vvCXi<7G5n17+`Ae4@gUj>br<l1hsX
zXk2rdMNJNX_sh58fB?YRuPl31Jo6;;c{0=6O0}BEG=vaGRxZ6|%U&w-2Ylck)o-eK
zR2|UDFRz)8PmYqO^R|1*j9-#&GbWX#3OuA(?pkvSLgv@=oWkDlq79Obc6I0b{mk3_
z-G4Wcz=llIzPpjHaT|3eh@?>-*2Gre636wRE*~*5+O_M-u{Xx6E@xWx)S!>IBd!uw
zK9MR-2g<~6+j6{oZ8T2WClTMG@AgiuI&Q5!Pd-`zO?W#>6)#%k`h=5KG?<0^#c~;w
z&7B;0Z@um`m=Z=8sF0bCECzD8#!T_*LDns&(9XCD>AT~48fI+_$yC}5zB}7HZ2VdG
zrg>BO2M9K6E2O5?MPfKrya+m2GWH~hz*?tD8gl@Mab-hTz#zfgGasAi9U?~9?BHv0
zJa^eX37z}5fCE;(YvKby8E<uq_H?<N<sqiT?f{QnBPlBaZUDd}M`eC#S&Z{?0e|El
zZK0o%LKzY^n0=Z36}oVD_S6`qT4KQ`S5x?r^+;Ac$E`cMuu`xw{TJ+_Xpo<O;ERoD
zLxSlooUN_|;9R>UdN$OvWNAPcDwJRO^~;GklVlA}XALNiq|ynuOA3Rmy&zc0ObXi>
z38_3<^kv*m<Uyf%u1|cr*1Qf=Jd5DDqsRFgp0#>YS`KPrR=`Bf^zgzLeQEIl!}HWN
zK=G-BTs4TX7Lyyz_77VhV8%*ot9}|Jm1*^YciF+lp5Er7Ee&+JrK2U2*K2MLuF@?e
z7sSRMcc<K5icX(z7>`&&jkfG_GRWI`!})10JI=S)rRvv7==<IJ<q0S-c7c!(76&i)
zH=zU&kG?_A_(SlzB#Pz{HZuTNda=XZna0~qZ0Tj<GTuHFzQ>hxmsbB8rEQs{HFYGw
zpcMs)vuRz8hTd+5TQyuXQOCzI!%CEOfDu5zel4X#9(lti3s-5tj)>_Kt9KrC7^~>l
zx%xD6YkHAw&69q@2^W%l^Tzcp2ex-hF@Km$FtclA;LtQ|Wq4>!zx$8TRj7<T$VbUq
z+m{FDUL%Bn{;QIiidZ2VfT-kWGqelp663%&H|X-g<cW5ey9L0g>eFWl=O`KY#{Nix
z^Zb$KrCk)*EiKv;p({@VJ}G*hRYV+KT!*V5qDMCG7a*Vz3Pg)=%G{ddXd#4F?vD28
zbIm4uPk+`h*`bDVB0P?UtE^_bAMdPaacER5QJ6L6zrV;c$1_-tK7mSKJJ;07fGnLX
za+R75#s>NYzv*JHGo-|bRUx7aM+P&4>IDa1gFiiDzlEU5hw)znVcplGLWZVBcU9s|
zw7F=0{J1mSkr;rY^f?ef%4Y%PH(Ibq3>qXA!GzxA{<77-;=uF?zWij(^NF%f2To)Q
zs>nzi!IA|~p+A%m32fzAS}ruuojC)*NVg6oNXg3RJ#WdY2+s_g!Pf!@Cw<HFKhLlJ
zNoEQ|cwbT`_{Xh87UYhepe$EyZ+J4CASL!##Cv!$JIo=J#&V)D;$^&@`sg$%!lk|-
z5><(s_44bSPF5T6O8?X6C;cVU;HQnOpCHy8g9}9n6d=^=cbEe}X2J_Uq%6WJ)nR+(
zXu$ryZ7<M%fRuqdGLdz7{k%&SBo*24tbV+}ptgp-pe%0|s6H0!HjXk>d6{rmNC&|y
zDX!(NHrb~q^KP_}5ruxRVhHpu05-s2{ZX>#$;(($58{eFtrl@Zh>0tkH2o?M%6L9(
zmPm@Qa1bN@HK(e4d9uHCCo7|2Td_jnaTA@0kG(fzbNNhvx-)PnZ@5`MF_X4gsw0PT
zS7jnz&Pt{R3NUGnIr^e3qt#<>m@7J;k8oGh)w1&{$4obVg%8~t<O(DSwc1rzX*wr}
zl;7{!`A%qJ6}itJt$9~|y7Bq25Ga0U1RHA&Lp2QBQo)c#;f_)7BIqS9vB|;7WLN!9
z3rznwSbcc>7#qQRiyh#luUVX{t?+4zp+b-wEJXp_*wncj6_ACSW7!}d*DSgyuj(+3
z1j$!zlBSDlWVFd}EFT%#_I={SOexGv@$xb4A>5A)7rE5t^X@CJKb%o?-XC#Ga$)c|
zDq;m;dGJ;bEX4^}Df!vQ4a)46V@0cOhkwqyYN+6MI7~ftR^;BixN-!|Nx19g-}yXC
zrsLngz^{0!V>Xy}Qb*m+LTkt*Mh<?BV%uvlku;q-w$3)Kgwt^dqW^Xr7~Vy(E}`6H
zLRt*+4g{;KAFgZ0Qj5Yky;Vmv&BQGi;cHbQ4Q;fLmL&-Ys@aIt`aDVK&gN7TTaXVh
zk9n{%RbDt>G|*n>%<0i=t^-wnG?z-Wz{z*f4W9~X=Ea_;hcdL>zo~IMK12WltauwO
z_?(>;2e~!GDzIg@j!{UkynrxvERxEwZ457S6(NJ{cmBdpdgtlda;Yf4j(;A(C!*KU
zyn#bW$rEO_Z_Iguudp7!-Zu@NE=tkoMnb*$wlsK}Zfatk8rLInA!ej#?d7$gNd@(|
zY@fP*8*W^stYes(RqPVyD<)l4Ax`E=t~rFFyjgLWs>x}Z^$fi?gIKvv97VcsQRphw
zVeZjO-rZYHheIt5R?^Otpp>}#s;X0G1yaU(E9myEMv4sCO*SG?pHq4w??%Qag7gi@
zoCrg%hbw2N$o95nTbKwJ59Yg4UC-6miE2S|V%@9MNZ5O4et1hDF%utf!3q4UByyX~
z8I+E)X~UB?X|w+6apQ$<IL#nItKCbLOd0utiOkgSr)fp6F6?e^kdw*VSqtQH{*bQ9
z{4P~nb!*gqJ=DAFQ12g~HA;A3nRIDe2|Ww5)A>Kif`2<Yp&=j;q7l=Hq=d!#p@0Me
zeG4IbhADFH`+DU##PeG~hZqvnPL`~4rmd!ou<bKrFo-`PkiHJ9L`6t<y$tlq8biI?
zfP7=5V7465`r4Fp@7AUD5RHdyM=f<t_HaGr)b6?;#c&2^9ymVyF?IiXU?C1b!zX=Y
z)E<6yF1@uG!Fl<e=lR~292gE@#>lMXRM-GDiZSxxvJ7g+4L%)2TPkBurY*t)rSckO
zOP`zX!SoKI?~K9J#sczTl~UzY@f9-&R$a;{@|z)B8!Q(0$6Zoc1_ku(uk9lm_XeED
z)7h`hmKr`DH+JcBgNak614Y&P(#LrR4r2qJ1hs#c;>?%oTby%=h7%edkAG$TA{(3*
z5HGFHaB`P_N0_dtE;RqB+Okr4nNm69?uKtUuRHjeCcH`1GVLniZ&;;d?7o)mnv%iB
zsfA(9QK$87i#S|hP(YCO)rlK@)3;qwSg+<=?~pHR3cD+xBX>oOD4NQi;t~XYGgR!M
zVWrH~Agj`4h>{8$K(XR_gV~x)>mSwXt?>f@UkNO6-pOMQXoT|Vt|!M<U}>+xXx%Im
zOscsmEG%$G8sROvaw((v;d!XcLMo}io7ue#Iebgerq7Pxd8-ee0YtHHFLiOD{7viB
zL>C9lT@tu~lAP2f$S$|-$Q|#4shmM$a}<(Eau63&asP`Z&+P(zPVDMk=`>X<bdy-X
zd3G#g$nJBCR0a+wz-$f2d2Ai$)5Y>-S(_=`s_iOw>+{Y2!MM-R@pgM>BV4UW@aw0(
z70aGo>v)bv>$gfJd^NY9rUG0}wH9BBr$~@*`kvL2`=w*W|2|1{81StrDs=s$8}>kp
z?&3i+=73tAo}qpi9BVVtyrYuOrlYR^r6K7@I5ZDKaCvvWW*;h26rqhA(M}g4_V}?+
zY#_dmqAE(8rJ`T#ZQ{1;&KMCZ2_6YlcSaGBMc#99?VaM@M2+*t_N%>9Z~!PkcRGHE
z3!GpPGeHqX!s!U*i_S(xZ>>A9S(Z1oh1&9e`JvwO+3L=NsD#-#hjV4LoQTT0p^R$!
zf+-ii&HQosm+qSjZ(~j9hFD6?_V>?+D+Y$;!|FlelRe&r_Iq|_V(HV19D@)m-8ap2
zsIeQ>t~Y`jL`a3Hr6og=LshKj*i{vkflR&IVQ%BxLB^@$??`y!2r5)_4Js~6tx-fy
zu9Sl$l<`yuCq2>KklN_Uboq;jex9QJd-$OBqRdn}=!^V*jDj$(+gqFnZPuGax7j*o
z(K-%^LL}9?n_BicjbW1dx8#B(xkM>@n<5<X1)8x2ogs`V!#KiOI%_LUCNb_ej5}&;
zZ=+wbz;y<{_B9wdhps6b9jxcP!L`Za8#6NeND{~y802v|u#w{$yo#?w?zHDhd_KQY
zjqervVQrN_w2(7VfzBSv$2CY67;2<RlUV7R7bZFoyx=q5lzSZCM_Gud(qD=o07Q@p
zIwo3eVK}lE;+P)CameOiQpQ<;fg-lEVH175-P2mhVW!Wt1HU|?NT;y(MB#GyrQ_XX
zH$fEtqT090+OW&9flPL`DM-~uI{-bh7*a%x6roe(p60U3Nhb*{e6oW&-O%EC_mbYI
zn&Y|g<(&FGI-B0AT(~Jpde-X(fr^#0$g=NwAg0WHatgyY&Gu@XzjH%%Lf?PHL0BnX
zaIOd5i@|)r5Agq}ixMdxh;A}a-#K#<(6J%CBbaiRUZ+s9K%JU?_w_iokLFl*FBhP<
zj`io?D{M&Y1^K@~>EfzcHJSr(sMQ10aTPdVVc9o#3@DYkMYo$O775!yTJH^c-{pk2
z$81*}9{0(U5!lTL3|nST$rU=V7dOwM)S9lkojTxE-<w02D~@s5wpWV)=O08C9bbKM
zhne&-)W6dit^pm%YZT^Y>+@l|qCPVu(p-YJH4)TGQcZY8gM4fBb+CBqr7ezR93@<N
zS-vplF)qO0Pmp4ON|;}5OtZ7TSqEsmp*s!2A+Z3JYP_kf0(<zKe}TqEawU)LaPIl+
zH?fBUKKBnC5>HBgW{`ll*tO_eX>9Vzxd|?1f%_m8_^8j#^>zHE32;3k!iQ@>Bu43f
zm@I@NEPpm>i=;{;6x!qOn$OaTO1qw=scIv^F&`nSV$%3J$Ul|5WU?$rsa#Z@hPVQ4
z06HJ5Grs=$+;RepiA{KRB0AyankYI!7wGi6eA@>kSeZTkJz=`(l#7c`d@2#!8$0e)
zqY5Cw0RT7qj6}QcwX&^J4yYIEr0azj$Us<Cg_@0Z*)gN`bp<t)$lAwBh90+UwzOWd
zF!I#_8Ma_LzZ)aOYo-kLEO}J@+;lmRKQ;D4mp;^$5!*dBu0%I=+gn+L_?U}6=e;*A
zWjs64$mf0z#_VJQ8}3h}q2$Zv`|0A_MKtDX-3P%P0u?M-L!mVi<zaAx=Kyr-fosQe
zw)!!|&HP)YPBd>QA7Qe5Fn^q8TyDfF#Ecul1-tycwKW5%Z1?W(26s&hyY1Osd!IDK
zG=S=&8U(}b!FJ6JPdyzk=Us0~y?1&i?HN3YCF!qiBy9JH<)PGpc5CO7?|_JhoB?yu
z9|*5gO^QD;Zw|8JJR=)c%(Vh=#|rd@%MI5P5fdINsw-$2gQmA2Qex*pqwiyjoiOyZ
zt2}py%}X{)NO;{bJtvV{r2%mngbP4oBjOFO{0|+_6)i>@lg#tqnJA&}{4c)|JK>1-
z_9Y&{P>XgOtugVX7lm~^))DmiI5SSIe|*s%BVKph#Bq+n>vNj<EPRuMKlyZX#Z%n`
zAcPPTE!YXWA}r+O-O1BP6m-VE)T9l0E|{a9;8HQaaPs}eP*p}Z&Tn);m5D~b;uBV^
zU^AM;kf<^Wc`poUWhChgl@tkeNfI|zOUZ`la4Arul3R%l4(cGPP)*<rKM5$ub-5L0
z&K`<SRtQS9RN43j9qwDm-8}9qJXJ`Q&BQ_o?y925$E>fW$2JD<3W`U*p&kGZND3=T
zwpVNrBylDLFu&bBf~=&+YK!MV!Fv!u&dyyZJeSW}bjq7bh|mewZyWUvM_<SFQ-4#h
zphopObMtWS07^N`*-%HCcR#T71$P{8X9BvkNoP2~$NoU?ZE+ktvhke9DD(&~0+T3-
zm41^}`o|gOTjT2&Ci97oa%(}WvIfh2@ugNaA(VV4Tv(fl=Yj*G_IcevtBDo@qzIwH
z4}t2i4Qgt%e>uc8%5S94J(Mq01|m&m{Z0xVa7zpzkQaZ%5K!G>GyRDFbEL?>S9M%-
z;bC<fBp!0~1b6fAQai#JfEEt1^?G6jhw6Ai#>6@d@Fv85BAkDHD|lHLpjAsYwR}*f
zXe4&}fGg7vF_cQ^3hN5R?~mEQuVe&|?{U%ko1BKcn%L30AOEf}^5;l=gWf&@R<p@M
zjqR^Q1uW=?X`ncGf-m_D_TS?3UzG~c&>zZ!L8{1>zaY*2IflQD^AP_ryoruTu<u_^
z^I@iBz{TiC1^Pq3J2?C~FdcHBzF|qtg7!bmQ0NT>kkcm9VK2h_ttt3>cH^5R?2AM<
zWXeBa{s&nH1pya}b`}P(|IYCLnOt=Ze+0``n$aorzswLl>Je;Zkn3cb$$!Z7-*xog
zK9{0@(EGt2iwplh%<u)-Lp>V36o2YB)vP}S{o*@24BB8*0LGKwr6T^E;hQ(W#bhhW
z9m&5rrTkMHn#3OYB~8m2y!anx`2UppKQ;aTM@lWE1W<SWV~;ON!N}`g$oq-=Vy(K-
zyDy)l?q59(1s6k)wd@prs{BzgfVTI#E!a){>*wznz8_4>X(rQN9DA)7R!5#t2rNW8
z2QqeYOE6_Mjr5m4`MJeHk9(-;|7SGzP4ngVd$K>WTVnde=oJ;a-SHC?7Nts2%70#J
z_Jx-QOz5W;PqlvoEHv@MNF3z81gZYG*A6?QAnx+UKiFe<ME>)wFNBNkN=J%ktKBRO
zkV<kbH%i7Q*>38^fOsIgE_hY$IINFa9RLC(Gk!jf9e&NS+Vw0;vFp`~@7%uEwZyp2
z5$L=;mttO+nf+y>n)IGm7c|;j&cXX|O9_>H-iL_>oe{4Ak{u<9?#a_sTRREdIT4r#
zQg&f(Dfg*N93>@iR$7*efO*(jt`JyHU9s#$*;THzfDX3BP-loa@2h{a9{;xgd|i@0
zsKT*%tF;=n+b6RdwJdY%@_VF3>~ZB!b_G38vv4dDj?;+kd7>YV=)5Qj12VQStt*PU
zN6v{&QpBBV9umg>V)`su3gA7mrJ8itORSNQC+ia-E=j|9-17?oj2uTbtpQSyTo?8_
zVZZ#}%#3Y{P*uVmqcr-u@kKM&${5V(FU*)0V2#=y0>f7TF3oYHTN@__+5C9(&Jf_;
z5i<}r#{!V1*P;T9oA$b|V10Wfzv~?GZ)>}K(OjzT?Wg4fr<9KG`#^c=Nox;_!c%(d
zdjdqnvHlj-;9|P|IGM=C)4dRI$S1=8xvl%w`0g8>-|W_{srhDZ7N3AD_HaNgq12O@
z?p%6*KR)88M6X}4qN#Bhvv*d&zt5N+ntjuHcH5z!{W1RBSMP@q92}tB2V}k*0^rSz
zC4NL#Y>2%Z^k!deD(k1@KENr$_{vdnyT9Kcy&bU%Qyq4a`$)2RbxELuhxGBow`)ng
zvs0&oo&4pdzuVMB7MKKsG*ay0!QGO3hK7U48)FmCpLe)HvxEOM*AYgt=wQQ2zDj8P
z&{PDd#zsY!q5{;efCw92nFJXf77LkObB_9+gNdC;#(*<wK&Ud`yH0ShJhyU41B(3F
z6c;PFX#jLi2=)TF3>k4r8)o#0*1+@A{q)Bwf55yr6u@xBKVwOYa0!Ar$j#xBUA4@;
zXy4#o2(nA^ds1RyJoEF2#y9BQiwU5K+}TrPFz6)8PKOnHXm{@>Ds-at2U<s&Jy1KP
z#D??CBJ*wH=Oq024d_LKOiBU%9NVIKQw?Yv`5(T*%19%fUgTSog{mA#5qO;6e&9ZR
zuq|j)u<4fq*+_P>a#c8YSciNZ{E^3D#1{+Ms`6Goy8dSk%q0J5YX5X@t}#M+u$2H<
zWfaKn5lvxo$`fvLm9SrmvJndal#o}BleH5sWlaNHwBFxsib|&NSL<uLK3_y`q3RG_
zZ1GN5p$HNUR(SdK!uRM|LI-No?9TpFoF<m&jnrp)0ZN&)pv*VH1~ZFk!sqRc-unTk
ztRch$AdHt%FQ(gxJ;j`_=ZNa}O=UrfMRhDd;~m!Hvy*pWo;TlFwD}#hQz7hj*0<C;
zdRl!SN?ou(BOn3?B!Jdi(de<tXv~xzw?a`hoMPZOeBeGCBQCp@Tqjr(e3(_L)AE%f
zA45@Zu5<0cFK~4Asq8aZCc~D~fOQjp)B}O&#q`>eg_kY0pwMgbn!3_eiXiDN`|OOb
zTQEZn4cf!2y4+sjeoRYWm6D<rfl9U(F*#qWi|w^Hr{A|$IzINhyHr8Xs9};uA*kO0
zW@zCZ%MFdQ@X<A`sBk}k%jJsrv31CCdy)MI3drNulNsQke8vbldNNKC5B)4HLI`Zl
zCRNz<D*@8GZ~u%M{^P@UFABXPvwGJYlgn<_AJV3@@%b5;*>8p5XxFld23!istUWw?
zBnaB9?gK<l$8ln++^ZFfr9}$>at}|{?EWqEQTX*SP713)9*{{^2FUz5o<L`?P90l!
zsWf&tr=$s;5X8!WK`Nb(%|JQYA0L`eMf}F}v+@m^8_-&DrE-k)9i_*dvYARe{&|5l
zt=cWS4PNo3;m6xouZ-Mu8(dBVh6u_NRirg{<iMx}JJ2Fg${no9Z2(gv^3YI&Tr<+r
z*ka?O<YnI3A(&ccrLLgY(ZgVxCK&)9Ia+}6L?VUud;Qdtx+(M3hJ-n$r3I-gFLUNz
zke)7#;V2d}6-qKT4KKAMy#_L<Q`^@=2NG;8Dblqii=zOvAg1Lk55OvHkLdIIOkijL
zjT=SW^4&%A<qsNA))#4K>fY1cUUrZLE?*69OO6_f<x*lMjB9;#-~R?xjIrI8m%ICX
zErHzLJ~Sgk3bjA%(o?poT)$2`Ff<-&v83?Va4M?l>2$G-s7n_UuC?gUY{@OCEqw>%
zhgq9->lc9T9bbTi!byn<_otCr{oM^mY4}FAr{HV=dS&SZbOZR>PzqP+vhI<~AhY}F
z+`H9|G|~IsIsOoXe6G?R<ZWhskJ?5NaWP!>JnwU$<RrsO=q0|)%{Hg|-L5~MiXi@J
zfhY+Fbp{Gi%>xXq3p0MaLV`}ZHLE~z6dx|%8>*qerD}W*0qWjkpJl~naik)bpSg{V
z&CTAArs^Xhi+nux8qbr}rqyWvqWZ=$Q1r{6<<0-lus^?C#PF3vFkyL9LP2gg`jO<g
zQb^DEAsO;@D~9V;a0=I&enmkYf#>w$@@~g9sxoHap5YPNEcNvGlVxOmTUCGP0NnCq
zPOaIU_wnodJPyp$E{^M`oWvOi+bCHi)2NwhM~0(ivf_A%mh-{<9oP}-k`G)|#+cSG
zuo6Vg<1;DU-bC}z!8?andCTv){~&=7cvOblTvrZicag1~K6Y5sI^UZ(IyY|IoH@sw
z@Ujr^*J6JA9Ac&ZU4z-3<^hx^T|e4Jw2WLM1g~^s{sOj*N4tRcmB-}@Wx1N6E$XM-
z@pww!%|H{w-NIgR*J2jc=AayWYmKTQ1!m3rjh7ueB(Y$XFojh&%j@swPdY4nr#ClB
zT9bbqtX^JvZ!6n9nncTFL^ACM-ne62$)!uTYWc->{EIk4%8$YOX#uvcUn~{%?Z54$
zO?c5VTpK?>OP}?}$dxpjiH3W5eSqh|uES%O1i;d5-NDCt2mR29>6PN^TL1uAWu9?X
zy|Pmj2KUk!h;Z!C=IZx@gH=hV?R0uyp9S(h@2_JZC=C~+=bGM>qx?FuzcJnees-WQ
zP%A3PkX<b0GI!?c&<h<3QdwP-dP47-;)d6{<;(wXG0*=w=(%#jf0ATg{rqWHyAyTi
zth)zj?v(Z8qaf)y2V139b_J%-qUh?=Q5AzE4K^hGtT~x47ZR%}A;tv^wzDx7Gr8pE
zy&-p31_NGn<?oiFrZuyr;iSsnRc`=Q@qVGJvrV-?W(&f(z3XoBRCm(+@>5Oh8LmOS
z1snF$uAJ))RNXIvK%*@U-3lA|4yUrso($x0;lYI_&w)c<L66JzJLbSGE!#?iw=wAP
zD^cG2{=#{K>U=4x)BTI_4{f7B-PvB)?*Z1w8zAn8$`I7vI^Db@2Ra9S9oQ%&VdHCY
z(RXXz0kc<K=R!f*-XuN;=%(0{++RxymlSpAkXlOc@6)eO0{tfd>S>AdYu?{U3SJea
zJGgXSO(6%B6~D&BHZz^%EEnJ>^p#l?l6~$#Y>Dhf4Ln=qA0Ce4&k1WP9=s~2-UzYd
zt$goea;th@zL;S#-QOHQ7AGPS<2NgUGm_;I`Od;R^lbUc%2GJuI00;^L_dIH&10cf
zd*3P&ur6wem1#EG9MjSF9wt;+wKN0Yz_Ae&+}z%zPk26oS^jQlh}cN+8mtf~Q|oD~
z%j4E%-Z;W>I0a>-KY)&;S8m^LuhZe*uVXzR<NxrH1rzg?qBOUpF$wqTa5?wwtQrXY
zZoaMru)^#5-AE6Fh#5%FAlIAe=%a!4K*(3D%TS;^E~buToH@8+h?P8IRdh&e%GB_w
z53~2sw4}(lqo@mq6z9^nCFz#UI4=HruqfP%+v9CE&@BUK@#?(wn!8pO#LJL2=h0nt
zyHY-|x#}Eeb&PDs$W9*PHj|w2{IWQD<RlloH4>kdBfOmSaf8}&c~GpQP8plc=8@eZ
zWfrqbqv}C+ld%I&Sgq-qcOWYx^-I`Fm$nPu7&7X5G`eBDfRr`%il^VhLpf<Aw%@Gb
zEJWgaYik1C_u#=j8BBZOrO1KyO4wAd>FWnF{_r_4WpvI4$HiA*p+qn9$sX`Z@%pP-
z7}3L%U~)fEZV|}hSY$*hJV@g_fPSlz$Wz&{z<}E@c-8NvR-nToNo~&sbeKz&uvxe*
z-zqK6X^p(l=~d*w$;N24oQ2rmUwsV7Aa)zxda@DpIYoOREgk5VCaE53^m2H%#%1sE
z_}wl`BCDePxchH$-`^UAfk;t(U4;bQ!)){9SS^h(&~+8O6r<8_0zi5*E5fB7KpjS|
z;)N~x+C8Z0*Ms{x>zD4-$JWSsY!gar-_MXQb^xLtF-2v$_yXtTQ-Xk}YxA=EYK8is
zF>z2_2DN<VTX5DxD@&i8A`YUJ@jK)^4M>OryrFD1P=Ol<m^VaomCO#}YeAt2TqQ-T
zH73*14%J%@>dF@C5kG==I33Ci(<@^d!F3FYEVd>IjH>wMHYAdC-6nMMg+Up5HFj+(
z794ryMq~sbB=l(I;&IJKGXQJ2oC#&z5L=;DcQJB>BCL3*@fcd2ld)ft+CmG*b{<l=
zz)itKsLMp&whP1$RUC8Q4K|jN2;Ma}C!ZF|lGNfD<k#iKK5)c=3V55G-fi>!yDJ+z
z+m!PH&}6*-_%pY0M0v&!Ts`S*NCO9HwFfTPfl9c--tynxGGFIy1<oB{nbL=CbH}a#
zOfv%IJ{$~pnfvHy#ATUTHc}he{UhGu^cI=t<`5vAJlf*)bOAA(*HvAYU^$lGWHx1{
zml4!pp%ljY+ugJQ|A~hpOSdZTbh4Dle_GxkQYJ#gul!=1%<}1$|Bqs3M`DKVlJN~e
zPm>cp-WM{@u2yovdm7E$R@`ft0Dfm|rhOoH)+K!L)yN)y-HDuwQM2ZL%$O3;5=A=i
z@aQZ`7~SJLuKKbCTpkY+sQ{@ke620_sbW@6#qMY`Cn*VVI=7xF0f<o?21yp3I`m@B
zJIO~}V%GIV`>O0_b6cSNX%g+c*Wfv&RuAbAJf<A0VYeQ&H|3nzk;6m{dWu#*q*ZGq
zXpY0TEyp>EPyt-21$q3@&AK21L-VWfsdm2?ZcgAodjY7M4ZYP`Whq1|ZO7MDn%bvf
zm;K@Q`t)p&aeKsMfH-DwT6sY6CDjlYr$msI?)U?Oi{CDMeEr>Om4}-5LHmxk3u0U5
zLsu-!z`j=%cPAb*LB{g|J^<i%G}S)7*JMJ}!>z4stmJS21epsm)*5o7-Ek__pJrV<
zT(SFP^a}Q)@UK_H*Cj$IkALtY%%Ce$;z`1J23%Ic$P%UqUk@Mm_|nzg>quh0%!Y+9
zk`{MX6SJ%LGjBaA5t-tP^Rk{|dW_)Bj`zrhhX601!UAv04X>bXM6w|UCKVbv2cFY&
z+2OKh%`5DdXNHN$-c{ZDu&!m&u3FzvkP@2}?Dl2lI-0GbUu91_Dz6>Iiy%}8nV9VA
zD+3HB4R-5dkr;kUXiWN%&N73c5dhNFQzA4men2&^;l<z$_mD-)U&x@e;^MD*go$M0
ztH(`|;5{E;J%?W%2^DiYXH2hqhj;vyZLg5lHH^5`g-p;#P<ic`gTB>e*{-$mS^L*z
zx0oiqhd|ENc}ejW4S;U3pStok-xswctphFKx|gz)lEVBQTpXb4G7*x$mLHI2359JU
zOFX(-dD;yG3(0aobdG>-%4x0L@bSEeWth^~2`Df#ehG6M!$f+vY~A0{=S{Rb+qEct
z-t8CLoaE*^TU*HkoK!o<`&*Db%J9^;i@M2(0u^6j3~t8lQD42cAzV3p2#BQD@_D_!
z(`)nC`7?r=3}`!NBG%^QyMC;va;$w$6Z6AE3LvR1EjnAOwvVhSbymab1I}7J&l0SY
zt-7Z_;l#ARd5g3sT$<Wq!UY?uKG@kG;;q#y$J|H(%cfdn5Xwp%Y|Q7Z=5x?~<?Z4R
zQcgkYVZ>L#DT-by(|Y~`tDZbOta<XGPwl87kGtJA#G!?kjcLdTkH`nQb!|ZMyA1TA
z6O0b#;6$)JBRvXR56QU}PyI%i>!G(_gpDAh!+PC{-JxQj#Oc5?i$(8y$dwp-gc=@y
zPAl4=RYDiBmb~a@Wv#yaZI}px*cn?o6Oea+#-n4@kLIB2<^oiN5!NWn;kSfU=7b?n
zu(2?+%dl--U5BkrD3mHprvR!fmgXAVYO0->jy!<6EAh{L)}<gaIZ5wGiMow5<i$j<
ziftG#NXuM&a+nXC(_f{o+@KqlcemJGX$?1z>|W=s9$qZ^Pu`Xcv%G>h1csNsCZi&w
z-Y8%@VQsemk=%=yIA^c!E-P~#V7o(H1A5x?uT<tgv+4i*a99J6OUI~_9NtlGOoMgG
zBd$p4es=skjo(uT(R3iUh~rGbz&F4FseBrLcMtRX(=GQ^X743V;@3D4_=1Vkwa9w{
zNZKX19yPH=s<GIS*F72Bf%^11h0H`Vt}_`CNFhpeW@^Oo{^dFwhDZb4wp#EUsl&8Z
zplvkHs3WI(0#9A`^7-yC0zLJ6M&*F@+x_qpj%%H689mRTQ-=!EjHraITL|ju&@<?2
z-Gw&$ZrE>32cY^r2)K=M&Do;jN5N#xxCOO^ZvcLI7J!UP9$qV;3Y~o<OYF~hA2VBb
zU|6riw2Btik#fHlt=64!+wY~oqx9CG%RyU>=4Cr9{_OB`Qhi+LoyWI~WPXbxK0`vD
zCULkUm{r_#WRDf@%BL>G_#DB+150J|EhB>8s-4eo+poBa4qR+gb@lKKQD0YD=73K2
zhdi!Cte14x5I+4pm-qLij*!tyG+NY3?t9I*KnJ4t->2PO+3=!AGlW&YukMIEw5o2l
zM8*BV)98A`x=tIXJ>6jk1?bih{-sikgpEcTfrt(;kof(t0M-MSqgRI>>7i-7-?8x*
ztk-=;0^~N9v6_SLKgeO5^rl3p(d$LNXx>w6NlEATVzl4b8w2_Tk0DEO#frxJ8Eu81
zNG7?ZZ`Hrop(B4FBFmSHB<Xx|%JU3FTwK3ic%}%j6p31%%%1}}qlb<Kl{OVO$qO#x
z>@vxWa(f0yKhK5#T?M0}h4T0YF<wU6!du@5d<<9@^EYv;J4KzpHN^EORC7~G<#lW`
z<B7#XA88XXCyQ6M*7R-Bo(Toe0-`|MidX|YRHw63_AK-zNxZ-a`h_ob9W$vu7G0&5
z&m4-M7vK4cT=y!V0ZkH@^X+BY0$oV(rt;gp$Of~cvU?K;^SIjMn+KqccoVTn;i6KN
zpTAn90(pQac@&A^R$SiK^pnpte`i;NVqt|T6SD^{ea?rUybH;+%u1l<Mu?^$KtqRn
zM*W8z){~IT%*@2fM2Bv|i%+^?iRkZM82o|tgp7>V4;?Eu>;)d>+nWuByc`o}6Bp+M
z?U{A0^x2Y<l7bR}G}rAtk3t;<Gu`G}X${g_6-G_-V-!gfeaJd(ytGPZ&dn<Z^A_RZ
z+h_xU!mrP3jt1YOROSoH%1W+&qT`_$0$~t*0?R_~>()-9nq47ucn#%>gXGql=c%K7
z2G0vko()is8oAzs*$$8Kj`s;MPhPz<$#0s9j$?p#)4V=Q57Va|J>FX+neiD=49xU`
z29x$BS6)fS2=>Hazr=(=`|t=B;6lO+J^Ig&LZp<R>Dr2hOR5zO>Mwg6ttTM5x$}&+
zftr!^oLkOre7h5w`c=j6tiB5-NfWa5iM5_c&*v!9sm_X+-svjHhSd2LQBX4bs2t0A
z_6gSyC0*4byPdCo-7C_q6)^X<VSA3jyujUuvXweYz)*Y5WOjziyZZgBHZd+zZnD*I
zt-k{{#4zDZLc{c0L)j{!nSgRZMUJhu^Q^^Q-9ny@C}If0E~W8Kcym>iFG1<mb=`sK
zdDpkn=qXDNe5iy1vyt$BP3WJ~gkbq<4e6^GG-5c91YbjXUuUrijeoZ;MM|&mz4w^j
zX3saQcAjGfjim~1%<1|Jm-nsa80D?9q3ll3B3|Y;B_k_>OHX<)WoJl9!fScLEmQam
zTkbCczh+!|Lg?8r;K^8dBG`OV;xa}8S@d_?6NPA59B!}9%H1}+YjAA$KnjUkwE|~1
z_IUVU6ETP)N=3rHEBk=PwbKmm0IPqqP>)T|%;${&Q!d#C!Go>&jyaHn**jQBUr|uf
zo6!ugPxSE}_x1kxJE*5VD?jJ)wflYEL9R-X5euDiPV8g^KaNxaQyRn9xB}%W#@aNi
z(nVfo5q>WrX2TWw7<iR>cS_A>gX(aSBZmM~B+o7)L+B}Kn&!1~{I68u5p0b*Og+Zn
zo4s~o(^-<$+?id$9~Az1ZJS0<#w3t>Sl7Gk=NPEEtfyYw-Vs5ixi@(YzU9>&!|7)m
z<wt88bMAEgpprVBQxvBR*``9xs#n~|#!|j{U93|-N5y$vp=_m7Q3PAbk78k<Y@sx_
zd(CKuOiRDI#bUQ!pK?XHcU3ksZ+m5IjA%Q%J>w@xqP60ckTBiYxo(v6K0#n@T>_ve
z=Po)LR2U@vAaYnnKW`iFh+YhIUp(Kr6U#Zf?XGM9;Y02Gz@`ZQSI_^U7J8cGp9?>S
z`B5GOrCjM&&(<v*Z?miDUmxSm@gApku&zawUm_S$hTPmOkVrh;!t`L>o5l-PPqA*c
z*rToS*y&EHaXIXJYSiGRIX6>cNdPIHEa4U~LJ-^#bc}yagYO_hXB3|>eT{NfXe?nl
zv|X(pFQKB>I7Yd*qO<W566>74AEmTRG;Z_B@7K$Kh~TS*WU?Y>nVWn*(z76~!_Qsa
zeZ6Oeiqgooexro(mPgymN@Ga1NTaR9Yrmoj$RJ>cmu}_^2swPxK0Hh^H>^Ker;~2N
zls*{<clUT_aBiXrmPCVW^kS!2>%ui>tWbt(Lfbg!`ld-hdm^J=vzBYOFHtMo&D`9Y
zIcI&QW5Ja}ZT2AY6bLzJ$+8;X8r~%(jbk0pvnvM2I2X~F^e2Yo?*hiMfJups)*?2^
zYQ~>Qvt2NAY4wnbUld#}c@;Q3RH|hSZE`8x158RCjYxwOz0#_(7i0PMnSzInV_jV{
z|J_hW%}xuiX&#6+%hgIC!$_q_?f6E4M!1;LQp7<d+Y*B#T0Or4LJ7PZDVTEMGZ~vQ
z?=qoDfqUm{;M^owCt3;qL|W?YWve{ujDUD`nMvU8e&uRB`O+X)t+tl$jHL61?eQ6u
zzaU%IM6Ez}oi<_UGbklYY57bct+LZAjy8pl57Zw=3%a?<;n5AYw&Yj7_nbB83Z13l
zO#Qw;Y6O$Zgu^J?P?EK9c0Q!y)U(&ITQ!!ypH_A}WxupOdB*s|rO8diN}&8>dxuPt
zOc%Ma|4e{;<8(POXwf<_&F-y9SEjZ5qNLF{i|I6LBXKQV%nknVcEg|z2{r03wf03R
zJeHe-&eECN=tUFWiS^<j9EZ;o%(cfHUkbr>T(MHOWGwwMY$?&UN~MKU!5oTHp@|1d
z+S$%D<W$#mZfTrzFq@JkQ|u$~dmBo*mz7Qi1=9>xEXTd(9q5+NBJ-BrEn+C`uGU<x
z$-*jv+aEeEbQ@pO$ir_W7=FVp!dc>TWDhCrSj0Q-n|Y%*I^V@{0-fccJ5Ld?i;oLQ
zgRqug4sUnD#_=>xRcxQR^qzaw=b!l{^$+ZLo%s|Rf(tLt4>EnMm94y6F<9)H-sEGb
z)QhbTaZIP5A5D`uSa%<kyOA4iICZtsSuG?xspK9-s8Idj*5Ey-)6Ldu<KsTX|4+B|
zPb-i1L5LW$m#vLH@>==?!sUCmGX;rzI&V~YpNJ_gOw0h5bsdz9r^QPEBmUI?{p&_=
zMfEEEjowv1IVSy#0~-J(iF!>x?md_4{=z_A=TWZo|8brF`qvLaq%S{vjui=eek0Uq
zqxkaPO+@#mbE-tgGN$EzyoKo4YwU@+i&)Cn%U`>zzncSJC0MjUg(y;=Lb9^W1Inq=
zYl5V6bIT-6hH;q+^k2&0VJN=E5sygmY8w=V1MMZhoSgM+RMDRO%;o=U+%o|PFA}Xg
zs9Kqct{(RsSb7l7e`O}Z=z;mACO$Y@Ap!Ik6ovx6CY){}UkoM@owtXm<}$QV`csHT
zXn!wc|8$`!&W$r|-Ob48C-jG~Q$-qv<KAidg{mdaJqq5}$12$-#&p^xO1^>|D8F*-
z|Bw`e)FaeNh5=A>uEZDDzLhDn(m%}Ob8vq@0JOKDM-GYE;E?EFo8N!P%>Ofh+aTr3
zC&c)RTYeC_0v2t|R8-=3D)P4_5`O!rtq3h$2?gP|O9_bog%=FG$yQ}1#a}+0l;VS)
z3cM_BAnb2f4S4=%fyc0wr|R+;fA#P$Xc$7wbf2i=MEw4xEI$t*0eSkVUlmdR+U5RZ
z8Rg&sU3=ah(@*;P_Y3<N{;Mnivhz}j{q$E4r~U*89&uS>{qyhj92oi-)d#(J0XoTF
zhKqmd1C}r#c>lw%_HY0E=D$Pce~xMkQ;1m#^qlh7?(iS~ibx6wUf5NEo8m7u<P?z7
z|5MMO>)M~+{y+8nAJvmO-FtM6az_@zfBA>~Uu!9aZ~mD#&F9-;^V}om0UGY@zuc)<
zh%oi%%qLhHHC9_O^nd+?7ry0&J=ouLHd+Q;6W7y88GgC9{@i?6dcbysyI31_`pc~|
z4{XN)ei4m7)#R6EhWgus**NUW+WGS-zZ^#WgW2#1sQP8V`{#ekeRwc$-($q5|56I}
z59ST}%>40Rn&C&ljOe~mMV5&CaxVXv>{>cthWGKtVE)owJbo$XDRt&GS)j~e*!?Vp
z(>8swL>po;SzrvjKop{|px^qJLV-~GdOjaiDb=wC3*I-KZH{)_-JF1*^+IZGZEKgj
z8>?*=cse*(A8fLf4Gc&I*FeO_9m3w|Rd3<EItn#u2u)~ppYu-V9&WF2h##y-@7Q-f
zld*J4XD@BE&9N>+hnXdPe>9L=x1x<&H=}Vd!NIFcgY+x!X7o|01;J!IN4k<cf~(#8
z{uUa$K)_*@xaG2)pQ~|ycgyCQs_n5?UE_W0uG%V}CFVS9oRDor$4ihSlV;KE0gWgi
zbX$umDV6^N0bb~f9LDB}o9wk^-{9tq%;Ls7OEv2RGkz8p=j~|@n=9NxxrXQkGlI@)
z9~H*x()*kC=loxf(9MxdK+=R3K1`Pb1uA(qfqTx5D<#L)UY1+pEky4hLq<z0eH{7I
zUzx)AsXyj*am4xQ(tpuI@5O1`ZN0y%jFA=KRxGFQJipp0)m&(B+RF$eMyxD01*ea?
zSDFlQr0AVPmwYr!b(%A4La}K4^sq-?Joasu&^unjT<v5fTK8CeIu{qXl+5(>=F~K@
z?sj^iWf}YVU`@RD8j_>)uLHanaK4!|$DEeujR!53OWxPkS}7PK>7K_D1bnV#3vL@}
zH3N)CIz*^~H)Xe{<Fa;6YQBI!EUSlay1m`OOTIeHt+iUXasmztzuAVq?b0uF`341m
zJ8*?CH68k;ISg~lFCO)f*sAJ!RTH^yW}M$bm&7l##3O6?&u7Rrz%s%a1RH}%hHR$8
zRsC^vnnTI##a6Qwv*u*7{UzFsQzk>n#)wbUi_}=AONm_OM<wIwlc=t<<bg<v+_!pX
zYHkF?IjF5t?1@~cTOH-aYaCmwRz2S>Lu7sZikk3*dYdcsIYT_U5Q+nbiwE~^Kw-_|
zlxEaS>uw^BNGP_%y=GMLR$`??QLO(z-T!~>lM3+{y0DeH-j|dms>K@BA)3>Yz>eC>
z3}v(zY?b$$^~cdMqe^p(#!T{Ti5I-P$l3!Ino-J6Yilf9+kNb-g!AQkLSy}ime^sg
zbP9*_Q5Oz`CO37(o-!}(eLF&p<JQ=h*!s)ymaA<##hD%fudBqlguD%Dhg|-{Z%@1@
z8Eji`ojp!R#j~0s1@C6gA-1h%+WIsg*A;}F#pcG_6R@Cs3&#3Dg3Ij~p*4VIjD+OG
zP3w3t^wY^_esbEL=nKJ?_W8zH@D2tB?LDlR^xcF?@g+E$cYku$LN$K_md%)&-cSe8
z#Mbj9+Kc`2gqm=zNOXL+UlklN6sj`1&#gbs_Qq>;-t3^~ify?RWW8MBrqXE756QiI
zJmno3F;yp~_`FXq=7&rfm7v$m%i+te_*-Zs=HRx9`S*yeOpa-_U;~2AOULUd8xK65
z=+7)RSDfclGpbtq#YDsvqduNCAlVyg=P>g5`jL4%ad!SinUEp!gh7=O9dnYK!yIH{
zX!4Lc>%b(9x+ia;N=rlaQgas3(uz`{QjTOm0aC&cr+*sZ$;MmFDo<aCPP4GIrGh2X
zj`Iw1`4v0sMBf&RtS(oV4$*DuEuTlzR#Sl>!*)%@M`!-Qx!pN|4sXxy8FO7o8ECPb
z#KhB-PPMcwry5#ui%(=E&dEE9qyNhoc#Xx^6MYcN#%`@QYBXcseW&<*LQ&QjEpV70
zs>ORYp_pag6>7V=n8;$7nyXf&Z@98k+UiW>7Skti@%_opNXADgs_T=>jq=BHGqRa;
z*0l>Jg(}6YOJZs|4#`^^drLm|;h6PR>1LIt;0QXvJ|yP_jr9<F6iK|1GQk*eKiyn@
z(}GSerj{)kw-VyCHAZRUb$4@Fb9)ZySuY2S!B<(m!x`1Ac5(I{qjf1|$M)!^U@;kd
zVoU}VjeLykOx6^(qn%w6>-kd_`Ix!fDat!n#l=++pV`OmbEvuvw^th|2Xt)9wN1QJ
zwjp5$S&BrEL`ALVXOy*;P7<8G6}vf);<xKAtP%0YkCzdw7}uGXi7C3dn`X+n9SFgu
zd9a=ss*+@J-nuse^Thk}z?(KY#L;LeY%2<Ncn8k7izr4NrZTtA+Y=&ZQw*<XLpNIX
zU|;E)%=roK?r!iV<9_0B+0xAceHssx^`6t1fSjU>%S5_uf)8dyNEY#HOX2Q^D<gfp
zz_$@$!M>bC4yC;3WlSGic5EY2TA2nzv_FFCmdZd&;RB{{Kef$(1McO8xm?Mas4yO=
zBOhrpX1ACqtFea60fx#}*Yn7qLAPa|;<Iv|9O+dYjbitt6sMMc=Cta(%*W?$9~m^N
zdiR)mhd-ZQgUd)$@MHyV9sejVl8AXZl_?rp7r(|19T7q8`rBey>A-|0Fuig+?Zuy-
z??9l(=+R*3>s*)6y1c2?XH3KKiI`h;<-Pw-SM1n_46dz!#JTLKl9Wqqx^Gt!N2%r5
zo7T2WAQ<)RyV+wI$hRjp6*q0wHL1NkDwZldF))xLX<V%%u2D_%(qajI!ymA?Jf?m|
z-ne(^{k1YyEk`cuxS^ruHqH6nU`#(!z^bXIB~zFuUrCaxm>@y0F>=AaQLUrv2yqC4
zwkgs3U~}yn$1Vd8=QpKw?wrkT<`jCt3)(%<ifb9q`G`=r=lv9Q3w)cbn$6B}n&2&#
z0gt^qsBOr(lW-{GLo6_tf1Pd_H(+&9_nK75mdMc`5_x~J^@-HZV79HXsxlO!WqQYV
z|H?rz$Urxc@>jvlXHMATu8w#5sEsZM#2eMw9Y@5vcOx3LHhb-q>0alvjPEkQAZC5P
zV$E7c#Kt^N1R2Ag2q#g=I9lM%yV8|FOmIodn3^d}LG1e7_aQ8@oGwYbz1#qeo*%9D
z@V40ihWvbpb7_V&&<dAc)wi&uq2FKYl-Nc-oABiy$oN>QCxE+TV<JN#5tv62yg4+x
z4kYnTB%L>`ih>2s-Ig#UcU)W+S%xRb%j$7<gXw9hJyBx^VIB(+R&(-wLpH_uL{?W`
zhaE3CP3O+n3ucp^Y7y?44v)=pe228yXlFbD3A&Ui2f2OgTa%yCFOAt9^VUw~IyuhE
z-Tm|<x853YX>+fl!zS!FZn{L`X=9nKY0Aa4EaR&TzM6_{ac9WDzNZ0d>c!Wck5|*>
z_39g5!xfe3f-;5YSDZ{UedQxzh_%$?m!BoHJdc`c$(f3835X0#iCpv3E?fz4Y>sl(
zSGBlrFFCOz6c$Y@rg(`grb(P?rFOutc}aeJDr(W?UmtG!gqvW(TjNN|?3Lk&yPY^)
ztV@9T|FL(LVNthhyI0`>0TCobKtQA$NofU??yf;Zy4xW|7!Z(>u0cS$y9SU@y1NGH
z24x88eb0LLT5s&fV;%d`{<6RD0X-aN{&!sGdH$|zSOq^s5#3A|J6D>u3jW?qE@FC(
zw}T)Pc|mQ5y1tw(h@Wk>OW@v8TFMy+sU<!UZy#4Uj6lum{ZXZ-Bs^=rZGOP0@l-NI
zCj{jI3#MyTkbv1DPy-@LE}q?=powyQpH$bBka|ROh<Vphr5vH&H*VV#)ye!e-*L>7
zTNHBy+T3GvPg{vlvFREqqEKhUaUBTs8>>!<Ek31yt0a;xQuK9iJco<fg`uqp43D$!
zkzw_2%`8a+hdl-xu)pFlvHY$>+31{>hrY|aST*?8LAEOQ`M24`?<oKS7s*dw5cteE
zjE#aBjUGGXA!gz(waNWE8)CxKUJ`fsU>6$39+Caf>NlsajXUnM&y%Q6SU`L_>;%>#
zxlCOW<H~?-s~4@S+tFw1QcJd1X!p^J`L2~gfVIdh6x+yTFmh)%G$Ktvm{H$8QKUkx
z+NjtQrvD_eitcfFU#$+p(y0(q9#7mCe_gvMRA7gSw}1Pct;zD#o5_}i<V!8FKAc))
zffC{$C$Hl^EhJ<Pi%LBi4Dv~H`<m_aI*Fnf)VFfpjix`f>}mER{YD2OLcAB0$ycTM
z%&2Q-hsobsD%bMr8(9(^asNq>J=(`v344{(ZaGnuB===&vNXMWnRVP7!pf$$+pt~Y
zf^zMiWv3c_XmZv~Vz1VQE@J1r&63G>CXM}+a+5?^DrfB*zxB7~_-@uNM~Dcw?v%CP
zb#W<W7%*BBLG|$t{-##|WgQu&Z~D0ny?PZg-;U(Inv(omA$rCxW<|KIY#;IN;pL#m
z=EX&pcn>}JW|^5Ts64}-U!*Wc+N&Jz{uhj`wu22`GT$K7msLK%DdntMXb!(yH50d$
z94K%(Qr$lfsax=&v_Gq(?Q?)Q7*|G9I_LCX)6E?I=>C-%-NrSbFFJ3|1-GJO^j#5M
z&upV4e!c#e>J#C`aw$XR?-Pv=ts6BRmO4~%bTU>~5}Epw2>FLIuYBbOb-FGSrk9OQ
zamvM^F@kzLBEoA&A6~_OyaW9o<>Wsdt*Hyl10`;aNq(lO7i2~&z6W^}yyhQ$E{`TT
z`Am6k?xwm7l!F3Tzx;Iy;uen-x67L1_C#??6W9<*q`fD0I)+X!)csX2eKxZb=2X%?
z>7<Ho3*>qjG}Ew)1b)?4{E@bA9O)@&ePH3fL~NJk#&DlAg{-(m<SLxwaiS8ahmM}Z
z?PX3vab)$TG836ni=4u9Ci1^+9#6a^Xz2D+se;ffm>&Pa;$nhYPz@hGCG+GCV?=#v
za!hwC<h!ktRfQ-(^y@wyXPQ?>fo~5-<jOh9Gbx%3KYp=05D_U2HwugAa$JhRWX7=~
zQX~k6x>s8vx@|a^?&J<EtURA9_H$lj6ODrPt~HKZ;R&Q#6pw}CBzM~eAMnSR#bEzQ
z6t3L#&x8({>np``7);z1J5+64jW^iIiWIMa;gQYk)-J#^>|Z}^zw?)Xc~@bP&-t<3
zHy)_-Zbfg7|CFZP3ZviA);LR{$Hq`Aj`=}FZy&Yy&*viBMU^~kZ31BJ1q0{Wz_i^L
zDp<fV{37G9&6v64qWVpa5>7`{-fL<m?IL}6u~?D*xv}O|f$r2d>a_Io_#=HGwJwJ!
znTf__>_p5oNV`D)>S}GSzWv_ug|D?{(Qb@WFAqbn^mev_t^CP{{(J6v*Q2|gNv6vk
z71paZ9nz&)im0y)l>&`5wF!fM3wIryi{jXuSz?O^DkWLm{njZ&PGHJ4)=C5917ZDg
z@l*zt?(L0_Ni2F33ZklTaJ>HLjYmmf9?Z2XN~$kCe1mttV-2f7onh}bf9~YG$AX<y
z@ZD-4Ed*u+%z8*>-6oB)jx=$g<}ed72IX#3g-k>6Q7OG11J`3}foINX@+f=NYA^3y
zOO@28PuM@v&X*X8Pzu_ohEs`5P-Tg3y^NT9;Kj}?_Uh{m!C(XJC4E&G@VKL}{G*@v
zci_=APE5_~k2%CuO$6#m%={*&gg@Vpq_Iq>?VWa^vs$)#V?DrzV@TwWWq2SL&ky?h
z(~oW5Mr|_rtD;hTE<10ZU(`n0f=aQZxOEv)S)&wD(X_P_V>ZiLRzIte;*u~>W4&6)
zMs9(+nx+>YFKwut&8ctZGfq*w^=VDWrU{jyEpgwuTy`gY=aX-4{psACd>c(%<7Hj&
zu7FopPG8EKg)5<+=0v`^m2$>&7v%ng$C!qDD=p>P0}Y6KM7?%4RaR7#gBzs@so+3x
zj{B!1(S<h|mQSx2>a{DEBFICzAkExT)Z~BI?C+i-3A<cci=;z{CcenUJbj|zl4#`E
z`WJbG?2>-wPx^8;Dh<odA@Pf!QiVodF=XvrEf+-g1KJIeu-~QEQYOmy9C{V>$}4!3
z*I<no$wX4CX`|Nq)0ol_n^%`7#*{p7KBRddq4r1tW7*x{_tW53ykM+lhlmcU7|dPi
z`ad&y#Qk=saM;9f^eQ421(nkkE>`i<Ic`tKGN^SIe9@*j_KccwOEZ5zumqIUE=bL6
z`PiPaS}VM(GTQRyZsiX!lOjk)P808*Ta1q3{4V9pu$QZ|OU169g~RAR(0DVZ?KEZn
z3r#y)7f&x6+5f8SpNG%>`YsXkdhv0}ggv#n-Nt0!ekKA-WM^e0i_z!)>b%F&viq|v
zf#C)f#pFgS>L=+;8Fo8W!%yxq>|O+vI<BkI(j1AHwYcnTOSF_xVi~T4dinD)b<Tao
z@sctW(J)1o>>By`Ex;^UGLEyk(yQER1Q@?l+4gVmQ4(JWJWR(8Pq_*opQFoqb&M)<
z0%I!wdG`KK3&S75K)5d)Cv!gIcm4Zj2Obw<$n$u|>VP`t0iOd>^n9zZw8(C@#;I-i
zuE@?S;5q4xK=Sv_j<&Px4)pQt22zEF3)bYf7h3$PN;+n$ZI&n6<H&i<0}HjQt;g%!
zLR>Jg@ABbz<B~&rSaLh;2z2P}#jY<<!zwOCr_FI}Is?k$r*CYgE6jAi^&j0gmvz14
zr;xyjFBlVa1GC~$8MnY-0@;g|`f7uIb1*is#BlO3hU0vnhEmW@v8MuBZZasG0>=($
z4)e1=y%hV|%5e<7qq;GjVD{v+!^GZb5l_eA&iQ(;4b(eqG;`dowUW0-QPy_vxNU9W
z;&}CrkD<f%ZvDNctk=HcmDy|w($Li!HkxdorCzyoX?TFRO0S#?lQ1<`=NfxVu2E)n
zD2`6HV9-0mTHmzU)EHBwX{S<~aZBkL{oeQDmV+bkrC!?>hJGtbj5gZ2FoUf@wybpi
zg<xjh__ro2%Zsd5f2=PE(DjA;tX-|%>A^3IG~i(r^V?1h;XEh$4r+e8te4@TB4c~=
zjRw(=DJAW#q^7=0Twj=?i$Dwl(IFfiuf2K;!})<Uky-vpL(}uU#?or*xF?7D8`TVp
ztb8FRxERpmX^Y04@8Oi4y9P<t#u<!Y&sd;MMYe>U$Otu;JeYQ+xsu4{mzW)J|2{c7
z2j&Wa;A|^4&BI!F-KS}9s}M82;2W5I;ulV;fs2XeOfNPyL+DbdY3w{L=H4+k2@#XZ
z>$vtS8UM_^6hF~1Xtqu=kU+gt$ULn%`}npa=<32<QGVv9)4Mgn#`Ss1oylp5hKd98
z0)2bz1p9j_wTd~X^`3X?#gwH#)h3JfA^1ycOI7p>d{?TP@)i||c<(D$?>QLniY{r|
zc89)j@3&chxh*5GYst?#=FG8ECAFNFEuMZ-^`ckM`(e4`w6~W}AD(;fXZzvfI2&#0
z&HG0uVIx2qZmt!e$d`UQv){=|=PEIq$KP>w?kgCz?Zkh)UbkslG%0f;{ra<XnP4-t
z8*<?s@RPxR?{gY~$9$CKcGGaj@^^o-SqU~l?>ptrN4SlsT^n2HK4OA^KUru8!T*Sd
z=T~y#0(>UYYZ?pVHW=cj#(plg@BVBTyhFlhuTbOL&5$q!{894SP2f6v!1bMy%Hzy>
z<EKB|qubfYid3E>DORwJ=~~+b+tD3jub+^c+)<mvYjM_Z&yrzxxG~JhK~N1!rtfxx
zwyV8dEv}D0_jGwFzkek>(dgmOcyZ9X92%6FA<&mDu}}jn&^n$X;PU6=r2dwkmE|UP
z?EYDIn)PWsx$;fCn{PqdEImPq$>c}3#}jd-a4NiXK}JR%t%{S<xu3SGPrsrdJ1afN
zw}(ycij~AM{7JO?^<17Qh;#(Fxzq4l>;ss_n25!z8j<xA4$dwfap6!MD|=oCB4bx}
z-+`jILY)~om74ILyalZu?aJ$kqK^lfwb1#?oncO{Q*(AL3FjHen4{!U_!F)f;&idp
zs74bAPlz|N<G5czqFS9nzL6crRG7^7O2{k}hPXy_(+v#{Ge!`=4`Ye5NSxI&$eOg+
zjN2zV5c`OY9PeuWpCc-YNE;!sHNCLhS-n9jvdPXKvzo}+$m64_%}c`%irHpcD80eX
z$x$du)HR|h&tuO&VRjlD(vb1k?+?*OR50fE2&!%UbbYRM4Wm_)lY^p7?_b;+`?J+H
z7Qn5l0D78rG+^2y-Dd|p*zQO1`6EY@#tu{>?uz=?d07z^Oz^jl+XZmUJm#E&S=dc2
zn>>$rXgt;4$F?yBp@Lv$apKD#d3Ta5;7_3Ku$-ft7+BIv26g?p1W$k5VA?R7xZ-Tw
zd0pCctd9jWQY*;6yU1_$v+?hzgF)e>Yo#y0DY;PQSgV=wB_t{?eM@99Zg4Hnq@+$_
z2#s^xKGSeDg^w_VC5%1h5Gk1cW#3%>21YQuYw1<6ZKIqx>V8B^(tB(*Gy{3+;Yc5!
z|8Y%tdp^4~Ww38@*eUo3U8aF6%yj0V-oN&z$HSABI#bjOH(z>IXu0Akc(~QqX$M8b
zHQqv8@p3nabAwg(mZe|VC6v_w>85jdyzH5%3nh+JWuLA7zIS|>R4P=iXy)wMSIstF
zJ;`;|l{_{>vc)?WS&|LUZ6;)jxAG%8J2QTe;^1O>TXhw@h9nYi{f+>P@Y|m+H>M~D
zYV*Ym%ey7{8o4uvo1<x#*-;;W9If>{+R{rCc3W!W4m$GIr`A5}<}K39S1&0!Y16NB
z%m}9x955e*?_!qaD5U@;^38i(F~M5p=sp+3HrcC45{8@eGbDs@(E+&J_67l1_=c9>
zJ9xS$#;>ZZMh&mm2GX{V)f(OHMoWPqW-q2Eb^vgeHiaL9(3aVP>cZ3^hSD!X^l;1b
zz!u*shF&s*qfmZR7vo(j7~7rRv#PcmtR2e)qb)9NYDu3~Q-9YggflXlFvVqW$tce%
z%&BactTkP%BpuDimcD+i<20M^X=-DbW%at+(g<lR(f50T{#|H0#O=6T-mE}+mf_Bo
zz&hDFPMtx&SY}x~>*vdlX=l~_Mm!?NzAV-v+W9s|g?q8ie)U4;yEbh*>8U4)9VJB(
z3YVi-9meZLmODPxlM!A9m)0VB(Nhw4{@^B_D!no|;+}o{Ue7n(@c2J;j6wV}o>tr5
z;}1=L%=@};+ZMjpYX+PWR+{LaF3A533vI1HdTMZXr_Ar){at?!`5UdaVM`Y4e=1G?
zb!ZzTKl{ZofAjc1cr{r1SK9E%GS=0?28?3hvoA`#iXi;Mn<ivdMJKOgo0*m9SHWfU
zry#XS@%^JN0ZdagnrZr8DVhGKW&1A$cn}UE(B=$tnScKV=m3sU{Hth)>EC`T-gF@U
zb;z5(_b2P|pTY3g34r$4+K93p{(H1%;r64%RZ463e+%rC@dFNLmSPas=ihQTU4r0A
zp9UpU{oBmmHXJ;In*Wy{sjBG0aco(ZR-yLvM{-_UBm%@l?skP*h4G|p+Uyx5h5z;m
z5_TEfI%Q2PhBVE<{jQ+f!&$*-yOulxE#=+McWVuR2f}O1)<xcOd7Lu;b~#)~I1m`^
zGX@S#X4o{|Wk4o%RI4?6L(dO-xm?Dm<G_J~j|pf~6JkciGGOuRw+G=D0~uzOp;u#@
z)So6YX+4%_V%8HYR~W(dB@%NDWRdt3d}Re%;A_3u6Y$75tGZ*D(6Qt^HkK#n7gN0Z
z>}A;s3HspJEPDHEM{IAhNN+i!5}cao*d@18#GuMD8l4${f5DtV0mR?~Kq$;NKHCp!
zaN9Odu`n0ulDpQjI6K@t2F93Pz4IzMF0e8t%Rj3C0sAB*`tggoVA}j1hTciHob&<X
z)t<N*((YPOs?M=|4Rp9zi4H;!sb?O>kDjZZ4|EGn90>spKl*E<dGa#y4-4fPW`*GU
zWW4_#s2AU%6zDrdCsoCM*H`4C10~=t9lcRl^q+A$mw;tina4g-ZB&LD`b8v%neK(8
z<fO<xBIdP?=k#)CWUb%TDN|EhELh5)h;$p>i-Eb|v*&wpb-uscvr{=Jj?TpNfbqI~
zaM_ca?rU9(^ejaCT;jbU=fPC&iD)-hyTNsnSwivRXFGxWdYVV_R`5v~W-wbRV#L02
zR{;2iyKStT9KSX}Y+gGke$L*Gjm4DiUEy_Ku1bNAY8fcDSKw7^`%{H@XT1BKbn50R
zr|rzS42B=@DBPhE9*Yn=)@AxA>#EQ>Q)Oj}PHDwXS7O{j$@!&-$9YB8Ya=6gCycB4
zgX!a&%WEkPHN1nOyd13@t9M^hR*d?EFh`1?<)QOfr%SbSBTz+j()fwaz8_!u7Ph+>
zOyh2M=DP>n%n4wMH2!SE+l`XC`)k^%ce>J|k$_zsXuUdA?)EBJleIP_^^A5mM+GnT
z8uxRKnl<a!`cuxW?S-sH=ygt(BPAkwB{n_>?36U_Re%)g`)Y3Gr<8MUTM3bM-O1$N
zn`d{5^(xJeyXYe8P(*8Jf%rEE=+yClaK-qzns+0cuBzsZ`ZWXkX7ad3`0I{=fsoUb
zKxtpsik}xmdI)P4#CNuOBrLI;;?P_UmN3^$HWnxUP<$N2L~nujl6y!XDXZoO%C4g}
zlh=9^v^V@$FjvBzTmK@PQs8QeMST4}*X(mH+{(y)2p-O?Rc_jS^KaQA?mL!1^!EJ-
z|6&2htX5?XD|}!uT&YN%mC+d?IWDg&_i&D2y8scGD|Rx++cV*^7|K@ScuOTVDJtp%
z9W5uXhKO*^3DRqjRAC*OWr|)>MyDY8>;ro!-j$5#27%b&(3e^7H5{hYSD^5y_?fg{
zn_bzbe7!oKbLsQ56`LgmX_jE5NW<}k=mjy`miIQo;&_1a$?HJW!@Jw^KVqZe`!Hq`
zVmuN`!gk)K%H2i)Bhj0fB_SO!5p(tAz)+#`IUHu`wP^=Z!q%wKy}wGa?up=u$&|AD
zKzZO#@aFl7;Izda^~lY?zv$jgPnDZe1p)SII>+$~*(6(n?BTfQ($@@8`V|=W+n=x2
zeKKx#5Ao%lkE%$(^!^ekey)ul%5>Fs)0rw2K|s_iYZ;sNb}1w$D(<X%8w04T3Ylkc
zLkN2e(<oS~8`3AkSu!HD{k85BdKO6tZ$x(`A4xBXfHsnq$aSTfAqG1i5hSTWNfZS_
z!u|Wup)0Wdj)8b;D064!`XvQ%$msSO4>OaYa*J&`T}wFz;dH~9_?zOHxEst4R1O$e
zcRqCRh#9YtGekaxwH*!W`h5H$^xJb${dIT;Cm3}z`zibAdB^#FivyLgt89%BrwZ+3
zsdB}~13=d)NrnfCUn`DzEyn3ULJCv%<lWEx2E~A^OoF!v%lKVi)_PfVZ>us6T9zwL
zlDwa6L5&3s)RyqV=#Cjp`qE8T<!+3i=EKZ9WwsjB#g5b_ixe~UwcqEmJ-ASNs*)tB
zxOI_x#&Vb?2qlF(_ptbmr_tb433EcRJ!1qvOFqo85o#i6Kdy9%SfyS6#$#lB<`-P&
zcQWrW0mz^{J!o0*I^E1OKt%jcF9_5fuTp5ExTwu>`;Pz#Bcn>ni8cd5CgN15B=Nrl
znT&v=n^^ERl_#a;D_&j#UVL%ul1KQQTMFL&mofA8@+3q`0jt3Hsn{AXG|0@=ZJ;)H
z!lo#4-J6?+X8$gNG<i;I=@_l*2==N6z=)PuwTlun#Gu-ik92JdH1j{1cvXA^TU;oI
zLYI{6&aJ=vzXC31-se%Y+(`h|CBKEX<)o2^(aMto#~`BbZzyaNf<xJVQEN3G2p?hW
zdP2qub+}l!#kBdjOUpiHSczAb5#Zu6I~ie|Lh^*b`I_cP8e|(AJa7~HAt4SA?mW}4
z7i~$H_h^o_B^3aCkZB~(Hw|#0`GyX%;^4tC5Y!BO|46>vk(oF0JrJH7!WgaC78Qt)
zR#-J*<l^KiV(=o6otp*E)5rxJ+;Fg+T|$&{4F~P7$D`JQP^ij~v_RFCl3k+ki^|Fu
zVfTj<_-EpKNPO#jFVE~NpN3gIHBJ+~ceIlr_h#Hn`FLE%_yx)X9quZx+*vP(naUHF
z?~6%DDoJ<U{fa?Q1umv~!cd?WW%S4Cm*nR@UGDo`^Ww;7uyo`hHr|jKdpo&C2AUC#
z*4Gn^Yby_w@9Fu`FrprNErl>WcIa|Na1lp_{4H~+`T*yLNqn${7By)GETB%@IN%eR
zk!!TEn*#pt9%bRpFP4PkW*t|S@ANSW&x&=++bmKrA44rHKdZfu5EbQ<H7qd{5}fRz
zbU@sTJHqjyEsY93L+4^Ow$nT!;08$h@a6dkc+>Tl^r7C#7E0$TJGBlTE}Y<KJIRa8
zAbWT0bdj?^+5XR20KYm@4h}Ue`&zEfdhrRZjUWthtXe$yiOok71|<r@G!z@`dKF*z
z?PkXC3E7GaD*PR^2qOzin`d^7F{*|As%<9SA1`g@ro&y|86Ejvomv3jax!xv5QjK6
z{Q08=oDKa$IHVy`Dx=5aB`O4p_VN|vQ%8I_V}|a>t3mSBvv<H1t}~L<(pi-`6oCAM
zv)CZP!1p%gsZ*vxPgrNlUZX0zhVQSXZ*(`GZ6k?w2Bm?-b(HfS*sB^<9;lRcTgg~9
z_S8?1dmHm0rbMnx?x;_8JV=_-A-Rxec+A2n9(s?bT(RJ2=h%2Ra33QiIYT#R*OSQ-
z&Ivu*^oB7G3d4lQ_JMm4E&zi=iR8f10$UNvISEx9l&PjeO{R`Cyad04Zl#b>9?^Dz
z!l-bki~iN=)o+__heP(Jgp9#K+x)0#o-_ie3}dpm<1gx=hP}yRg9Kgrc2DJfsRdQ#
z0jJ+4N*hnsXEmQHJDgo(VEs#W{MT!>Y?p``P7_@6yup$1_k@9in{igJ4O^AVpx9*F
zb4~m^z2Fwbx=pNvyv?(JN$AN%A3xrJHG4SvIq}*Va!T?0C}2}R;r16*T_m67-pMMe
zYV3!zJ62+Q!?aSc&z<uEcc7Fhf8As17h7rfKfSd4tS{03?F+Ykh@Is#t<2PTubuMX
zQge#8T2n$ajO;Un3L8_T){3^`XB%`jV|i+I)9Bz}-G7PKWjlI()&$3Yhv>Exdrq>$
z6B30B9}cJK1vUy>0<j8jnw8yEB^PnIl~3KHvN`MNC+g1Rt?2*~ePMH883!9|aP+On
zd&Pb)l>0#RQ@2!i3YqprgE0unS{b=0k|b&Onof|uF-@RKaH65<B4#=K9gb_S*fq;U
zLhT2t^E(jP5VsXErkJ5mw&L6&GVms{0is#iYWVzBAr&;Xo1{RcGp4VDHc4j!RL7an
z)|J!j^#aAVxLP#g$+R4Q@Q}p7$bg8`4S!Q;uOH9acb-eCv_jffIGw2P4R9meC9>U&
zPHm>V9<WNVp(Hgx1~T7C+TF8ll;P1hkTh@&3dQ&$-PnZD^C7{g7?+0wM~qwp(&wPA
z%4GK;eE;{gv27#f!3*xu8`Wz=zj98k4sAwr!mWO&B2_5rI5cuTo@Xv3pcJ5z*`~f_
z+=Ugm)o9SPUNt<#jKAzbsM!qscedYasv|F(3h8q89Rp_Bpi}XAFa%JrHfDlBx@VL#
zNq4Q+CV!VgGfmv50cDO?8y)m@;@LB#7H$)x#_zT__i>dQ;AR<<ksUd2a&AIHULWio
zJWlG7dpdffiC{QUSLZ~BxkPp)%4&coWbo|OBdw{?pBR`S{1rc&30{cSIxVNGeu!qW
zwp^Th-E(5X+|Fa756L-$;(e1yPpFG6gZFeSBfa*+1-37vsCvP<T(e&40~A@G*g3=2
zCL*i}lU9s(R7hY!Xa7a6P3FsR3ULv8a@;svDt3(rs+a0X;<rzKFGtRs8_{h!2<LET
zAnCvN6e@M*UhY*-LI!4)GH5R^oSKVH=8kDfeqT7|6NVwjAlmQsz!qzXOif)z(^S`&
z3)l6GEA_dK8N&7<3%Cje9;vk;x1C}70~BH#fPN?%U39R<12_h}^5plyHm(-~*IgJf
z9`-&-kIEvvjcbcvc1J3dg*_Ro;PP4a%;-Z4be&GTe5mEy=)SuYm<}+XM#6C4h3@#7
zU_=QCqhdgCay$D&Tb)Gy5Z5GpW=0#qQq*DG1+XVKJJ?{j8nWF(EA<(t0erWMgp9E6
zJRr2A=Cf3#Ph>IF>(V^pD-B2JxbCg6Y<%Ox2`73^+^+o+Kjz)n`}Ci^rtuWI8)*08
z+*JjE-bp7&b>YLU5l_p5__$a1LsdN^%*-h|PEHcwI*^B>mGUi`jFAJXy2CCS0)AH)
zdGZ?^WM<!q77byLJe=Bf4}FN7=bG%;Jv^Evwazc~%LgNp4gz9$B5qqNYhem=xo{WH
z1bXq=L)u_?aK+H*K+8IjSYEq(J8HQ%cs4G6Y6dvoC&<_j>o3&Bf{*5u`HXmR#n|zh
zm@j$tPjMG0li&6#=t6=$RRXD<tfdB_IOPWw%HD%=KMtt_ta%YSZ9ajUsmNdx%4wxu
z7gbcA{EZ2I#$ny-mZ)b`p?$&$8Bs~|m#Wl%TRwgMK@4zbMdRu1-nY<Cr$egULsr}h
z68NgtdkHqBO%tRFYbH6ZA~<G968Ry5hiv;fDfZ6Pw(>UIXu>hNE(_6z6~_OFWe_98
zECY6~(JVShglao5V7&yZaJIaYdfUD9`Ji;G;^X8t_8$5o*!!db@D+?UX(y6TX<~Y|
zQh%5JYRa7fN+d^VVCBVwyR5w;?ZGS>H~X1_pTDx9`>g7|Xy~16+7rBPQ0HheHqTvU
z5L^Fb5ym_(QK(Z|L&P9Ye?Md*fn9G2u7U>oVoydCxIoZ@GoMf}3Rtte4|~R3Rj@XN
z3X2?87%Bs{nuUcD%7`R9M5t6*z@guv51G~+2HeuH9nRi;O+nPUmM~z+VU7!F)xBzx
z;XBC^EJv%2ivoinRHzwanKeYt0i0y0?z(KGn&5)Biy>Tl<*(Gf7zLzG2(>ONP0+)!
z24svU8QYgHh<t{;O?}IS=BCYMlKsuRQz3>#D}!`#pH!WiEw53b1D7lou0sKoSw&^v
zj(DH4NOzAs5c#&chkiHGMpfBurphv`I5qy>zI-*y7{&EIiLf_765}0_!;0DuDFuf1
z($=EwlE#5UQeSNdMRPOeV=f}Af%`ZPz^r#h#f3k3^7z2;=PIv(^)ntd_THk4i5iZ>
zFKTtN&{P=eF${_Qx~O#b+gyq$m!=9z5SD{tQo(Zob^uDQmc*rcxe0^+XAun+a0K6p
zsxTDwwtr7qyN>z1qjd7VwokIO2V=sZ0y<EoWJYpV#pM)QE`K5q*ncBg4P%LEb%+@n
zgPD8Of^e5AeY&87bG4~!o(T~?5|knL>3Z}FBFbl+>34VYl<giH$q&KKt2TjnP9utv
z29H>z5-#P2(mr7tmtF#=Q7X2HIjtvyBou{&_=*_@O)6xr$8#}7S~rc-&sZas{Q6U!
zzLOuXCKxwFQmGr+G~;tfwJN&2+oU*g2b~Fx1RC^+o(?Z`2!*ybQpB5wgra2&>!nGN
zs&F$jYT=K8-QawsV*b8@E5<fyz$dW?(g4Mk038Z4FE8jLSP%u68^GD<1CtUcwwhQ<
z&RTH)P>k3SbqTgAzUBW>bQ5w(Ut@Vg8Kd<qR4nOTPHQ8GzjDNM!lY^OcNhkq$Ioj}
z4xnP@8w{jQJN)&bErIX#gfUVmhK?48FP_YU`b9j+x&H01C0T9-y$|?=Q|~cXZcYF=
z|LGtjjt-H`VIR(4(W>6KO~FKs`(ndm$~-rv;ZHsHHlgcEuRlocjh7lPSeWUu_GMzG
z3@K=0oFDLs0P|w0N5Ol<7g0t8uBOno3ux~E!mxQ@4HC4-w3>0)!&WK{DFSF-w$~NY
za=p-5^i;_)6}U%(*D_)(SDMP`_r4^@D6dKlmiLvA`HU@cj6;V`y@7NydJ>{}_EU;B
z%+1&Bihn;b-Da>h&Ne^tAxWFYq}x*S3T^Q=WdD`ezMGG{Y>{fldsKx+q7h6p-ZICA
z8*#Uq%ZKpEn=ZoIS?<0!6~6RqX6xdLMJZ`+O|=(dw9$Ih;a77CKVnakes4Tjea=xT
z^QTQhuj;Bm<qqO{qu<Q1sxy#H&gmS21{trQJw>>vkQAii4*oONFPfmbrPglTsZgk}
zmP4Us9-p5<ckJYQEMAw_8SB!@TN>E6pmNXJf)NUB-0zaZR8N6|f~4x^_%f#!35K-h
z_YE3p10$>MF_AF6?oRzW98ka(!vI0u=!oj;s8A6<?SM9TMoYd<?V#*$No0<<$|cf8
zKpl8n_7WDKyb<V(=Sojk2oV&<Mh9%O#h7<|G^2Iar1T1Wpj1FP@NJfmWR9k+8TR(k
z%R{62Q#Cltm6;RG?l%lij`G%nZUtr4L+HVQd}oK&y098M%8j&H1EubXClRZ9TfQlP
zlv-~xwdA=`%fZFO5qZ$_<IdgLZrh~!bMDF-o>|7{ikaz(my^}2-*{Fxrx-F%&*e-g
zn(A_P|K2b8TJz%3;9tBrTogNaen?6>X^v7RpVcO?DFUYfqZC_rq{)_S%=U0YLze-j
zukqkH^shHeRS9Pe#VKp+!;hRTmkP_Q@_m!{nRxfZ$~Z;{yBuy2Rr7JhoE(4(H!h`8
zj#?mJI!qPw_PP!3Ij58St#`KI1HUUc4e)_iL@NlfgDyJGF)Qs1`PE-^`)m?#ONFXH
z@U^xUEl(={grtwCJ^$=dC0%@;33Un4(tX~amhJLGEH`riGek8|EpZaT6T)zHab{NG
z1EaMaP0H<+z>tY}Xk{}|BscM9&P&N9OHNm8=>y%vl*YXVHY+N#&@@44svRd@Qv`7-
zSNZ9}^_2yhI7f-cSpHrL<7yy)knE}E@PzD#Y5Meb`y>_=7ag=id+4tiylUB0PLc)v
zxX#`FF!y8juD>W*AK&l$1NjV9$xMt%a)vPvi1iyFguaAxlX2Lc;C@_d2K%t!<{M-9
zD&s9*)hABWf@$eS9`pQX0D|udi6){y!oyx3Pe%0fz1s1kAo>2NEc>?Q9uwEI?i8)}
zFPFcE^X@7$|6szSEbK99URyq3^l$a5=<aoE3&i0>yxv$`>J3tW(g3^KNi7~>o(?R1
zvd3IKil1)77;)^ocZzF~p%n~6E4kgHa<>xU<4HIsi*p|`ZYPrY9No%A66ALjt3De>
zaj}UU4oPJ_hNy<}2r!adsWE0)fza1kGGdK_IHj+nBT8v^rdqHj-ZSI!+@fZ!N5RZQ
zqDio3jlc15M1d}{rK173_8*X|z_j&VT8rHlswdD8i2sIV<bnjzz+wz}{9?Td1Kc7{
z8td=u)OXJ^=%Uu&Cw+h!f3q=iDLveo9`!LR^)G;;)}}#YlNn%x+)y9#KK2nX+Utg0
zvkg|Nz8n5wWO=}j$|-|{1i%1yew5;Zh?UiR(2r;Cwcq41w<z~6RoJbdcl7gBxFFIJ
zZ0fg%jlhLl?&)QF{yzV@8;>yHYy6|nKi{VNp5@P0w_SCo@Utz-!}z&k)*L^fElvUN
z-;N2#e)PB!fS&aoj}SfRVx|fTj?0UWd%Dgh-vwamX<%MHWP+dabjLT4k@BeIaJww>
zszPx)r)nLH8PWuYfM8l1IXz+`c?<E}WWZb3K=};0)PqIt%U>+ikl7|Ao9elhUlRY;
zOTdKpfLil`V$#$Wo&V59=Z%aXnb7YDtGiVl+||i+y<TkYTVpJ^7!AOtt+NKLD^2J|
zvgVMwRdCM$FX?p&&$oe-&V7x`xb;%s<deR2neYxGB4_M74}MgvB<+^c9xdkQ!g=~{
z=6JYfiv8*!R?~h^qn^}EqaU=7E=GqVDw1xOIzhjkp0nD%Tz`ttq2#k9v}eTsd(Do2
z4`}vIPk<BE->i2mlXuD7NJz38nhX<U&Gi>u2#Uuw%l@g8?sJ@!LdSfFxiME?>9#X9
z+<bAMfY;7*dI`fw73V561NqES=$(g8hkTm2o~vSfg?$r60T2H>{$sBa-0r+qX&CYV
zy7<J#@hLA}6CDp*rvSP+a?w!tKtHZi+nmv<Gt8K1>Oxc&cekK{=!9Wpd-@otvHBcv
zxvq1gAdrKpXc;YYh?ez_Dbq+d8l1pYl3Uz`&GJv9hcXBQ5)7R~#DHzLCzKD(At6#n
z<;rmjfe)6Bpb^-$;+5@#F?Pud3NEs8MX|Z*k}I22D>t=3x169({94sRKsL>`ti|E}
z6^Ymw13{Vtu+5`DNHQ8bQK>?$`Z|BeU-)E(aTNPTMpuD{Dh!u&P5`Rr#kB@P34^fv
z9ExoT1FQIgbFV;|1+yC9Ga@GHMr?XRK?-L;Ki6fTIynb?#8)5>6Y%*w1T+UzU;zRN
z3xOCNB#)iOcgLtomYy-uYP~N$%Z#KZd9Udc{WS-nx})Bu>fl)__a<huVe(wrCwdcc
zO7O@P-WC-!Q{vUSz)OVP^dK?iTy@ucvL}{h`HJSzbH&M2Q9(CFq=u@A^3gRR*Q>4O
zq3RER5cDZ%?O15s(oFev^s7-rj(>+Ex7rckZL+)6HjgwUV7Q1M@9{Ek3dhBL&hmfm
zkTI1bD)DTsHn(!@N3mq#=}pb?;b*SEZX3ym{OFN=6gvsSl9p0njJFz63n+hpS@ZH1
z(LmEYFg-#2ls^;-;np|<&(v)xaqseYch(}0$w3#|?`cr+CWKhAs>C9&Be6*F_4}D&
z>>J3H@RT^YuIN{cF@jNnl+bp$w+BlaQ!i5l>_)a!bS+%6k5b<*!pP=$H5ajcrY1Yq
zD<@Ws5+;{mlE>X)@~^WMZzcH(6Nr1~9*~-=p}N56983DAo1W3PNpaPh@o|)|5G*R0
zG18nkN<_<u+i_hl&A#OTNiT11<!RAlpxa5O!gKklI^QF2A(vuzBs&aMGK$UA0H+t<
zoEZ)#hKJ9f8M(@x0IsN%^P$@4`RoY4ovHFYL)o&}+}tycUxPHkGh@Mz&SbIw9`~AZ
z$5~O3eYrUPY_3SJa;KoMq$jop!61IRLOgoG5|UHevdSOd7a_dGj3*_1%0uxWMn~$m
zS!0cyq5`S98ZBl_5`qBST6dip*%Is_1($EMj5}kK%*IPZ#UxP>4Dms)M5{~S1iP9%
zkmABLR#rG#1)W+RNHUY=5vbTyTAjoMZB*#HwjXAlD<&k#YmXK96Ojd4Y?NZ2RWMp?
zm&aY(%|_MMTI!KgWn3YfpaF!lN4<sN!xv9wxZ8xD^2Kej?986isHo0S&<y)S-1oM}
zx>#`BWVMZsU_!QdRTlxeZ}0rw<5U}767{`?ZB8apMjpKMtVKh;txEBtsGsCD<kSk0
z)MB3?D#9K_7E*ZA8<)&C*@hbxSKF^(lcfl122I%D&oU*k_Vc4{GBW+K+T7DI?<x6J
zImZLrF|z9Irs}GBgQ<j{KC!dl8KkFWw-v~z;(xQCYLU2G?S^h31*Y-3bn8x)lHT8<
z4*qQ~K6j;{&PoRRX~)sL9TG&}RVjK6uKC0!IV$OU(ri#3D@V;mQvNzJT!C(iaZ%<o
zD|-@r&4QBBO2<V>v>V(H7n{W~07c;ZPFwhK;W0l`6c!f$Z9|~a-xzUdLS5De+%TqN
zm{i=6_y={w=Z-(>RH?YJG5j%a9hi@!UIc6tQP6*Qvp$_LWC$;jCm9O9m7FDyls({?
zNnW$~bP|WyKaBaBbz0*NAWSk&Zk5(AmWC*=ZZGY1&;xz#wyr(+l*awZi)!{t(iyc3
zf};z~2PQs&s^COc+};#p<RoTNc6Dj$K9}=8?CnQs)82LyWA4a`P<WjHU(EO#S7eHY
z1U8w(!A5q5=mUS!_z<b2ZDG?lDkF06bxcHY-C$9D)hP${CtvXK=MQ2P==?6W9{)?t
zhgUWDj;n-!fZ_fLj6CzFD=Wq||5bj9J7<;E{&)G(e{wwNDFa<pfLfXRl_l`ErN@8C
zcc0w^LkqOOsyvzp1nPgar~moV|M}bh|8M^P&+~7qqJJ)x|Esm+zf@lchwK8*qqD(%
zHyN_{c?={&4uZ(Hrcp7q-MyTReV|@gcULdaWC343kia{?2pUV`m#;`U^v95%+Z>IX
zIVrYXQMALpNN<$VEQlAg+=xKO9g<MD{54D|k-N1gp2G%o=~V&m?MrnQn);oqcPR$<
zmUfO}Qq|UPNnZ25G9i~WU6Az`0W~Ks(!1IQ!?QbB=|&UVg+`4vo2Stc9J*y+fx%-9
zy57r|zEz&o8CRNziztiX0d;=v>TUr_nhMY<ZvfKSqBq^2^d|ILe4EgOQH|%3b)iA6
zeGSySCLs0D*bN+#_I{T~31~V$na}Fev0HQj7btsNc1c;(JJ5QvKsWvrUFCwA06ob9
zc3WrhW-yY!I`lhpZ3IOoUro({^1uQ}B$vrW@$(&1;hI!^`;y_*z0t|h^DEHFUk2J#
z^}wI|2!O7)|9&L=Ba`;Gi+y(dQq|?QT!8mJ0;ODIWApimM6q#;FQe0-f%g09PYepq
zu7=G%9AK<~IY3%WW3yZBfM?M~c?;-`YQVn_&esw>k{tbdt)U`j#$ix%r!wpCzY;iV
z5b%z6(Or0L9$;EQ)&=*kb^?hh&`DxdKqGG4lfdPG_G#t;lV1aVz_bkYmqyV9FS=?b
zj%&MxW^j)7=4V6P!R;&joec7}b+7r{K1ImIyy`U3G@@KNO?Vpk7L==I@ehPu^Qb_Q
zmE)UpZfFf67BBd}7#v$)&_RC;I;E#UfP1e~x@{G-9oYga)m;C*K@U}jz?<A_qEl+0
zLp84-{@6=rS;vj8o3Fu#Sf>S2*UEXbshYRHUVHss3^q#fT}C%)06|!Z?&G*Cv_hDk
zwt4^vlIjR5kp^c^l{Dbw=}pM7KWf#Q+<$iyBU1@@G-2D3C6xfwk~!65u&-aezdc=<
z%f{HMam&%2J$EwixNv!}j~)|EQ0U=yocV?9g@7eK;SO@>n8ffuRH3uzDs;Byp35QO
zyMF{eQe=jX{!KuW$~9*Bqd=B6dv?6LjhRw51ZsKv+%$Ln#MKed=D-6YV*H0sxdQ}0
z&BT7bk89R^Z*?B1M#d*AXs*32c7bt_42LZvaj(`Y-$#z{)6c4PxYx^+m2$UnEgd0$
zrk=UP-#-Ef6eXaCvX8p^#s&b+v>Zym?N!krti522^EhAe)(<dxB-ypHgDfoz6goqo
z-8t5DFnj0Fm|7=I#KYb8liL;u<E!_Z&j-Fo(m3Qx4|jOJcJH_+^YjVh9C}Jg%FL)k
z$A^3FK#2yY#N=4?CzCQoZBA9#fW*2G>@e1Lx8DE`N%6hXm+!<-HfsXL)|*-h*7Q*u
z&2?H5e+{RhCU~5T*~#8~7K-lIoxiUqLAXNP2ilq98GL*$oB30)RAQ()V_7touozdh
zKL51K0BUEr*qTrSPLE{O%=>{JSLEL>`%h2?&`$QCN#Btcb2a)1&}a=!Y3M4i=wPW8
z&~#v=%D4znS4O|J$760Y5a>hkn}GA876}Hj*nth?P~{8GGlSr}RH=etm^J@^rmhs;
ze43mMAP|2Lhc=Aper=*jcF>kN2*Zvg`zYE;KOz?!UB~BnXvqdVze2WsTBua_3OQpW
zOUS!}x@eh%j(fX0w8X&Iven`I6)9Z^z`70~ADTLp<R(es`yi}z_fgb;)D^2s7HW3z
zV5C9vEF|OiW*rs*wQVWlKt5HKgfGU5r}44{JoU%rii0R>F;87|KiJ8Bb^>Hen$(GS
zvMBK7!V?%#{5$5D^(F8icM)auAI}6<Omem#O^bBY(k-eX-8Vzyn;~_vZ(ZAPn56B{
zN<SJqy<{FBDnbM=jYdtsf9&R)%W4aeH|z^vU85l7O4<uS&uuXitRU*8pV>lw{X-o>
zNW^@whG?F?HWahW007#&egU`nOy2X6j(YWqb1l!Z-ntbu*77w+(i)5`83f=9QLWf`
z=o+T_Q|W$#r6w$TZ5T$3&~6qM$?DA|C5%sJnZ7PFpm$DDGL;P3R<rsf<0hovBbJi@
z`edWmr{8S__P$JMgpj!l^DuSjGV|O(A%r}cm#qpNUEsXviD70iQDhvJ&Y&<0IjNYL
z2fO#NlfqImT&j5obPFwy9GI)=ejlRuh4~EeDh@t|4$HoYmg|W62Q72M`Rh$=>Gyr>
z>3(}{=W>R_sRj)vW<(?OU0xcp;t~>>m{P^TE-GlBOPM>GOf!?g>wfd~)w%s$87LRS
zjA^8pIhggM(C6M3D=n4O@f}RXVJi99W@No5pCsJ|9wMi`mpR+?Zp+Mw*Vn;8Mt9tM
zo0HW>86d6GUfKc_SzKEFX46tTWoV^z-p|Wij{veX`ikStQ6@7lA|d`kGfQ03)HI>z
z3vZY4V`Ld)9CI$c{I#ITjT*FkW(VF1YjXK^xY0!}WCQj2-oRg3R_t_k3E#RJ@($pE
z2?F=ZPPnm8)f_!K1T1=kw`to+pP@KU{{C9R$GmttHRjo3t05bDKQ=4Q;zP&7>lmFN
zQ69b_hGB((B#I5qw-q3VWnMKA15U+6o*JEwwj19<h@?d}@fwR+R{hkYQeqspt97a5
z{BE$?#f2d_pU{`B)eXp<6(5~^bp{cDTJ8dS&{-^sETpX^j$LmA+_4nDWCcDK<D#4R
z;RG|aYmUP|Ji$R<4B8mn&o*;A@tGT_Y%frtX=@e)jrT7Z6%*0^5SXC(u0)S3NZ|_(
zjCDb;pJ~l*uFi>*#i;;5ubjmeO1dwTzyy^Fa9AzaP15*rv2t+Tcj(4+nePPGQ90LZ
zw9v4E=^Zi-egVi!Gr|Hvn0o|lIXOJ08PI}(G)0puBD+;FC{7K1i0)N(u3J)It*Z1?
zRLWT?W{c)vyk_+Z`FelYQ(q&6BfV6!#mXVGH@}z~FLhjqVi0m;cYs5_J^dDdT}f*N
zqo=q^aJK{XkwGseYp;zYrf7imRT-fMH|Oa_T{L&;D;=6o8Hsv%QV0en<36mMFPAdd
z;YF$;UC{pxT)Zu%OF1*5=S{kdPk5PfT#~_YEBQr`>*DOlHG#+%jP~;ONK;s`S!niY
z&|>-fPU|v!LT2vw(*UX2mgc}Q0QeyqijBZ(y{sR3mx|Te=C5Zr`n4A8l<#L=>(UU3
zvLXcE_nFvS{G^r7Zpr0YI-(u18Rp@KKo>}8R}EShxCD<tbr7q#24o6j;U@<%QlBLw
z2@1~bC{(qW%dXE`u6rHleBo5pO#A-QqZg6@vJLT_{&h>vHq7nz3ieHy%wc>Fr2vTn
z!jb;oj0Bmo&}!_{NcIIdq6q<g{(Rf_o$*r5iTc6ng?h%lrqiLK#Y?IIm9<_gasadZ
zi1Rrb*Rju+K!&mPOeNl4@1qd+eml1Y%EH+d{xv_ySO^<QQCC)P!nnH0!%80LVE0|&
zjn7?`f<<({x++iF^y<VaUER-1YgW_%vLR2U!qW)IxVeWe))IXEUfEHf&NhX%IJ~j8
zO+UV29DJTsQY^iwetKYwf<w^rdQi7Ce9d!Eo9D|CucKrVBnBJq9+k^xqKg-zpY+F@
zMoE@LQB50#sE0umO6)1qo}g0v*_5WiWeG*G9Ofz_U4`BMK8?C@3;xV0y=y-ki<Xxc
z>dO$6iQCJB`+89zyR>d8w9a1^mZ5&TO!NL-^<37<Y}94y)9$nAJ_9=TNib8$(wE^n
z&gbb3^7tbwyGcXw(OeY|q^)>5112uTO{fmqgDsg&7GX_-1)MhQnIT6NH&ty%8U*nh
z6h20+e<bU!QbL-DYZh@)a=Ot3Erp7jnI)&owFQZGtK(o~kR?mv^t7!@F)!7JQ(gx?
zP88La!dt(u(M%vk9*;A6@N#_6fcfea(P3teY+1VJDN=1U%2@81vkeYH3e-h47Zf6=
z7@e1k;yg}fQW%_Yjp+9nXi0HZq8~8Y?6rglIV6*@4<BBQpmZeR;<7`*q(bG6;{BRS
zX*1(TnUOqih+eIl?I^*!t}Y*cCmL`*i<Y)8QM+y)38p?sj+xs0_PyzNrguJ_h@4n#
z<HAYy;u!9UTVJ4B@b~f54NS>f28!H`;J9w{eIsl0nVYv&k(9(;F{7JAK*6Oc5CcJR
zF`95d;W}|pGix6<8;r$EDzCISKoTTxoZ_&XQx=kJ^D^TB>8&DA!#f$p%LGY3$KUJ0
zd-e6*&Eezc0a!2ICt*=uelEeyL;9S|uOrk+CUyXA7LNG2a`VaCpFi%n;J*O0$+Me}
z9;tPsX%jYwfiTVn=9v|-cZidCfk23nT5C8C&K;sY$$RpHxqXTdxhwJ5+dsaQyYJ2<
z`Q|I4ysf@2q_q9jBdNx47>`=5y0gxw$T${ghN8O!bH$S2O3CL+?A{+_sA3QwQ2$^~
zcmZ=lLZ&>tZ!p*{L*v8O&a0Z?a5NVSqZMxoHe?n)t-0V4m1ssR<eaF1BW1n-KJF<V
zygrejV7QgcqEnLEdkl$9&gwTX&or*H13e*5?~{<_4K+u~+AX2?Ikr;zj(J2QqMlEw
z7T9Q_+<R8|ISAH==sPyk@}hci7ufwps{pGcjrzVh^T|W_?<4UW{?h12qp&0EKDo-0
zagzt<bp^7?s}sk(Ck0fF=mLX}?Blht(J2p(6u->`ILx_5f8=7#)R=o+{OVL%tbap6
zs6^7&u?#ee(<}oTDGB6)t&dEeEQ%_y7D3(lO2hiRh<-c1>hZcdU0=ouTXk~+2)t!X
zWopp+!I7TiD+MCet_H^e@%|^P?I_rLDf7kIi$^Vcyf7^ewM^+ADScoDpFemOaE=^-
z9&cP}rP<FnoLVbCJCQVCMr=Ui``S*2+77yV)@0!Dexff#yP)gQ38ldJzd@3WlXB4u
z*OFB$#thl@L(tjamYKNr;gB&N*Z)DXB(_(t;;V5P0wldEbkwUS?78sZmO=yLeyKE9
z<F_y}nQ;vqO;$q4Y=&%+2W$YQ`0;S~r9C@ht->pO%P=s<BLf+LTgw`)wl0@hC`qR9
zEGD5r(8qiE+f;(Fuh5xaz{0?vW(z+q`-aKuQw&eyw;Xy@**}2M9%jaxSB2m^JgOIz
zph;{~hoM<NS$5PZQTPaX)$wX=2hU;D@T<>QT<xl#kcH2DMt|fzupt~y5oOg>$;g+C
z$qf-@MzCP&SW*OPid>~y5ekZ6)SDQ5p)IQ>1e4T)h)X2*)$wZ--X7<8eK&Y|V;^<l
z49Y9<Bv&}EohCW{POoVv9(F_S*~$LCWco{ddbzGbMU%6(DEIkBk4RJ~%16m#ue49P
ziQcFyhTW&?QM9orUumWv#0vQWhi^UAMH#-M6K)MJ8#=s-sx{b1LnGB5&6>)R@uIhR
zQDq|tb0nfR!I&Un@n~tm)YDk5F0LCxA2M3c@28ZP)>mR2QjYZYbM<@6CC8y6yh(3N
z->I;Wo@$tN)s%e#m)=7stXrMnrx{bK<NHnVXzpVm)?PvqX}o{>pMQP{Tcw>WGilGG
z26HR_#u&JHI}o!b@m2g&U2=EUG}otqF7$fdS$dw`<^zlWP1;-oqpfbMFwhWox}go>
z$ar<%6X(lTEtd6V!f~^r_Tm#QWjJpB?=yE@$<L1nqqsp60h;$PnkAB<9}0Xg`?QS4
zlYoIb_e5Gl1mbwRSGG&1O9p?#D<=4(sOk1(>3$^-J87HpErSgu)<r|OIX0E6sv$H)
zWhRnrc}c(?6vx)cHg0cmu9gIo-`&7JnE`D)M9@YEbTw`QP|06J1!W|N2V?%ld{~r<
zwsdGc{)C9v(AyA-pFXOv9L~(c@uTMROKA~@fWlDmuaZ3H`#1|Vp$xva?`h+oXGL<5
zeAit{!&JmkT*M|dY1+wg0R?T-s>GbEH<?w*Q=A3J9ZFz05cjS4tTknec<k9;4<e1;
zDX3lgJ-i;lA2GT$!XnS|IZ*;*r%kf8W3OdCbYsvS^PDMf%Kv8QE!<o39&*91?S2vg
z7K!sBUeiqpcqe;4>Fav#OMOW~rPD@mi{=xrfxpNMqjnfHXl`N>KD+VXe>@_?*{OY}
zXC4mbcz$vuZl%p}RRvJ>$V1ADuxmaMjW<$oQ7B?@iDx8j?nlf$vWRZITe#lLgg<T(
zH=LnW3mzPXpOK6Gs{}K+)@63CF{QBx6uR~?C(SPF%3RDjE_InZwEf04x$OP>E!W6i
zYv-HXf8kI=SMF_t6K^9b(*A>9noN>t>mu2FeSnXwLj;G8pK&u8r{NT5{R$C!L@e2k
zs^c3#5U;IS&dyFQ1yyJ^;#Tp2R-{7`ip)_nFROv-!&~OKHLP6)UiVW=*=iPFz3cJW
zn?txZ47M%`yV;gCivzZf;N+IIis-LE!9IK2b9=D|+%C_JYPo(>BeehO<9oOYO3ocE
zwO7AD33*pLvPWI}nNB)`*@h7?E7Xo&>+qn+;}mQ^vrjcwjPPq#u5oEG=DhdCecw>@
z!iVWSieyVys9?jl-lt(<v!8Z@>Z`=<NAGUj`X4`7SfWfZ%)95prxvOF&Ni9QbAd9G
z9|+nTj(HZ8Y|u7P-^E^c9W~y=uC#uAUgEPUMjuf;D12*L?b-8Ua66uo>rx~ifh4{R
z7$F@^bFYGuDrzI1E`8v0J9>olNe8_gWYxwuOMW~w0<DNgLE0bt?L&o`D>8-d2N3M?
z2gkps+cb;D3b;qntlSzfmH8@`?fgtc%;(IND?p|FdfxYZ_e#`h&vVX;`&rK7tAOp2
z0p#1shx(j#q=><CJM7>Ft^0HEP(#vpYG37^r<8e7J!E_;(5QElTF^mvs-A>!MBzm`
zSHA*zDdzcV1Wus{m<Q$OvSXp>68vp|W=$u8-TR=M30bhG!E>{+==Vpgb*s^916<w4
zrIOL&&SnvpztjU3nx;I9=>E^o?)I0GXC=22>rIm9?8Z_V%L#bm`lGjAkejn6({zdb
zm~05j({O*sRxym>rQ>SIP59Zi^40ew>ZyjB|Ha;0KSb4T?c;(X3L*v}4JHkeA`;3&
zJW|pPLku}|Gc*bc2&i<2baxIR64G5m3JlF4T?5~Hp7TEEocA2{^Zf(f-x%4r_w0S|
zd#!b?>$=v|<GOocQ<rL-(VO_4*j`vIs2|1rD4N!U7sA9&hZ)5Dqy4W2vrTLUqUP<y
zeO$>|2kWGBqI7L~Xfk1`fOR{b?}qbkwx;2pF~c48fdhV4$bP>h-H{}Xeb?i&?RxcB
zmt$}t%x<BhnX`R9P4o~|?KIC(l1as_hx_N3oa<+;p<}Na3lia@VGULV)xd>XbBlXn
zm2u}!ah!ZIHcgjKZ0GubcE1-qKm-GRc_HXpjTGsN6>6$;vb)rAm1vI)1NaL98eU~%
z>o91P$4)o@w0>-+tR?eu)bt)8bd8^jyl7*z5Zpf>pLMKS4EB`ZElkF3WhQWc;}Pm`
z4!|+=@P}&fnuKMJ67M0W^wc=k;q$y5KVPRDMKid@K!YTAMU6P#uQ~OB!z-C|&`xiI
zJ+9sEU_s#908_$JI<M1yT40yU<EUuqM`-?S9_T1{YBL3NN&d(qjgkJ7c#Suz2TNK8
zf{`|WZFlR9`gH;k?698NRud6mpBmx#!0sm}d*fbarrhV~@6F{>1r-y?382s-(Cwgo
zNFL#l+F0BvqkwFqagLv^yVYg-Cy#o@#fX>%{||6*6Xq{RIwe348bH!l#&47m0^mwG
zVvgFcA%QZ)7No4xI0RNz$(@^IB~IA@4?nvK;;l7M|H#L>)`WZP1Eln159=S!Vbbyi
zh&VRz&_)lbJotRY$NgfPWyG5@pE|Bya)v+Wt8Bt6?0LGz>UBl3+b5&ZjMGo8A-zLY
zSpdjVF&<bOVGHK&THmL!Y0~23{;^25iuN9;@{0Rrd~B5bICM3QYrsI{WRp8(pQkV}
z5I15)Clobg@1>j~z-j0QCD5(Db?O%go*HSRy@nM5pMQ64wkP9Zc4~5JAnGV6VXYVW
z11(ZBQ=&4<g*dw$s!#F1_wm2Bb$Um<eXYhWq1ThQHvpKHu;LwqQmY2oXdQmpru%V_
zBf?I}7KgiAAT1zhlVgqdewu&&keGZW+j43^{YnHxLdtD#ETHl1R-d+d!ScZ@0MVUu
zQ_uvPRkKmFIV_Nj)LFlf;lAKlsvkXq=v}{FfPH7+Epgi8;B{+c1T#nJkh*<om%wA$
zofTG>7rU^zqDk7P>YwF*M>(<!Kq#AdlI%6hcR54{>RjzP#*(X%+M*0jayc%eW&D*a
z-f4NlcrXVVP*eXn&d6iKQ!(y}*2i)JlQuq!N~+@Tu_JaBIjYJbO}K+4p7$c&F-jB7
zWy1?Sn2*J9$Vmoka9;r_^H3_57M3(B{aiR|I31on=T%sZq8xnXbu7aug$e`#Xf4Kd
zl#ZQ|J|k7;1)iIVoZtqJy;t&gU#*Ep_81YHL0Nv+y>L7Vj<w$0u&*M=>{aMsUq8@c
z-V5njHYo!et0$+rS6|9(I*MA!IIjL4K<O&>0NYA1V82@Uf$cYC@&5?2e|>BOj|QfP
zWRcnhQru&&aXPrCkkR19zR6dC<Q$tqjPEg>Cq<BPu(_Ldh^EnpeZuo6rrXpzYbF+1
z=V;UF>kDLuWI%;JtJ%mjeF9(|U$;Ji170Z?@9V@k?w2u-30l{)8M88-!hfv3#F`o!
zOgiJ)O@`$Vyft-s4h=T165t=w-GV@8?%N498Samic*=uL!jeD;wZH%st*T|)*_pY{
zxFf-;5wxH414sQ~YLZ6!g&5r$V)m-69gApjsM7<@aGk8V3t$jXougX|8FZ}rgsj%u
zx`0KCHJTzjxlp%Q+-DpJ-CM1u*VZVGf>+P;K*4x4BLsc2MhZ`IC<ZaMuF|7W?+MY}
zpKb7UqSNsc&9i#PwZbIK%I$0!uA>(#fphQ}aIcOwPNJ=0y4^@LAD;2zBNYJ&W7yWs
zVvH1eY<GX<wbd1N=k2j-b8Y{aeLANxeLj;OYC+)2qP>^pEL4Owh{w1Z`U;jFGdOK&
zv)(J>zvL?x_;4VROW#*qtl2!exoDumQVU)A;K@QVl^sW(XC2T=TaTBtB%L$sBE~kF
zW`uMOfOH=MB)0GKQTb~J@=ax9GYNei8bt~e8nGrXDWsZiof_g1@jn3~ck8!fkc2!<
zVE|1aL_WWYjAm(q#FTs@bqVGrJey|TB4h0sQJm!-Gq&*pr1<ZiiN1RuHLmOGtuLvK
zy93D1%#{Am(VVl5Zh;No(OW0ysuCh;HNr%el<|hFE=l1G`PK7Z{BvbmKh*q3g7MeK
zYBl=aWavdF<BXGX6yN@J5zuAf9_$hpQWeX7Pr=<9S13K2?`r1T^x4Dh@%XHfbR>{w
zzOs<w>303B-^Y`rvE^gKS0%%a<AY%@a$HlT5_HOYPb)Oh8K@|FzxHgO=}LNDIq(~R
z&scQpWTmK;N-OL~l%RJNZ-_TE13$hUfA&eb(X6B8aA@vHEpQ9q7)zgd!M|=GQTV5r
z;3_fKuAo+$1Q9xv^ko!#LO+VjF&_2g(?Maw*=lz~2E9^S2n`!wRz&uv`?fX`!fC6`
zKn+;O@Qk-D-d}wf2!%d(cAtknYLZj=?{pRtiW``e)s-z^8|tW({i5Jnbov0%XO5rU
zrN95Jar#z!K29mM;QjgOnjd9;|CO};eIWK1VYPTyq8B$$<k2_(Gn4+eciu;vL$r}~
z)a%lP-yDQ<$*%GOPU)n_`HIkg=86C7lxx^i9*17I@bCZnpRbSTCK){>vKB3Zko>m`
z`L7sZhXAM4KEHY4cL&{QpTfP=Wp{wdJoxP?3&_DK*F<nH{3O%;*B@4Ed3$SY)}Qav
z{@2y~TQ$<Yhdm`m^1_AxeyIPtR(fZ`8=Rd}2T9XEOA!Bg8P&Srlm+KkF8t?R`d`m>
z!3qc0xccO55dPa!j$%)_M~8Fa->&w*9;?qJ8+hW*GhS|?|LYw8yrh5Jj|DgEDbMa*
z_}xL+MYfF&+AIWv1$uyY+-G?(BSWwj2x<}Y^(UKxz(8*4l&=7^*aT70hNq5XPFGoV
zYKGhnHZ4H~xywgw*UsPsQlrey9Wc`X33|r^`M0f2fNXjlxH(jS{_+Gi%`|`TGQ4Q6
zIiOAO^~Mz=LLY!%je!m(wt9;c@%k?E22|0NAf94v+w(xJ3s2_&ehEcD9IXLL!aTqW
z__I8w-}AHcM?`-cmJ87p!@c2s@jA9N`RrWdZ~!_s-B@!aO#M)v#vtHM#93ix<)$7X
z972I_AkAdN=C(f(6%6<iR@g1R%vCQ=9nRMpt>s^#{VMnKC(_=J`%dIR&ma7iuyF&d
z1;PN^GD8UqmNsoZkL9J-x)5Jkp4$Q&^{jP&GfF4|NYus0H?uu$8Z5j(HzlKy5zl9x
zwaDYd34FUGEH^S^hD1&7$=s#C>_vcOrIk|b0iEYz(;52wtXCq0dIgPT(gD}{7Ocky
zi{j_E4MP2Iuq+c=uTxt%5XPK}fsQT&>rVjozD|%YE?5(@8)eWnIT=J9sM77laSVb6
z!xYwOWoM~3RA`uX6x+B3wkjU6GY^j@K~HrAz}$VJOMoka5Gex`1k)iQReC)y8JlJz
z{;xze7{DEL0s`!DAe^Rj^mw`tv}h%Qn^pIA;}s$_p8xCp__v>YsF{l7ag7BO{evVf
z_=MkjHL?iYQ^_N;SDzlXkn2V3c8m~owz~sa5Z1)kb{P0`dLFgxQi^!ifu?>Rh_AC~
z<e)EZSI0+{S4`^R501g&aVyks_IDkRYr@2=NERiGEh5Gx@yfItNS;Yo05ct|0V0iC
zw0pSzDM&xZXPf-ktf!~$5wcv#p-(%zLSNB-0&<@UARZgUhGZTJ6N1QcOC%q2J8Gh@
z7-Z$4Om7cbsjREI>wf-zixOO2_Z+AS6&%jf;6@IvCHq~UXj6+2l+R@7`LZdV*Xn~$
z8=ay1>7i_$IUp*;GOfuMev*62wEt@4<`^2cqt2nZhS^Z6vx5u{^iSQGkx9Ewwvh&}
z^DK+uKKCZbI2P^_!R&tW03;1vvIu4tKUE6-ZzM$gYrZcjpQ=1B!Ok%NA^X&r<W#}t
zkvi8zD1@rG6J82f9*2g?t=j9=`(*_ekbq6HrlxdZ2efWVvC{a?>&pHy9l&CaEaGa0
zXsV}|cF}q;chA;lkPMy6EY2W0D$v(l|9O9D&(lug$dyw-uh{mtKLt0bJ3%SwJ;Xm{
zl>YobHk1GPDEjis0!10DvEW+)*I0t4Jr!IMD}}bzdNm>eNQkNXwE`8Xd>N&w_z~DX
zq24@5rixe!s=nwEvztaY0(F4vPVe&bOcW)vdJ&|kgElIPL(htGA{XEd83Ai>X3D#=
z6a;Qt@f>=>x!Tnw{3IH8mxlMu3+SMahjL3VM11|*3qY+GYzpO>gGVRB^4-ltpngTy
zxn<?eMzLhZ+XVuj5=krG>;pguk{~L50*D9FXyHf0E}u(|g@DM%+B2E+k*n$EU7=+;
zqk^oiClBEpL%kZf$DVv3oj<8t=^*_>f$swgpjd6y!!<{jWY=QlWyHs2u$gM*DRA#`
z)i9raxsU`Bbq&B%K246SKaVxBkQYx{(=0c49d;1LGx2Ts(4mTT@kU?>z9N9v;<TOd
z@f`1sr6k0#B*u!*YH}<b4;AR?$EyrW6>s1spwBT?m&D8Sg#vbQM)hr#5Ro$%tZ5Ts
zQO^rA%=1S^2i6uF?**_AJob`G!qL%M=ll?RZwIKY_Cq$n;1hD5VRRKs$L<;+?pNlB
zE&(y|s?(2<pY8vm9al{+F-8dRKFZLZ8CdJ{?BtY2r*hSx0qv#&P}ktisl(YyZSdus
zfKkAK|BKAgsd%LV0WvJ??#aaYIjZx}6buiD;Lw}4kVax*P$>7MP{&SyqE!GE)Bx4A
z^pc`PyM6$T@zVxcZx+J`)6E7#+9JSZ2(f0_m+a$=z^AtHb{6iANW1V#eZ0yxO~<~Q
zcba!C9$WwPcmYkhEAduy$hTEXH>pi(AVl3vvI1sR8IA`7r_VcbssUp?PbP+Iy4i6m
z3EMk(jt|{r<jmY3sx)W`bZznjwp&LVm&v(SvyNf`n?&fm+-|W0Qp%bc=3P=o60f4b
z`QQ%gU<EMHahp+LV-fp?2}nlIg04?~w{B!VP;vvFo)-Z*`#RCi(ukqoAVHm(Cl{g~
zv#+JbwtDb~7zWP|n)7*`k(^|}M7e>RnPMZr*=B*x12we=E~^C@KQ0WqI+8b{bltMa
z!xV3DrtQec0cszw8G&v~B=GA#rtmqwh@(a#WiRffee+tRSuK|tKn?#W3@qu|JwXFq
zVBL2z1Vo)vJ%a{VM3w<9qZ^I@hF0O{=>h%TCB=u33<3La%Nv63F||<2O_><_j{7#^
z#3>P$$ubWSWoW=CljUBBq%C79O83?*T7F*YPgnP&l`4&^SevFidv2IVz8~ZP^L%i0
zEL?Kjf>M>WV%gm-%L9y<ngBIiniI=mM)D*8U#J}A5~PVe0PXCSikDtK)<e{JsCgOE
zUjsK=eyTGMuoqHC%tQgb4+{S&U_ESrZR-l(TsLvL!29t2+pH9h%2Zgs8vkybzuut5
z;nrMJhK3vi4wSC?yYEA*DFh4S_rQ~cXke~!E-)PC!M@ftJP1G8-@vGJ=aRA#L^B=c
ztJx&sssZ$XA+IX<kw>M@1&%a~%|@=?rrSgL#C6La7@ZEX!*}pNUA&<ZNHUyiKe`bc
zkFADYGzfa8y`|KUQgG><vk8xCO8B5)hDj}ugy}mQb6=)N#VZ8~D=;_=u{bMIgFeph
zw|?!v@c9>e;_B6f89kjEfb$IsmHW@u0s{R&{=8EGuxtZiOt><3v({I4bIu;tGDa`E
z?un;PLa%f=rUTd|8HxE{dzX{J&=Br;3nu-%4r}K`=$pL_sOfdra<eXqsglSHPC_>I
z3v$}KyWu2uZ_jN+V0untC=@wCEt$|IG-y?fv0KN5c!1c7xW-`F9&9-Isp#GVJl~lZ
zh&RjFI3x_(pDI3G02xu_OeT9K=feOHrQSk+O_|SNOXASwrO9M4Y!1ZzTEMDXH>TBP
zDxxi@kA|m(64X>P*Z~yX6CHZ{OHV{QA4cDgrDIv?f^;*3`Ist^2oe}NR3Zs&s!0>n
z3SAa~|I(IM;a(dldyvd?S-d%AhtLSK9DQ0|>sU{FhtS>ez8f+6Vr{L0bjY8VGxR3d
z?f_PK7*-IDB9i8Tpio7&M5|31B^P+Yzqfz5hX_cvO2XBke8`CqD5mv1)aMwKp|}H(
zL#F^Yw43)Dt`+4|PIX^<ccxFx(6?D31qvF5%mi-L_+^@-?m`n8DXkz~B;l1D07-!%
z=<FY$)CQiJG^I2<<oRD6JQZ_G21BNw*X=_`?~+d;!3*ay?pmzj<M!kXyfv;-g(<_@
zeDC<$6~tDvjfVOKqrL1Ryip@|;$k~*NQrK)1`@t9n`Tin2#|F^?iHly><Kvf@Kwr-
z3Dxx4an7PphXb}hUT!_r!36I&C(L6ha=<GMo@*uirE6b717cOr+s%M=^s60&E+as6
z+XvkNH!tPnnLmj(vd)RaW%=Oyu=7f#1`p7Kbe*(cc0L0g(H|vm_mCiVi@+UuGc`fK
z88h!oQQQF;M%!{06^h0Mp7m04LPTTdo?-me|Erext4#8tX2U|Ta3xus2SQnn;?4Ac
zq13FU;v@>|7c;38aY{lFK0R44MRZd>eMM{?vA7tBYt>;oSft+}b0rcOMz>M<%j_I1
zH<i(L)G&}vZRzC{x;1T2SQLVkxVui4pxw-h0a{p{I@it9+u!JOaq1yjr;V{OQsle<
znZ-Z^`~h#0LIR)C$K_>-upe%L_?k{3p@?xfapc&8Oh(N1MN&9ASgt&G-?G0E5APnH
z6XLz3-S{WsUDSim)w|lZdwx3;>HJ@l2`iWyO96;rt^1-p-8;r#^jhTXq{gN_?Ib#q
zHz|dsBSYDCG=0(NIOUib>)m%SQC_h&1MYqk8W;|`zGv!N^bGY~l5#o%Y3dJ@7Vs}`
zaL&>;ytoEdOevn1nqhBBvWfbZoV^?$u;DJGJ(acHBTWX`@qC@@{XNMmc50%^%_gft
zx~j=DjD-KHOaJ|+u=z^>os%KHKgiNlZ8ngb>CwS6APohj2}nK|IT+KgJ%*YB^viYD
z7rJ=|PsJd}Uq`9vC9#g*_*H_lWtDtQUJgixcN|KZK=@F#h&@^-qr&U-ha`Hj=eD4A
zC>J#eC!w)WRsl+dP&j_1*$_IC04j)rY}f(&JS0rCsRh#SX48Osz3KZp*ZlHC?b-3#
z)Lk?ad-4&1%I=Z$XA;I&jk&0h!Iy3t*&UG%4`7MhmGWq<3fK=dor<UihN2s=L66?4
zz5B>e(NZ%qow$h)FuFbDXI6Gns9uX_5`yN>vr@oywO-bWV#_^e;dz~UCiQ$AVO6C?
z^gdUBSf|x&-E0@0#o$1CV~7qIKo|nLE26qx*JTdRTJ9+Z=Z_*&VX+N+`|Oni^(8E6
zw{B)r%c{Di)0>dCnd|59#e%yJhKzGin+INsHE^Ut$%}Cs|JAqaPQi8$0I)ep*CS0z
z60X#^9&1tXW9jQv+AR85u6w(R3YYzHbz_mNe9P$=z&A^n{!Yek6zgwvjZ8-kX4aSd
zd_4nJPJ4}Z^^3v9%wnGl{JmjoueExE(=37xChr094U|Ld8=mYJw*rP!Z6>|?y2?AJ
z&n|N}YYQEKk@dT-PEBl;9Q#6tG*X4Kcp=)hqo4XctDL?}b5FE^5goByP0Bp?=Rw=_
z#)$g>GTdj?7fRs5bc4KW^8~0xF?mWv<2ew`vA)O>MV$!1LykQQeFEll)HTL%xxn{U
z7m56+>hz8c1Ay$7m)Rz(F|K5Qgj1=X?#ZiPW(nIFFQUS2lU)nHfOElGE<?ZX2~2Zp
zu}jT|*o&nw!LiDOGn+swuXWH@7B&YY_LNEiJ~(TI)mTlZl<f|4^;1x+I|QA<r|Xz(
zr7>q;wLsvh;~P(`!6itny496shuo#5j_t*R_%>W^!Zgj7t)tkbjnw5mBz3}=pFGll
z#Wi`ybk=}yV}QI~U{V%Jd21Nz-mzQK$sXiJ1ZGPKzV{8cN<ukJD%slmXD6O5(}Prv
z4?40+d_(&P^a`c`<P62EoWGsrECA_oxtfSe?`|AzBvcJ3*(`t<K~2x=#@sQ@!Rz&3
zZF-N2X1KccGr~LVY%I;$3jt%;B}TvF#$X*c0c<1NbgW>k1kkTQ&)jqf1;C2qwb)!3
zNX@5T>APLX-NDvNXP%YG>#wm)J!x*EafSeD18c-yWG>n9CaxzIn_MDL6o=}UfvR)$
z4pd>m|CZpc7FS4hQ-H7p;iZeRfJC|LN7tl@bvjX-a-PJiC=;_crLp~b)03t$8S<gi
zWyqQ5L+U=M)PQvhunc-pI)L?_=3hijbef8s`oAFKnvjHAR)aQYQdLXe0d}|(vOs`g
zFOH(HeH+y8+fEj`FZubkVHlt~IEv$m`dlF1yu=)qUft%4!`onBlmZ~;vm8$rUXvJK
z{emhP;YwQfQR{rF>jRjZVm2b3|Gsbi3*QPW#j|q<JD3!ZS)gX{@D!)L&OHc?HQ&>T
zOwS}ue*sy8mD?d@Jii5S|1i6*An^qd%kzPP`m7!#y>2@JX4fARm1YFg11ayH$`8K)
z4s%^f=c(Ua!dPNi;$B|uG!{T;EuH0!0wZm9lQo*zF4M_am=*yexqccH;t{ur){u_?
z?7?A}R#ake+FA}SY11w0ShlK!#dwb7*&r4I?^+l`r7W7xWA{Tt4t;GPZgBzQ9Z%r)
zR-<w*bSGG3?)B}{jTJWRG}Me4DpI^jza`tYY8WG4nP!>koMjKlg5vbiP4<rlCGnC9
z0Bx}7A;R*Q&Ccf!HI6Q!G0`o-XkD@uAZ*1nlPoA+j`7bMJ|gJ~B<Iuu>KU*26Czvm
zM9R#vOAFDvToFj0H5cB`@km8!NCRFMK+_V!K9`jEiut$DmH|vGOO}9d#V4CkR0u>}
z-G`Dz0{}?#%~j}(okxL?U(9DY;qv@39>Q0gI4=k^bfB;6z%JgT;{+^zTt{;-9d>Xa
zm`yDi<Qa;>b!`&p4~N<T);{ngJkcARl!&F1-PyiWI>Cb<i)+`B<Fa1dc4}|F%++0)
zHb*<039^fEMIi_ZHzmf_!JE>PZ8;tC+-;m=^U1V*Vk789ZxD6oTsQ&UPYb~Ovl>DN
z`fCkoYcLbk@PnYJr3zUHSCT6Rsr}fl$6%OmQ}5e)XLk5Ye8yS;?Hn!m3KFbV&FSn3
z&ewMWT<R}Pyu$M{Y|FOOR7oo{(JiL|o5qiRwy=%SKfb;a(J#E}%nG9wcV@>pF?*+b
zCwUSYN^?Tk$d~3l=_0z*)zrh-?o7fa%CbkxrX7W8cEEodgQR_i29#%1VU1`CiqZby
z5QKnTU*q?byxVJL&wY3fv~Jd&D@3UO3ef^7(Zf170DrQ6P=krGstQKaBzw5g7vRT^
zYTLhOx-Ek)esGw~=afWSK?|Bds>z}_7Qpmfc|Ud)jI#8bW^l{W1wyE-W?t<H;5oR7
zR~O4~O-s6~*aDuV+ukr5((mWiJ*bo^M+3B4PO<Ymb)P!`hMI)JaRe<jVAk>iydhX)
z%cAjcy`C(?XVE|o_7&N(PtBeT#-l}k^1Sy~gR@i`r;tf0LmhbboHiZ<l@RqX64IyL
zw2qbIR9H=!$11&=X#m=au3Rs$dfXZWn*2zO`mNvT@=rN@YLLdUA-^)vms2@u7i1<S
zh2d+tyg2E&Hrur;*2Z#iL`R-ei<jF&xt4-y+isLg|I4L@tC%?-7I4XX&$Rm#4mN@C
ztrCDe{kf^hQJxkm1@*_~Xr1$AVk*G*hudqI#}Wep)aH(V%djW(9T-g_8>DO7u%_AH
z7edLblthF_zUTGj&qoPmxdsb*<zl~h97DIqtZ_;a;@NqxL0!q4BOv6hYCP_XM_9LE
zb)8e~Py0L2&&v$(rJe+YnB(+0u)s8nRq%fSe33BgH`JbMSai@UnSm*7SOTwA)cK}A
z#}5A=WIP8NHoEum-Wi<S&ZCQ?xH%bR-Wg*n!%KKvY68$bm&VDkcLYXEko2yH&`(T^
zsj27#peCUljt;TKA;n}cCZ{$=;4ZLtDr+bM=NY3RTezk|V+Y<8C{ow3@5slJc9J`a
z{e8a2@%YjbCpTgDoCI=@@4yrP7>V%66O9S1TTDrz1ezFA5Ke<Bt%?B+_UzR9SnMh^
zFuO`5{*`KBNWZpe2de{C{T1B7IfO<5NyXg8h`?SO(J_qiA{wMe`vH;4MXap$-Q}Hv
zzsQcXeW-794*D&CH7BFCdqb(2vXx9InD&WHGFFeEP-|5+=bz<RnHtbaS;E3fpDr3f
z+jChOd=1O7B7HMjQ~Wh*hrZ`nmj;dX8{x5V7^v25Lx-DBv7I?F!OO_OW_u!jREd)B
z2~T)T3G=@5)gAlM1^*6*wPJMfi6Od{YM_TEN<or_E}r9Cc^iC{fU!OOLK$J}*L`KN
zIP<ZVqTV<D{zR9xecM2w8<7aUqhCB;kaHU*y+llg5jLa!;_}?8`@<clp03?{h_!E~
zbbcN$jRjoTn$XprNB~#s{522QGl<tcpXE4T$vC;h+fV#p6pw$(iQIjthHHSwS(~%A
zYZz;5E#tLyWB(-GlJfF4DA1jTU4P!j@*%n1&TTsGoe;C4lwbWG(Y&X2cv5S6#zC}!
zo%?Nlor}miT2}+;HL;S&!c^~ZpoX!E?KQ=M|3`gb93UE+e2H%P82_|3S-%$Bo*?>B
zVf5`5nxUFDaV<Syt_i=nxXpZwgC;is;KG<ne%3TD-GR8u?(&qg5CCygeN-U!jqv%P
zC2dS?pQ~ZDS?SA&MQeQrjtjsgOi*2Slz&JWXbZ9uK7es@6oCageYk=3TW8`{ZJ-0>
zgf0I!!<_kWfK5rdZ5XT24GNmnc~E{l0NwF2Fpy~sNRALQl9-z>fQ<Cib?Qrq%9Pn)
zhHFDErMZgOvU$4}!q*FS(<u+ts7$tf_+uVX%?XG>>ll$6R9n{sBQ1ZLA$<1r{(ha=
z-rN{gRv&L3rifE&Wc{MfTcc#-)z5f=|Li14;rUEbaw3Ha^qD8ckN=f${PZW$kD!b9
z@lx8;pRf795o`0SH#nv9PyV$2c{cp_xj&M$CmCVFb9C!mY^lI|F_Rfc%5vPv`g6?Z
zZ%B3Fx{o#uCyR1cSc2#AO7*<lp!CnXN&l0B`n<vcbp=%a-tVv3>LzG*YHjjh{`mXy
zetPj&Na-PD9bY7Vf6B?bpj%iuX?FbX@2mdlce=q04hw(t{-+Q0pMOy;4!WII)q}gY
zf1c3%&vnu(gTojJseX?1{Qafug0MYlyUdkGzrP(>;ILO@d_SXc{PV)DERbQ_or`jV
z^1r_wufSm`tgzqT*>*N;hqyB#BkA|IBL(+Jta5Yly*;X{7)wyKE|>an7rRX!tqC~l
z&wY901X@2xFn{aQ>K9;XZV5IDAcUyx#!far9|L?94PY5qw+C{b4$z)Np|Mo@d@ObB
zDF6?`;v385<;vg3Igib;5f|-*=EhGpon-A}FvjDrHP-U2hVSlgkvbmqYj8Wo#?QtS
zC)$$y{6;QF_;}pn)B=+TJV32bZ~gApgVV+Mx*~%Xf)fxxK5l-&5`Sp8oj0|y^Sv<h
z*a;3Cp>!g`9qS+t(nC;dMc$&@xHBQTW=QAtG6V5#DAIeJPHA-FbM=~K%WD3gj;}Co
zCvhzm9w%}Z3YD+R&BOK@iUpdunf_q@MSHD)Z0r%>2e8R3fmPzeN;Xyp4G`jiR5(Wx
z-W#_+xeJMG(Mfgv#lwUo5!~QJc20sR6iCA$JVLVFRZwP)sOD=fj&cAK=!P!bpWllA
zSul<DH`_npl!8XXI2g<$W1pr{s5=FAY-`YRmX(45{U3G)B#U-c5kP@Ex0hz%mnh8@
z#h4yy{xuJRr4$Nu>U@C9T1cS*=tGR9vUbmKt5rpnZdpxLG!u}u$5{|9Kl#Nagds2O
z>z0|)wPOh~Al-*z;hWe}ER_svIfa$q4z3US1MqAd*ehCLLE?#XAQZz&{jtXDKPnr5
zEf!!%@_Py8l3{!Cz?gn3j!xLU>cPhp)b&G<Z^~F+T6#Vx3@y+BBy%UQtZH-4P5`dF
z4#qd{jIw|czyM0vAJq`0=O-}TEL;+fw-yP}fGRCnZ=s&DP{gd|>E|0bVKjILX})g_
zCPj@eHAf*|kFV7o^@j+54yJ*dYOugXap107Gqg*NCc{M~=>+%1YmG5{aO-vhbZl#{
zw#l2jICUt;K;(*~a?z*j9Oz2NnYB{bYTe%1F?j=frP&UjIx-`DJy0oUJg<R2b~S6#
z$&(F9xw6*Q967<CraI=|Ex6vUnx1d*86o%K!19Af?{#pQ@3o*xcP+!&6K6DOmA@1S
z=hyJ&>2!(U{{nCG7R|Z35bZsV9T0%$^L@%2Kz$m3_Jf^LQ30AgLOByz3TfDRY88Ns
zFJU>_A<I8y1Ri_PL?vig^6ZruG;c3<ruEc<<n^_@JxIyNv07(MFQCxR7+oJP-2hoc
zNDepP9}9xMGRBgi@4+Y1CAxN8T&BB4E-l8j3m?Amc{KTF(dLg=O-ab=8k)?UL^+CN
ze4Lt^Z_L8PRc;m`6O;7yg0;aYyL#hX#QxC>^l-JS8P!wI(Xd?dq*o8Jy~k_bBiF-`
zXJtp7d`FhnV|7y!GMXER5z7gyC2E~-$b-eVixuWmd<}^O`mUdKn@(N3<Q{9)m<Krr
zGw%jzBOf)e?yQ;5?X>@Jn{rgJRN9hn5>Oi&3F~LMhg0UY-W(7&{+#z#=YnI~&QDv0
zAbKp2_)y>EJOK=WL83^!VssTS767%*2G9uo;Ip_Qf%g^wN}E;Sb*yTUX$XKeR7(J=
zzX5jGbS{M_kpH6RFL(OBp9c14(|w;n#UX9O4KRiqH<pi<Hz6@xRdO5JO&t-ekhIK#
za_0seSlqp4?s^(mYj=pPAX`aqgs^q*o*(qh_EP!1yA+xPjPGNsCJ4)_Au+j0UA4Fn
zH>S>w(|KmCH(Yp@3wpU5xihLR-IKS!-8qr3wNqvOh~u;o!wb{6&$xfuR_oaoJHl=y
zNu$}SIl}e<70#~i<bMBRf$M$y^~(10GfpS9S7@KJQpEAmHmcY@G{;DsV5z)NB5%vr
ziOc2K&vpM)mS~{t+vQ*EQ1qmi?EYwE<(nM@R!dj{2!D7gYIERKP{ZkVke7&6{gLq+
zFq;D28@-pWQ!f*>Eu({3Cjkk=2`JC8Y1sx4y2+M`sPo4_@fJz)qzhp)^;6rZ?!!qb
zf(zzVEszz^^5rLwMcHB<MzG?jAI=9G$Wg1h9}>M^X29yZ;(|L9tUX86locV@eZ45k
z%EFZ3PB!&aMqa{DN_>LtsNVFA_XqWSogwe8RjQ||duo-rmm-e3?-nNdLPee-J36A+
zm-F>J+#KO+YvL%}SJSQ6PL*mEZ&IDAbF(NiCOMaJbp#@wG+!3?S5iLO>-Abc++SRu
zl-fu7OSQ%jMwjR4eW42M&n4OJ4dUl3V*lWowfm$vFu`?6kI$;LU|nl(@kC0G`4kzo
z)?1)2sVme<mOp85+jyhr8KGIE>@Q-kXb4%m%YreTBmDc<cYF@ZeOaYgiuwrP`C>CM
zUbBI(^@raHSriPM`QD&*DZzvj=dQoHk?VjdVo7k92Eaa8b#xqxsPj)KFiZh>3eWjR
z@W&9q3#`Fr);ytqfh9n6Jtfx01{hD+@I1-^#Curstycm-TF!*YZnRtCa-79Qq<f0E
zxax?gqo`y5;OgnwRP5JMi5wm?tHqVJ_Ck!Q6hDHG?)X8i(n`LpDl>go<=&lMT6Oa*
z>f-IIU%|2Jk39Qyc%xu5S&TA#7aXP)<km8kN^WZ3#AT_xRW$tk0iY1XnuTx^{3@UX
z;*JY9!&Zl~6*h(3b~*7peAB`BB_{v^O@Mc8$vTk>8b||B3NrX97y*MC?SBDAC?RJ1
zu^gXrq1pmqC&98h0Jy<cu`_JyLzxgEJZe&U<!r6W0tBGoH?6YX3$ws8K11}c!Gqej
z-jLpFruC07b__xaih+0PX7)@m)GY31G&;}YJ~vyQ>0xWzOafH}ONyoJy{4Km#mb3I
z`pM&VYKw1?PO>l41wOmAd^xL-C=Wd9v`R5GGL=x{li(T;*O&Zx`Hyo+QI;MlauiJD
z0(3kayR?iqNLV|*Ow>49D9=ir7_OOVVUG9qB3Dvb|C)s~<;2BJokp4X*ib_Ggdi9Y
zZ5$Pl25KM*CXLDF-3wd8;|WeFX;ogu!&NBe>|R~((M>qAP6pGIb$s}U^wn9pdezml
zRXv^QnPFaTNS*-AM4fwL5-KdpHqKkj=90cF!(s(YE{PB)4PRMBqF<!KQdfOobex0n
zI!&pr-@d#&JMGsQFE$J?t1lY+_~_8#a3&$Aw(=!#v)xx!O4)#o6)`x#-Ka(j^^&Ho
z_8G!h@FEK)z8{=;-@-dx9D8FR?u4IB@CU9DbMDAG<@Ms1)h~*NF?;W|2F}h71rLg5
zQEWl^72KS6zsnKkeN_!E)qQrqiX6thu=H3?8Yb~~&ix;SgrYS4(~fYW6Q{oC_~JUl
z@dEa#BU2rd)%{{gSpEkfKfpjFEXD5V=3uh`>DJC@`Hi?1vU2XY{IAAiSgV_Yn$;YK
zLarwbS~aBO??l;eWhomw7g?AYc^0@p=Srqd%vGi%cvS^%F=}yp`Q=aDpy?y7cnr1L
zZrYgr!TR&;5CofbL7%DY+b5gxe<m>TiSB~ka2zl-QYXgB%svs_;iNZ@6D$A>F$E+b
z=Y7lC!#a-w@(OJ^n_%JB>rBAI*}z)rPa>8T-I}wbou!jPHZ3QStr?0xA1RC^!rwsW
zpi5`=mRHu<e7?Nd*6e>#%cbg-RPxZObS6||1)Zy6HcD+!&VqK+qy5ICRV)0=l+S5G
z^ZW_ff84--eJrVL^!)Z$lFh_zF24v|*}0*9*qrX6Z0v%{XfeP_0g07Gr=|?dt7^qg
zQwGe$y*MRR4Pd5Hw+G6DDgSE}-_c4C*=8<UAVtWSBeDiGKrcNx^|#$s*rF5x25Dg@
zbg4J_;%xxGnaZ?~ryUCm9RRU41NJi8s*>+1p}_vZz7{*2na|+s6|V%mOLm_`gKAnf
zM&IRH&INY!Z5IxYRG4LFZCX#(O<l%ReMM#*bzHa99?-IKhde$xt|Xn_wn$<t16%S<
z$4NDisM&HmdExsB@?QGBPgCo!G<4(b(YC}{%D-x_|M+QL%?ERfQz<kFut$ZQPC*4x
zgq=utTmG5;`BAUe=`q$UDS}C<6>u4EkTTknVr`6A6php_w*$5yjGzuIv(Al*Gt3E`
z!%OVCCL>7bu^vHAAkLkr<ug$11=4sbl9IrHz3V+pO)()w%x$&`qLG{J*|?Q@uaI&z
zj`7Y%<RV<(j%WJYCwRt5d9=!%a&`8{NVLkW)Gm)hr*bs=ztnOKus^9UK^%XZsW6^*
zg4=H4ax6QJD3DrC`ET&SCYj;88v?d}w#w^Sm`r1$D$m0%KiEis$9>I@TMqHXb9zMR
zMRj#yZ&h<Rki6UE2kM1%na(Q1PqB&%xYgp21Emqz<UEk3Ok?3T9<@7N%=Uu7AYC5_
zY(uolaq$SEONvNj0@Vzbc!Jb8YGLT%+^7VHfj`aIA3afvbIR$(s$of)%iskWJov>p
zKH99W8jKYL(aSFry-VtQylhf=H-rZ?^`3Q1?4C~b-pW-<f4c|bEl0ZOkfGYh&S=t!
zX+4eSqN(6nMzLp+429WA&O&cgTkI&)W`dQ1k#NOzwcrYiW4S4{%%x|)jK1V!kK`Rd
z&+60+cr{sox9?p9qrzSG8WjJayHW8Hw)uwb1Qh@!jP+Z|QSS;bKyY-z&Y6~-uJz}W
z`TRAp4O;%dE^l?Amo8y8b5^(R*0U)8aO!6+Mf|MLXQ5!AH4^mnpkTa7h&k7o+|YH^
z8|@Ep@wO$2eO!7U;7?$pMt;B>T#?r~?7J+Nozz`V^5h9cYP&4ac2X24HP+G=DjdiB
z*<Wz*HUh1N*L#92YIAfeqO`tI-SI6Jz28U5YUR@Ei<er7zxGvY)6s6YPp3e3BX|S8
zjzdt_5;<Gp&Tw)tWDJA<R2zt0?c)mnkUhv|d}_+g<#kpQMS()P2SWIbroyo8dYqth
z0e@!9G~ldRf$Vn|wH!z!+G61f+FFr-+K5hn8hZ}RSUo-W04e&!KKY2MbjA0W3)GWw
z&s<BuK!u*tumFE6z&H~9j!VU7S@~z_2vV<f)D@q%K&6XPLia(SIDSR5=1{m1VWd@w
zT{^*`PkH7!e{bTsi;tSefZzt}9Tx%%Lu=SzyoEiv<#ue2LUxfC8$8W&;ur1ENd`{i
zt~-Tk_U3Y3G&E<GQE<;&@!e0t8C1Z;N_0efx)8|p_d#WOtb)b5Yk|EJW)Doybra(|
zrn*bGLNs$HFN!8If+&-<WK5=H-NsV;BCf!nqC20;t&|7g8!I&dpuW85rTtx{cC(98
zwNOGKSE1Nu2ylW5wnwDNdmH3^p-*G{17SC=ZvTSd27=hf+wHbEr3*DCs@Rd1pc26}
zmz{!lN)yCU7%-rpF7n4(OCLBd_cfW1<gFBzVqeIw1SD+nqyE9VE0)t`t^o))$$Nys
zWu_j}F&4L%@(%Ws#_HYI=YILLuNZOrQ1jn6Eb#<beGzE;ApvNx?~;YONCl?i0h12n
zP{(X=o@zD7$$o;<A!(ZBQEWb~FN)1#=5u&{=(V*cAb5DeH(rXbH%rE9{J48$$3Z6a
z3)q?ZL6}y6QCD2rrs8FGFe|GB<hZZaz&MW@NtRL=aR0s3IiO+yFf%E7z4~W-%PGdH
z)iTeCjaEdoU|U;I-H{l=)ZyT3{ZE!tGA?x<w*SZO{Lha9qV$UaMnghbfM`oZ`)mx*
zK25MjWo+72ec`UEKsAH)3&vVS052*7SCA*;R0d1`alvPu{#Cj=1J$v+#fj@AGZnAx
z`)<9OZ#=}BxyKLkpom+lnQr}A`jn;3y!J%D*hMbj&f!+yg`jE*fa;3`lu!`sD~zqv
zAd5to^G~D^{i3M4;Dfmrwk^iBNvGNq_**zLOz9F(vV;q^IQ||sG<pZXMOOWEg<qZV
z9}KB@EQp#p$yD(Fz&)kGS)o^1-v9ojppHI;uf1psrYNn9O{Mwmsc|mt$6TN=J_(M!
z{j1pWk9%w+=_6wj-JLD)Sa3hc;>9l#zP|xl1{|)gTL!7Oeo;~UBZ`UU0F+I7SWvp*
zUun+Ie!6uF;MF&7NBrz}|N1vY6#xq7Olus!`Tdg%15f02bk^(NAC&_TTE)Gd0gm6^
zJ)hU$fjs#7$AjM=r3{et$Q<WL&)?tT`}e^rV0g&<`=dVRfG?noDBUIeMPcxd9hja0
zAkkMJD_s5kQ7S-@mA;yguJ_9~>91d0#kM)#zI*xmqq4CezY3Za^ZVr?B?X?;3mN7A
z$5ATa3uL>QtdReH5xoFU>i?G7-yNX;TWbGnz5m}*`}a3C?Em+!w*5$%<?{gQy%uaO
zBcB1z)sXG7Vi03}UtB9%WYIcKNWXwBrgSK>OUF3Kgris`=)9PKw?iwUCL&L9Bk;pP
z$4ILE?M^j%y+G#m)e(_SRpiHU>A~G%H$QXLGNTVX$kJy2c$e<+ruP;<&lj-|k)8#Q
zi<%R@)I_}AspfC=tz1Z8ogueBOEa=8L5WI-&#M}7zAVYN?x**nHhFejPegwEKqXIO
zx~Cq)V==S$sxwN2_oB(XS3IOwcQ0_pq|#<3Z3$@`MZKt63MQY{p<sCJE&ohc{{24v
z6`sQIa4D`wLz~JEWv!+@^2S)4UETlg+j$shSu($}VaN}4@tD2sx8W7)5kK^UAX&)c
zNSd#x7gC$8hjzFaW}%i>UMzAJk%2*dU@cc%e3>zxs6tiJ>3Dyz!Nd0aQ#I}CZ-O{z
zhK+MUBHj7-XKtdOJ?WG1;^yndqxRGk>;(4ju^Zp4?r_bvefEPk*|Wx1kI_EOEEGD!
zc-Z>sH47gOAJ1T{wm7YiQaCn);WDuuaD6eS>JX!vkHZHdF%~K8zu8ZXWazD1ug_<B
zFmSH*3hZyoVz@nWND0+6lY$b9^R+6VHEfi>eqtagP?Yt)Rtj^MoPjSiSE;F0yrfuj
zk$|)4<>y(d*Y+C+CqO?*%9IXwj=l!?#gN0vYB__`c0^miX74*HLUOk7d3M1^y7nPr
zDBoW<ccm2Rn{i6dcb~OBb+EjB;4s+MML>g+$2ZMt*nJ7s;2<)AWuJ)(w(jiZzrS}1
z?=88_Avm(V*c)Yh{#M?zv_48W$+(tJhFVx49oN`W4rW<+dZdS}wl`7s3W{K+EKf{O
zwfoL%@<^oM7sNV{b@=4nXt!z1Q_LsGP^&9(osV>>%{xok`@R`eX?QZSQDHh_Z~|{N
zKo(oplCo(Gy;OVFm@`~x;JO2afu+ncGV!sx6ZWkxy~1kPjYXs2bHuwcjT%KW4to~)
z>8{@AWQ8K|31R#7^*-i}S{iem!ejYmVN2NP-m6-H@BK^PO$LWzcnoqj#_I1i>zYvp
zj~AI?9%^wt`Yzy{P0Fa=cs)zKqgFEgZh;0=Bg1YbI#<fw(QE3wOS{x<sh%)4so>Rz
z7pfKJ6fESfr0l9se)Qm*TWME*i<GFxmtJBkjR;b6oyq6=fEHb8$FS%j;z=2m>0iZ(
z|2of6l*c|4kLM{}DJf{;&}$D46U>AQi&7z7b0%dwzET9q8`)XiACk^!zj?xYc`DWF
z6pM{rmB@55xdqjK478-?yg#?~^*HF^v_>vlw@Pe)8?o=+#5Tb+8V|we%UvvdR8nMv
zO6@au)S|spBUDwqSIm|#_2Wy1s8o?D2E7uL=jNAF;od|5->E;iH?CnkUr*d?1V5O2
zu6sklvP`(*jpNfau_6I$*H*gHbuSO$3XOTxSDNdJ2g~g{Pc;LSCe-s=c~d9ayBwE=
z>+I~kkYragE_aSsCYejdd$`zqYN%^Kdr1^%kQc)Fv(S(BN98|#_ax_$$rQGbjJK~M
zeF>@Rh?zG=QaRTfQWkLQ_Af1u1=WrzEIF6FEN5xWZFTzf-LoqbtssiVlsc3n9Ga=f
zIOrFLcuhu^I6Mt!8hE?dy;cp@`ttLU5h#!G)5ZN=QjT;gdK-ME9hs&}2-@?r`Yi9!
zBoSF2B9Ca@tD9)|5&abvqA9h{e|+fMQ1Xhi5-fbuv%T;x2@_c;DlB-OSPIj>e~+VL
zeX`i%@Jsb46td875Z(M$FXJ$P#rqB`@}7n#oyg7`L{iT)i-P*i{x*59O$2sd6~y>|
znqu$lay%`Cl}9lw^Y5d-p!VVn`CZq>=guC%yK8LlDiVXQm1g%ExryV<j#|Mxr(JE5
z_dM&PXpWQo#BwdFdey8cAR=`;O3P=n5_qeZMNZxv)a0RCoObaN{Ax9Rg(ZW4@ZeGj
zv=O%X^~h=I9dX9Du$S`M#QRCBN2!b5pGK)7IV(0JWwr8p#d}-3d*0>KX*Xo9-TRO{
zj!`{o^oY_|D%CHaeQ?;BR)5EkLwBaPr>Z!YUpo;vA<abxg#?e69H>U5@3p(ik5|#1
zy{u8d8*|zm(>IwMVp}ofwilJFJufIExYXbxCQ=#OS6fdQs&^Q?cQogjJ5^>JYdBrE
zgm~=>Eyk~RpQlnSk+B_o2E$gKzbKRx|D-qk<ONOf_I+G9{ggf%qOoOnEWu?<ViUwh
zsmnQC6jJPHI7;g6!t^a!97gr6Ad~+zfy=MJ)G=+!_7uan^{$D}bwOF$x~Iyh7m<1F
zb&Vn^1rlR%0OAphYShXh_hdmRbIL0vPrHnH1)_0dr-?gh3xy)II@#!aJbfdx$?_Yk
zg;iZQ)feu=k7fZsb>H|$Of-7r1B=q%Uwf4H{d!E6Yh$bvjO5#^3A4f0uD4ofgcRAJ
zrM2FYpv9pmboF&a(5A?!Ce2hA0SPmt^ITV7@8G1#^T@?0Hit6t)pJ^+h_Nh>i-Sc0
z%nj~5Tn<@vN`)fdtkb|YdS;hO=(@959x2INT0HZnmm|X|<9*@^g2Y?VtS>|NYi2R;
zlh27XLp34J`O_g`Ud$2&-*o18r3Ae&&zNM{x@WN4nKiswjClLN>-dY>nVn5j96Cpm
zJXgKc*D~nZ2|v@VcEanj6nTOs-=A5GRn$XKPklGiE8}mY8;*CLCpE1&cJ8n!mq8|H
z)BV4k&Y%1k`LVn2DJVj8Jgj$}-C<?=TS(Ak?MJ9|w7(c;zV-)7SgpxTb0prRJJj@6
zZH(iupSE3|Xa!Id+NaNKpkEs}t$Fw+*teNQa-0{4MsW4l!|k&W?n>u8d%WnFk}h+;
zg3XP=XBr*1g4psyEzKV3+U7M>yYJcQ-Y_@;%#rQV{xhdaPO}9b!NX<LnKW`qR`UiW
zr{E(lH8r=L;A*}>IC}5!jT7?mK@2Y4I}$vuUAy#_53(C??XOpgg;<#35t2K^Ar8#(
zRf_G=Po}g+sBQFdN)6eceOaZ`<XEkuK{~73Se4H9Jo0j5G>>kd=Md@;4xaQopgrSM
z@778ba0)R==wFi>ggm9P`;Hl1TCJ`0_utQHX0ps5ohMf>z8L6w5_OK?;`#&iDJ3T2
zw!i%TMPmZ$kaOD?v3#V<LnhsLKAoyehK`y;6}QrZ;P$C4w8^~$IHl^OBfkv$b|u(*
z*nMViWojekQwS-NnI({*p}D#&LnGAeUoY~kTj-7m%$JT+i_2Lf7Bj*5BkEfP>})%W
zKD2_)e(r;A<on126NL-teP`>pm%2B*`=F*Fj}asns_W1#x~-c2lmyge=HEno%BO-7
zdWBivr|qj2>Nz^6HxA^a&uv`FSubyicR3FrmWx|tyfM|O>%m@TkREs}ym(i`yCb{~
zUDkGLX{F!AKR=n8uTjj$W0MEjuA)0H@e4JZ8y$X8TM#g@6$b0P`+z`l*zh-rMLc_0
zKCZDe>J5HHNW%i7NGU7X>Dy9bVxnl-V55<E_r)K&djpHoEwre7mRHHujXXTb{vxm;
z6n*YgT_o??&=~v;ZCNP)h@}Sd_|&F>|5+l}5|^SXtF{?&!r<uU(Uz*URA+G6T!=y=
zs(R+cMU1`1(v3rhVM5(LM>g=9;nDGiHGb|!)FSw{<lUOL%pIFNOvLdzwbNT^D5L#Z
zi8>{Qmb5jDI_?Ci(F&lMauqW_(ztzTnm(9IR>jxMwtKMA)Qb*wzVZttCU!@ZqVR!{
za%%AiK9ky7+0h#xLpLvNYaa9-_r=}3_Cz^bO`t3U`9y$gG*Y(!P-3A-hvku0=HY^6
zK6K^5gsg>|eF<B1MW2Mn;|U25;Z|dez@wEl*V8YV8`*QA(Oe(7lzi<=%%VkzTn~|I
zUSsQ5?JehmTPjRZ-~05Lx$S$psN-&<&%aOvy{Mg}=Zw-W@<r9bPft#K;|5rlIHG5G
zSY?I(_5#Qe=Q<;k!3cH>TdLoww)RUp`T{r8!6{Syz#xT8aCl4OAT=dJ{5Xe?>Az}-
zf8bmIX#(gO_`X5p_xt?Z5g(bFQZ7nIvgs%EtV2M;{vhQc*y+sN%r^5cTdr#Kwz2O9
zILl=Du;zR|s?VWuC`oX_e5(+?#kgCr6B@(!fU8n-jM}I;Dn%ykTxkD;&R$n~aqUN4
zH7&im?R<~D)v&(2jL%eEUoP5BU`9{fWBoYt7@Ik`)7MnmkUOJwk*{uV!Viw5XI#Xd
z@4HmhmcKJf{xu?gLyFg@ZaiBo$b@amA}Y;Wu4va~x$YVsA|p7~ir=Yz(7#TAXKd0_
zkKIZ1vGtvArB(thn@7v4aO)-ur}IaZT9p=ZTmCaa&ORU!p|w`~g5-TPw$V0ajTYI~
zuON=BmRtOMLdTbvdYqz9%B{sSI(c)6I?;ifa-<Xla+jux1VN{V9?$T9Q>Z22m8dl4
zsb{BZ7^hztOq-duAfNUM;pbN>dE|D~%Fo4f&7frIn<)nO4S{;vK2hF@j>$ys?Zk@x
zsp~|RFEzyCMkMiXi?OthXEEG4*>_>zEb?q>=HZ_NncH=%3F}UQm9wSpI7hwCXRg~W
z6#o1N4XtrItm9PM^KcO)zqNbPy8h75!S=t(SS>=MTn38V;lf)_%Vx_tbgUM0BV`G=
z<fosRt&+d(nsXQ+Z5#J;qqS7>O40{$+&Zm+ChFCe<a@+PAARkP7k|1LKMUWa<3O{*
zPENJ`v%Q^WRm5|ZO3Gv1Ds}xe%qet#ZFc6xfrTf3cTnVqZ6x`RC3%a<6d%WDX^3G9
zm9`uS)O%12Cy^VSZsw;@2n_3rJj|T*B4VIW4d<=4?BpBNHi}`R)Kn;R{X{-S_u&Yq
z&7GTlcZbX=5u3l&{DGUY{R?$E7DNprz#U(G=R8~!AtoCX$!I_{K}%A@agU0$-E63!
z{$SPfAg02&WkRZmo{M-){<h`U%!W1^<5$fT=AKN@6(dI`Jp^nab|4YD-JT7<7QK>H
z$ABX?s%gv>ZG0xs#(R6u^E+wVg!n-cRk<vSv@sf?&o{`E*hC~ScSbjsr)nxOAKyM{
z?5H&&H)sz%n{pfw12xrgmdAt6h@z9rGn;rEX-=oLifQ`1gSp7z^Wtu*%CX({c$eFr
ziAMKC=ssD|yUy*3Q&4{AS*INH|0OKkct+N)ic{KwuS&3Yh*>Lk+Ir0P;(#r&bg1?G
z2}5^1!EmRmy}MbPO1?E$cP%MvEOE~HE_t1(FPEEkt88dMt)zeaNt12^CLiKxtwA9i
ztGDXCoj$ORL{hEt6k3W9o$|_-(h2XyI6hqiobS(&SdS*6m2MT)YPlB3@aM=SnP_s&
z^Kc8fYg58-0~ZYNYb$&FX!`smzUmdCXd;jEr9SWR*GZ3%W&PZPSD3G4Tu2G@Cnbst
zLKia}XeN-ABYKrTT_=()EVUNwwm^r>qvZ!P_*fGWue~+0uKk)zZI>!KA{!Zw^S%S$
zAK#AW^GuOX!)G&F3nQ1BM;xxxx(KLf?C4PcAm$j#9Q7k=%GXzqfa_~y-O=`htx!!g
zuDO0XBxU!a%4Rg%2T^h3mm9`&Vh;<{s|Kuuj;H$|fr2yGnq0C6-jOeXs9bZ)B4v$N
zr{l|?p?1tujRaXlH=m_C<?XN`K0NLQH^;YRgW+IH$QUQH78`T?noCt71a3kN8}YTZ
zK#wUjoa#1(1W$$g`DW3W?6lip$ota`a9#UReuNEP7)hI9J>e|Jgev>F2gelKRE9X%
zH}t0|x(|#sET5~3d5G2eAKSDP6*YXnLk;F&l$fq6$-9G^QS?T6g?hp4?}-h)i5O|C
z*ydkrYVhX@W|QA_8R=<QVzqGIPEk#ju|?K9*0KSd#`DBHm?@b|i-$zF|D(78e?S4T
z=ccs9boM(^#_$=QI^D5&^A!BE+G4pKP1VQWZ^lt%P7!9DSynn!w^5d5o2cAvR#(kZ
znC25NaPH4*;q&U4(WU!dK7|s&Z$m~HpHyD-EON)&(U?nplW#utQuRI;PX<bU@W`+;
z>O-S?;js!r6xd`^A2eTr&!10UcN{7fblQAtd3Vzd+{t|El6&AzrqwuC_;_3nIA*%z
zw%|&W@4D0)$*(7TvN-<%n|U$_@e8ij$(=cQTyO43u1}hXe6NM5#*iovnmCT1l75(@
zFc}*|pIsCDYV`6~Y%5U7sayhEwoH}~?Ng3hup<@++Q(42mGaDiqxI%g|9lG%7~#qN
zTaAHi1c3;<oeOBvS`HYZ`(6GZEF|h(1|&e2+1bOUlvgD6&sf7j<f|-GhFWN2xs&0N
z;Jj)amwC-fgsH&7q3Ve6M}0D_?|b?~<c2aF5rfvx#;Gz2jg9Jai{M*30rzA$@DwAv
zG|1e}eV3+c%q(n%wd7Dw2dLwF06KY28Z9)Bvf4)pp#%2U1Dt_3%K%HwOjGswDxG34
zp{YNfpNPjC%OJ~#fjax!EKZ`uf8;3Q|9U-9Glb>)8-@RW)V+07mD}1rycI-gq(e&S
zF6j<YKw7%HkzTY&DGkyo4U*DIx02E&EV>r3=#Fo$ecto_&Kcv~d;k6Y!59p9)_R^f
zpE>7U*L_{d6kUcldKDNeZ;I6zaa~~)Za$rLC(ZAa#(QWqzsOV-M!}raQ*)VQhw2Nf
z?B`BJ-k{DKRy(;h-cB$}p3yd{uuTa=nd4&PPZKqZ-uOii+J~D#i)%!-Vq9T16s&_s
zb%k6Ws<Q)aX62?zyARJc#;^Q$y7f!#5^6d>qFfO=epCMzXRt5O&<ZlT?rN<I?XO96
zTJ~>UxLlt+{Oih7jQ)es7fMy_33WT8;|@N%Ok+}aW__GQ<kr4^4Pvg-UEB`a79d(l
zQE>6o*Y72V>ro0;%*1ZEAH&SMB|{zTpGj0RH!qQJ&$e*w?UDO5^5vOmkwwl<@IBbT
zWt_nJVj@D>N)`LXAVU}0#Ct5t#J!i)o|`lKYF#h~OTma1tV~H6v{_T=ye(^#U8*>?
zho(xwf(Ye;&00y)T=M~x)?CoN^=g1;4sZUg_o}z@vpDmYf3pA+5UB)(w%w;v4@Jek
zM`!q{O^J9hi@$~GPH9(&5~YT4VK84DZdA`Lv<x}y`M>Va7D9_><Ud}XZYj8!=#cyN
z#k`41f2@-%cz1z$PSDlXbU4Ciz^nBab8*{DyDVRQixg!|N!G5lITJa~nU0yu*=OAy
z5P(JN(l<y2yfSaeC;ByhZF6_C_IRxF-JsxeEQ&q$J7KG!*3w|Jif8_2eznr_?%(cy
z>Q!I5i(jao`org~K%anyr2g(`^QY$X-cK62D%YPi>KEvzU0Ox<28oiDb7SQM*K0ox
zPq+8hygbJFOSBNM*`~;c7&^R0mhP>yn6|vL@2$~y;alkT3-J%?{7z6xG%CX0L}Pr?
zD)S>?)+{Ss1C4k~4j^4LMmVf(Q+=CmT78!e!=!HTT(Mx*E(n@R3~3)Lap<4bsC?TV
zG&kW^cJ7^DrrW$wCmUkSqE+;cAi@mw&6hXS4(^&Ak$1W(yKEozuBtAW?PlJu)w$j}
z>sI^NuL`1TedOwHZZimeX`vEKx`u~^fl^@%TQ93~U2xW|x5=>oIKZv(*~pI>$GXuq
zf7JTDLmHo59crt>R~c@?xj0YxW+U@&AJRg^6?jZpA$yC?TvLyQ*<#nyz3%uNf189`
zu%5O&JSx1lN4I3F1ItN!D=hyhH1Nyh7kQVl%J84~^DvoM_eAy&KAD6s3}R1w9vo_4
z{P6gqH&L}<`SOgbdC`h%BlmCe=K!}Oi#$;E?8($Wl$S~G&$z$r8DGpN`s<hh;qlJs
zgHow`tCSw)-z4n;j3*IP()(2nNdMXmMHsmsd!SZYbw$2>`4>j-e@?F|M1NJ{;pks=
znEX%q-W@@jIS<E~3jIr`=}-SKA92_Cq@KSF?f-n5szy-P-th}<5dABY{O8jJupo-*
z`As~3)kW~HKp|!x6t>OJgt|`t`b<L%!>kwq&{)fN`um&iuz|{UBb2%v`!5f8#6PIy
z5qD)|kNiv6>7P$$<^f9EGdEaHzJLGrwGs7nc~9#ne}B_P1g+<u#|N0y|LMv6`@=s}
z!Ckfc<X8Uwrhm8O_V0Ew9wyVs%)ARv?|h7m#h*j<^p$u_p0orG4(-vWK$^$WK#n)?
zrN(=-M=x<c-lyYw^h7{bqT`<PYWhm6W7dS`m=L#+lZX51O{QhNnw#6n+;jbjli;{_
z$TU><P+yAQ$Bhx!MJ?j6Wj5eW`j0>UpTBOp-e(#Ryg}6#{nsb|&x>LZe+{U^RW_c~
zXtH4YpPT&UrN6e2)sx*W@v3}q|NP|NTyIbNxudiUGN=b0`Y*o^F{;mFU_`KEdb5lF
z9pqnKKPx95tgU;H`tASC$Nzn)cp)Ab(U#JW!&it&`@b*x*I#QA-l0|3EkAep$5~RO
z2O}EGidp;gci)G2OIFPH2rTToZP)+)*5J|%MKGd5G3tK$znRKEzvY((c%8FhQv<aB
zUJ8Hp6oMIGM2h~BiAw)4^p~H@!0W6fs7R6jr&)3p1S8704Pwdq$EpAS&jRHzuKqSG
z;MHzXz3=mnZy)RF{=gG#4`u6FLwu2e+2LvCKlkHby#&NscI5~t5E)o*1|U?H^6&Bg
zb?G+EKHxt!vz)Fd$J0xqs~2_M3ba40D<yh;f2V4!3|s$HJgtcwCiUqLk!I@qlZ_#j
zo^i-14+74wDDZ>rjj2yKY^fEh|MO({udo02RwDKRZy2-1(&FPkE*qVfU@4*-rzZT<
z8*W>C_PN7uUxZtp<sTQVBv`aMkH$*>{XBoU6;UX`0t<wvXq)`wn;=A-R+7mUwEuK>
zj`K%F9ArMj1GxXVzH4H@o+0euVgARvx62xJv}>CEId&tf$LD~Fs1u<mWZ-kq%`wO`
z76d@Wp&#ipAyyLm4*xaj0p(QtfGjA8)3hgO%D|g-K=^22N#5{MHQDGr>i6Y^CRD`D
zZ(c8g?gez9sc7LoBe0Rq?Ok!|L4tDW1#dnxfB<pZY7+(ir6A*vw24I}FZU5#GaW!h
zgVF-v`Z>Ds)yCagJ~oDf(d>C;E<_@u&<3a}3ef%r5*wHaHxI?mCA92oCrAbBGw2bh
zeq+!^c|qH95a}3XUpGSsEjM2Sl*4F12uiX62yA%MW&wt|P9U6sKdEC|7IoEdJyGFD
z0J_|Ing-}ITvb1hO*+h2<wkZ0!J9tmhYSq@Dy?68@~N!|vqCLl1jIZrh#h&JBGm3r
zM`nI}+ZEnO)OA4hzh0p{lDDgyu`mXG1;h3F#fpnSUlYxHw^nmP8Yqc)Cfk;O>j1)H
z<QhPjhvO&BC-v9x_C2~b_%2YSD234h`l6qepc8k>O)>Qx2zp>PwdU-TK>_pbvV}%y
zasLlMWJew)xLtIe%v?sl53th~H%HLB+p{GEWv^QRfrb|K4q&`8KIkTbyX|b3RA61p
z%-Gk@ca&BSk@7LKU420!P&yXxM8*P?GW+0@_2oy_>`{PkZYN#CM|R5XKqCDd&|p6T
zZEIfc4{N>xWs+m6mb8{|zq5IdhYOSwX5Y68`g<r^PHQWILFZSU&S<$n$h{5}GCLe)
zVrsyFXLi1X?XPuud+v+q4_g9FvJBo$qeB2#EyitE<l0nmGtu)wXM(<UHBP<*!FWty
z4m#(s>leIivrNqqNO1nsX;UOq$5_KAqQhxGaol-#1HB6_E=XnC8%hK#Li-%_d}P9N
zTP9`=i+i39|4O(Ate9OJWxxZl6*tfIfSeU(z@pT55|ZaO>OX5qIMPg`1X6!;37vti
zbPT|@^Ey*Wgu>Vr;=bUy@fMIct#1%%-X3M$1tElY(?R#oQq$28I?sA>4XmZ1C+qgO
z5J4emp490a>a4&sB7L!TA>Pr!*aupl$u!e+0CVJ$XRiYgYS!+h9o&zVrP!MI`6{{*
z;d*=)d$dpO1;{illXT2tWjYkN2gfOs>|xIlO-><4y$wjrgD>(ccne2-4rUeStWj*{
zsOPmP7XjZeWx_rzoScFt^ojFJE$jS*OF2QBsN6hHAkW=_=(8gP1a}<6!bh$*zPT({
zSI|3yDPKjwtvt7UcDh@zedI6mKn(|z?{|zRzY|4|22wr;Z1PO{QuthS+9aG6!5@&Z
z$EJNZ)p|>C-bod6Z(w|72doK?2B6P;bWHr3Fw4@9Lwl<Pi{_P(g<IuRC}?hOUiHvq
zo(AsPy3qGYTQ~XdfOWKH^{SpEc*dy6gT3|IS>G4CCk#vE_}9CyPJHO_LG_uV47g9>
z^6s+CNj=DgE+5D}JO!ITF4Sh$&_1H*jqf3#2oPgOU-7agi=%w0K`f7;hL01;FM)`=
zT!W9;^8+yqxd;Je{sQ|^aIIl=M=5FeC~m{^7=$ID@vUIJhl;^}FP_E!yp!_KnWc7I
zl~pBqjfA(dqu1-XxppdT7&nXMFgSVQI3jnO*!vQh_&uhLLpgS9#tOP^`oRLs%G|h0
zsPM^8>R=Ju3`6YndsJ<opP<~=x~z(-jFM;v6ja)WQ55f%F=yqm)YHaTIABtY5-3s#
z`UM4JuDk1_B#I}Jx{&GpOe35S31gOcmCVOpX=hz#pI-9@SwTvq)<oKUmjyIlYbQ>I
zwBDXnXg|6HlvhIY^CvK=d{Nh%z$a#W(}O2iQjuWC^1{3qyQj;XM`VcB>O(jsM#z}N
zrn{Me=C9Sq96uniUF=m)JorW}F`qs+;<rsnS(O*hoLzN(s2<z|*r)I3OJ26P#4N~_
z!m{_`&>~ei)nz#`w`{+%C>-q`yRkH?cH^vdbD{Nnpd_FF>LMjPJ7j=tKK8?5PF0NQ
zCe&qVx;dTmR3ZLj8(SObx>nz#FHi7lI_a%#4ndewly+2DySK2{WYwVH!n2?cB&Ah=
zJJ|y1%KCz2(ejsAg7dCxHN{iw+d%8)G%&giasOaXN}O$!7a}q<;MkTDtW*<T*qsCY
zM-mXgAyp;7RrE}n;B#xgU^a8;s5l0NzOQH25LZ9T>o=(QF~w&L@G8Z)?88hWBi!gd
z^_Hu7cnBa)5=1`;&V~|b>Z#-?Kiir84l7Udz02E}Xk6HGqiW7_D8rVPOaW5#W4gPw
zdwLShF~@UJ?FMiTNR(u2?lfP1<jp+Xj|f3dpIlm!_}h^b)uj1kvgGQv?*tm2!Xwl&
zy2qK*dcDT(8M_sIO7I+QxKsTRwc`2PzK`uIB4@wVmL+=5X|mb;kJ6xdh0kji90)N9
z`aXF*2F4uyqYzj`w{+q=yE!=Sf!M|BHcsU9(l~OodO4xkl$nDWBXYL-r2$*6oNW@l
zS@(Xm=rxadZ`wBV*LR+^-rX2{{Q=HIm^jAP_*(i=s!DS0Vatc30Yk(0&&h^SOI+e@
zf>;BspV+}**UL^O5>rfCuF(`Cg6NDg$wi=x@x+s9g9Aq~#dBRjap>EiJH=H~B`SEJ
zC^{Tg7f-Q$qK&xEznnx!u_{aHr5y`@p95lug%Sn?|JqNz3}F17vyS9qP*DgNaG{Wu
zNV_OhQ7he<sO2)LB0T=F0&tA+H1{nGkxONZsxQla*sQ_aID7Y4+2&DKQ|a+U-=O6S
zp?))15PBF=X>H9{jMEWbZmTZOV|p9wDKe3Y(HqS<rPkPXLj1wE)cB_O+bky`_e>iq
zcP!-3A<zNGAL-1IFUxK;Fkp{z$E~@>7x0R+DTj0TTd@M;eV}&01}y=yg&|5Jc({d#
zDp@hoz|5;nzV#Ot6ze(*Ql8mlT3e@=;ygs_XV#%SvkrOY*<u~uBoF+`!h~kYdXOPR
zBU9qv3}N1Bwtz8%PN*=ma=s?ACYD&Urh~YcY<nJ99U`EYReJ4&O9uyz&!d6dq!y1y
zcsj3a?3Kbc_;eoX%%8oKBIo7}s4Ak!9-87B(qL19j8zy5hu-qG2FtYu>hyl-(=V*>
zJ^uP=iNYL6Aw-mzCtcs3-@K5}?x|PQIgR9<Wnifu;94payRlXvMED<eVKIO?n;km!
zL+%+1;6S`7t&qPX9Fn_2#K&T$6~O;KMhXa}@M5@LCTeB4_z{*wYw?_r#(HC^ym1c=
zu~MstY!rIqe7hJd;?zlB1x1~MHhz*J(W{-fkOWg#4yzcalZwL5{%>n}#9z#SzqOeV
z(axaPp%x5yxay8tl1nq9x<L1nfht{JhY`J;@H$Lj^K+nFsnfond|4tfjUZq;tok-3
z$F)7PC>4BxnXHv?F@m%1veNmKVEtt{-VAP3Tr`S_+t`J~BdNC4uQCV)ulp|9O9@G6
z!?C~Oe2R!V<qtXAs|yD(-19p;)9k8VonBie8;2anz;I*QaHy4sxcHh+An9vHXFT%o
zk_9&wF;sy8SvQsaKaB4?W9a9M&#uR0O1z$h10(o7$()n29i#8aX_m6D@4U&nUW;8$
zSQLL7>E@~AmwYsCh%jJ0T<SNxb&d-8#z!o!v>_Jx5O}J)J2NA#3}{<h&~8y>FW~1A
zVFT;tt7V?>W^{hWD|h3huPBNf!}V9MX=U|v5*67cDaL|wlBZH$Ag`NVLCGiHQOd&d
z5koU^d~M)-dXeN{BG;T#5HrD1Q7YB6T}Ncb2JJFhgnVt9lyi-iC|i4%Tb$(~ht2Q4
zO5<b9LC!dmb&Ii#-Zl*K&UL9(?dx4@SVt3MM8AKCj<mm<`p~*)BJ@XXih1)c%J9h?
z^w#~BZ86O;^7-VCOy;l|hGP;x;IKT5c-M!z5LY9#W#p|O>n+n*-F6?nOaCGc#?4L%
z?Y1U+7uyTmK{5_1qvmv@i1)qbUa#?GYSIQ@@=XfilK_qb!^yKYspn`0rNum>nO#R@
zWk|c*-g%~yP3*eXL4@#c4P9!PoRof{GE2Tc;kJX%r&t8Wr-)TvEerA~o8`AM&tBR{
zLa7ph33ZC>T4CPMD+7xs#77oCzxjGr#PUH!K+Is`mBPZqc~V7+zCc|+@2=}kaU;<~
zchU1IlE_n&14VZB7P3Ig#~H*6OnG+bZkgO?T~z$C-{EH;ZACL4(lMF0up@WN%?d<q
zNCy*;YX*IzBQ|5^Bkpt}eO<a<x$_OQFw3J{@f%d&OO2%i8ifF0AeN*veJT+GDW0bz
zefb$@!Bd6;7MxvZ84k$NVbjG%WFacbiAw^>enCB^EEhP7&w_}@eURT8GJNa9tn8^W
znhAOfKltvHLVgZyRZ|jq4ztU<S{B^8_>ld~8MI5UP6oRcq`0gh1lwQ9C#K7`0OmtA
ziwPber<e4^L+U>6rosIQ7MHO`I{kV`YW~?9nBZA7y+ELJLJ+n?$2RWzsxI_WBe8Un
zH`G0lw?$7#;zbRth92~2%kppKed_b#eZ!<Fa#e=CX5GyzC=#a1fY!r+@EKMtDrk4P
z{27!@p%K!@{a-vMO^E}kF%~ukHXi4X94%j*uoV*>6XZN_&%edK!E9nbXz3(=sKhO-
z`X)V+cEQU3$t~j%j~S$SxQbvabldwrtu(1jpr<L8z-o*#53eq8ojXBLl#p9)P89<k
ziUu)FT#H~UH44*5F4Z!u#rYIJ?$1W@{Uqq`J<vitfh>b_UBp$IKGwwLFP8cjvymnu
zZI!sR>MEPu9FGPKov=hM8G0%GeGcM%((1xIHSexB#F7{W_rJ(;rZF`wziP_jkA~~a
zegn!RT~a9{Y-naZ#9<xvjP|-Z{^8b4_SnH*p-EOuZ<qDkh4M#EgRV*cT%n&IDMUtI
zrq(l?k8TRO%$Twmyn+}WhN@ypg)o5d!X))Y5@3*Y@?+Y4WH0{w73T5FUPqh<P&wu@
zbzH`P%Z_GckDPJb<}er4VV<FG2)k&O4GYKhhgRDKa)@E!aB>sG@d=RpNa-arIIfNV
zcocv6C<2qq5GqiR2vQQiIFXenBc2FU6&(I5`aE4EV^Ty#+9=mo#Y2g*z3*zH5k_e3
zI&0l@@zS&n4xEzy4lO5g6xC%z!;JS@<?aib140HRzvCpvTo>Q-ptCo<tq@?@JeCg6
z*9el3`1ZkE(eS-<0`@rrgK2mlSA0UZ0LNw*4w-)JJLC|o0IL+T4MrGj2=*GP=@+=h
zPw{;s-uyuHoPRa9a{5KrO1HV4ixoQ)WB;hjc^e??Q~zF)4?7WsdX3fBRNf?O3pm1w
z<<Ppdfm^IIFdj#dkK0$NzWH$JjYiEcDBw4}AGrK7cO!qQ*dxR11`+j8=h&!B;%Izm
z$L$!+HiKDEN6?*VZ?UgUKyMD*ohr^e3>`1s6B=iH!k5mI9UrnI3->8Y8vkm$_QO!@
zaU@Hu#kfxaSqzx@Y^?Jlf+V~rWa~f<wia)0J)3p2V|j5!GY{SLY96j%IF3v#nb<fG
zar^Dm`{pJ*M8;RYal}10*^%_J8WLe2Z!PWc@x4h-5zDh{@?AxyrlXHucn@+P3s3ej
z_M4C<K9SW<Z#m16a7bm-ugHggDu{-iOy+ux^};Y#xiZF>6Q40HlG!UE7SN7&-jVx(
z;%kEPgBDwD4V%yz!}RD=;Nch3_74yXoVMBsX17Zdn-vbHF}}XUT@PoC${MLKGkEP+
z@iwwmdp5g9KkTGv^!Z|NyBm|VP#c3V>9@k(FJ(ufj7<Hb$2Hm+#O{KuD@F!cZ#jq-
zst}nP1||t*GmfJ7S6mvbL3}Se;jx)oT@Zn#FM|&W!fF__o|$OlCh%A*Sd9YmT#9=o
z1f;KjLs4fQ2Uk)LqV*A%!kn0uf<uy8tx#nJNezC_tD&d3FA$ZlFwpxS=TffqvGo1;
zgT@$RWzk$`&z0P^+#i^S3pPQ<hBR5&R!%Kdpj{<Z7omoU;mx+@k;^xKmVlU+a{1I}
zQT*>^*ci4TiIC&Ra8jif2Cahwy)BIVwY75)-Y51h7W$+)ws;D&BAA2%u&rh8;}Yv2
zKRW95NtAQEKTzM^C_+H@%yQW+c|^22lj-OF{oJzR{6S+XCUTZVL9IJn_mAzGhc7qG
zseF#Yn9Gw13)f&$-$eJHtcc$qrszy^?vW0Xm$c$jYZtdl(s%#4ZrMI7irL-s8FM&3
z06oHpSo(wHCX3`GPF3nJZ)v;_FZl9|#REjuayPnRJk@!I+Wk#7gL<Zw8U2nKt#WZM
zLN?*IkbJIMn>%H1rTsw}-Ix}b@z1vB{wm6%pLyC`3iy*r#`5HIgmKE*2wD>Qf@_q<
z)OCBwupFsSGA}6PrTPvR+QqSCe3<j+U{b6vxFH7Pqe(V3^F_x^kYSv|B)HurMlntZ
zx1Xbl>nF6p?UDYFUtfY8!cWKo4c28=GL$H3$iv%;kcRPk$cnBaq`Cq;w~3JMf^fQX
zA1Do|7p27~T{?FYXs(*ekBwI^V4h%^tADWzrbX!?w#|<_y&?VA65aMTGWrx^YUiq`
zyiL9&U4m-twq<Jk>(itq2Hs}%(Gcw_&zMcurGlR{rX=cw;;SsnGM9$z2Ef;xQKfuf
zJ#&tE)Di|~@vFGj;9G#K?1;n`u+~Rq<Bf&q`KlKLOUzJQ^{x%UY$+cTFg!$aTR>+t
zt@AvUiQa8FJcd9)SbZ}110R%TLUBJYDT-Aw(0yv@xrd5kcK(ApNXf3I@)rnlUu3*s
zX6jjHt;%3BvO3OLBfc1|e9<4{dW$)vL{^?`*eu@{RQo(5l6bpPk3uD&=a0vjG~@&*
zvHY$2XWi*0*RlRg`*JDyy`v|~!e+vFqEC}I$%4r;!g(CyGhZH%e2sP<cYZy3s24_<
z%MrE2eg-mPZ`Tqu6NSZCeta+oyhK)2KOO{=;LSR-ouHvhqU^`$^nbEk2hlr65vmb?
zyLTA&q*ss!=?2z=i(awY*!tGr>^*1$ri8&~3`pz6CPD7$0Sx>n6YDr(NuD<6QpxC;
zpu}Ywk&|zqJ2|Z#;(J{!8kCA60}&P0MD8q@?lnm}<tM$z$)SahLbV0sVEBZVoyKVb
z0EaEHgVufTOi~?7DI+tJ41m*$asxuCy?4)DL?jJeikj$cmPWyOsna+9GBx`$GZ_S>
z)o)#Vs=FMkoUe&LtYOpMHzv%L%+b@qC)qOMw0_jCW4%}G>={27`gk5N^revJM0PAj
zyECH2((B}NkbOC!uCg<mv1(M=(_wHjeWZ+Glj8Bo@rHreW^ttF+6&TEAURHoe~;MJ
znPTDDmN1l)h6<WotXz?D_vGW$0!T0%(qN3|a!CDDeWEKa@MNyqYB4P&r=NSvG(T;d
z9D2Sbe3IZmZlLnN%W+)DQM2jJA~7OA|ArZ(_`ptTvsFcG%nKdnj!vzdyI31xQbE|B
zi}Ao{Wb>&A(F4++@oQfY7Y{^yVIDLLp{L8%8*{|O4<pw8<zcVhP^g}wWSDgJhN-E<
z<mHuXD{K%EG(Qm=1_l--<_~HI)%GK1rv7C=!3HfxTs&d4rD~g6;Rp(St*@rko!1(i
zK^UBUbJVUT?B6$Y-VxwYC~Bp?xoXHWjU*tY{8-y3{+oyrPsaFdgqR?nt7IaOhf{b=
z@Ng__i)^OgSv*?C_aYWku|QP_X~CrRffR{SUCo%3;BBSB^0U+-H1f9_Z1Sjo=I@MH
z?qTSvzG`+}@k0?*j_MMSo*53B9kF^^z+At&BCHdT)6g}RhHWT1$r;5+Dj(n9=?ioq
z<>wLk&elZ`m64uHZR%#9cW?yz>1<OcX6?5o)L>c?A&~+F3Ul{(-b@LF*>w}*h8M&A
zT&K`?xWpg)VDA>*5*ehoh=xQ#9vu0qVR&XPa6v_+Ll+y_G6FeXtEne0QL8Z8dl}Ta
zNqTlWzDve}H>ex;wB@Oa1+)mGn0CdsI6KtLGpx&d;}d8c5JR(NmW1NI>+-Z^-yZh*
z9$@xUo>)$5TeALq`X<Nej|UwfNK7g81X;=>Hw|TCwL7(Zq$?s_yRUlMJ-qJ^%N_^M
zOjm~v`DeaXS9P9>tfP;d3~)aY8MTb&lq_q_w#XDlK^<WTcpE;h+4Dl#?8vXTs8KAR
zKUCK+)7g547|DbQs|V*`x=W3f{Or|O)esLWgwnKBCCcqvT|i7Hu`b^;J#K=Y@pE^%
zR;P0ZRUIWzwSlFi<^oqs2{{a{dikLu%Zm{-8uIvX>o2TMTfLu3bdYp*uU|whS<9SL
z-71HSkQh;Y42f07mw7-+PKWX|JWy()d>(ohj2i(N3Q}T3o0PkL9GHTQEooHRxc9x=
z4AY)SjK2@F!{lbrP-WkX`AkAd|DESfk%@k{Y`B4i%zFp<&)%qA0_6K%#j?bItcs}1
zZ)STP?snBMh^jKy^&SulkJgdE7o6eS$)fr>3<!?R>NBUW_6lRQ-t(8r8T%T#_6aBV
za@>3r2LC`e2xZ{6O#pIhJVzQV8y}VYu9pPfji3YLHz!FdQZebAATOJd*GekomLRX@
zKuM8!EYEaf(U-wJeYzwPuX97xZ+P4XgZtTj6)u~m*oLE)?x5OtQ-<AdvO3>AN@JaZ
z_IwJ52k_jN$=`TK{jA4vu%>LS<-zjRvt~AG%a2hbr5Fj9F(EaMi6k3*qYn5LWKu|l
zS0u>nSkk5g0UZ%uKYqXN_CuLNB*#yC7lojEKD}H;kxAMr0d2?FzNp4iVG9ZjzG1i`
zRpD1xvlL7xQJfDt{P4OzpJQ3)iCE`h?X%2|oG}c|O+<YCBfT$jIPZkvWY*+KkmpwM
z84@c{EVDL1_IoC?X69Gfhc?1~J_pi(+})J+xG0dIQ<kW^gR=LsWWKXH$Vjo{fi;OP
zVb)>3)KR7l8B7CVEBf8Sza1h#0jQ_JGZCzcd&tT(`KmjQx=p)pAmI~CL1BWRXwXkb
zf2{T#eY1-GdF7`=Jc<}G$>+GFK^&T57eAHcoI8=qHG*fv=ZRc=vZu}7R-d;&b_}`c
za^H|5B|5eUj-FNT(?-tk9dko*-dD_PVmM|(MSCO26y&82@@CmGiy$q6g&|s5N;g0d
z@bEx6&ZMD_c(mci=gl{IwnBqO_)BDC*z3uBNPjTQ_c6XPNp)ulb@mm1l^|-`R6+7<
zr9zLNwA6{Y_6S3Hv^){U{ENLqGOLbHCoIW35ksBJa>4NKa;g#p@McIBk?ERjaIdoi
z-9?dhALfZ53C0DyK^+>+#utT8R?bMI1Ww)*1Z>xzzA1kZjlFgzZT7-H{hs3OqrlMm
z`<ZAm!S_+{*YLGDvl>?Q+x6JCu162F%KDxA>XtodJQL7~3}Mgv@~cJTb5;Eeb9Y~G
z@^u6yep2UbbGmf+0a8+Np0Xy3630n$?{NbzR9}r*iDWyfUHj46D5}`(G7}7k&&?~t
zIU?Gvo}>BVtUE7z9%$|u#+8qp=EVw%8`g}7$~P4{_q#5z#Y<Z!cR6oe&1%}}4tSFW
zF6TT=zW&%IWyt>g9Srt;@JZoq!4mNSzO4pv;WD<P3jQMG*DlD3)1IjheJUMwBO!ZQ
zk>g>Kf82dDp5^SuziaEF=%Yk1?9nK2zxKhI-5zNs$o#+j%!(X#q>In`by+5y`ohM(
zl6abdsehlw#3*VXt*gPY)~KxG56Nrh!kF9<GZW*!I60@5vSY39qBv&+6-uFxnJW--
zq+~m@Ua&H5^nHl1{_SB>E5@MTqZmU@9u#V%u=_%#dMlKPzABZA?XR;oq7roS`L_mo
zHC`7J9=R}rs`$eI{)fnLm=3=2NdX*14#O<3Bi(c@@7#dR^0oG!FiM`PISFMVPyjG$
z8+&)=NqSrH`=ac(Cj6+3&zHG>w!A4h%MN5$2JRj?cEfYit0K7Y%NztKm5zWKEJxZ(
zJdSz-axiWnF^0wGqR#KBIJ#>z<nJ7ho18ButD*&e8i^e(Oyahr+|#&ZMQ3X;D&qO9
z+wa!MI4FLqt2_900qWblrK`W7u^O6fcwPRnKZolbY=15<D>C1oDWL`a5>G0y`#8vY
z^=70fzIv2>z1K0dRpaHKL0K7tY2n(4LSyWL{8wl@CkE-hfjsTW^0IzZ63H0duc@}Q
z()7iI4jwEF6Cx3V<S|6mvHV>2E|~W-gaSGwLw*1CGgU{CFMPhw%x#XJ#Pe9U2Kphp
z2)9?H=VZ^E<}C=~z)L24qXDfXpG8J+8Vi&1VIZr40H|Qe$D0%LeT{}<y8Pt2Gw?@U
zF)LP?_)=1?bCl275VreRK7zFmHSEW7y)>uS3oi<&NH>)2h>Vx%H>F!0L$L=*ug#4E
z)B1|L+kHF@u^kmeB|1a?4_LH1F^}m!%?VY`ihStvgk{gIudd{<O7+V3JyJ|^oHS;?
zp#yO!LT}=nlps|JpK{EVI0sa|xlHrnoOQc>ZIIvaedZus4!=g!nze<k;>}bxsrK6g
zo@;We?uaj1C^dgr!c*xxuv1I&#y9(<C}{l(a-Ys^0fbXkVogwoP1MMr*S6NOk(QFZ
zDj=r+p7jS3^$4km-#}&8GAF?(=d?J4;&xfUI@Lj+-Rl8|7=0i~aaT;!R*Md%ZkR?U
z1gX#^4u9_FF=?4Wz38}Xd>wbKq{X{?-I_M@(HlMj?IkQCM6kp2-zj|2sFP|kHl_5D
znVRJowR^b+`@OzS!w{@WV63p^tJ*$)kbrbFasHuYn^jKpiEW;^$j?^jEmrp#a^NJ!
z(*n5ZI!EWbat4N}u)tVIc>E_sdGtu3vxEwBOVD}s2aB}hB^#rM-#1^M5`3vrA_4}V
zl3KYC6JM(keeT^C2j3xCrW`3D&8$qa0uO^pRP0Ydid7iB<#Dm4wBOP+V9_Kv4|y#z
zyYkyS$WMXb>-fR3ZtM}DD6A89#HWmSga2?|Wi*!e1o8x=G5icfn5DigJfF?vQA1?k
z#Z^*Ulwc|KC7E8TY^-WQdG9qjpu8$!E=0XIyIP<$8thqDL%&6A<oCHl?%)bp>3I%c
zerpB9W`rR_R7arQ3I^QjpBP2;*U+Z#d8XGe0A0a=UQX8cWlU~}4jEczxE;D4Q-)JV
zgrh8bnrNmz1xP7IpG<%c!JxS(n6~whIKzrmP?FZDyR&VL-R~eg&hweo;+Jowg>rZ%
zQibnT>CrOuORaTSyJNx>nB)r6e~PMHzttCBw~7dN%4KGpWH1$ihd0@NT)6|){~)k!
zsbqVMh!%8QXSb|4vn0N7Jfl7{P(0rkA9)l0oWLzef?@k%hwxK9dL}WFw$~Ri2ommL
z{=&7j-++Zyr24!-s^>HNF!fDLxw^s78(_2cXmD5^wYh%vK4B{ET4~zQqLh1IOHche
zXTSYC4SG#Swz`@dAN?z*mOrs0K{)OQy}e7A0a^vn=5A6qauA@KQ+!}9(?~1o2$OOf
zJw{bs@{pSDuo{r$UtMl8Jh<Rg#^1o9#YSO7RC8H`gun4l8wKJ9YagRnA2-#cN0yH{
zQgPisxgS`P(-F~vgOtY*Zt6+atWlrAhXYba+)r%aA1nNCV6;e0#Qh`eh9Hg36^v}$
zvVWfKPjLkkM)I2rQe&l;XZb39N-l0ttcfItj=vr`u+=H_{`$jmJDlKIPtJx!ZeZrx
z9`zpV^zz+fDcWvJvo_q$P#fshU=7)p+wvuF!BYpjyPl{uC2<BR1Xp!QKv2rYc&$MQ
zJ`ka^)sHiT<=CrkOnAkqP#i-VF}fiD1Wc;oUfUu|_hzErhti%T9fiG*i{cnxjf{(Q
zNsD!;@K~GXna$i!2ifwnJ?}geiGJ34y$UPAwY|nSS7ArIWAG?6?s)5gnFO@39`{F6
zuX{VTeW9k0GSFJ>dvYKTjquwYcYu)bkEU1Q6ecpm>&e)riqa?`ynFAM$uMvc;$gkB
z(sNVGa_}}+SlIS5YV}RLGd$dcv>t|l>-kw^QUjCo=$;@OL)Rl1QE(InrMZt$e#R^$
z{b#OPJ_>oay45=XS`ahWi0;M`@-%h(aiR61fYNnUCB1}puzu1lo?|1!!+_9)Av18a
zps3+v?{eHx<%{sqp(`e=RSu5sT5Q41&&sSmst3g7t3Gx(ya5s%rAMkufyO|-<$|r8
zETuYvTpE&q{tZWIRVoxaN1dcs{E7cskfp-B$s*bV+b;^bUR(Lx`6TA;Ce6g}W4%@W
z^r1e-<+I^Kh>oa#LX{6$!k_;UE{j5e>Wllp6z_J_!%Mh_i%E33#l{}1FIF9aO0oNe
zj+Es3j;X+UD%5)*EB}N#U&T`dtFjBf2BrnW3yV=svz{Xx>)Pl|mo4syz|qFAGkqD1
z`@D8?LvQ_=45<ja(6^udK{{OxA8sF<^)(w!%Rpn#kZ;J7i9^2fZRXHI{EvIRlX7ak
zLuS2Az?=+ql=k=u^Bg={uSor@x7p7h1xLqc9e6_=?1<a3W-P8<!9kpX^|EkdjN-9q
z>%{2p33Y~JF{w~|ZZ{mx;|or`R3*I)-6;69Tu1t>ij}NtG~xEWo-aPkCfA=xm7TGu
zKR%8yu&&5SBI(0J8M_#YxT*qrZ$!P%l{rivrIT*rI>)zaysDpSbWTsTMkFiCcD!p$
z7s{Q}nRZwBQYUqD;6_h+`4zu#L~Zo?>Hc<@h%4sE+1F)?;_fz0NF>g21T_}gk)THh
z^HaiBdgxNoEy&%vUpN9usC&cJz8oiD_geFTIzw;RD^I0ylO_XBBy4q>#U~a7BM^|L
zB*sAAd^`G>RZhU11e40eKfmKzT}A@+{mEm47u`KcJt>Ngm+eHu8>wsMWYJSqc`IQj
zB518T!R`6aqJ^tyJcZ!sw3<wni-Cb0!4t^&IwQ`}_c)t2&wsFDMG=%)?hC#QK6bUU
zQBijQHQX60Jukm+Zgl4JK1YMqQa+!LSi;^{#S1E{C#o#ytkW~DZ`1*2pB$O^xQ8iL
zY!djLPDv+Fu%vfl7@5K>6K!R&g?1_p@JuyrUCymu6WFYNd@Q4$NHC{5`(-m<okgjn
zK76>fVSXEiS$Az^T1-~_tH5*s_X=sNnpPj<M9M1Fq<L{>l=o<7?0fg(iyeAiF9V$(
zi>a@;1!B^ac(f#wJ@K&;MJB%Xr#kb_x8ldWSK;~x&C0*`Dx7Ps1ThqIrpskF8;>-@
z@iAE;5948-Q*oNLJdksqoS>3KORv)N>+m`2+3bb|g+>*2c43YEC*d76*xepHA*95$
zgbC)-G#{bM#14S2c7!v{CxwZ8c?hIt>dZ>t*D(YB%du|ruaOZ~FnvOpwo~K6wV(i4
zVXt!CJ}3BM$8%Uy7RJ@9HD*e1#<QIyS4OC4Ym|QKK8VvuKu0=bfP|cwYdsz-kk7$<
z6aFi{z&yiS2*6!zNa57@%xZpllK7=^E&_#HVKAA3EvE%+UAiU8G1GEBMC^TpF(?5L
zzeoW#6jI&&OXe?%LTw^Zmw5I$n0l%$W8NpPc4Ki&wV|B@=#bkhO92BiIDP4wa%CQF
zSzFjzMd9OKuc#rMwJ+{U@hRRNXj~!TAIz<%d}GB3(?C)|rb)fR{9s|sUhp>l+pO=B
zK+k8QB~I0Lw4%|~K5N0r@QcoeC2clq7Hr6ZTnwzai)AlEOJ{r0sCAP)Xqjf0zp>FG
z;xQ_n?d4ZJUQUg3R(bGKo3jw=c5TZH0!Xh0?rdp4TVv@?I`72n6P89Lk(2R(j>crZ
z7laU|{9Pf+y^+yoty`13&mcuP*S%r*yPU68Q9im?z54wdJ16k~Vb5|z-I7;U!7GxO
zFw|1!u2d&uSs2B=vL`yR9whh@vuE74$=BMw-+g#+{G8-nZ#9Ow4xjv2c0F5in*uR|
zYkfXktm2Ge;Quo?)E~{>WbmOOuj_61ONBeKNM-`mOFOL$i)jBbmHo>RXG&W?6qoRg
zHzi2YPiO3^2S-b*-DV$0aE|_pZpN)Ol0CQ}s@Hw{Q6g66tFI!IJhG0go2++p`NOlQ
z&6B~G-+{hyWfCV73YJfn#u3}n72X;vT2;-$V^RDy9Ve_QExI97s?4|H#rrpX<M&`?
z^#<RCbPE*^?bDb}ylB5T$$rfwsJ9&`FpMLZ!<-HE%1b%T8xa)Ox5^t<-D@$SOf)6N
z=NWZ;38TBn8%dfjrz0*|Y1hTy=6LMO_H8vTPKseHC$8wcQL%o^jf)|Xa}b~X^=%H1
zU?`bez}q6}cB*uf=k4;B0D;N$Dyb!@FGGGjCr24OX8DG&e(dNxBqx#?ZQ*MZWkIUV
zmu2dDU1_7Ha03BYxW!?r%kle}ttMf7gyW9%>W>nq^|PFN<^ugJ)n<{T8j-$k1^cQ`
zgT_FJgtPhKKrx&!Xdt1Rip<5~AXcX61ONHx-c|Q5f}?#{kn}g+*~`FJ$;`K589gSR
zvz~^K_{U<YTphuv+qS!JmokT4-ZLL;Zkch4_jL7DqN|kun+srTwZHqyIBj}nz^%h&
z>ANtrMUcf>R4>{y<UE%<<P9GM^@Nr)>pAyNwuR7f`o3`IPccTm6BWmo<%qIRku=p1
z=C86Fo7p@|ul3?~wGZCii|@`HIR{h)L?>p`0iKKD$kh*U8CSap-J8;x%XOaGj`y86
zpnPh1DF7r7A?w90Kc0rilM{ci4wvsBRV^fr@dWVF>RXZ<vGw~Uyq1c&8w3?%ICE0@
z2KX~rX8uiDiHfrn5hnpq%2x074@>poChu;Ap}g0Au&pV+BbH<&`V&_f<A5Y=^W_Zb
zv|w4eW+>@keDRFSLsMU?)l8T@-=nFt5N~PYkhtyLdMFkGb4ExT^41q4U6ZV-pp?T8
zNS;+WO0`&DpsY8>+$xNGsD(KC$R1+K5zAuGHc*_jq`rSA%y0)pO_CFm1ct3wE@2+3
zO`*<nfn^KN=Q4S89-_EFpZV^M%l60+i*;5KM}KJ-rsyChgZth>>i5&F!q4pwbzv}%
zj4Eq)^1#+{?&!1b!Ysekn_EUoIBD{kWy&)ADn)?8;q(+`;(}=aWn!hO@;@3A=H;mT
zVq8l)N_Dez8~6Gzf3Z~s3K_z>7ybOo*qTqWopKWJEh0Dg_bqiO`@{m}(5erM=XKfd
z!StKE6xag}k^2}2`U-bin-9)J#_=se%ywD@*AxB`@GXcyTx0n#5Wf1yE`>V)<A#Y%
z8vOH>NT>?a0p?XN|6_Rn`KuLr06<?bq(hcJdM+Rk9W8ru9*>g&h*duG1cQ6vmp<R-
zJlH_`5=H<!iwe*<4({wLk$eW4zsHQ4Q2{{x<fpd7{|ONf_>MZjGp1k+P$xxK!b$*l
zPX~_0tdm7=yF{(~Qc-O{?_F$l@0*(AbWB9Xr5Q`oKf&z9TX8^^pFO$x!#`eGh(N>_
zEA=@4W4FsOdO+f!@hOPkj^zXX`<uU~yt~<U@cVuOO*_f<vyfWCfORWF`f8!MC)w^A
zQq=h;#tg!1LyfX9{S6U3d768uJTJtt|0l}`&{kmH{&TMX6X`FWgkzNwI<p+kzCio3
z3G+WMJr)Z9$Y7zyqMPkoOXx?<8d29}HIj2KZFZDf5?58!QtXUl9+VcA$<P3Q6sfPs
zla1Nu<INk{l2o@Xp?x<!SL2;5ac@Cd>2GciU<e#E02W3T7d@Yb044nG(|!O2JsDhJ
zH~--~Luf$9g4E$x@3Frc_W#}~7A*Cb9r^!o<CwM>8i37yDeCU1^OsZkKi^4(o6J#;
zF@BiYyMWp%ypa;uU-5m_)wt2kf^{azA;R+{w{q?vdZRJ%VwPu#o-Fc5T?u)=5<{u*
z?aq~PD^yH-T6b>!d?onpEj9W?;<WmI4M7|Ngwr|^RdEhrKZ1a#@H|4S#ob5hn~o2F
z|1Kdwet>!YRkCHKX9vET0%yDv1pelc4=^9b1Ie7m0G)^48H!yIH!39++~y5$CIZS@
z`5Z?B+@YZV!Kdi=>F0)FL<a-{IBN{fb8I|Ct*d=gp-jeIbU4=b53m)Lxm(?vT}aJ8
z5vKc%BM{s`m2&Bd<H5>zFpB|nsN)MJ&por{3bSs8IhR`Qn$(=n4>lIC=St^~mVW0(
zFww((_qBft;JxN&Gp;pVJ2Zjn!u@pO4D($xs_s%aDT6+-d5N+Q*+7%oO23aEU(_-G
z=M-%6+;;>@KIb#TeuU+KmKy<SPr!Es(}Ima7FFLHjzbb5V=k?fgn$VNZ<MbC^3Q8;
z0XjEv$0hd&RS%?8mR3J0Ve$QbEA`6QGR?kjzr^r{$qq~n?bS@f^<jS}NM!uB^>=!>
zMF{-7WrzBQi~&ICp1TB3_KB0U-$TR8(WDNhl2Y6{AkMpA=IF}|h4=lUdOPnn73_O9
z&-dGX&i(?Ey>X{1;PlVa3P7i|Tc8QI&-Ov>H(2a?33~~!;$s20xWjK7kT1nR_%qWW
zZOcqpKt7D0k9)HE9-Zw+g%H%|$Q+J!N#imkVA&$3Z`~_YNWyD9qeUs=<$8WO)k*=7
z{~474dlxjOC{&i5w^9cV#=R)!PY>eSl<6x003O>7*&OaKPGCXlf9QF>L0)mfG<`+s
zOX%RcI9R#!bnH}cJqpLbbLG?98P<wb2CoR1dh!~N9!Ti@dn<woN90m?`A^!Au;W=t
z!#*LF-x8u1C7h+|WhTn-v(pn=j1P=~;cdl*nW>C|eF>=&ldpMaX!JnONHfYkO3+vk
zCo%23QH}keY!t*nI0hg|(vjh@pzSP$z}oY}n~thlfs8e$T6q%9+gw}JbpP86bAoMz
z6xJdf=wo5mFyp=EQJLb}>>|4YhgFA?-{GgX%OB}anHHe8r}b@=nQs`rgpEd7UjBF%
z9fSZ?t1;zId0!v&BKd!XsvK+B|IgfM7dqB#6{M}7$t)o7@%K<`qT1du4U~UdIoY4t
zSTo!q(!X<VWgMVOGrQi;x2E5dIjOA|V`PNV;6+guq*US0;D1v51rzr8?^A8%Q7I5F
zq-N@$)H016AiV@j$_4^dlDU{&QTRzd&pI^jc7QG#Qo3X#JIX7t3<kN|!_8)``^m-!
zIeVXY3Tg^w{SjCoJj~Gh#6>~NBE_65ItJjExpqJyVI~_iIfz^@J`{U2p2DCaAa|o}
zTUNWgXCN>6j&WY%-6c+fxjfr9vuUvUI`v!z34n^$y3ZmxHg`M?0+{9TyT(H$wvBsO
zSS^PI2sqtzg7h;f$3R>4$FqI}KBn1p2s9^zT|hpcAnz}S^;IF-R2Cn9@4}Tw#vqRZ
zdLjz1YQeD(Ok$bNY4>d{(evKyfr1K?@7)!2I6;ogzD8vl1izg?j4yp6b|p%P?Z~}w
z@3-I8u5lk@;Xwabl!s!j-Jv8cb10=Bq<~n_9rMe?LnyzCa>7)H+-EXW79P8Pho-W`
zd9~uxLi3r)#E}P6&FY-gnU=Drkk7A$RjxL;&u4|zLel&jr7NoJycVUFhI$u<&Kw(0
z_bca6OgH5EJqR@bKsbDV)nDupyy?t3+2i!5H{&$g&!fS5?@=-C^-c=-*XYiOPCBek
z%Ve4X4tv|uY=ga@M=3<2kKq32p2?n<A3N>1Uy~N3E65mPK?(k!<qD{K+yI0uI{;e#
z)7o&`I7052F2yX)&O6`%;Ung<8r1?8WASt`ly*}{Ef4+*Dt$T*9ndJLOBjo|if)7Z
zoi$#YXd3#ut@{#tEE>OT)&g6jT0h7_fxrSZKDAcgkU2CM6AL(-2@jel;Zp5PGZv-;
z89YRn)h+n{#u4_C!22qnKuq2rQCUFygt|;uKg{e0ln@@oz#y`36?O=E0Qe9sBPjtW
z#$MRM`)#EF0?jrj`|fSvme2)w;eAbw4Nr%I_WKM$U8ws06Xze)#^J1WKh~d`$qHp|
z0g0J(#?2p;-H6t<Ph=|qN1Yoj+9!E`CD<JS^pTr(Z*oaBmby@DZ`%aTRWCih{i`XN
zmF}0Hy?XF{ZpZ1OP$-jtAj`o*$I;HLkRiLk!cVdR=DOP!?4Sp{&Cg3~r+kf90x8hs
z9lT|=zHB(&LB&W!cUAHdK0UlWa?o-azUsi8`~BFj0g7bYYf90d*nhn_RJrYN7R2m8
zO5}CWJtc|-w1<?YchA34e&lTR|9z@c=f9Cl8Qxg6wkEQ{_H|;{_!~JKEsgx}?euMt
zZ0GFNZ_1X1YRCS}-78A=459K>GroVHYzRN-*Zup}FJ*+Ka;jJ?L;xr}1W_Dt2tm}V
z45M8#IF-w*SU?F`^AUOXB2C9N^MJ&gc(^azJHRrEqZJ`+oJs#NGi*R2*HtV)OS3@@
z<s$+F9+zfuE4BUj5MbgN$&lG!Exyov+-Ccz`(eiucTgA5{dqH@xaf<w7AMd4v4m|-
z;hhJ!G1lXzUS+F7E^rp2H1*@mp7LkCsUF6!FcqFTmwH9CHtc`vqK7F<?xtSO5-x-d
zI+Gewn}wENRKuU(*M1d-x8C_B+UMGtq%6lNcS8E8Sq_%f{v0XT(<lnY?lN2tiRx=t
zH4Cs{6+CJ`$!{-a`zWkvQ6EB9s>lpcOLqMn8}5F3cqgnzQgkn7c?)mxQd}58;DN((
zQHK6guoUN=j~l(bIkXSGd0(_18=r5zQVOcR6{Qn8J}Arz-7vV|Xqv@i;!23Vt-t#^
zvT`VJ98uVrDYDU`-(Vq(ZNBzGgu<0+@af~E|1jsfRBb-$Dx()amqin|sQ8c4q(3g5
z5$e5dZ|Gm6qTj!StwcOU?bLdOfRxk!(P2cLEfl+19Akf8VT-B<<jXFaIis}&+Fb~;
z9l9jWowt7ToulH+vbP}ZbCE}*&ZEb*Xx<(~`{PG_pJBTXB%=GO%kkNW*sB>32!XoU
z9q#<B{cywUr&r;_WYOixVm$=F6;f)lYk9(Jr&Vqz`zmA^%lb6K1<1p0ta+Zze>Dw?
zton(5)tW$gvnf0CB(o-3Pxen^8E}e|Tq!bhngNrUYSxRh%2>0+2p<r7bAGdSH+Ysi
zPF=I4u7;t-c~qsYLmjj%3Sj1OPVv@3kn8?fQ+m$3{oLVB#ok1(u-6>75aT)$dQ?bU
zHgdT0G-Vc+ExVXha^(i(c}k5X8}I6Ze=FWCWKD}!S3&H81}})jTT(bDDEvJU)PY`@
z!hzrVprQZ2JX#&OcW=EgG?rfR`ke1qc@`R24ZJ3x4S}Y4uBUV!^ipPFhL{$M%)5>S
zBYLI~$P(@3!sG?>4Ll=1LCFnj==C~ZKOu4cEXe95lABh#RQ;supG?`HLkrUq4%-73
zY9H9-5CkrS?ApwMr)=+8etRp;HL;|~qKL9$@-s#>H;FBS`_~J(d3{L@(X?SW+vp35
zK~rj%q2lS5F(vtO{m0uQWbwYHJrU&9Hoe@m=`QM}8mcvFD19VSFHB3h#}v5NTmowk
zGsYOm`iLJ4KVO%S+Rx0*{FiU|i{d^~&PURtZP}&R5qQGy5s$=F(KL8?Wdy`r<^oov
z+1XQ)2q*64LHZ`Vd0coutdOCzFpK8eZbhIY=SYcwt>t#@?K16fx73V?*ul=#QvWkL
zY!Bf>jh~+3#{;>i8&X7An_Z&ko7EK2HKB6E^FGkDC2tYA?uSD<f<hj1&nO3v^u1F^
zI<kcZ=C~hmYGj{A&lwCxf2~^iUL8EoM;g0(1!txVp73s3%8}d)o)Sf?Xt{XRzb?=G
zt&;3N_JdUBAJk`k!Smrp$`MaMe$9!S1-OwHm$}hVyGNN`+r<|x4U$Eo>lHJ=TSPia
zdo8dQe-P7;MTh7C3<2_s#U`j?7ptG%jWWw^7vo5|I%AkyGYv?&07uc>WhveFbS8V2
z%GxUvmhpOVEvc7umMcd8RY8{D<+ZXx7W{2~$)h}qAH|l=2Xw{k3<Ei;1(4snlX#Gm
z38xk1Ek~|q+#WWS9OuRvOSz)nPAnmoeqJUOHKlcgUtmx*#U*mu$6R5CRt?}Z#~IbY
z5wO@Dlg4`;&s<Atj)xv`@CyMavPZ0#B}6xf@T%&c;nb|SkvP6Z(r^B{F*3O22*q%f
z^(~+OOsYs<mP<LQC4swyl2(tRMzX&5Fxdfb)mnu|mKcjLd^-As(via(ay@g_@kS(@
zC^y}IP~P~iYy)k$MR;f|+%!n7=`?Dp<1icx{nH5~F!Hy}UJO%<#g<AJH6+$aIN`v%
z#%`oB;%2x-EA`CHqm@EK%XPML`dTei+go@VYr$b}|Hs%0eqz?yz_ZW)>F|9PL&f3R
zLNs+w1OMr;AJ>GzEBi48<4~yNeMy{bWNLh<6t)OHTho5WP7}i6*VZZrE;{RQZ$kU4
zcfWKP#B+O>K$4UY3mEEai%gK`@W~*EFF};x&Oy^_C&DWm4DU4B@Mt;8cvp48Y<MB}
z%8L($D1dk<LRC{O>T^(J$LIRdW@J^Fm(Q`&ijv#=AJGc;q31Uv=j41WQ4l`pGG|X5
zGA144yHZd|ejLY{fQVtBrFl)yBy>WRf7dQ&;1TG0-t*E}Zmz1J;LW3_IiO3k>#$ju
z@dc`f=CIp8$ut5^9~0vQlgL%7PwE?|cgw06pYC(RgOd#I_y>6OFHraf3tOiS2IQLi
z8*VX0(0Fche2xzqeueEc*2#JXci5Gu^o9`p96Jdz`hC&xm6~*eL{wXA-F7Sl&c^Ml
z)nw^V?`2+|dDPjw(zg!>VItXCP$13filmDYNun-fcHh5b82811uywO`n!$gD-mmf6
zN_GGo*6C#@em3!paVYs=lOc%he8?X>%KlK0>7@rv=8)6U=BDxjabPHDQ!DyHubY{|
zOfI_!mLEF8&E{Wxhjdu=7z@Vke<A-0(hb0eU)?6P>6H-5Y@vvT>5C>d3?0zFSa#v0
z33w3jvsJ!$#`xV{G&nj)wldAjQw>@EAXgN<SS4`eDZ^V^7bt<`JS3&V$$Bk#XI49q
zgUg*MJF6iwrgPNwmL3fr1p;Ri&uw$5nHNz{QbHqzfyABU7uN`LkAI~}%4j*<M@uHx
zwV&7bdf^+Hf}diA=QGGliC55p+l9NgdX{_z-)a_P3D2;P54VU!H{T#jauoRUiE<28
z1$V()#CU(Nsv4%z;k0~B7oPb9pV5r`8L!uG=Wp3?6#M_N_m*K%ckSLk-JyVlq>|F5
zAT3BECEY_K-3`)63KBzi3DPLtA>ANd(k&(ZUvpi1KlgP#`@Z+R|Ih2~F)!xe7-!b}
z)^FB2*Z2IMpYvNkZE>yb+N9}FoKY7N!^Oe%Fu&%d+GVdGB;b|;E3gMR#QveIj8Gz>
z$yS3heltgPaT5~9gxg*H`@T3@;2%3UF@{M48tKBYsx;t-XHZH|Qri%{ygl^IAi9Rt
zicIU02q3|fb#~DDIgz3NeAcqes<|GSP$ToF1X`0cF<Z&mTN9EGuppWFwOJ}6Zr<LU
z?eqn?ssjfPN~*}t%LES}0!$!>two5BKd|g_vcdI1C~D8rN(<GK9WX1ztMN_0hPk|S
z8P4(<^)7)^b=b9Q=^cN%#Xw3p<fD@Gm@8_!`M$>{ci%>`Wod6a)>|Keqi}1(ylV#-
z0|AI+l9@|`Wvn|%)5Q$Jg4-WfOJnyj%RFD+Y+YBy@9hRg;tG+OMJijmdyw^VCfWHP
zx97F!@RB(XZP_V33R*6<^~HN3SWEwNpbaxfd?V#^et!hiV$5!ajR>7u!JBjbq?7;A
z@GJMP-3o`8JZX(?(05@zWf+h8*Z*;mfxCekR=RHr30gIHjF<!y7+&bBR&y&HJ}!f6
zr_FovX>6@z&7E)^oa@7jSyAEPQ5sz5tiOp!4Ke@>gXs%i;&?rKU!81%wX)a;J7F(}
zp~F~^I^gM1mpQn@p?{B%*5<TGvP~w^WmpifI4R0QIPB<o^bqR4VSh4L0J#Wr#oJ`<
zI1=5aL{NIxIeApbxQQMwRK+W)0j}g{_VB)O2ZFH+42-HjG#^J$*0Ism4EPhWjYluv
zhY0=xxwGfO5^jAjH=xvWhr)jxnam?ZTHZ-R8F#ZuJ(vcr7_S`5yol4i?gH3{t@0pP
z*L-CQJ)5aD)dFr2w>D+UOy3Pj@{_&hZ;U$flNrdG*BVy}QU)HDHlLi?=?*V_!EJdY
z6sA@4^C$JNH(jdhh-h#6PVq@3R3O#&yC}&wCeIBCYB?H=%IwDbQL~jjCVedaFVpTA
zy@r|#e~}c4Q;}f(C1dSA47_y)Tmp5~;7Nx9hK1}c@dwgQcd?h-FyqG&s1>7TVwQPG
zV8$?z9Iw)*CI4{F>Mnh$1&R2#IHbGLWg^9)<piksd~6e;52=4StJg=1>_nadaU>9w
za92#f$u4o<DJrPE9dIu?#r0Epb_!fdW_rtAOluqzw2aQ+;5;sXzN8~P#@<q~Zw_P$
zr56_Fqo6*oX3X07@cWj1%StfmXZB*LK15h#@Q!+<45Mn!Gwv0G`Qw=IQr~BLx4w=q
z9Nx_hCGE@RO+}V9ok>G;%=F5o=}CxWHsX1NaBu~VZS;b-^OG2`GVEjRChBrL<22Xi
zM|~^Sbs#yarhQ|Azf=^k?u8?9cm#P_Q`gppqhwRe)J)f_hMUp&DQ`7=j4P$-(0UGD
z=;uGUuHO7nm_Cw7t>DYpcr;t97!fV-ywvORL+RhPL}a9+JJ_-IB$XA!EV27HA`laB
zrw*d@79^P_v%i}ttVCRo7JN~<)G#7iLz?)Ab=_1LpBMBhbu^iIY+3Sf2%N5k;tMpU
zxfIANL09w;AZ(Rb6-g5XxsSxPy)np(SL@s4`#A$!R+?-=uL9VmnzypU&-o6b4xW4z
zx(8Y$--$BIBKdVrwJ18}iGyZZE2tYyp>LH6F7Fk8f@B*vsiw`MZQaAw1r6TKVW!rB
z851ASrIbu8lOI;X<QAq5um{FoaLgVLS;S$VC4TIR{|PFpdU0atJmzsJg&LI|F8)B)
zh(sb?sX|=ZYS`ilEYnv$1yTEO+x9ls+V8C2W2-NndCX%ao(8h)aR<!+F_(RM;8Re6
zJ{f-^Njju~;zWb@-SlO9_1ibZ=_DtwejFF}AUMW~Yu?Xs1$Av?Fba(3z%{Jg(M(;H
zf9QBJH~fkAdT0J^AWJj9?1y%%F^VpA+Dltb+!-XnEDBrq@(Ee%v%CV_rR_^<te+VA
zl!R*D2K9DR!aYA{-UwN&H=exy`%J+jxCM8Xzk-ooER_@NNti1seQ%EU!m!-B+G?uN
z81%BeK*>WyF)M#+E1<@FjQ=<iPNe4sff|NAyJ9{DaGX!mAu!oZ({0#kh@aC9{G7xF
zV7wcgB2>c+BKB93c&*w`?}mUm`ogNY<FszczK0xMf!Y{w3Hn7pJO7N-C`@=jWwi)H
z1lVooB?h<L?%VpkOjpx1i5IXHaL6ve<_B`g86d>$)0XdiE;c>XnY{)%Vs=kSq7IgH
zuuE$`Q9SCrtWEaL*FO!cyxOa(2)+z-NH_4WSku<Fu2Icr&k+dp1%Q|US-8&1@)KB9
zuTRO0D^7a3QnsX3j+G10YoV$$>oDQNJ<<DmZfR(Pmnr3Y+8^<_B9EVasiJd+))M+3
z(rM3rS$t~sN*`B{xaY<?<Hfg`cSiJBk@Stn2L&sOz85&ph@){QeiiD<=-$|REe{?=
z?jNAZS~+`aSYLPo3uv5uKZQ7P<&ELEY5(uT;prxV=9+O`$Tc+u_U_@e$d4?^(S$x3
z!LU+>xAJPAm+Ma|zI7<iEk69p?`2hTXVU!Qja)K|tKi)dWTEL0SD5eDXn8lqMFK;=
zRQXQqcziCbT=yS|oi9)AKq&cB(;EabE2rZMWmiO~E#rPely^rVGi2m}v!YPcAirFo
zE7Q+)duS{8V~O|NcdW4st${qVFid?_-R%HDeayl*(AUX{on9Bd1^TQ#2(XAMtx;s}
z&&qs}QLuB!90xe;C)cUy$^naIJ)KeDqUn5=>A_UwtL^McV}KYU>vVlLYDo*zsDDZ;
zh3Pm?s;&Tr5IS4)Z^IY#8(_tZA*bIfc7(1M&NjD`#UAs7#=ZkX$8rnG?(8J>0)<jT
zar^{7&4jNtrQMU=^W8o?^hs<1D+Sl^1&o>0?DPFeNFb0lxf;)=wEZr*6aYI$U?0TR
zYKGs(_xR0{OcHwg@i(okgWvez|M@!*X?X}OZz*-M9=_4Z@LuHlp!w92h2N-Bwf-s+
zxc~?MwAL<f^FhMH!xH(}pv^SSz1jn-mADoGedUsG!dv7XzmCW^(De_Jw6SJR`Ktn3
z=6}n$9c|mMJm_h>vtKS_czeO{-DS>Bhxxp0;H5aUv1g4L+xCO#aS;clX#vI5TFtjr
zR@cOVp!4rr7YM%Mn%N<neM`{h+BxfgD2_mw4s1P}*3a0i0;!nI-FP+V9M&OKoB_3D
z)Ido)iB~w`a-eQ_fZ|U-qK5(c8VO8k3d?}v(vSHe5zW^dJzy2BZ;CcS<EiJJTkLVq
zNr6vp<$}vxyjxmsj}E05653iA>NcRzP$~u{ybY$XYlWZjG&)*Hqb*H@>wXB}4CX&<
zTW%})9*T|TU5?0;dG1wgvrb?8!G%5BVC%TX6<5P@hw44<KoMmv0J3{nqQ_^I0`d>m
z(jL~c@xAnv{PIK>-`2o!Jw+qmMvE1u@79waii4VRQH0wKh)dUCS;De*x#TuiM>T%@
zo-7X<ORdAIYF9<e0^gLF_38(i@P!=p{=C@=0i{SL{Ij?$!Wr+Jhbs{ozR$fZW<T`P
zWth}|=vZ&jp}Dc^s&I^p3FXXq?$A~~=~~=Fr04u$yIns@hemFR>q3*D8zE}eVliww
zV0XPmi^l7=KR!O3f%==KqZ{uR(7m+94g0U66rOoPE2#EP9Trxx)cYjIDV-ko%5G!J
z;D}4+Gqcgh$nr>7;zMAsvICvHKrYAs+xJ19C9)~dnpq%RMKk!<-d@!(D|&ANy_3lZ
zUMnI}7ylE1{$3?X^7x?lOs)go3(^K)UHtNU0F;w#+kxCqFv#Q8@Y^;A9AYRiVv&H7
zrnJgDfPH1*G||FRh0?t{P0Dw-zg0PU*8tK}vR4m|c@G~Ec&xVz@|+BPc=DtUN6%I%
z8G?WEAKBJhu|M1=#S{C*L%Tx&qqi3U7P-bDt_HT3I8Hg98!VoCNf+&yW!_}a9BkY2
zqyjeU>TuV)bI*)m`gBiWf%`E@K?+mKpzVBM<P=)Vg&fS#VRD@@%rQzU6mA@e4&RvA
zHl0`~q;4FybH9}zar|PBh?RP=lac|JVlVy(pY4vLZ8QBq&HNOaf%81+_8Y-<#$cBc
zC-Ofx&p)$E)fue|u1jgUoj%UCQ-3gY07I<<tPV-oA{<b0-WEtlcM!{=_tf&Dk$2(U
zjYKp>+MuRHsAT(dWy%fUd;W-%t~Ly@qafcoGX&X9O{pPpMW00wb3A1RnIqj>iml=V
zoU<zt28nin*Pqr+`u0p_GHX8AMcKO*x&mz6!;9ksCc&;pAZIeE9zWD>`SmJ^bC{(2
zIZP^Suj34v#b7E?%pUoyQVzuL$0l!!A`qKeKJ6@sR2^O6ZM{G^zPN><2j{-1Hc>t@
zRXui7{Oc-wD+c@<SnF-gcTWU)OAWn=$%czsWG$MuY**8~1$V{Fgfs3~)6TM5K6nbE
zX&jcI!hj2ZdNuMYup2HeJ<R^HrvHnl46?xLrpbKpcZlI%Pjdfps3T^CVW#5g_q}EQ
zwIATmnTdlDLYWC&|LqI09sx>IaNnnMp?{l{?*mQ<HNtTIfBV8<3|RJlUD`9_Uwq?#
zY;z{SI=~d(_2-WLm$U1Cc?y!<ZbVHEQ$&OFd#O1@RvS*k@&8D1{^Je*`iWcY2*U%%
zb|LYFO<kiMB~4y~x__PAzrOT8-ypLCxLm9*gOh_RH1*Qi{&LRyr%y*TkxtonOEw`E
z|75!U^F9BZtE(hnRPaGLSpT=L<bx3ghdd|}B>wGaGhldEvt>Q`fBVWRn9t{b2l{WX
z)Bj%4|Gh{5?M?Fk=f~6<IH+ekG>Z8mC1~@HbLW4zYB@ddGuv>h4UieX%ie-a`E=_6
z|MTD1k^g)7$P7T|-iHt#T7!xR`^mp$jc63<{Qz`<n!m%xIc>R~yY4JYmeT6eH<KoF
zJcGnE8}F@3)Y+f=8kEUMTie(V%NL&q4t}CxXF%&*y2xa(!o(~J`Cn-5UjzETswMxq
z1N;32T8m|hkl}mh?gq|0?EpARoDY*tK*o;!xDy|DL%VYC|DH=lYCk|4rHKIWw?-ha
zLV(E$=MQrd626?`+6>*F0)AYpQM4f8BJgKeO~V)rP3q%oVvt*y2#zcC+rXt5U!E7D
zVfcY|r{4N^6W~xmfNKV~YFNk<cHZCNTk2d82O);5pu(X90=ew+-zc>4_8_x_4J`R@
zHGn0B??7x@z2!=^7VzIrIAJ~oKOCtBlbpyG7$B`J??Uo;2NZ~9E+kqp+<P9>(We4{
z#AV%XNtHZ|SoUlGPOlD}_1i(PIzM940)w-H>bjaNM?sjsRD=ir2apjEQP?8C17}I1
zx6=y;8~$P7M$vAky#L*Eg9p4^ni@Wr>nGOgpYh#5VBHP~X{yghf!&J&rUApW=nz$P
z-RE+gy)>%hp5+bbN1hEQL;Sn-0EeZ+X$5RE&S{_MU`A%d!!m}OZWyeiHfa*F!^sJt
zSRpx4e2l^yGP~$7v)v5O;GysR^%3xBoYl92K=Fagj7cKQbalb!ayF@sdY8Qi4rCAz
z&PS#^O7x!e3#0eQgdhOP$?iA!pW4%x)kNTktm85S=%WO%j6lYHq^%b<IJ>?8uD3Nb
zGH@ze0cXHrmyvE*am5;r%gQVWnaSOJRXza|6Dw)i%A61Q&@TzqmQj%R<!vaWNCXn!
z0lJmM2QWkvnuLAyL&#k;z?j(jD9WlG0UKc$i<FW4(9*ZYzDDh=mknrXb^yg{DxTzX
zwcP<MO0%24S3wL;5(S(Pt!^eii4KDVzRo-JANk&2_(DDx<%cy?tpk=XAq?HNd0l8*
zbFTim;yag<Nh{3Ac_e87PcyQBWZnqy#D8FE)fz`(yevqx;5izMv;}i}Az;5{1Ti+o
zw7#!*bNH(-F!gxJ#&li5_v)=1Og&{T7tJDrS-#R~)4WTZvm37u8tiL|)&Vau-BlSl
z4r89TTLec7{E{j|;TK$dw(C^;hfk(U6X0ooo%w03<opIRZm~7y<nf2|eh_cD$qfdu
zojH<Ewa8CO9&~6O?jg=nYNJB=gI()V57@O%3UiqMuk2dc>xi29qufvOTC$a47DAx%
zH`d2Xsm%dE6OAe4jo<stiaZ;rKNE}*B5p4F3iOgAAj}jr$WHwsrrfb-8^dv(@m>Q-
zOxKX$B7pKHlP*Y8-#IfEj=YlN$8HBOvFrV6D1KzA0)@#swEN+s=8X7_K<bz6#sXwb
z>|l=zU}a96i0m`&rfAz*9TCIDCN_7iI$D&A7hJj=a%Eg()l=~WLKh=NnUle=;6;g3
zVLkvEPXds!FhIYaRI-~wzdpJ2GY&fL0kC1ZnYZ;}sN6lU|6(e!TEu~h(KDfV4J4v6
zO^8~gxCQ$BV<~U|K#6UhPH25V)f!?3cwAv{T_kFmAhRVe4V8$K`~zm2E6Y-&(obL-
z$D-Q3U*3TO0fe8yvdPkTn6Yj63YOhu3)1u%`O|VmOn^ij*HMTdt3UN{ilZIs(DzJs
zw&s<+7`gIyzjp;GP2T@Kv^K(7G5uj_>VF5V{c#7@zyB9#ZTfe~Nu->*cYT$oI&m>D
zp;0Z`6f8V|`=~1imPsOE9oshuh;QJS@>DopyO;lJ3rlIk6G|@M>r~~#usIK;?0lMw
zZ(Pwuhzax+7d-+Lt}8J$Aaz<D1zP4&*xuUjw|PYZ^eHmIM{(&Uq?c-}bZ21gRu>rj
zLmhgKZ}1?soTA!$lr+hD>X_om>j8s!Akwmv{!r*2h7%6BD~j{Hf3f={c0(9C)les-
z;(>E|484HQvN1qYjf449a}oKw))ty?+fXS3flrt&g*t#wlm<m~yh47fFN^y@fTX(q
zVgX=!%Dz=aKsMeH>}x3bWDMv(#L&(h&Ul!a4FWXVAyF>~nLDtC#W75vHGDm&-!)x|
z*mgfFb@d>ZIxNuMMI1FU1uOiin&%gObwxIs+pk9D)BF)dIU|P*=Wi^Gd@mZ7g1~Yn
zNVof$_98{XU&FTPY^S-!;r7CiZZJx^##3h>mYLNvzRK|y&uu?pe<T`;FO=$Fc=UaO
zx(Jm-hD%iUZiA;qTEWu1X@U7MV;ub%tiG8D59ZGN@>DUkU>N|VeadQQwQZZ6sVE$F
zga+LQ83xLK<Qa8RA*DH@JiB)2DRmm|WZo!aYvaV^v0^S%`uxy8+_J|nr+J8tg1*%L
zi@)=)t<jvSBdI_EQHzO0JDh;}IFc7~)q?;?8#uO`ZBAo_kQT4Dk)oGV8zuh8SNzGm
z(&PMPV1~r%Oe&>|oTC20DJ4(lj?(=2i|1tD1_xk0IHJAo*I6vO>8hh)fapYb6EdS3
znP>I0wKNhP0fxXg<EWT;b-lV_ciQiPU;SKv0`WCwkmD8UXx|0RB3~e%AJ_g7C~6ol
z-rJw&AlMP3^$DDmzZSfqU{95aEP(bW*hQ^xaOK<@S30*Ncfn6-UEu<HZ3bi{^kgew
za*XKRX`{@AzO}Ho^3@ZD<P}kdZiWfX9c;vIJIKsn!qIVa($dG5>W^czuFV4t<Thum
ze`@XXniV$DE3Zkp5pGUHKE~R%zu{Tn763)~FC7+%20e0LD5FBFKG_m)d@?=Q`3t}{
z7uww1@VGT0ZOptOMlbpf?Qq=zCElXmDeXM?7-doX^ts}}^wr{q7I6Rc4i(W`@mNz^
z({w-j!Y;8B>;aUV{-CNMJ|<u8z+O*a`9(O{$~z=)4^)fQn)|eR2_Qad7lLDoJrSFk
z%%3H<9J%qbV=P-!e6WoSPQP8Us9cdx@Rh15%ou51X$0CuSAy(X_hhB4kME67PA2o3
zHa*L=1gSMaf~ING(RjukHytL3dW~F$VbvwgWijy*8jT<srKz8I$C4U<4(nd>M_?_M
zAi}ZNjVH@I8jg&}RLfI<QT3y)4rUSs_iTTOSW^0Tp;a`lm}l4|qGp!^T*Fvk({zzu
z>*3&o=T5F&>ydwkA3e?h+b3vxgDTnWLhz#N%y2-(GG0Gk<B~Ea8H#{BXeVHGP$Tf^
z{>#WVotp5cKu+Pu?Orxcv2WY1pUL;h@XGMDcBbV&k+dr^dpeN~>m}e<H*(Y`8+1)u
zO+%U1brkCq0ePMD78!5TaS@i<vQLHtlZ-L%YPA5wex+HARxI9O61qmq)nwU*dz*i+
zY7V<ESz3t7Z^d8;K_hqQ<RWX)H;TOV%<-<}VW4xS9t_b1<ju>;Qy^dXqM(Ak)!+!9
z!7M3dQB`2bq1+RO2|eUX$OyF9$f;*=d(RGkd9>1TB3AQtJhe5G&O6{QxZCmO(~wF|
zA=_Dxsc^h#+@LFwjPQ@|irTR#26(R4*?eD0cFdDvWfC>DNtc88)@-<Ro~$UhN0j%R
z^aRUOZOhfF<@OvBuc{{PYPK7hKFyTF=fXbnss-9MWOyHLwUsd%oymHVE`@5nQ!A%V
zZ=D-0p_>yu_@1G1_FeHA=OQVZ`LQ6o$|63NK|v+RB<82g@GbFsg)9d>M#jAV{e|cv
zUc3F%Aw~pkwgJ}nhLE;-8D}`^L0CJ6bdVTW{U+ntY2Zd6ph5iJc3MD6?2FLr(m`fW
zdFECM%Z{D6!Y}n&mQ+Zb>s&5Ih-R#83g5f8q7|ktvq(35!ui_cRIOgkkI7svG9S-Y
zCv@_QBjMv$cw%>$<!gqAW_KOQh(LgK+%lUXd%;SgzG5-!JJmZZZ(ISDoaL@$8R~s$
zftFFek<w;KzNqf&%6JL$<MeP@fprr4HCGLS#l)NDDIjddig`yC$J3NLB8sbBHDrG&
zqdUb`)-=xw>N{^}zGyl$>GtEWO-P+fym;(>vJepC!Wc-Gucv0z#{UzRPLR(L{$5MJ
z#9MUy^bn()MS6~Mn7=6`t6Inf$(3QD;(`&toJsu*q46+#(~(~sV=4m{CFRAEuP<nT
zT;bQwu;1E^r1Vg76AvPUhSJ`L4Yf-R#_oSnVhb}zS&2k_$mw4vj~8&Fdf13)h}ipL
z8Wc}Q*gf4wRTb!tm1iM;xB6^6YrR>~A)b^u!lX?Gb!BnQd5x3*sKvJ+-Q(SqT|SIy
zyZv#zP!B+Dlb%KxIbkIU=N67g4^!*MX=rT8fx_8i#X(sD9}6>~^ibt!oE~ZVGy*i9
z4~j&0pa(-Y&CJQl%Y0GI@$1dCOx-al!7!7RI+%r?)+Dkgigz`1z>}>B7o{6^uiN1l
znu2?sWV^m=oVlq?Yr5_p5r>zGl;*P&4&{6`cHqm)sc+5kw8b@P`Gb)6nL2Ya5~n2Q
z0f)6~Q6<=nn=>j!I%j*|gyISwT|eJeiW600U%mv%G;$tKmhJwd5QOLF*HW)D%Cxu<
zuE>dTS1K|*(s?}e%KRs513X?`Q?isZosn$ktayL8AV-m#c>4zt7kR;)5*tRu9q@>Z
zF3;-?{*#F7j?_^hhVzn!0Q(e{oG1r<Le>W?Nzi_NJ6WT=ul;!)yz~GuKG3K{4fW_i
z?s}8q$CyL6|8kl?#~LUGN@ZEQGffn$5#sLu662Dify*u-j;=~@g@q-0qMj-Stl_{p
zsxLshl>fzWaZ>pHa+p?zt8qtZAmLhK<F?a10(oR85=imG(e;rCNyp*YN0D-K2~$gk
z$ue_dS&J*Q$r!22z5fb_dj(5<k!XObhznX@hDmngP-SZ!mV67Rq+t16@+|B^x*|V{
z?cdnh%i5r)gv?V~Mg3Z$9r-w|jpX&z39d*-j>Yidg2$Lx!mEeLpykK(HWwY+A}MGD
z;<RxbOytdCvMP`#gkTgfFzp&u1k<D^UT2!?ilfE_hvMR(lmXsGJu?k{5(mSB`>S`$
zt6giEMA*u-CYo~nv2EN0d^J)74O&_#aO2T-V|Z6(g$%jy(NjEM(6;>?9x{Du4kTXm
zija8XrKY4ATv^GRfr!m%-%J|gK#5=>1S}HjFX{xZ%Xegh+P?4>l3l!&RDShphSj2)
zV$|=dSHUON)v7PPY)r(auKEC+;ZaZlF1No&j=Qo@?U%>6dcP$*c}Fox_)c?Rw3rY^
z`2M@R6GQ$tq}u)b3Ai^(ITEUUrQ5fEz;bzXTjBdMQ$xJ4XoFTuk}H{69NtMsE2Eoe
zFrJbhGcsvy72HNi49k|iJ>)yP0_8h>qOT{jOP-WG2%rtj6YHHC6eWIhP&KCCS3D}D
zRd8JV2Pap)VM!z1kXLA9t_>4Dnlnz3n47(YGT_s(=SLHkfcLM<TN|hzVbO-8B>x?f
z>nc~@GJ58bVcWD#%A#I8yheHoeip@7>NhAQD!~$Sk%m4NTf?gyUzPG7?gMl2hwRFT
zBiCyFqNAbvE;gT-!*+9|=$hu{n3qwNyxxc6MoR)!?J_Lh8ST$zOq<RM7f;tqXO^zV
zUN)`P<RCNyk{4JWhrse^OLRD)vhw(_A;Bci1$x_cX|4c_vs#q{ShXB7=HCoD(}isF
z{kCPHFLHP{q*`L#pI<h$Kfg1z2pMyEHkBhY{hmky*lG9S#ICl8KT;Hb9lFjfWR@Kt
zH+44rv0WVz;I4~X)pm2r+<?TF3fD)>+!apA!Tt0`yqI-tG<3N>P0KTrtSv1$nu3`j
z+khkVOj1QC&pt(3%v_jR*8GQ^5`BpTfv6`{?W<_Amz+0SlEQuQntNvKk?g_tR8ijR
zNd37J{9!0W)7$3gI@MlAt!RXS;q9x>u-|;YHJbE4b=DnQu86~s;X5D^Cr^jC{St3`
z8hKp+QRwft7p3pU)#wWeQHcX3CQpu(euNr`%lwu#towvJ<)CDKYB8b2KB}}rO^y9b
z`sLAUF=FmW3SX;Fwo2&zcWTnqXQ7skdV7jpl?LLqt6@y0C*|zl)deWV>p;E<MHs&Q
zhC@AnECuewdW0gs-T0?mBM#T%J%9&s3dC4sSXva2gvy{|*5XXH1nL?d#S4tNlTdhU
zW$i7bCKOEm1)*z{<q#|b5V~8`x&BIzR^CA~kS(vd2}lE82)spMWhcuPei$^O8CddU
zfG6w11%N+do5>L|PPs@0+4KsMXuYSjHdHM)9tZ5}`0U=O#=`soo(W{O)zNCt4*eE|
zLF)yt;ZefeLyvTL#OWLHl?J#x_;jwWwgD)eE*?pMopaHVx2DbG_uOx4oSS*Jdbo}T
zc&r{PCtTo21Tm~?KLe%g?>Lg%PO=l4RRC))Z?nrY_+v}Nn-MdqAokQ_Qu3S>6=Ic5
zPogK)j7wz|J}0+*jpmIf+X1;t^~BE0?(G^V&KVq0ztf~{4VN<>WD^^&en`S_{`5;(
zzZ6{8Mk|YC4^Tk6m=z%t|E0Whnb7Eq%5T=_F>}u`b8>U_B}Bv&ZZe}BM}Or*G<vN!
zXvMOWm;ve4LPk)Lj5Jr)Ck07iG*f23sK@YR3SDHb1T51!u)8Kfcc{3aFophZTjY}(
z^8aK3Krd9i%#J<Rztsbo&g}35w{@K}RvJ{EW<Q6sfUNKQhcK(Fp8j=cp~y?c!V^6y
zlB&TfHV><d_=28mI&i$QmB<I8@?#p2ocHVO*k+%9Gnf)RGRJZ`sw@~a5eYoG3=gYt
zqnIl){1E(1%XO3^?>KylbeoJMm6DWb1Nanw*u~f;yEdBIYo>-oNW|c9oG546<z&g7
z(A}{sHxivIMQN2vYxU_@`vlsbzMBJKb2~T-B`wi!8eog-Y>eheRweb{SGiIcC=+Ot
z3K?ru{!ERbA}K{e49g7lM^`yjA294L-a<xxjSSyr$3c~y9m+uWx)dJy5prCnl*AZ<
z|4*{SqYHJ}GqsEJ0r|z5q(gyWD|OhvCe^tt`Lwr+P>8)+DkhI46g#AiK`L{-f{UNL
zwTFcu)x!lpE>Mv*nX(ET+2fU=D+E}n$!xlAZIc*W`wg1<9Zp5LYftO2^C(xY4xUeD
zx^bHkX4`(X7^jOBH_@XJL9iEr`^0Hy+k<M!?!O5)^aiEvcJao%6A8D(C?9#40t=cF
z_K<lo%8$XWZ|5cUMVCeaiZI%g=y<|+Xlr(c_?1W2Q1{g4^<1T}lt{o+bINKaqyvxB
zYtr*$oE&<2h`|U8@%zr}CnzRze%i)zwU@x3nK$Lv^*%eP?0_;W-As?^2m4}pCR`^?
zmI2aXMXy5!TA*y<p}F5r@_z1Kj|_&l`4Pz?A%_AdNz10uwg@+wuivMLfB9%v&>=)X
zvSGlny6itWJ^PlIBGh0Na<((6sw|LmL>{miOX#*68rROOc^zO%()VIwGkCftvvZPF
zWbUhV@f2SVuRo#O#Cvhlsp$aml4lz2aA9zA{#_nv<rEy#64R{k$GSEcSI?)^LbfbZ
zc6E$0DKNMgG*4@TgeaHBuiW$LaZ^gSoa#%yewa99XGI8lt%jhdCF-3XIE$KncJOeo
zUbp^k#R{@-+^i4z^^$px%FS2op8J|bLsEMgK^3zkA?pX`YXc<|<jj}y>q58~+;Sp4
zxN9$=p$C??oEnDh@x_;4;DeshX)Z53S9z5tXCk!dY~R9(e8IRswisc?D}bN^4eE(D
z`viw>{0ffE7&zuC3?y)vQ`s&1mO}9K@HlcXC<Xk&zN&P{ISv@M)$7g<V%~&GiX9p5
z5n`P#hoDkZ6atuXsq*V>zbCF&is#3QJjiSeTAIObSmnSfIaEDH>0NHjMY${$LTS3X
z9Pj{FuTd_z(j|!%f8M$tl_5)jTmN+?RhJ}^o+<m<gw8zaeh}_kc1LZxomYz9U!-is
z_9g9Vj4@29lKhDzu}~U>cLuq!z<583JjH8`P<bmSYf2vNhr=LwdX*d6<3H<>{Xu@S
zrmLqe9T}sGw&eS9V_Od&bKE?>T;neTojo*z`~x5aTj(Ew0$idSDmUAJRm@NB%Nr^U
zm0$5m;ZK@SM~O$aoIS8r8i^ne@DI6W!}Ky9@3>!i*;GY~fO~32-B54l4cwAsd7+;w
zdo%ii&FbLkZ?!;4Y`MVG=a8XWJ#0*LeT%`y+n|*`Szn%Qr{8KEk4%Z7xkw6BOyRHg
z^Jt4x#k_55Pr6Q|m`YALyc!yimln4g4i2?X^=}l}ye`&4?%ozD(@GNN<6)y_insyz
z)gE^U4tZq<ng}G~&K5MWUMkV#(gql8v^d)=hJmqR`SccZ(l5EMzli<k-2?e5NJouy
zB}^dSZzSrU9tY<dzEwu7;Qy5L!ZqTgQ+eL9*2LtQSpxQ&sYWwWdXYf|y6khuk^#AJ
z_JsF-XB>2vZWZSqFIv~x=?X)rYxAEGhjf1XbQu|NNGJ0XT@ga)o<9(SB-JVom!M`B
z6hIjVaVv)?BJsG_s@gG)93Ay!CVOUf#D6g&GQB8QJh}MjnEGG?hk)<s4VF5UP1^wJ
z&9cV>wo$uHJD|4JehR8S^l?9btk@}MdNYsE6+hkc4C+_sv)wNDr15=-p~;4`?nOUs
zUr;o%z}|`nA}d~XIN~XCquUB?tJ4$oVkG@4_xUp{GvOaTNbBhhZyNiypT7mF+AkeE
zD!)DY%xS0hld|mo@FMdKi1va6a?Qt3!Z6&ojR(=ZIAD**A{^Bl=HX%^56-sw{_)8U
z$%aqHh=pN=iSLoZC1@b1boj=@rBOZ-o=}5aw2h>Y+j>^z3(4+!6WrwrYCpUjK|2z2
z?VNw0hhFCTFPRXb4<DY-swS#GF5}hESWWAjzK@uG`H}@^N^GOV*Y$Ei&AqKTr|u*?
z<kq-F!5~49E@1^#9KOW-s3rPdv&@!2!(oNA?{s#hn4Du92Op)w{i}y}&(?K_yKZf2
zkYtP<t>#rg9hOM#fSnJ+F!qIWjimt>MZofbpSj$|`*y6`2bMf_OI+pmK!+@%L|Nik
z^t1K#+BEbp)b@LyM_Y+ktLv!E^=f;K&^l&6YWSV7<`sE2Wci#FUwz@?qhdOJ)+v0o
zIQOF9{H{w7mnK|lV|Vp{kFl0DWY2uL)$j9gibW;0mB&@veW><J5~(Eip+HJHd$HpX
zGd#NGwv!l7tA|UB<>npy)>QuJPxFy2s5WcIYnOuT$UZH+2}<%5=u1Pr5TgddviZCl
zA^0hWA{|vCT)h9?rb<nKlOHaW#=_i%pbBkE8!uGKIW3A}ndiDp$=j16`-wC4yPf$p
z)<m6ty0cnnNQQ$KL3=8nP8(|SGrcP9fi+X&06Yx^to5^RZVUv`Zd>h>M&+wMBwd%Y
zg84~_MG+nS1!~YI*v$RQSMA1+zps8Vy~_#|+m=*>Yv?L&F89g(2!~EX=V#Otg^og5
zenzjsgrGLvOJn02uXiDNWT$P2>M`7DKrqjfOgWIuh60!AbfWxui+l73oulvj*gh*G
zjS?dfTwyj>ZfNB0?gAQOoEs6x60(!$iY_A8>2Y(mS=g@81|ed+-R%u%>-G7$qL|?D
z0M`Wj9g$r|s|V8^Qh;);LLfi&%+mAKb>chW8m5AhK7u}eEj4%3&12(c1@nX7!EJE#
zK6U}9mdF~6wU02MA}e{{$1b;64jyUrcj+`}QDQpn=2@LweLZ%lpxk=iI94I-rgR*I
zc~-YFgl!|*)Tx5C%)7WirIA7!umoL(kAB&V)W=nl7{;A-j^8*}+j4nqy_X=e6hFVY
zefxUL6-pfNp;_w)$G;|ZMDKUq5?c)G#HKWZH{4<NDCm|nz3(6U-RV=ICQ=plsb<7A
zHyxzmQClrxBjJkfa4H;;9Ety%@H@+Tqrg0kTK@{c8}@S~WL`Q4VZeos;&a!Gy{u>L
z9{-p)jpU%e2|eBt*7N@1H7()coxwS5!s~_L_woYko^QYpNs0;`-CzS*DEMqx);<Uo
zZmPsz_0zM1v#$e2VBT?UOh|sUFO%p{wc>hLBe4lXD^3B_w8$?7=;W${rswsGK!m1W
zX`Xnh|1AY|z~3J82c$dy4w8^eI3VHI`|`Iz_aoC$cl0TvlLD0!K2&>lRoDL2uJ8q=
zD9xmer;SpfxL76Ph8Q}65^qKKB^7U0)<+1wg-ei~gmDc+pkR2L4@WFTmPv?0pECbA
zeHksafoDY3K~VB?gZ98IY1&Gr?BuACJ>KMZIT^S4$JQ~pVUh9MjOojm2+XhE0dFXK
zD<zoNYUK~c^1^QeJeh8M-JbO;qFj_{r{eB<HS#PABC!^Fp%cguceWa!5I941v5B<x
z3~^dRJkr&h{W`N049h7kcTiS;Jw_~Xo3{K>p7s0j2=>qV4{>x8uGMbF5BBc8%eU7m
zhM;6cEy!n6U$8{#j$1z1;t!nibXi*%QH+<iIg!nCdw9EUt!Y{}nQk|nblh|M#C$ZE
z<N0wK!(i07{&2{#qa^&g39*Mg3x3KnAF8HPo7mBZg)ewq3UA5D=BJ905ZX%hb#4{e
zGWku0(84C}A)6aY?Qn-%fcA0?JpuYxO5_xwIL;ssoaT<f3!FwtgGl<L6J_qeYXS7H
zxLY3LR|{*P@M&6;$@P;Ba+o)JyB}y6G@8ZS@sqA|<sM~?N5hv*&A&q2QCYPoiX5?-
zn@(qY^Wj&h)e5cR>-rYj`9-dQlcR;TyQQwH;4F-t5TRYd@p`Ntgj*Yj%?|H-q+eIU
z134gUrFp;yFW@CdOM+5kaJ)`?pvh>HD5$qdg~L@V*CuD8;bZY3AseBp=SZ{|S!e{(
z9l131MLXWsh@rQ784{9cHXw%~Igcv_jaXaP)3$o`3>78+l9#|38I#ZnI&0*&3evj@
zw+6T80qc+PcgvF4$j$K^k&vm)4*{))AEjqwC~fyULV!sAat=O#ZR0-n*Oa~o)n@xN
zQ1_i0)6_I71V6j0hk6lmi)-DHZ>w;fE6PX8^o%5X>}3&XKAxZ(P`w_On5N|VVc4DX
zOe&-eWxl7HN$bSzX~=>ayvF!M6Gfhjk(C3Q6J5S%0zGr#;B)EuL&A;cPsvSv(V`d@
zc?LAU6C1o=?N436wMEoJDCRuT8DO2>k8(aKZ>=wqn!Kf%IBD#AU`}?0>{CdzgVhgj
z1<vxT-w{5Q9|<Ax*b>8GoeKVlk@i0bJc%N-m5MzU@_S|3$dqznRIA&QEA~yKZi6Bs
zuqHGSmQm^B#8yMjmz{=3L}4Im+Gy(B^(y1_TB=(ZYk0))yE!tB#>f{fM3)z~qd~l*
zr1SIVw7)qJY>GfoqMs@V90#T$Hy4i%FSDTbYz$|x{XXDfnLV2|vAZ>AG#u?2JhV);
z^<fe_hQ}nj$mEZ6lCsni7)lqMV|~l+XMEtAC8W^4jTqx|@jiQ^F$1N_MxFh(lZhok
zl>=F=ZG$(`bKj85I=AB!y~5Y3&J!BqVcCO2e2vclNgx(=&z4r_`LxBevRXbwS{t8E
zPVv)_XPTZmQ4hN*8m<f=CN#@Go*>+G-JKc~LOqPOA?iMmK65cdX@3efIgQ_Loai6l
z3nSPhhAD<FBjaPLiyj9MNigSzqhbmv${puvh&_J$68?TLUqmwx`O>HxL@JGl$I>mn
z_dX$bNQgY;Q|*`xdXJY=mQ<iwScMIV%e0TfN<~ajRs!%58GjqRH+X}kBgur$L2U8s
z)hrB&V(-Fa4N8jeo_mt85fQh(=7&-SHTUhRqH^KvVz&m8a}}|Z;&8di`H5#~%LS1{
zZC^dXN{k#$u)9*)97-c+V}UA#e(jWf7#E@;93%?vwpygq0c|Uek&x#qa-%)RRwBGf
zNL7Nz0weyo5^|yMuUW9JmZ>KMwaK`GyftZ_P@cTp|Ek=21=TA5N=7*M0=X~DJlw|i
z9Q8i;n8F0(&UX2$q5_;hro~0Qe*G=GV(zrAI0bR8+s_zD6_@g#JEJ)vVvu0hCsKu*
zMV~ru0$f>2%))&9dUb4qNERtML@-P$SZ$$+a?tS(cgb*dv|g7C^TozGqxVGkSjVMH
zMQ`czKE6+3)3{kq>Apc}y?432IulH(FzHX&@g{XoQo~l%5`j?kB@5L`QVF{;wcRt(
zA=I<rijtq6mUM1^e|?Ax?Oc{Uws2_cMD;CQZ+EwWPLHl!AGYX!=?Z+FZ>Qh=Q|YZD
zp&(lHE6bB4B;04jWvvZZ^D}L;qbktt3u0z5h<s%iKQ5iRAv4k~#Q}Up88TtQRtxVi
zi{e-t_VZuCvDllz)E^cP8-D~|3B2MDnMHkidjOF~;{zrGPIszbpIviT=XYQ1I&a4a
z$645Ezr!Gi9DSfOO(u+W?i1a+mcQ&vy5?GoYM_jC*TcR|687#}5Ol6mb2Gr6&kdy&
zcNpF4#Jnxpww!hHu$E8gBMbAqB1QG{Me>+L?ZyM51MYd;bht;RZCq<4U@3&hdyi+j
z+WDbRH%bUuhV<L21m(DPYDki*))A)}1_d5)vil_`ZTS>+hhv$dh|UDegl|X^{jw`7
zSfz+-rNS(Q^&`7<M*iu7k5pye$lHMohvLLOK0wfTlfbMw7S-<TJX1c&#=pG2E+mo>
zn&{FvpVG&R#kjIbYv4yDfYomBBBDsna-qIP#3H!T;JjuInR*8=thM0lw))%v;`Fa%
zB@Fc#I{Xtd{R7qk?v>z$stEsW$=_1byUp7U22{gj1LMc@u^@P(fY;}8R(dPYlF87a
zpq)cY0l)OTJwg&oAQ_*YJqB4=|HA9b?~%HvY0owsANM_c3vlGf&$ohlxi;Y9<?+AZ
zx~2(#-NU8BUV_{xK>b~x3`~VQ;?uECK4jucvk}%vPZ`#z{odaC!gOEk!@HrWo;r<=
zM|eB#J3ra)TPL5=8Ly;aIg9HW#DrZa&(j}8q0u>YKuMf<56zPt!=s_b4GQysP}Vp2
z`R@D`Q|nV=VPAxGQ8j#w<2NYcm{W`s{)fC?!Un(e%Kh8S9YtmZD2J(;Up}yqKD}Gs
zZ5SDR*r#;yttp8vbu&0A8fWdA=#ZcpY4@XLn`39S`72=%{4Y&IZ;a&mx?b8zW3|18
z2$WUFlf=;z%k_M#i+YQ$aNmZ9`+$KMa%?Dn7u2tG^OP2L5Ap_`2%y*CzW%j9{dm{K
z-Tv33kb9-7rFNr-bUl#0eih=~lQYkh#pnq_n}(WY-(JBN1<{wYq7ZLj_2Ly^Z|ibZ
z+s$0jf^NmciyWIW4zyyi_AK;|7{}vAt<}vmxY}k&+h?E|x3>&qxwX>6mqIr1v2j7D
z9ViRO27yW+SiV6oyWvpewEDr`^Mv8;Ji<DTDO#IH-|hQOL;|+_4ap=S$|}kEs*Y0*
zD|;Nh^p*UP43VOZ^q}B2a*ffIfI-2LwRCiUlGA)DL5eY(p!6h(5Zl@nl;@eb7v9zt
zty>_gpNq3*H16bBIP9nVuw))|@8kJc^TJ8U&*m7iS7Xj`6=w0S^rWN5hFK4;9UKVk
z41+V+PP`_%oSL$ByIH^~#qi+>moo>~L&$}X;pB^>*?CZXA)~Y+)Uiu)3#wyGwTS1M
zhVm{`yCsW@6gxQN1V;NfFRoG34`*e1b<?E|8|IdpD7Salt8b3<{F@;divjHLQY~Uh
z*5OXGlemjS^S21r;TI&;O*7xvYyIG5|5*E|Pf@D^k8wU+;4t*E&k>t+QpGj2NNmNv
z6iTsM99?btb#U$PDZJQEX@1Ghi{9nJ?te&rgYfX;HRe2GW3wkhZ@>Oyjo*RUfhUOt
z?gI;V2i{!PoWULLHc0)LgiPgR<NnXN7B0-?CR$$`e5=I5S3diVOxGX;j8lB1o|cT{
zPCtP~t8~g``r6Iq@;cZ_nEK4U&1T_tpo!AT=Qvd;byK>~n=1B@La`ls$lF|!mOY7b
z@L_nX$F9FH-sC`No5CnerH<WQ50km0GFc;QJXzb#{MY7WAJ7?g&Ow(>6mAI=^%4!b
zt~k(WGPJBFb<pXcJf+B;>>@-j_*(LWxMKxBvz^&17<K??#f2Y0>IfkBX}Mk4J4V1L
zem1Z*UW)7Vl~}6v@*q)#tVeDkQQv3gShRRJK$Xa}`jx$L*vq$=7)hX0-i*K=TEmy7
z0q@4n?18%-<bDpU<<`l7XV6i+!u2?Q-=j7x9^ds~eP4mNtk5w8R|dDbql;DS3u+Cq
z*G#jgb<JO)9M*j!Sz_yeXF1S`WDP3D4`(bRpqpFedcLm@jdt^1b45!slGzCRXA^~K
zRe$IuI<`aKC{0Px&fRJAl6sF+8T~%J2ve3baN&AJy>d%u#*5;r0fA0Gf>K!TNaq)=
z+mJ#MXV*Bw%#!0{{72nU<hw5+@c3^Hij152mpgQaom>-z<IZfnCQ*+M&Rq|$`FZHc
z!aE(YstgwpF$(!-olmz$-$fFC3UUb#_}bo((IOOd!d@OQ^V?(fP2pye2^vp?Psp!U
z54gn#M|XbkZW;-%k`lhJQjB0!;|85XZQQlsbdf7_&vkn1+Z{@t%vKDMVjz{&#epue
z%}dL4K1a)KQBUjV#sosmLOnNxOizs1r@hl#gy6pY`W<DDnNAIjfYkdq6@2JyZn#~z
zj;WQ9|K4%y_2Q5`ONeLwtUDLe>sx(GRgBF@=Bp&SBSU}0=IvX}L@G80+bk-sYx4OJ
z(Yg)24%I~TO$Zgm0pXiA9^nM-THv1@Fn=VG(dqWSXre!kp%u+l*zph*`bI9cE`!uf
z2#I<{KtXgLaSJo6vC3^ywxwg0n2sRu*P_Aso1gdtoMh!ufyiarBOxou=(2C22qwvD
zcy;$>gWg;bCkrOrCxP*FK3bx>9oXLR2Z}4mhzA6>=q0&kgURbsW{Zi9LqP@f-!dsh
z=FglDQ#MyfF@|}+wek^OpqBM+9aPWbMv9b1e~T7=G+VT7rmA3Fh*0aU2qs&ql@cEM
z(RQ|4T9CWKg~Zf-Z38#)&F?z>_w(*;R~R-4<*Wo_tIauPmk?}rtUw40hZkB~S^x!=
z{pMN?ZaC*}Q3(=zAwq53({=d#4L9?(tD`SbL?~G21~CSXPatKx?YP`i`y!Y2x&y5P
zJ1dqO0lSbvvYR7AKa#$3o1-4QX#`(pVoWB%M&`^$MVs~})pE9UQ+Fp~>+q!IquYoi
z9fO#7gTa@%lL%4J3ZlO7%pvL@*0r}%`ncYY_OmqGACEe%`OSph=|pXL)zZS_NwFe$
zSigVmUDn-X-&7-yosL_`L}#&_wC+;%b8_b{eOxk{LUn3|^o5n;Fez3o$`#f{y;@@@
zt%vVO>ak7jyGcfqg{53+{9!-%w5g^bZL!m5Sl_MYzP@R?RxMO~rO9}u%|$<PGCw^W
zb!)s$Wb-w~L(*|GW&Fa?(6{xT^6v0B?ftzj1IiJ0;Nh#Adz2Fv0{LqQHre>tBMeN9
z%S^di`jw<0+fN29!|l)B)^2We-aU{>3-GpS)h)Z+2ki*sRIbnWKdtvCGU0ODO^5h7
z`UXrhFcGt9R=)ODFd~CnL;0Q1eI4PsTGn9m`@Gwgf1cMc8>uwJ=TPC*djZ9}u5hB_
zUxsOJC9WjJ_xP^ljpvS9EtnVXc<(5`_a0K1HslB!GNT(gLYc9`83hj@`Tfrz5xOhQ
z(Ub=)=JW#LM=c-jYfA3Qs5KSjesi&$*tN9slHA=Z3C&x!3M80}-7oDHvqT!Jt_iU*
z4y-nR&=A3+0+$^JK?Cg!v@EP(!erw4#w2@fK!&^=HLBx8IQ0M;l#3iLrElN$2<HMF
zY7$Dsj)4v~Rw&Xbs&qEvz(74`>T~$>kP;GFBaHKKV=Lz+XH(y!LAqk<W&%^qG@{|2
z8OlcOp2YS6{^v#kw5>iw%pCdj@U{qg7+i;O72%WjOTGE*{iOVzjd-v(1`lI8xGJAo
zxulnl`D;{OJ)1~=*U$IAk*<ro4W+*96GtgQT><6s&!c7{RT9<%6HG{?!EfQ8Jz_tA
z0JL{vwuA}xww+JlzloxY2c}@vrhG>qt8+A4zkhrnQX>Kh&d^>qt<-PvIWRwfN&o-i
zVa(+>KjY=Cm;N80Mut=#TH!frB<asP*QVvJfkswJe2dQ9pRbU?`X=SYSz<)bKONSe
zf2{O_V;QJ~=VOybfJp@(UoDSHQmSGW6S8Qju$0c`ze$0z8YU~nj)-aOxr0K@cgMei
zFo`}R+pRFQ7<PsEBj*;Ymz5F*Miq1=iIuSo)4;>#@;@Gasc$lYr-2jn$!x%L-kqxH
zz@j1ai;E+W)J|m8<*Q))J`27j4U!)y+0}`R%;F^D?^~oBJUc!=E@*!ydNvWf<HRaY
zfg_#{lmIZgKOZ0WkWRDvyvpRy(?9C@o}->4vLWmd>8Zr>MBP4dpIa>6*u&LRAttg$
z*mE7F8@Q3Cx<=c&KRlaEFx7ujxzgv<3&kFBm;TQ|{-4qQ*C&3zpMZnyO*OJCI2-<-
z&;M6XK4K#kviGBGHPZacx%<bQirhQ^+r7`MKkbwM`nmt*FW*r>3d;o1NiX)F-(r88
zU@9N9pOGp`E{BWcMI}(&zYT_l1-==$>Bc?PQg7SvWyd5d^=Z6`?BEQ1?Utpk$j?J^
z4-sY%-rurnm!D*VudGBRf?35NVv_LhzrF~<%Mg)H<^ip0^BBi>gR$V0@|Ulh`cR|X
zz>o3aQt?^|q_T*24-hbfhS>Uj9&Tb2tgTiEcM`j$>VpX!B4v0L-s6*)iQWG$=DoPc
zy)Qi}mKKy&JG`p-e=-OhaHU?_*@gU1F4PQ~A|%0zW$5Z}WBu#6|MHv{ym+Ivjr@Od
z-x$MG|H>NP-M`+q|LVS3rV<HCLPT}_+a&(8g#^4HHd16URdMBTb3c~j?cLXKkDm2M
zd22Iy6U{9~=jd4fxZr;byc63`x51@%XR<g?Gzdc(B-?t^Qcixa=G#|hQT0SqCISev
z?AX{?uG$wZ<yyNHD+Xk?Bz&|~0e9uERx?lQ9M)sQ9x-hMKCOySqO&_%el=6?TpY)y
zucxf6obC18loHD?jo-De+50+ICY~{t$9B0Rder=_0EntYD4*%pJGD-RP6^VhyfAG$
zrl>LM!70+JVLS|>BMyeGl~i&Fe!>;)jf%VlwzEDecN$GgLxzJJ9b?C*>HqB87&G}T
zG`RKyvMD2%*-%`K<uqU4Sd*tKtQo=N`+~LiH850OZ@u&G{AkoI4msa<{=>$#&^7rR
ze5inXW#iRO@vjbCVO|XFItLRHA+K5;&}%-*ZO`kti^$=y>B2P3Rgy}#%5-pkbbdGs
z>3nY{=c*IL!TXQnShUqx>$jfPfqJ9$o0H*hYb0Q|;xZlhcz1i<KVRp#kMYfNTK-7D
z4U}KyDQ1bf2q0Ea+pTt@yMsz5V-QYO0vEw`JGde-#ijK!Hce-0{6plS5-FlZfj+;$
ziaV27to^OD-gP-G*W+x*rI94GTacdYh3U)#`8RLkHwIJs!6&T)Q|Bi@f*VhxIXEX`
z)_CA*V(2GDHG^JlKKgX#q1%+OB*TD!?2y#oZ&5$8R|X&;cxSgWEPQ{;%tk;D9ECLl
z$<Jkzxh)I}{MH|?R^nlWDmf7PRT%X!iifBdaeSYxGE=w&$zv{T1XkVp2@bSfXQ9>1
z%sd(tcq}y6oe60$rp>~Uuhw(MKu_7Z0BAAB^?GV}SG<JQT<K2&k9JyaeuXc810!p5
zq}6ZsLhq-dU~<`+c;*gzHyDEeJ}HdHdX~ElH$hcVrH=Nob-mRLrv*?(lo^wzwQJtR
zFBdHF&rf|Gt=$al=w{|`cjKuC_U}E9C$@iV{U1esf*&N|%Y=asfB&hs2DE~Lu%}v@
zQ($j>PFnve0HxA?P2xEwIbtetW<3BK8iNfymR^A(zCRe7bZ_23TsiwSy5|y>O0nAD
zyb13Ry1@v+ev!$~?=fRvt+h=a{sP|V@1PJbA19KON4~WA>fNi1(d_t~En(0vJSl3Z
zItY_p#_)lN??_)I_$5ha2zlp9L_Yon5FK-fhvn=6vAOnZ-5-=JrrPQK&UUBy<4i#9
zU#`>M4<&XE#Dq7sEpkbm;tNKLKG)V6mq#K$(Obi0nfk*BSs2UFtY<3o46-}QAsunC
zpKX_#mGk9DwkL}db>Ev;KZ}!5*K^PNqEZhkIDUfSzSx_~lVYJ??U-x~maeC1V4hXO
z2%Z@x(m%dPRh;<|#EBpljHMI?p=OjsCOY(?myAygqV;=CGg4?=_PRu^b0_W#M%BXg
zxbf`<wKBV}%`<hzmQ<yPD&MD5l>?!FyUwfcTfv8!th5JxrXhv`hR<-Wh#$hc7N6TI
z2SA!(G(kt{Jno>XbtyBgH}nEEC%Fb~{`QL0gimx3K(RnY6;#N(zEWu7VLAKjmaW;E
z;xK<piMNoi4(l?Hd;wOi?>#)?sl_}U1AHwxuw728?7y2Tc?O`>_j_j{1}_mz+@mQ3
zCyv4Q7awSj&y<R7)~cm9_Zvebe51wMbgKLk@a-m%uxq!;K@w_*`il44C^ejGz=q%@
z$d;*2>DE4-MLLMzohZt|fE9D~gE=mldiwe`_v|TfPAFmU{lx8>2}H;L|2TW=uqfBB
z?;8<8T1inFQMy4oM5LAOhM`8fI|T&^>5!6c7`j{OW@wP^kd%H;+<V{m-uwOC&;7jb
zarnm&&N0kf*E-kwuFv|e?JjQXX_upQ`4yZ;DyE9rZz`foeqWQwD=+ThenQ3~Hhs-1
z^E*9wppVF^tL?Vuvt+w>NS`qjVz;u*x7t;4mr%Ouh9Ls()E`-9btC(_K7~$v<jw2q
zgx=79yrmN4eD~v+@b!tlMnh^DTn<;Gf#tT^UN>mY?Ud+jVccC&ikVciwMQsQ2O>zz
zIlY=+HzUviYEt_s)aJLByFTrSTI7D<G^P3YR`?Wu6wj|cQ##gB>G2lXS27V`r*xO|
z{;ouGl0PLvJ_U^+xmw#Um?N?u1tO~2yy+Qu7aYQ;X>gkxh%B)vN=W@)PDf2uK+y|&
z$ek;<jtg2X6xB%DA~1z$Hp<<>6dNxM)$30s(GcDPu)KLl#9?ocZ(+_ZHD_#v$9_G$
zn@fqSR>l=wwXGz|PY<15@UOcTwOvWS@?@{g_PPPx==@UK_Q?60cvunKQaYZ?adUpy
zt{I2NmgCSSDOB@caqNo-!j`-l>-h5#n~4O!A8PZjf*qU2OY}uaIxMiBmq5pv>X5D5
z)}>h<72S(Lcz{9B>hS!PCS4B6wWQi@v@Y2SaOkZ^iphU)geh=;FFMqQCj~+4V#5ug
zK*nyRJ33ck)nf(BICR^8c{oJD;&$?m&ro;QRv(hJ0=8)=wpdT&?V$pNT~TOuu4H}q
z%+OY>P^01qvSZN|L2Uuyi!zd%5ov8$yFF<fU9gC`Qx7nrLwF~D*`3Zh<#Y1?bZ>W{
z`6GuJq6mM%JL$T1J~ytpJUE0qhY~W;v4z#yd#^6TPIGOWl?v7GU)c_iH^R(@ehFHP
z5k9@j5kslj`+$nva??{cQ0T>i)}cIb0?s-C#!nP|37nDiMb$5BT!uGlLc9>wQm~2+
z$t|YJe=@K{ncJ=PD}QI1P|uO0!2ibkLL>FVd$A#4LCplju&`U=1Jl#Mf}_87Jj(W(
zVD~%uI!ZORGb&tS*tbzwQVa2y*SG<lu03(3oPTOl^AzgtF-<8&>NrvRm`rA-i-QGb
zP&K1wWsWGw1FG%dLCU&8j#|VkqfF_n>e*T~wkK11pX=BByI<eoy+VnBs-a*aZt)!1
z{dsZN-*1=EH+Go|&lR$A8a3$DuE?<48n)f<L_It0$zL8{x!7JpSJ};O?agZWTWSW<
zo@E(C>zcI{$G79iL7!XvP`0$q#*30jbQ;}j(85Ug;GrXTsyExtIjiPe^YuK+D8+)-
zMQ6UT`ruGYbpqmasm$NZ%nUIzmS99dq;9>Pl}1{&g_i^O`5PtZLOoEx7OlcZ`NI}|
zJu9)8=28~MFuI6P$dsB4w0Gt6_3@|F(;!cb>Drb0+9a%>70tH0G!w?}L&E1c5ub1q
z>6n4vY(&VYQA1*x*gCcZ#<TNbV^T^Z5j7z0pGU-3u9oghSJA(ZZw&Nz9oU$yt8x_t
zAL@XL`TOqIgpVQvEo)W?DlR4r!z95ueoSHcN2U2ynA{kxEMz)VqRRk&x9wbH>IFUR
zxK{Y}ux7O!X|7IMxTt<5#H4mQgl05e{a-1r5&NBL8CS4+<JO(BOd63;bP5e~_w$h}
zjRXSWD>>h0{P_rKX`_SXuFZPzo=MlNxPsL_JMND<<B@)7prgrI*r?s6Q6RW#$8$pA
z6Z%N0S^}V{vpi91$Oh@gt6;)H=DW2D^MO_9G`NNy&2*_FmGiMjO{Lf(NvSbDI?8&=
zbVu>w;y~+bdSg8Z5;cDmVbnU#V9+xyYOm|dWJ30Fma&aC3q_jV9}z=Q0&XW0b&XL@
z5_%^TG`o~G14BWKbqFfL<M=i$B_giXPj@HFp8IwO-IDMM`qzI{RUb%w;%IyGV(4i`
zbft7ZovKYq#@9I)e>!uI%&_F4EP1ARI<T-l7Qyqcdb=I-j#{+9e)C;}T3TO&WiU|y
z>#24*H0Hy&cVFuvxc_=X{hm<w!oGR0SKBNt1J~3;XqRzHr|`@}Zs+~fPsBV5w+BNk
z=57hlnC$}H#1!=d3}<T{%0{q>*j`<O_V@Hwt=^z5$V5(TkZnot(7depRYor0!e)47
zSM8Yz-kOGF3iG&#h{dw6#wq(6YrSh9`5&;|ndMqNkGy6Zk&^Ks9e$lBd$$i4*Qxx+
z+`~e*P^Pyf@8l{$-+984>bXoDdDgIeY|<Y=)Ta}tlVo!Hat&EbJ%vzJGBVLCdODCf
z_H!gx=XW8?bXczt7b(!b{#LvDlOt5UdNFGssZl3I-&0~d`BvyEBZ?X%Rqn}3xe8(|
zhwg0wm~0N4N`Wv8mJ)()Fz2Xm7td-KKw?b3_TU#dPBM-A60jiZ^Nk*3t_~paaZ*Am
zda>{gz3f;PLWG0Qpe9$dJ_`LILR)908_?q={(7eCA(BiF>&QWy_Aij@Ps?WobMi&_
z_*3Z75nmpoT2%NSW8}UHkv&ueLYj7Gd6up28OYEbqpo#BUMFtW+px-X?o+Qe+>J3E
zss&MI^)_x>2FQD={isX%*tpr@{QEET*}vcZ?tDxVidi<-rrKH1L6kLAyY6DU7GX<$
z*kfF)KPqu61pfWapxg(r27T2_R~F2>@uGoP%3I1C@vFw~_3;s$B(r*+9&)#q@Q)k-
zA!D7q3WRFpx?5K)A8A=eko3#@`DtuqE*%p{v0l2PYH92Du@{&iw^Ra2q%neBupd>}
zC$z<WhP{{5d!~a6rQxc^(mv(;)fe$p_p<}XG}$UQ$K?%gojMF$=G$N!{j&NoLtZ^Y
zS})fK)L$%J7SLuY$*%G&d-QT~Vq3|$bcsN9ne4a*FPTK;7dHaBTPH{p%*g!Qy3NP(
za-ILYJMM=F_u?6+sK*#(!7!v?7sW-CB$`PS75N!7gds1m)gNmx-g0Yy546HFIN;<b
zBi_X+eKQ8~+dWkx0trZ}{m4stL|Mw~Dz%g%ppG7Zb-=l;FKH1wi13UTf^zka71{$5
zg$BYH?_gZM)DLjj8MLau9vCmwG$G6bugEdZr=3bqgX#*5r`xvNBQ(l;8pR16FH-)g
zb{K*41Tjm&bYnQP8*Rn|qV@?oB$Z@Zo*Vys=EVihNMEt1<Etg`CqEgfSO=lULs@i|
zs-oixtUQr^AOBW?|992x^YBA_>${=6qj>CEH9yOI+HpskY$wPW^1Sh|BPH^`DsNl7
zJ8E9`J5ys!hf%bO#1|)bRDS@+F;%~1pp3>&mYKL=MHQ=+whHEhw;8<lU(Z-TM^E#2
z!QldY3d)p{4IBmFxqke>&fONwqPnW!Y?SMfa7gt(vj(~G6qMwv#chd``*L0A0Y=1a
z9W-L|`YG0(va9U3DMbZJvlXKCF%mQj4mvaE&j*XN`S|WU>uR=uY5wq4mCk;Xq{Q;r
zBB+a_S}+P?Jq~O}^l6oH!W+w{T5GpK2S|P)S-@>-@6m0V+Kqfg$Q10+1ubsK!lDSN
ztOhUqYw_}@=f5xS`{BahDDT`!eqavMz8EIXzBa7Zohf}Tt8-<PzVz!OZVa~gA1CvF
zT?4|Q&k%YZ>~O6E=n_*xJpj${^+}#`{-|C}@o`tG^U!dX>=Tk@u6|T^U@V&FZ{5J{
za<I%04Uy2wS796@8+@+gb>+ZnGPkwKq}!-vKL;u*f)Pad>;*29hu#(bF@hfFM&_qr
zIg_lO8PctzNR%{ZQu1^=6+)HEZLO0xQEoPZ1m%zSz3{Cp7r6wbo&l*bcMuY<<F@I%
z9SY{-40s|3Gm6uvrSD;?@^bs@$JMPCBOq_5-BMIbP3E>~ZCqxon)%x5eB*s#Qnd~v
zzXr|=RoH=U10p;}Z%rQ4CI03gv;&TN>OH3-iaah(PJV)-e51$q4>jij<?W%eIZm@p
zv$&OV!+0vt^s@H!MsaFR;Oz-XzjFyi+Htbzzhu461tj2ZLRg0^9!mTfRD)+%8!c9L
zsfWPmLLLfq5(1>VR*xhSSoD3TzHeJ-;LzaN+@KHy)`kr5AIijYm_^KA?}KYFpBEfH
zGA!%&MN(?7&$l3lt9|BVei=enN0EAiay^}&sXz)(ER(8UW?Y$xHq`(MM#L)1N8tgm
z<*&g^Fz7gFQuFl+FXB}1R8DVqi_ji`zNeIiMuNiN4A@6?8_gYvEp=-G;zQ^*?-Wqv
z-k_vq0R1SonGR1%M$OM@eNdzZ>y-$wG?5o~X*E++``B{D<O$3?J|yjdyWS!Y>?1G(
z&*WsZH`m~M%&zOQg3o6Gl4}xN7mym4TTH{5!gR_wiMbr9AN>(vKM?uE)fjC%S`ram
zbv@&;VVkwZn6_F2roI~FR+c=j{G!s849BVDxfP>C@BdXW1>(d3eO}uZ!`PTwZ5jhE
zBIk?wh(#C~o3wyo^a#VcHwW$~*NLw3>d|F)bTAo~dTB`D63Bonf`0;g7*tR7kCk}d
zunGXo<X!1Y29QnZYO-v)?^Z8i1yYKAw@YM4Z4RMlkN|h+Q#pTET2T}%;+)+lJY@k4
z4lGD4Jd2?6`3yF-zC1?V3F_~?JMa-igm`(3@7@S_ifT<5a4$I{v)I7ZOxDsnOtG>b
zUnjOo%_`+B@qA68Uak14B`GP%n*Q{6an6kvL(Uf>bs`m>Py*(25I;(h8xt5u_Yg#}
zhK)u>A-b@Y^4EE?o-ITZAZEtLSh$6DEfZ;uSvJ=9ht1Cf5cJKnCJ|Qst7a&DZoNIh
z>UNbTT&$BSe20$~xux`Vpd+9ET@dm8-dPWggFe*-G4f&}0z3*;S&#8nvyeXBo!w!O
zfe=NR097oxjXE(Y+=o~ifq-1DzU_T>EHG(&`2#UDf*<MpbZ@V$PqWIB(QdW(GmrqO
zvBSA@X&G`^KBs~2CR5h}5Bg{}Myt7AyHimMMRsPbc|5fW4<NXOI^FjmKE<awI?^!b
zC7rh3<#9PM`sC8ODJ#wW&Ytv^aRCQUd%*9W<J%W!Xg^)Y6rbd=YnGcnl*1AaO^y;$
z*@+!X#FkW+{s_+#VWnM8dxcKJ{*3Y;=Qa{WiCzn$a-{HlK5oX;9pxo3&<=C{X#nnz
z5L*ZT7KZ9WdUcqQ@Y-7Yt8MISO-4>m<q~5eE&f(*s&i2=BGW<4f1D!P&!4b;WzZAD
z*iF3#;K)pHX4&@htUW#QAkWtUKe|)&XyL@_`tq!M3Quax$TQ%ZqF1vK=&@fZ&t~_;
zG8Y&4K}T~wE61wra#GD^sjXo|LX8KK3ukH!Fe`wl__pD#k#ef(jNMB}q_TS1mNWlx
z-L^sVR)p|ZoWbAiGTBi&S2+DD8vB3(%Rid{5nsHo$t71?8lUbVhHjP#aa&ujaojmU
zcf1#gaN#HErw=+LKHKEYp0OmOF0wcuFz;O5B)vl`!yx-my3m{dkK_Hn!u-D;2x~nA
z-HM_FzxV$NYyX`h{q1f4z<GzR*Fg5mIMv_2`5%81eDec65bQgY?Mhhwb?yGgFH4^R
zVZGqvq3eJA>A${dBL?ggtIe?p0{$5_{-d@|4o9-}sQ0+cwPw-~sL<!mJ_Iur|Lg1b
z;if8SoEqk)m$wfVMK4=Ffb9P3Mf}GvZQhVuWps~!6$_StblegX|NW1A<3590iSStb
z-k9Y0Q8GSgW41>eecmRNoWDnmFhNGl9pM>xMX^yQT#2C9)I+dcPlMX-?|pp}+SReR
zPFc<poc>Ku{=c8^@6Y|u#|Ce~+cUwwhW|e`F8}@{iyuG}(`NJ$!@u%@e_beld?~zr
zJ2~UFT2J}U?D0SUGV$%T75dmu?EmW861cs#2EM5NqtW<3d`=&z5M7pX7;IFdu8WIf
z$ZjSKW4CrZF*Dwb;kl9dP(!gg*TY_P*D{J5ZS5LvPAq3Xfk>@!)4p+H@?3Y~abEVP
z(@sOIft*YC87d5;h!;kYTnvv^psn^WE}g$9DNfXez|fn86(0U_UR81V*%soMM7FLY
z=4wx4vd8{k-JS>9h#+H&0HR1Ikei>X7HJKqirl3IZ8Cf2?wO^8<}}ejBcLjQ!<mUz
zwdl)ek+$Y>NHr4&Iw2?G^S8-Lr}t;b=u`?GRcx^=eG&cfqs0&Au%$w)+gP8G!TlX-
z`-TyxEQ8N!Hwt7blF@X^Pp#&f1If~dvVfwoIp-s&P;0;8?IZrXE&xeU4~R<CId6e-
zm0`WmdT0DS>K~s!BGrRmxb!8LICNuK7UGcUWP9pIbd`I9HsV*F>gD2=M76yS1C!Ft
zp0jtX_<z8h4(<FHnQfpm3Qp<+m)UJP#a@biUmFp<)5fLHn=?kfuy0~DYWM%Vha`{@
z!79nLqpk6`@FMN49LqY#on_z?5DVO4dL9lWwLjYjz7suQlL9puN^wxaLmL$*b$N9h
zt%s~f5^w$d`@@MclQ0Z2L9GBR67$%Gcat#NAu+-(u!xfOmP;lX5Vm~~2Wrowy?I?g
zoI_O~4Fun|fIwe@={*`gY>DUti4Tx-I>D3#wI2$03}}r{65h@r-1?f^f;P>R&8{%V
zls$;~c`3Ka>&eO{yfA;41T3G<Q7YD%4SjL<x9)2UG?9bN{NiqGp-VjiMLN}@g53~c
zhSoqONa{oYx-wxM2JsT)xxc$Ixm$br2TE~gl(@o|UW`3#|GImGosj}Ch`u71*V}?7
zmTm^f9&S%3y1se@YCYm8NTFtxBSz(>`R;s^E)W!Gw%~=4Rr8*j;&zG6NQ0|MybcjS
zCgw4(0iskqx6Rk{E3kmb7IeXQLhYX0pvok0NY>*aIqUrH!}$18fIiGebP6meGW}0r
z6E1P<%A9LIk|m3Ksi%HVEL!vHP!>4k6bEo-L}k=(doZWqGwLZ&FJn{Be+{ZEtS2(W
zE$s-*J_<0Cf#d^FU-p1{V<Xz%=8rHZf|J_Xi(Nu+9Mm=EN2CJjQ20^}x8T|4u5-J9
z4cF@bB;E*ph|g0ck2+oZOm|Kzv=%b{hChb3PHn$-=($|3{T(wo#<on6G246TUh+Bs
zh5H?{BEB>OcN`P?9z6jL<K9P{`yM}<?-23WW?1NtR$1wu&EH(dE|*87pMyP@g@p`l
z!eB+KU`_!-DvOT;A|5p`tqZ-S7|mHYcygXvF_O7$vw~_ZPnmvWBs*+0M_v@H1u}8_
zK|)|G7r|jU!|ftME!ns5bxbKn090_prH0~@jUIKdcfJb7-BGksEy9_u@A&Q&RF}gr
z2JF=QL9bLHhDn<a$RUbSbo@O%QM6PIuE#KR!Vs?aTdiO>g+e)O8;C@aiI%mJ2Wtbx
zcuvgq`@S$!@%c0G24_lqrgU`qYBPWujd@;{%h2W~4+d|e@2!Ad9~BL~(M+|CEifgN
z2FUu3Ydci$=dROYg((9e>QhXg*VJy*vf84#rnhVsb`Of~Ei_S^7Pp_oZ6gK0^iadn
z+%i_C)0C5nz5niHU?Kgv(d@kV^2E<bg+`@2w2Evg%UvYZz9>2<FRX+pFR;FZPbs5G
zdO~Ll<T5-5c(7D`=><*cMewM8Nbk<2JllFf_SyH$PP#_nY~_=IkIgV4w{gt}nF_dC
zj|G0w>&%z(wCRm1D$_}BBSvjP;u$)}c(h97VN$!R)#eJ*1+XrA_ms>DEvqq`x{6S(
z_=vO2ubIE@mkYh0!d_^!y;^O9nYU5Us&E%8XSXWkIa^yq=2G5ym3nhi!K$t9W?X?s
z`@rZ%%tNt|OSs8bfm;FR&689HXrbGksNssd45V4{7Ni?0m&4_t+*a4vijz6seC#NO
zgn`;X{QK36*K?rDT&b0+Qi^AbU(hJ^*Lm|`u*m$SOL2b}(g4pIG2~$?5r@^TmiQ@H
z<XfWsphZmK=VFJQt;1a=H`oaZjU1~tY7Lmak2YX<n|!o~+};wA10wJJJfBuDBmCxl
z<jPyvaq#G<(lkT^DDh*>l{ME73O=|Vt*0fB`E|=xKaYH>=_NdUJEnC2Rx9Ni2mEeY
zg%a~nf_eGMOCW;Kp#{Z(9CM=$wW+WF8nms{obX~a!+Gr9mba?@<pr?H{fwiT(*Oj4
zQPxXlLo(>Ym*D=jKE$9VLJDG^q3<>60!DfHTEvUo49XQaT%gRbo&d6ja@L!qAcO9s
zjge@2$qKu3>`)3!q=9eo>?X;AICZkAS8uY@TNxZJ+UP%fGb3u~$Ba2;UpHy%TI3cN
z;IPe^vEirFU02!{A9)#uWLOF;R#Qgl+&I~|)NBQH$Kzqky}3M14`EwKWQ6VQf0S9%
zhG&)Y+iNT5Dm^pYcY%|+E%z_<?3548Dr;hC+}#qL*Jc)Hge1mj;G=itTx>~QJtm5w
z=7z6{^}M>MO5%-o=dS+DQKbFK6-$dj(<zfD3L-K3)8{?i&c2(ubny8CE#(O*H`A4l
zE~AjT14~a3dK5#1YEez<7yiNYAVY7@_KVyDczItQ#;?P%&MdZTFU{qvjhhJ@J&gQ9
z{nIfOzsr+5^n)k;F0koZCL}4aNHV3c_46<G)k9e}$L{&iO1=?=PxU9J0!@=9%2`6H
zWZ^ezU#_R@X%q#=7$EI;$CW<!3@}D+JfeKL5y)+|Rb+VZ1DzhSp!=rGlbAmIMb(U(
z1El7nyL$pS@>wMEd6vPOd)BL{_6n(DEA5y#E>;P>dO9Va9GT@M&HZ}o;dYZf?<C#C
z3VlZ}?2#%J?>n3?eebMEnr@w@Lc83&X@=W5mstD`gUjOTV}&V&b%B#9a~`8BvQ%b<
zl!@0Q=xc9tEc9HU;iW1`x>xp*bYV<)yWcnZ98|vhaVg~5wkgW&9@k>JS@MkSIF{rf
zVXTSV;xS$<{u8W#Ue{qK&6V6LHn^<Iuc<s+@hYiWQ**cFbxD`=oeDOK{x{+^HV@!t
z*p9`NgysBgHdu~W8mEOmhU1;(HGCweSV!>$CIrz7r(>UCF|gRbn5nK;2$lp3g6Otj
zbHYb3&Hd}PtI22?why?Gh}Zf7=g-o?0`Dh|6=@jkDBLy(mZt#Wc*f_r9p3srY2NDO
zBgRvVI|6c_&|2`ba~VXnKzTamVF((}2cUb|34He$?x7idLM6wfwz=PIZrbXPn)gzz
z4GW%~g$ESoAB(48k&xmL&?RzV5*#Be#3YDv3g!@^g6}_6#{X<^mJm?D={m?63I;%v
zlV&az!%y!A;jSiyT$~vZtHG-*lP)lAWJup@y*G$fX1&K#;yDL{1lMw$n@C9oDf|d%
zMYbe%aM}0t=X^4Idy=E$h3f?!_q|ExH<OJS*m?8K;}6}L{C@i-6Yr)UrtQ**G&>l3
zG^Xj8J2MZ~x?U%P&0D{ZbG(eQ->H+(sX*?S?Pl|si_)!>jupQS#|*%+41-ko@*nSw
z4RCdlLs@1Dy)_KgKiFRkP@Zjnx4^P5Ast#XNOaWbs(g1vF=?uvQ*+PeSIh7-VxP>u
zvs0$<jYB609sR+31?cu@Q|6jCwQq|XV@VNP&$L@R8j$cetS<w_>Q;O&2)cugQI2!X
zgWZqM<Z@oU)a$b!x9f?f?3{I^e?c12L#mxow6Ude-OVwwXxE49<x1BRPKF1&@myif
z<gi~OlM;GG+QcwLMW`Mm&kP|7O}7ex;qkt}(4a(lL+{9V74}6r{X-wYr<)fhC=q<i
z($YWE&kWu4^D#2f@ffSHHIpUP126{Hl08k5_zzEb#XaR}zw+}AkP&Q0T<B`WOLi@B
z({?7wO(S%t=NH`6tO-f<DUn7wsc(vG@Hl^Tx1i0Gu{r&@_B?B<n=Ofn7+$?+sxwi0
zgRLj)IOK;8Il!J~BWXL9->pm5rP%XGy7n#T@xQ4!+>2+{?R{fqND{_4Wm?Jk@yBqW
zS1f1ZFe6Ie(r+sUP`wCK;x=R0GlCSX4vV+)5r*#;=VhK!?jrZMq;^X07LfwlyFOyV
znNs~9r9T9UwSvsF==`o$sXR_%GjMv|M%(nU=3BHE)_mG}oREyV^QP^pog87@bE<<>
ztI8amy3Em9HT$*$JuG6GE~5tsq!aw|*5OcY5|(iye@@n?GhFXm3jiUynLYi4K%4gl
z+$d5Yk$)3QZm0+|l5~r}ic<J{5Bi73V;s6fz<}i*{`|f@4!Q^kQQtK}Nd@x!{#01}
zCCIbT%3OL*y0#RD8AUFmodPp+T$h`?CMEUMmmnfW&$&sOf1Es$rd^eWUoCmDJcjeh
zML??bN@fM*_LQ@3o7OVYsEg96_m8MMZ|2k4A6-ZhT3(8?S9bRbIbQTW3wL!*!Vp^!
zNLS&-YGFfFfs{<Ju1q?O)1LbAGL3rPhjh=z;0za9kDVn<yU?F>?VrM@<pp@7%G&N<
znyO>9wo0K#LFFprY$wgo%WuIq?8bR>(gTbpsJd=z_h9VhuQgKLz?VVT*_f|2f?%0U
z?+aBaNS)0x6%<@aL}xIz=6=LjtJNLa?kzQzTMV!|*=Kpsuq@=^`Z_kw!zAqKKg~X0
z_yzH}2^Y9%Q>?B#ToL@UYHeq~L(@{Ow?lzJr=NsdtyTy4qtWx{(lHD}lGU=-h>w1a
z`Yk+C>(HYpkR)~faR<VR2o>EX<BK`IQ1eZfO4u|*SHf_OW!9Z5n=4TmIv5Zlnp3tX
zuKFnY0~9+|^oDf0+Y<B$V)xI{k$$()y*Zy%{8HGBQ&|SfO8^mNIm>&Yz9>Bu3QJg-
zsbTkkS#s?1q``dNAA_9otEXDii1hxKFMLi#y#AiLpr2oC^yv@D<-V`*9QklS(h+J8
zW;!i?;qmwLc_r;URhp+(8U%_deN&cX0TC<JkR*T3kAe>Bp2wS7B9;vWU-3%ee2-0P
z?A<!#BKmYcPs%1I<>GtuwM{b>KdmT$dK%VfUS6(!g0_A&%7By}Y|mEoDYCsMY_zN7
zyzeQMFn5$+$nOI)?((;fJe<kCVlm-m^}df$^p>;RUol`tS(>+si4mo+V($9tfbPuU
zOpq`89{s8GTIHK@PcSEjKxiYt7afZSZ78W?bPAD!nfc%x(1Y3Z`7>S%8qIPt=LE!S
z532&EdyJXz<#^3#NQevn;J#JQ37s@~Qln%c<-r1b$k>#s+Q6o3&w0O+@YOrooO0+l
zxr+tq7->00^#Cq1NX-ymlZ#}gsYk!<@mV3{I13Vy$xuIQyQVs(u&8ZXvo7j-#Crcg
zy>T~{BS&3rXTX-$bLs^xtr*&h{LS5~Zv`r5M=6db_^}s7MU=Gn4ryWobRWab_cRC+
zuyu9E_7Xg4#2fNx6&l=~nHAD1?=a9jci*}UZ`fEwvt6QI8PjmHt}(5g)zr0&ag>!>
z-*mGaYLd_93JD7AonkknItaX1M{*;?ZC~d=R$H%4G+Dotqad7!_M>=pH@sFkA1&%z
z)`dEaJsC_(z_Ik&%By_Wj_O%KRkYbUS;|d$pKYo7P&M0M@CX=aEosC++DhiXIvVL-
zNeE)O)?0N3fLatKBPa&HJw(P0X$Fw@Hl04>SHP~(zEI?~ohmn@`_RbddHG9*smY$#
z5;w59(qcnLuRGfAjW7pPEl-KoO*OlU>X8HuqDHQdRL!hi0=}4+4?2G#5UW|i0c#zZ
z-*K5TYBP~+^E!Z#q;LkSN_JuMR&rO49RlP7TfPj@9yPDEugg0?H28X^?@^@9*}0zX
zGOB9Xy#L{GuUk_h=bcm(O&Z)uG2Z!7Qd%0fU^b^C7Lp>^4~EokL$Mx`K^BW2J$u#r
zam}m85`9t|ekTL7isFq`QJ7iy$Z)+@4ZUdwRlgEqUr++Py|z=t>^Tx_@Wsr_rY9ag
zEjZ3BD8Dvp^)AZ@<t)M4*e_;}dfBSPeM#(%ADU_9&HNxb@C+sBgEeHSl1c#<cdS?8
z8Gh0ym3Q3zfax8rT&flazOkm`Iad{vCS{X5%P$66BU)T?!YU?64XzfsW&vk)d1~X3
zLR_C_?Z8lS^(r2;FZUqkE8g(Rmtotr!If^YjG+6A1IWRVwDbztU8gaKM>AQ}${r{)
z3W}*Eg9-~roNXI{s~XmwryVGpbXoUBT{zD_yLL0?m|^n#O!Qi|k*58^Y{k^V>t;=o
zx5Ag-1bshQ)dZoLvc8-eAuzLE$sUgu<&R=CB+X|&E96`yrz&K-G@{i$y1~S=5n?RY
zvUDv-dw-<ONZn@*ZD_o2uZ&uO*~kgM_bOgvjQ-i%8HKwdV@*)CQ>1EvQ8wsL(v{V6
zHT}Kmu`(xk#4aJPP^zeYVeuN2Z-Xy8qBuCSJ>Y=Q_ZXY3t~3FIIJWe9av<iSAH_{6
zn)%a51PQmWif^+PvDx(P_IyHSH8Z0JjhQkTtuiA&Vt!Zo<U^?IJ}}UTne1jOaI*#b
z5W2gg>37seZYyPtIt=I|d7RkhWC0@5hrqo4CI`@w8cMgb-z!Y$>^H1&AAPLVF!i>2
zHfd~Vso(Yi(qwc3kS2cJ8Z7IwfLqF<d__-HZ=R3OUZVD1!6%Zjo<@x84Shm56v*}h
z>@UU%NB@9LSW3U)9fGLq5_n`x)_NiFbe9MC7zeB4;lmv|-mtu5gBZPPrhKAe0!U$n
z(r9|s7(kd3(LVY^kh~x5eR|(Mr{;`@*&$f5MLyqv0;Iensa^@cl&D%Bi)omvN~*q-
z^{gxn@;x5=+H}%W7t_-^$`}awnQ#}@d47*>jf+m7zUPQXdw`ZItF>3@*#<}HOzUGa
zphAvOhh-*3)dZh*KZ5RX?fY@YYi_I;zpK*pI{;o(_HtA9@06u})V}TE4K^%q*M`$U
z&_E94(dXHa*MsfBRyQ{C-NOP}U67tiQ#)?!h9WX=?xuoTQ*J?PrcY}qgIYmmSrPSV
ziWlRo<!kQ9BoRB&F{foIgP%-r34TDLST!2B<VV(aqEK9w<g@!Z7<yCjp!1X-&xSQ(
zHTw|HY`eBnt_qp6E9HvJ-xE>(*d3DA4`2%`iGq;U>WF*#?D|h3?>f}}nEDCnaUH-L
zd5ry2uJL8dPE2q@%4d-Daio<vuI<d}uGI!=yENKmO+~LoN9RFC@GrQl*3IsbMU`j0
zn|0}xpBIf;$)PQI?RW9kqtWG){$Cm+2jXf0bQG*>Z;C}{t{*IVMo_W`z*5^nf1gxf
z?)-*!WE%<NDV|S*+bQqn2mqX0Tv<RzU-f4oHdzc{l)8Y$XvX;~fUB&4?zY31wxo6n
zz1lejg^UjaK}r1arA1D2^{h`8_ti;BKak$B^T>*dI{HajoFDJe3Qb}!wtGZKdJE{d
zYFyin{teK9CYiM~P-&bJYbWbXuEXM|f&SPHTD3cpuep&`KdDXQ;>!HV1uo!zn4Heg
zbV1Av(A?CB(f#Gpm7nr1;swKLa8?g{vHkVp<`<Rbc(d!V!CbkPQXsQrDE-{FJ4F<m
zG%PNNDQ1)=R+Kc1;S0A;>W)`W9;x;R448ht6?%nm(E_vVrqCN|Grk_}WX-%<Jl)-;
z#*=}{8JyP4HDhdazJl3+dAE7X&%-fn8<~OqQ7V|j(>$Y|)$K3>Hh{VzCI@9F#N11z
z&1XFI)6md>M|3dIixkdi)cg$B+ks)mP=4DUkJW_6u9RwhehGiHW=OUcdOez}^|GGU
z4coccXRO@u;Q(9W8Zs_c1?G&Da5XBY_IuZ8{Q-(SUe4mRtCx?^pv7AWHr92fQV!z+
z1$sU+@mk`ocb~(JI3Qnp6#DqH+DhpD9x^_o#<3TE|3tJT7n3#z5V}}^AjyNhA)N2^
z!A-3cM{OO*5=|1vDCD@U_8ox^ZcM~!9;Fa>r>!@h9XAd+-&i9wK8DPat<K3rrkO*#
zpk~BIXbqPIAM5(uzf!{&v8BFv*&XqxrXLzUT_@P@Vphj-M7NP9y0PWH6!#Z$L_!ni
z{?TR6n_8p%HaWA2y#R|5@T=W97~w27%fO8n&npsb=FB?fcbIDy^09BSydHVAyuRzv
zf5)nt5JM@Tu}(+lOMOe4(%_mwNRe=+{l{J@mclre!%i!814yi%cf;vEK3kvd^L3S&
zmQ7@-ufiSD8?n=4i)vI%8n7M({)EL$1a1dcS!Q-^a{Z`_vbD!OoNKYiiNxJOPmq}(
zR-gL&Phr1R+bWG;4A#^U@<55vR@Ig3?|oh3NW{=5!#ayzTNu`B-`LvNPrKWenO5u$
z3&O6zlv&YJ86W)a0q@el9gu#hzY`r6>gSMO<4LlJu4&0#7QxYT!1~n2u__$)L-Nl?
zS2*td=IDqRuoguLg=8Ac4oqBF&q{y*teltOrYnqDN)Q}dA(AN-o#Aq5A4aTph`}^Y
z^HGw#>iB0K%E&A{$2g=<#LBDaNuS-L{&*xA!h)=60Vj*2DafioM^eDWXKIAZZ~_bY
z%+q7|JNAaxY8+FeN^xc@xlDdFoc{$tJ<(R73AC!);i>^Ft_6f>E(8d)d2pvpm`vp2
z?*oTYwArnkhs}l0HdmoPcipD$h3Fz@B32iZXen|q3yt&K^}MmT&g^t-B>ezAmFxfm
zo!seYlYZz@b#anIViLhyi5Fgzg5tI`ne}*lp|9j;ZmV!#&cyOm{!?A;4%<xUfMzjj
zEsi;Uqg=slr@A?qR^FP%l0`pGc4Fk_3cFV4Ss#PH-xwYDVe(cj7wmGWoRZ#ud(72Q
z)O9?@>$Jd_Hp#IIW9x;<#+*zL=CZ){)p7TVNzPSCOb@S3`U=;8G*@lGW?s!N$EMVR
zbRomp#+4^*#_G}Kc*1=Jo`sn)JyH+0jAuO{5RVBv&4Q9D%I8&Mv6PHziYyac-VU@3
z2o?Mu;*4e*eChqXb2Bl_D?4{*Q`|!I)Dy?;0@J+N3-8*v`;Eb~6wddDaA8KW-?lkv
zMoV5NUDPutLk-l=&n(e76qQw*Y+?g1{`&A~kn&WEEmg&ec?`wBU~xd<y`j9e?H44y
zZ<=q(AxIp7U9;l%4Mup4X0>(N6sNZ7#?s6)EFU0t=H4+V7_qzjW%CxA2Ee#U{34Bt
zJb)7Zyl;As&Kwz<1=bIdD^jNwsMm3MSZwe*Y#Q<Qe^`IO68%zcdHo~i>KNC%3BA2V
zuO~PmT%3oa185hmul0Zedy=d(!0?-~NVTrsJ6<0WZ9LzkS5_I_0V{KG?AShQqy9;N
zQN9F3E&Hjfc+WT)UV%2!3*!fB)>^Y(rENjm=`A5f1D@FsjqDhc&N8QQ7=05Pr|6`f
z`1$=_t?HgyW6X;L39g<M^I|Q@Js%e`_1F9wnlCp#q0Fi%7FEC-hhgrb-@NNX4=b(=
z;EpvJA$CcHDO$%J31&k$RnxN7vwW87=J9ZKb^@d7f%{p+RC8~Y(NsL%H0f|I*9H&s
zFls{2?61kk(wwy%G-&b7h2ANA&mHuEw(Bz9BcH)ZIJiFgbiD9DcRbV7Zx|O^V=<E~
zIKggFG_teG$%J0c8~ufev}%XvnTd*B?bNGT88Pibx_-Of12HyY^C!X&uM0D2M!{AA
zMEh~nci6<;`_Ff!^|KE5r;vN5=&{+05>^C9?MZmNIs^l44@bx<dlap*z2X+?S5;Et
zkL;;(^=a?-RS<-c2vLVXP1L?EdM$o`55MuLq$|TSc5tuG;_PW-`LnEkig*Xmu=lo~
zys-R|tFbj+T($I=!&EPjNP-^`Bs?jcX{5{kb)0JV<ZxmU;2d9GSS9EExCPXK($TFn
z2})<(4t??(vyrU$P<Be2`*Ax$9_RKhU;!z+GS*Lx9HqghUz;od{q6CvKxi|Q#ZOv<
z5s2gpEnr|K8S|Ez1G4}R3cOHb8?&1K0OsV?m=)`GKY^JmB`%s7Fl+M;q7J$(_fGi=
zXV|y?eC1%^C<B^L8JjZjWpj*%p(JJ)@znUn#iD|^91mOV`$qIzE?yu`yQvgX!p0OH
z#K9b#zIi5a?qBxu5#1d%<}GHKIh?(?L{rzN-C~ir8rvp0i0N_N@m-~EcoU*d9EFl~
zX;?5+VfZ$o-rR<*V~1{#|0F4s+}+b4@3QPLt~rwgkJw9H#XalGJcH}8g-&st3oX8<
z-m=uB(|)z>i?asE!`0Q44J5LMUg}a`iDLLfub%L&Sn*L8xLP)Hw2>fS;W30;I)F>3
z7vi9;<`jR>983>6tF^!PY)XF=<%!X?RJL?n{&XzoTloc261K$|%NMdMG&ptm&kq@>
z`=BWn5$SMVCpor(GKQyh0*w-`VH)~3Dg{oJHd%<TXedXyOg9w-8}}EG<Bz|SDw7q=
zzxX-rwS1GTZa$9UU}uL`j@DArPd5N(T3M&bpP71jFffL)973B&to~&r!+*+Z5tdx%
z_RChiiF&rx^7NWx!(<l4Ev(nHDSKXhtuv7CuOQQjRO`57u4>i(;i2OMM*TrI{fQ-L
zTkf#j{V0xbH{lOV5Ui`B)RAIu-w^2!W~!z6NnY|A3-Pu;*f5{{mJHBF84Y30V2w`}
zL&$^1KR82w+K-Y5Xto|<aa<M&?qFskH0Z0>Z)tkw7BdVa`oQE9O2UVRryLGa{w}a~
zX{nlghBXwpT6ByRs4H%c7Z<lKRBq5h^^jE5ekE~#X5BcswbeXpv)BWeG6|$5lnK2R
zptw9-QUHcqhw0^0D{*n(fRRRpNxjy=<*vwFh7q}%TlUz82IoWkd-aFVKG-x<K8=<8
z=d_7tUTu&NCTY{tN@uWZ6Y!Rd{%XpOkx09AiMsdMjeIr*5p~?Bu1!76q?(_jxNwHd
zabQ2uiZoccx-nCYqtHs{=F-Z?05Rz0h?H3D_v41t^c_a$#NM5|DhLF6Bn+xyLlL$n
z%dv?}MdW*)k@^nzsC9a#J<%^B*0|^?gc!O@-dtFJQ#soRo3%BLZiQV4Cou37b`BHP
z?w3<?jCy`>CvD2DO>f#2wAQM<GWo24RChr!tUG#%k$EIG5tU!yF#h^Yx3ySmSen30
z(XSx&txy454^EdkSlkHWJzP)P7@WZdQnd|(vt{3yAw}O!HoYh2Prg`Hh$SL-K>A?~
zj*e9VRWfMHeT?4=Id^6lfL&y!iP|xmn6G}4^0kw$yyRR$<s=hX_oQL7!NAG)hUL}%
z4XNqCqI^0ajmYXn-}hN;R7{y?uQ4ATZ|bSV`U@wFc#kl{XkdKW{t*`f`Ui+rpKcKW
zFn84h;Ed&4+2VWi(rp9xnQX#S^n{GUHP8>BO7S>}&$|H|?+T{K$_^KX9}~O=(0bJ*
zKiD^Si!?v=cJr^q``y?F9OgmuU2KVtApCnO3~~`>w^JTiwxEk&5);`dE=<b?+RiHp
zHX!I6faOD-qq&O8I}6`Jp>Z8WRLcV?y8A-h?!T-nDvgSD8lt|U4eTiAt8`($n9(b4
zI$lo?<3%HQlW2f=kD-_xTi_@htmi<d`*hs6+jQfJ50=Aa-;?5{(L7x4N{@ovvYNaq
zV0MG``JTVqfZ23qp#^>&AWBwj*_61{QXUqGQ-IY{S-0@OdylJ@$L}=c*Xc2r{-8u)
z&mOS9Ckh&#)^Ic19GHgm6k*V_7E>lq=lIXqIh^y#mawsFPf%PH_atqF#=A7zS|ny_
z(LM2nc6_(YAvkERR}Zjmo$Y6&N*9`3eiZcr-&Bq+HB=)elN1j+qf_wnEEVbQx#(^l
z$tX|S(*W3yEnO!xEmT+3?gf=_=S;irvwF0Pf;TpGZDOS7(W>*Uj}@?WG{^cWqdY%E
zrXjeW^lJ>?gm60Q+;@&{GRQ?_+doMNwRg?_H1;A<?P{tJ!9g>2<H$*^dugL-r#EV@
zkiider|<g{2_N@TR$@#bAq&c>GPzo(i7uF&K((D{9;TGRbJ3N3Av=4#YSa546QSHQ
zOq30ES3}wJ?gfnv1e8(b%mVgVGi>(pRBnaB>{P|&*Ehv`YIC0qfLG>kd;upJ0U4%8
zeLFeydsZ2{Xso38-bEwBp#5V@Tt5Wkp;N%c01$*Sk;@_i;D7^V268c+=A)g5kEn2i
zn*oHL0dSQ(q1(BVeY>7!pSuFuwY9&C6=3j915YDv6F>}dsQMAlYCcNi#BrJ~gD_xM
zpo_dEL<1}5EOD7U*_rMEq_5@c+~aCW03g1=*dv(2AqslR48g%GqNSw`J-DUl(GqLy
z)}~f`Bh=`Fb|k{QRY?RQAW)_Bhz8j4c|G^-0d6El&PBDAEiFIsnEQJ5{i?0{lWZto
zS$LI}hWy-iEbDsManYRTS07ja+Xw|lW_$Jk7Xi(L3=zL&VGT5Jueu<@{#w<T>{RY0
zFo0@2+Ef^N6YR~&(?)StU_TVo4MFdY6W^rWqByPSFVdCqbk2MaYajZa`XS++x~dCk
z5N`&#^)Y4S8y9Mx^yL_b9>>nC84e2JAVONIn7JYkpYToJck#P0f`&Xl)i7x+g2teB
zJP}GwOKtjvtM=SOu;619U9x@}o|Mq&_`0V)Pdr=s$0)`Hx57Fo13KF%5gM1S?aszA
zymx7~pWbkHO269gazFmtfl={etg0+WMEb#gTf$#$>ja2SQH@V^=Q_)C`-Q%6(P&eq
zTwa1PsX4Wjw`=)Tzr3yv&ax^OCBG+5Bi<RMeFS$YxCo&=)9(KMgo%lHPhe>9@CJ9S
zrFE}oK{jL7%;^&^^S0Nift}gPLKdFcV3jT`>O<RZVfx#JKjbkm`X7K`?9tXoYU~GP
zjfTWMY;-@fZDFvMvVGtUq0nM8Kh-fVd>H6pjg0X~?=}0EW~BWlA-h$XpA`WVQ5)8G
z#3e})uP#ncCszSf6vJb;`l05T!9jS}TtaIE8WR!-0ITZZ0OnDr9XWE<H~uO&J=%*t
z{vs31x*UKIM?=rdPO3knnmRZF&5i%wR<qXZD=XdT4r=eT5)dQs{%CMc;C9}+cf@!o
ztSbmqr192>1rvxsVB@wXRl~4Q4a=G*?ah4fvs_h1v6;K0yov?mM{Bwlkmw3z!Wq^|
zGo_g{q@j)8ol*7amHFaJi1=~iSJ+W0Lo(Mp0m>dYX_R41CS08}SOT*r=$_O^=LjnC
zw|U2(RjdS`Dl<}R<Rf=vghND@-=2qFOAA&p{3@>(`oZ8Zhtm_Xk{}yMovCMOrch-n
z0e9jZu&(4g&FXpy#bl~xduJJ)uCfyK!TNiGsh0)+)5J>B3WnZLI(iW`YIuQGXYnwa
z12A+=IG#6GFE1>Iw`uBY*ExT#S7_4E&sEHni`g++efaJX)V*-dSxryfc~B#^$a4%Y
zSGA#}*}>3Jirb=O-n=O~H?Y91MFc`J-kgUGw+xQX)S{WuQ?B$peCU8JJ?r?&T=O*i
zHC&*;opueqR&}m+zF^K>ty>cwVA`|^KdZ)8_>+c8Z1%l}j_0ihnC6dDF^rnaVM5p8
zV30y;XR0C-tRGY;(yDotXVC1R@AZJkaXSvCq6R!UZkyr9DAk#^*g?n`oOf`ZxivKl
zAQllVY!>{5Gan}icFmCiLx`w+_}Sqa{XM>@ysk@(knC&kiZ;)yV^z+DOfZq;%PDb7
zGp}fKgDDh;{vQOkpi^mH$SyPLa}3KJJWwwAO)@X#f0`sAdwa!Hr@nvwG~5*F=;rj?
zTpG8~+;c0^0*$>XGiXpm7p?3*WRE@Z40Iq}rD+KZqAChf`}rE+DkW=_4Pdb(jmw4|
z+=_?cP<4B}?vB-=diqUllH$|>wk)G?^B|03LAA`OQ$(8QNdZTB6u+8P*k9Pe(+50=
z=YCJ)Q7$OO*#X~u9ey~?@|aVv=>ziEm&E56qWu<ircqz6C>|@to2Vd7?7=A8m!5{(
zp#rZMBgHsKvAR_M4zs7U;7M>3WR<M$D(ffj2hN=9M_!fVY43s)D@?=qulj4li{=Y-
z<a5nyyfWIEeHx3491A`Yno2Hg9^m&l(EOEP{2itJ`(qp*fYr*IcKB3{MY#c8twrh@
z0d9!KHDEpBB#`~dHkL?AaOJ9C0bk0K|M>xuAknZ|C^7n6>-HyudWTnyoN-it7FGWl
z;}&*&_#?*&uTzylQFvb(sbxwl1WG9BpI3rKinOT#egD64!oXYNX?bgbOM?O1a?zCI
zla%NmP^RN;C7tWBl4|YwglM!${eMqS{r%7TugCSjpC<yc;?Q>w(g02NE|uLPz`y)c
z_53rj|1V_rpAUR+J4u`svi@&?Uve-<1_1HJ3R>u^{|m>S2S@-W_Vw<__&>jZKYsdA
zoP7NI^!F6BYz;7p5MakU@Q)F}{|P~6N4zz=D#H=0;s$IslkV!9|C<-KhIH^c&z(`D
z{DYE8??1h4B0_I(f2E`|og{nNJ#~Qhzh#gl>+<}31QtelU$yv9Z8%MkMKq!tp(C8s
zy=&<Yju4i)H9(5fVhCk=iC)HSjzRFhU6;2X9Qg_GGYS^4(*gSr{z;DihcC%PZ{0Y=
zLt4K6=PU7_=y&_ACu^xmKmEU^lK<oXZGQ+prNtapwLi|7|KW}PlhyZ`xV2F{>2(qN
zvn%j_V)%WyDZ^iccH=mSZGcT-XFtOP9Bbxw$AveQWJ^yUs=-#hKV3Vg7fjo}s@xUK
z3YGP&mCv#dja;-}TMYD!^%H-SGmK9cu9?*|%Kwbo!+KO|vXog?J72GHhONl!?nUjS
z^0PVwjHmcMVJ4Q*ghDf><7Ym*${FH;wkMu%?r%>-KGVIdpJg&12wllcJ-(6o6G-&=
z@=6atPPXfV6trNa3rPQkp5rG$LJ)m!@$K9B6JVvG0JswxEg$t&yjw^-3gG1uAna!V
zPcEL!2?i59RAPQ-xmmLASY~Eg+WwyjG&(WrD8hQ6z<^oJ3+5_h1}*nJ`L%DzF~z~i
zC_BqHC@vMtL?XN~68Q>{;&0y}2DJF!Uijfpkr2HMs8Ju3B_vjoL|eEGN9%o<cUrG@
zQTzXmh5ORBn+RD(J|xSS%C_gL!oWA?!u&Ig*rNH|=Bhw!r!8(g&pX<k<;%uPT=|6K
zQ`~f|!PInV3&{DL$L=A+kT?rs+<#Evu>YM3uLdm4aGEHJ%l}uSo+6zFjpInbf_FA*
zfjRE6h9%(I6AdQgrhgif198#W&=CHDU;&t-w=c5QBZL0*10;a>KYX>hEGhL~{gK6$
zZV&9!@3ZOWOTC@>z?GG*dgcykw-Vw%!b{r2I3RQ>#4NnSV3LnWY|d58UJiLNC->lF
zZ$4#)C8GSq^z=;<FX}F4)~%P|vo~LIJcX`*rGEjtx>xlBaN}-mcb3n$iU*Y1bUn|+
z_Q9moXPIPv^#fofK#NKBRUF}T>o4eggYy3ceMf@pD)?fu6xbKGU`Mio$?fPa4bI<x
z+0yF3pZpretqoa8C!V={aon~*oW8OOL&rzxY)o6IU2PRJec=;=fzP{-<UiXzi7qLG
z9<21O<Y+qXv>V35g6|bS@j#50A`C|!Lz^bd(<n+M3H{#8+LPcg2lGID@u`epCx+R0
z@56Tkn9QHy_`w68bn&oTQ1#aN2%Sa%ms-#V*goC%&LEqkxgT}a;e*e8zLUE3s>D>7
zk4c>$ZBT)-DI8oqlcdgpzzOjwNQ+M5v9X^b|I2u%(rUhlAu%;7o(&QN<9EN<slrVk
z=E)!^Ssd<WQ$uQ_EC;P<nEi$V5!bso1%>0CY1JCd-CN(Cd>|ugo$0u&L|6Vd)LrB9
zn#=`^_96{D`j_pFvw@*1M<QadQ&Xg@>M8_O(HytX_6B(s>F<FfcQwIZdD&b_lK}>;
zPK)id>W1pCh%4cJc}kV3QA`gfwo}@~-*(nEg>{xLJ<oK{MO4T#66}iPv%ZI2k7YUM
z`Ras(8;oq@MO?yb)zc)dlI@6#kW}3VReWh)H^<I22+6{&1S#(wuEp499`q1(ATDJv
zdy5<^K|?BLR2IyY=<uT1HldJ;*_s!!T$gsQHkIFgetGX8XW23||5-&JU82nQQ}v*}
zV-=Dr&8^O8+IU?$ji4~$3&otP2fOs+R)P%qT*MIu?+-N`=om7CP{z69>2QRR&Tn*|
zj6_$Ms7QZC6gklyeKBT!_lTb6Jr(sr`JHaWEgG6ksInw#ZJ00WwfMnm7rx^AV<zZM
zgM$hgjXFn)12+8wYt74stDH-V8sS0%+GRR553t-xkZ@*izOdyBYoWm~vuNSnfj@Ys
zPV!XkG5-Udq|eg*=pI0E@ok~)MRMx#y1CG;*=xL*8ImkbDY&{5GF<^x<@82Hr>xS8
z@nn<!JE*PP#4=9ii!Tpsg_L5wq2E{yzdcnxm8iV-{?-7%?qx7huDFAdiNcUjPRwKb
zs$cNp-Lw?ZKRE5+ePqnXG?|Zt2jbbq)t$`NtwYqZ`){h8NcWZTrpbg5)BNW|C0|Os
zL>2H>+7QbWcqP0*yDu*CN+kIM8jY0l1GyA$Z?qimbvKF6frttjlIUXOX<2eFbJCth
zAzZJ$V{<b(-IcYqvW*PC>|e8+ot&JcosX}JxSF+lCdaq3$Ch%a1C|cQjeu+SA#lND
z`0}%i(rLHdN$$%F`*k_SZT9R*MP*lp+NJo&v5Eb-kr9QuT_c|R#v77k4nE#cqzt{7
z;rXNkw<im3?G*u}Lv^2+6p1)K%!(I{#JObCu&susi4ipDtgnmt-N+B^-eV5Ny}AC0
z;c=tMF<Whc(bszFV5tx^=iDDi7ggEdKIcjvgDi_VHvP-g8lmGO;g(`!NNU~7caf{Q
zjR<|t4QR@zWiB!M6%SL;2zO>xjaW6f8VSa*XkK}IyAoqn#l<inA~Y9bcty{5Jcf{`
zD`4@m{aEwV>?rp61~w~lMe&UA&zCOilW>Tc8naa!`ng#!)kY%cT7}@g7yM1JbnrEy
zZ1A}5;9(rTn}x@vhWAN?ZWB3<EXqzA^s6=(fj$<4c}C{Ql8~M1m&`Nz0ixBSya%sW
z>y;TNHx)NW(ju$YwOcmYC!OnD-QPcA-B!2Sq&%^Pv8lo-#&PYANikDgKD~T15$N9)
z`<xJSNB*<UhK{^d#J#C!%zFfGKPKTjM`=Ds_Uucq%XABQ#Yen84DT(uB%E40TwR7;
zjhi0LDAp3D*8kAv6*}Hi3e|Cjed!$zMG2eF@Cp@rd0KO~_1no|y28srH@AMtAj0{(
zI_PQA38v%22V|;i-t!K<goeotmj!ULNt9i}V$5ADKk}th(_}SK_Snfsh1b<sg>#<q
zs~?U#;7@aC-ivkA^qvP|vK}qG$cCt{>o$0-uUO(A*}a*mxd?y8z%2`P)L}hJEG~7L
z+E1PvtrbBP<W&3OY#Ea16$HO@>Db@?!Kv6}uAgwOK_30kfEfcx7~%Gx?PDKc$EOwq
z;R(6>4N6r4Y*J?Fn`45N-aJipB@BJ?B2=mLlgrWeWTda3AMMkp{-6^p1tK)hN{@-#
z^KjgF$Qo<e_#kNO6k~oqEqMZr`Shzn^_krj`CJjCD;1aE0E3c#40y?HgMMeuDXNVa
zR(kp<@TC$XIl1>l-KSGZqX8yQ)SfvLvm`}=IW-K!CBi1+#^{iH?4U;^%l-lKMaX9H
zl{U+gNg!VD@OiI#wKav9xHwey@ciiLXcTFtSC8s@7}b4mg!|s!c1T)wg|<bQq8mig
z>FX)Dp%Wh=S|7wp-$T=Ldo)qjvvAN@7p~_=9Y#eG7<GaYJJ?+2yLV!9Mmq1}Wqz<O
zZH2zyib|OjO3B1-@3AiXf2w;6pgOv3TR4FvSc1Dlg1b8;xVvlc;I119?iO5vyF0-X
z+}$;}Y+N=Df9K10PMzF)&wa0M{jXj<YFAemMX|ektzL7kF~=O^nUkbzup{V-_@Sly
z8bK677;|;TL?U6tgNq_(>K~Lc&lx3fU>1vMD3_WbbTxk4s&;rga9Lf*=6%VvfBvX{
zxYcSI)><<4h?tCNf;{*QUvHIGu%XV2&cB0neY0#K1{{A?llg_PXGPji0Djt^_<V_g
z2TktlDtBSsUSZkhZLP$KoAUvQR8=_G@B?I6gMxK@OuL;191WiHVoX?o)1Q*0-2k`L
zo4|f3IED$@Q~gp&b3s(RrzUPX82;2S$?v$rAb1^fe>0b#CF7`{wUrkoblAmg9Xq?^
zAF#%1_klBGzbBjKN^GXlZB@nnVbai<G|I~l0S=g=-8rURE=RF>G0qQbkAxB7Is6+)
zlNEw-io-2E0vf1AVaC<kn(F5cVrT0)H=yq;Mu&kxV{)ks3pyK+##KK7xSV4znR}S(
z12peh&9){rgyg=<;vR=uq5I&Ud)|iyN~UOhFw@}vJSp^kAqJPCkJptyVWFQRKLb8K
zVj<5!XjO^H_qMS7>LcWp2Ho(Ud?!sGKfFj_fwNrtra<(~1Et*b9T{gXF5WTEJ8!tJ
zj&MPiqMwEC`X34bE@ByovZ&K?VG6U#1OQg{$#R#)KLSoX?uUw%Q!HOl_xb$*3FtBV
zN$vvLqzFPj&AYxElPG!(Z=eOUZ*_Hb34>a<<=f*ECT73-H$y2fiz$GTxO-bKH|0$y
zYgpFyoD%(Yq0bB8j0!*YfDSzxna9!IHKyxg3QqTVXN-kannuLK#OM-J{a|R=fmaxc
z3D6UNG-d@ISBfXh_b@CDGwhe$UZ`EuExZ#(7V8nre7kYGdf(AAr_flt{q&6~ke%S$
zc4f*`_~gC`<jl>fhpCec6Mn8FoX=S~^}^~KrkDJ7V-uo=w3|q9w8;;ZnG(V)|K-f0
zRgqnd)`f)W$+S6AUYO}m%(UfIbJ?0Z?~rO&ue9^>+ItHVX(w0VkEI~Yjz(ID-P}!^
zie8%AADfT|B9mTdmB_xnJ4hl|)YRE%iCCZiSYKPoK5NXsvop~>2imr5cEDuhQl`Kg
zJqLHZ9jC=kwOI#$6(h);OD)1$;ws(K^7MR@L7HCAh_=mciwH&h?AJ#l<~`8HSqSKO
z+!g>Wj~Z2}yGpN6KTYOGv=O>m#nG6C=SKVJd{9c3{-t%PiFBRUkeHZgY%?b%vJik!
zze~-G)O#TG@#*p5_M`Ht$S67-rl4zUrJXCEdJpoiUBpT>wdQ^@Y1ZTQ2Y3BOL)p&G
zPAC28n6Z%u#XGkx$@M6w<<p^lNz195_qczpeBV<(D`-^G$67ZUieQUQ4}?ARnnV;z
zTIA2<9pzWL(N-^Etw>l7%B1T(0D6DkL&b6=2)N_&WETX9%XlV4<Wc8&cAT9tqjwW&
z-YPlXtQ>*+hNDq?9fo9N2pV(Z2*w5QEX*wgLEkJ?R=08D6m_=2_x7Hb^-_Tc{eBN-
z?bzUYt~Z4-R8t#mhW$~ALR~T*^BE>BssZM33>4Gq{@Tr*E0Yp*u?eiB8Oapq8E2Bu
zhS49)G;<0Er;qvFb<SUW!I(N_5EjGa$hypUIeAopXP$Ms$;NMu1{Ke$HoIm@`mT^V
z;WW*gy%e4R8LYpt^JD4<df+h(38rLJFZ+7R{!Qnlf8gSa>N4`R0+p}p%7yQ(4|y2f
zk0j=u4(Ccu6g0WZ$;;9d#Slb_b?;SOKc(;`O@Y(4y{3@w%J^<vCC<qTMs&VHLo)BZ
zzMdk@WAP;9II)1o?-iyGw~tcwMhfN_<Vf&e!eHi;*M)v5DOEBzI&ZV+BCRuLaH6jm
z?o8t-LAm-+SLaRc)u7I*+BtgWuyNQH-^Eh;Tn2e{nA9LW?{ujQK<oFYE7oBDo=Lyw
z6IaCNrQUK&jSVDZ6+|+rg~#%kt!c2hDG`+7)K8S;PKV;0IIu`4^FCYdve3^n<HcsO
zOP->7)olMmon-U|;HAgkx0}e7SSSGWjx-(ADi*xdb(?BWTQe4jE*J8oLXOuqS%k|;
z>RO~rHe$E7>PUnFKY6Z=#nJ+uLzsB;6!;(hik@k2qk9|I%M-WdO-zs~Y(!xcw%}jZ
zN(#8MMSEe9K$IC?ulR*rK{ZnfzNy|p);jGVyf_N;>bTV9$s;~p*Q>);VCTAfd`Lmx
z-6+B^yK{w;iM|$ri)x_5(B%}gA#R11G%P00HsXorbvQ-DU|7%cyzWuG47Iq6w`<CD
zt<o*he!hU=?kC3<)@H9pei&&Sx|Nr=VSx(Ds&ul{R`f?(5*s%_qBrARDM-P+n)ot1
z;lAXs8K}?S*cNXvO2t4DSM6l38~REHZdy>-97pz^Lef@|j+Qyy3+rx}Pod!(`^puJ
zGC7sHZKJ(}RlYGnG3bZg*9`co@Z@T@?NJ%M@Y4K%mny9!iTBPvD{fV&ZkrNIrcpvc
zl8eMMAo;DX%Vz6_Ln23yR+legxIt&JcLR3(VRR0w<+5(wgbtRIB1DhK>(%!wmB?3O
z!LW^HsK>P(>jFC6+Hx3omu42~CQYu6PKYy9cTo0|Z%Qz-s-W*{bx&>~XrnI>L6lZt
zy(-P5Nz#{PL~60GZj?sZdjvAw<b+H$1|j$a-g6((Z@Ag$MRFcBBxpwNh}s_H^l-20
zte$GDNIiB=bopz|ORPp3Pf84;ntgNzEUx<9yyX0s;_B6dLmqhIXIn@&j^`knakDq-
z#Cr79B<X03zt{Y~kA3AYj5t{c_3YQhs|>mwU!3JNr27chlV-w`D27+!W}=&LdKd}{
zLb<vAw4tDp-AgWj7Xwzmx>C($J^2JVa9Z`p9ugdtu!y>ckD3?_Q_N|qv&aZ8d#6J<
zj2}NY;(RgOLcr<oDSzAdD<nQg7RPuF<`^q#nr;+~85i~GZ1;GsL%Wfp{!HskpKhHm
zH20+|1-zDkOmUfU)z$P5G>$zjlxjxiTlNR1eM|!MjHv~*y3jp?<d%Yx6K18CEGp7p
zjG51N-}--md@*QFJc)k12XhZ&fEt(tAml7zk^Ps4WT%R{p~l*gBB_u!Qm8>kv6%Fn
zO@l+8m-Jutum+7%bMDl#hu<D_?)QTuBfWG(1WQ^*1jpr3AdwNXs*@?*yL<U$MQzB2
z$_`EhJ+LtfmrDjV*@zLA?M87{uaO0V_E9kN{WUh_eTsu?yhbr_X9l&JonqJZd$QF_
zZbRCIx#|2(rqA4XMfDy%WQQlZRH%|pUm{+8B1^K%D1fVy4jm4Z)aJBvLL9ntwENUM
z8gP|vPRn1?qTylevuJtfEA=b?>%o}WZW`WM%QscOO6bumcCt|j^cZ*tf9GMd_Rc3t
zM047pe2FET<8cJ~vU)qBXHB5F-642{2f0gYhF<i%8wv5_?`7xjW3&$3QnM+DL%uMY
zNi&ptI|#{2fO#;MqEpwdQ0G0jAM8@A#odp}0@L+7(vtjXwo`TYhv$~l$Y+jF_SQfP
zdd?16Vl-)fOVnWgY+8Q3><U;KSAb{fawz7ZAKr4))$YY#!)+@~-1*36hAF2$#i)g`
zcGFEnllrh)!)i0#sC;;6>?E-Bk{r%<|FYKt`z1!3^OieQJZ*|w`+I||gF_99J+-xv
zoX}V1?MktTrJqKt8(qiC;Y}2n>b-6A^JPs3gmoE1bBBe$@z&fV`7@k5iS0xPs|zCT
znUPVRtXSROSnIIHqv~>Iv?|2oz9Ji`DFL5Uo?t2tH%s$Ntrb<DL@OTV!U|B9`J5zd
zo`4jWxSh$<U5~3NNxBL_jZP?_#H|rJbR+$OxVxLQ;|GIA1?_c@>GIX;73dP{_auY-
zC0E?B&cL{l5(jay263}qy=7l<mj>LtQ^U-6$}8(j#rt`^=dX2&jNAjauypl?_vgHp
z2O2_Q!@5As#r0jAMftk1X456|+y5~(gnZuT%6Iol!qILvxqF_EYcQ;hxD&<yT*X%0
zT1LDguOk2fO?WCi*=5Dz4B+*=vY~buJUtD$^KfXpFK;rGHC|ql)lRdbdCjjT<LO*U
zk<y&br4bUr?Unm`(JzHFnj<uswZ_(Sb#VPLwGe0Xc6Tx(`*pT&OXAh8WLZ4534^bM
zzF^tgij%GZ+6}A&q5Qyc+^VM-4O+trJj@V93)O5r`pNJe2~-nBtpb*<a`-g`wmrL?
z?T2A#=O5oz1-zA0)2)*4D-zX9cX=Ke?Of&9fspQ(`*2~TMqoD>JG8JyRDbzNM^!b8
z!0nhB!m1?mhT#*0UvZF2lBcPl&@VbLa$kaKb(%}Q`$ybD^ejQ7#6gIuG4NcA#kQ+l
zN}9Y0cCgU(IhCqktljK>X@u0-7Evv|_#?;yNgMrXZ;3~8`O$NuqmtVRp2o3=?K|7Y
zU6hlvvk9KEz~xDnSXBFCW}D-#VESz^r<^wwExbf5p~{&y;WSq)$REhWRDMW@7E~kc
zD|nVye%vlMl~py!i6k=ny@Xmo&Df-t4dzqLHkT^wG6ivL49I<rC@2Z7>><>rJ)yl`
zbrV|T(~8eKqLWlwE)EFEE8F*U!7b<Eh7+*4a9y_tMJ+&}HykkYO8p7i5>O!L3BdGV
zm)Ll0S?SdBSET)bpZ!IM6_V;9tSbw_CgDviPKLNHx?MM|rAzA8Bijce?Afksji_H`
z<kvTbKuZWF&<vk?ImZUQ7)$l^2-tOuXAd16c{_XP|EBzIqZ>uDPfl$%tG%D+R66`Y
zbKQ9)sb$|o#sgGOZ>T=nVx#vd?ods&JK&kJT&acGBRRu|6%KIx5yqDBpka*fjG!!i
zRl>xgb}}@C{(Fha&9i6R$`ZmKl#P+zo1y7K3YwnRGYxuN?y5|1zjC)<V@oqGt2dRc
zc~;;Kb9PC|G+RvRd3OZO?J)oWvtdrTMsc5emhcz9<$b^(eJK|krOq*0M<azLd@V{-
zvX^m71h2jv#rsFZaz%%|zP&XkqyhB3^6svVwcHT`f`Y(8r>Cdmlj24KP>S!jVyZZl
z0Hu<{SN#UVfWk)I{rB(ho56jyNY7Q!x$QS$U&2sWvt`#~VqoNDoVlb96F3yl;Gm*r
zH<-z$aXU$lez{9-1Q4qDxm{>csNcCZiO*}ap`km10MRa#W1TMjp}9G~oZh7N*Sbam
zkrg6U91-be1h{dT5*62AXl_h1G`tIGm=GBfHIY;=_f&1m5~?ZP`SlrwZ35-wqxlIm
zN!9xw-v_3&4m`=|SO*}2y4zgb<qPg1>6QjdreLH=SGQ4Cmt?L3@}T8r2Hra5<I;#b
z%Qcp?z24gHn3V6-$2iNYa%kAs_q%(XDQ&D1#Jq%ZsCn8tK~7K+zKB7hOJpzJBT5x6
ztY6kYtZ}x7N_;XLkG-<zaiCJL)jBU=I@qouN2>h}--8^5Wq7QhqGwnrLzqfEbpygX
zR=7({Hv@Lh0Vhs^lyS}~uFq3?yDV+G7uQ30P=|~NRK-j+w5GGRZ$eM9%y;`*^*LUz
zZ=Ve(?smQm@lHDR{9!PB&zOaI1Lq^ZY;n5s&|c*HS>|N@xGMqqlrLJ>Sdb9`J<Ci9
zRdl+I<jo)N>wL_6fPwUBG@Wl@3@AIuy}@Iz#oGpGaCN+161ol6I>0FQ@xPe50a}px
z-VpIGS=**DlmUA(=8&9JIDqXfZKDq;5+?Z014V~RW&&=<v5BK3CB*K2UxF}WfbW~T
z*kGgN1J!f&?m!1nGi*2W+yxX^=zE%f4>#K97r#LmA*c}Z_|CySm#h@M55pj-nZC8*
zm9Gw8*8NYu-*FD#9^?3__oS<^Js>EABf~0(HJb3qAv2^?(ATzRst#)8aq+H>$#qal
z2Rq$=aX*Y4yol%rl{wkkm1wchMs-6^(`#29raE%5`<Nie7AFh6ES_bD^*M<pi%Cg@
z52`iv+3-JES1L2+yNclWrn%mxZw~6rC(6OIyQ;H|ZAXY=Wbv-EwBJJ$e78W^fip0A
zAHQ?4elR_GY^KHetSwqVFMBq=1RPD^JJ&2#r=LNXGj<~UJa$LFXM%D8M9XxMLpz%j
z@7dR<Yh~rOU71?UIp9=jo4r6tGBI>>L%WP|w^Y^FBIYXY4B8=nlZ=w@-9Z}eP`Z-w
zYg%NMOL(L;(uUR(22b~N-d)jYxcKNMxe5~@MGX&8)os`YI!QXQvxnrc2)E}2Z2}<X
zr<H-4K<X5VLsQk>O}?vvDf!S~*^A0%XBHpPu$`aLd-XS|m5fXBNV2~Hy}ysd1*p3K
zNs<2oFsvH`tb8vWWDizawa!`BF97mmPJr?TD=i51XQdm!d7ORKU^0xmP^s^ypV`6>
zSVI)-{8G+w$A!B>{j}P~S0&#K0mK@{0PCRFZ|pgH09KHh8_+tJ4;0WW_G(A=R@b{>
zK^bQ|KcE+*tYKbbXHI*cZ_A_r#hEMy57N7iJ)n`~<U>s@zk`w9H6>lmTp#2gIZovJ
zKsb|tu5@E)o<xp|$g90#j*nO`!$x<WnBYJ7HK~sA#uTUUI?gF=1Rx<zW>RG--*pR^
zsTDHi8rVaja*V7YHpBani2K{&Ki=30dDor<0o{N-PEI7W#gMH~hl>>C8}~>qVHv%7
zp@aF{l)dAZmtPXn8}{+*u$vP1A*&+iYKy{TZGD6vtwajNTr}oU-S)a8Mb|<_T3$iB
zC|&aNu*G~=A=wOZ?|!|kThA2u3(3;L8ZtkrW$e6Umk=xjrV0&cr&}_RyJERXZh3{T
zFe0GS*UJo5df{c_n6O@_%=#t{%w74Zhb<-lbZD?=uPFa<i3tjVbe-;X?0yK>*2BDV
zU|y)JJowcS+K1`LZ`?3+-P){h%<kK7?sqAtF%63+ZLmB~A{1WOFtkWY1=}?mj8w`N
zJ*qt_{2;z%xzas;${T*FF+@_hP)SW19sS}ZM^^s8k$yhj!8~xQ@$Hz=K!6Q-v{jVh
zI16KuzF%s=uJRMit3MVG;`e|`7T>axF@V3Y0yM<+O6z;(l<qIihYNd2zf`UYV*1)%
z04i36NRc8jK!=Bdpr9}L*lS$YVATrUGM(e;5-fcr7J~RiG+>KEc0*tkQ|$fp*rl6A
zYY-R^@JkY@?xc7r22dj(9LuO3q5_4uxw?MJh<Pive+dD)I^^V%7=1A5wZ&&E!o=Ad
ztj7V}D)EFe^(s;)K=g(ob;eW{fP*g|wOd>jN;qofcKrnZjxJPCIGA5zKy1PXt+kph
z_^NueT9=Rz&F<Z4!jL;w07Jy>h#X86VXi}jXg5=~j17E4);v9IYol*ZQoD;zaBQHE
zoWy$KD+wdMSJZu@m&hPT-$|$=_I5)Yo#fPOg=z!qHWmhk(<zE3K!f($X%=H$-dDBf
zLH;FC3A3u3X8>}8!62DXFt4tfszumUH15ixSVd2~Qy)joGfuN;frw-m$%-&E)dvPW
zW}*mCQFT@tFBRR42|-o)G^3}-@PQ8bU^{Ks#$|KGTznK3$fRhSs%5v$og(<m%_tl(
zJ%KBUzZAX>kI>+Rdh57+US0TJ{6J}^m}`)`(b?6ev+CjgwLVs3i`%1{jQ6FplP7~P
zrkMaJhx$#D{giyG#{G8Ka`)BK4MaE4p7Z%{c=h+uCr$bzpzS&ZsEBfdAhduHy3Spa
zTR4FEo6nY8jr6#&zx%F_Ng<mi4yd|K&j<tX>7i)<8kgx%l73>;>nqfc`k_}0hQ|V!
z)kb|nb<;ox`Z&-zmTMBjvmJN!MoGj8Q!Q^cdEpw+SCdIk@9E<|a@{r}W8c4Kd8<?6
z`ZV+j)5;e>?cW!}84aag<{qJ=Geml);z)l@#THsDY9%;vbh|aLJ<Jn0cB%Vl8NK}`
zFJXf<40VuVnjCXZ8SklXTu4M0)adZiecx^)UDqQ*q_9F%rQq>vIH7H$v?H%Dmy1?6
z^Nrb2pLy4M&^)dRgJ7!Z^z1E7MHTX8>`8fbHBN;J$$7et_K4bn7GyEpJ@6rM=;~bR
z>4FgxVa8K4N^^#N1Z8%3$r}~Kn|#IXFjc-lakP?sWr19gxEbCWtLmX0B#Bw)M%h@6
zXpG0V7?&5Xv@f4*5P8)EQgw|!P15-2VAQ%e56O!)ZmOfCiw%4m<fqME#okH*F;l`R
z3`hyF^+|0nl*5mlhylQp46gXg0%Jr;jPpz@J@(9<_=g*#*0a9VSv~%u5(GJBJ-%(J
z?xZyRuUfn|%7YfDM0d^?*~dLImG@p}o(F4JgHzm7v{d*xrD3BS9=OtP=sM!;anff;
z{e!Ph$KJakME<dneFo+G4D{J@p*F<V*O%5!I+a}p;kl_BO7i@d?|>X1{)ijk>23y8
zag?*5NL`FBHft!R0k)#}FDZP>CLoPSNlKuIda$|D`KnY$Z>`4$F$aXPF{(bBvwM|S
zW>Q=!DpeG0CCBnK9O@8)+9U>FvsYXF6FNJY^QNameUvEI%Im{j82+U&U;G73nzqce
zMu0&L$zI1gZW)zh)01Ov&rFCv^O6aYUCP}sKq`lFb5M%a6nR4$Oj|&xX45KcGs2x^
z`sPMV1eb(2J=@@DY<$wrQO>n?s#H7p-X9Ag3{|85XvwqiFv{`FgZBm&rA%KQh592&
zc9AFHWjCCVYeV<(?9>qtZHIa~Hz<|&d?%Y*1-^OHv!H&%94P3#fJXt@+EI3X97lQz
zP2cPIdL_(bN1i^?vxGrt;=;!80U}wdUG=^?8zZW7-l;H>Pt>)R0PSuqAf!GFb3ka?
z6G1W4#Rq*yqO5bC_4w53Y{<%Bw1cyXLC2}8SEEkyWrz@mNq(L&qIKvE4<-&n`b)bM
z7wu?lq~qlTg>?IJTf>U#;B%K+Q}xYm9(3Y#lDaOIp_1HFqFq&|K_`c^d#f|ll|Wwa
z_^yY0e19L{m3judX$b`^<&)1i?~eD=Wa#c93Be?HBUYNC36rxTj*hH$pL&v#u+L6U
zvw(oFbh?g%_JyDBe7hXvaO?h4J{%un14uwGJZjJuZ*M*YndDu5*T-==ToB31%G%u8
z5_yBmN-QAIj@}Lrq=+j!2iK<?wSYw!T^h}C)=aht0-d9QB!PV|3k6M;gxP&jV|x6I
zj`?jEGcf;(D2UrvQQE{5y_MK0lg)fJL@OQMB{eo5wu;%v`y+3q)iHM<6pKvgYK^Q6
zZV|wlluwZzhXl9DfI6)QCY6c!x)z^ChNWWW4JoEEGCu|)t2b{jcf;AuXq1o$6P|m4
zMrM4@{yEP@q0W%Lq}^AKioY|>(C6DcxN%{1FGUbDvNz$M5gJKz5zFauw-tVMbM)@B
z(~fLYA>Iq-#LxF$JFGuw9hMcDT}GB?ZtqogK27>q$j*-HV<XX;Z(evFwdjL?sHXs#
zS04Gk3XL>B>HS+;Fe*0NU9P@d%M>I|NM{5!OGy8p*YRJUL=(WiXLRVKjl@$=4h%i<
z8_`@*KIq-F{AxzGTIXg)r=3r8=}J};lt^>AmVQBTvf5v_H^R5WHzbMvBj@ddDKy)!
z1@zy4j4+?KTslMFoaLRPcvt(Ku4vam!y5->eSD4iqByv<<4<7guUgF?7aBbYXJi5B
zENh~q@N&M-*hukudFkjZeX;jbBx;tj7^%!Y01C(x|JY>y1}p#5(E@5-ld*)jr6t`;
zr^kJBp0U9?zN3o>`@g&Vzwhk*KHR3Hr$XFsT<kyn=Rd#Q=RoXd)swd7g^OmO3RShJ
zrgd-YANTa1@A7wzD*V0waSZLu+bd@nLX)Gdu!Y}n&mU>^U#S1T{-&DK$8oW<6!6W`
z@F?6R{NrYfbpCn;xr4mbOqaO^`qK6JjNToJ70{K2iJ6u&XBVg=;e5CmH-iSRjVG5J
zOevK%AF!rkBfw(A^&K}baolD6=%l?HWfJ|f`0-!gO!VvLuqOTAe~|t8H2yW-|MT4E
zK<=5Z1|-8U9Qkh=z`x$oe>^9~fkGbo;^QavUw`qRk8?ib*^8P3fnIEqKOV(@Jw@L$
zzaUN`gN8}`k6-zp9y9O<)dD`e^WMSbQMN;g6lQ}y>aD&nbNndBdX)rry4I8$cEg_1
zvQBn+&>arboevA(>JA2QtOv3w2v+Ch>|6*xwbDd0V3j@5atgU~d-O0hdA$8#LDMcq
zf9ozCy<%;0DRKM^l`HhSH+%P3!QjZQA>qtqs(T$>NrvfGS7&=jq*%{*dL^FYVUH(#
zq5Nm4Rz9MBQw7!S@V4LUt<h^A!1F@E!-F@TUMJ-YSX7xJvg2u`egf8i=xAs{zc>+q
zCy&XzSGM61#mUK<P-tXiKEQqp2S}dBkFUlB6DW|eunPEyT3TBACMU1k$Om2cQ(aB~
z9Tmroo;PO@NIu}~_;fo?;E)m>oyo`J8WBgWLOs2?eEF-gsrUx^<*x}#9E2?X@Kj|F
zi|mwS%CM3bRuw{uy|WtJUZI<R2xDmWJuWAZm%lOfWQ_h;p)a_}HHh#;>*{sA6R3jQ
zlB4D}?g#9cHYUk;!PwicQEm1dVHdPF)*e?DtTK=69cLir!3t#0d-G>6VNYNGV+Roh
z@AE751DfqV0Y!3FqrPadyv5yuRM>lf&^VPRg+;CXtrBuJEi;_CKr2nm&Yl2hSV}78
zOOJyz06#n+*(3nMNw8+UWzo*t7#3KdydTpOjw9s#cvHat6W}ub+CA(6V!>HZFX4A@
z#EtNMV2}vM0DV;<fKppfV>-J31~4@YNq5`Exov;C6W|+7v+Yew2OgIe#V?lSiZ)Qy
zuQlxj)PqHUvx)O*e;xqSjfmi02^T+JY+!hs@&ON+-LlAqdhKm!c@DA)uqI|nU~hy`
z=D*e_BXXZSFvA!?nLunl0ZR7nw`I_^_L2m}M`~mGT-txHNIs>49|80wMZM=?Em5j6
zP3BkMb3U*gGDEgrX-Tfp2fV`0TL2RVpX>R|1wgyR3~(M>Fa?@lr+|og$viQi^c|2T
zeh(Nuwk*Ro*sRLlbGe=n1KLk=n`>+OYOipP-hLkibF8@fwOy|xG>guZY6#uyk5Xe6
z4{b+s@ws16vRN-B4Lu!mdfjuL26=~90gZt?HYzT>4%N7LEZ%8;e?^KpAm-FmRZ2})
zsQQ=p&bJJNy5iaeh^?|OP1dO3m}}?kzQuz&1a?r4$GB0vQ8+yb8Wb8;a>?CLhfNvp
z0~Bv4`)0|hZ{miJA4Mm}I{H~oS&zVz&TN|_mq}k6=4mDc%{q53sY*N=4!I*<|Fs_Z
z;LH6yT5hiOdT__(wEY-q`uthQ3)u{QnaKjVg6R@9XbD8}Uk({y0}Vij*9_<l-rU&{
z1BQK4ucamkC+r<S93A<QYu_{WmX!3h!93`=RSb{}DUeE}H%phH9VpdqR6OU^uKf66
z<ntF1(SBWRMOwqCj}Ta^vCQWLT=xF_kJpAWxwwFW2&Q!-urYP7SY|4~A7}tw9W|*#
zmK;XM!x-8M1KhURn1Qyd^{3vGh50%QEDUO8@#CmplO-gAe@t5P-pNXzye`}Xc+=kb
zXm;NXzKg_sL3lTsCt?=*Lyf9BP_>MP-UEs7UZ!AVIe*b$wG`g?OsUAA=<ag#uo;Q+
zeu<#T<%z^Cen>1Y420ZHEL&zb_2WG8Xe>etNjRw*Do*Vnbt_cmxMuQ1k=xQt$vzve
z$ogzy_(dqEchK3+u!ynLb{?vTVy^_dt(<>wI6A0w3-#+c+8u6VPE>VST%=k#h5S?i
zk8;@;3XHx)EgI`>*ZZJ+DiuSQhd^ZZw_Vr_A)cF(Sff%~0VgpFmz(?Cn<w!oJ2sQ2
zg|5_!j8WK1AE-5^8XK$d#HpEGA2K*&DQ8qKFLOO)%k>Cta+9ES)o9@h5`kp(8$&^N
z&1VraZxrsadA0%RYo0F@SB5y$>UtQU<A5+W`IgEc*T5~QOYO8~$Hb8k<iZufXc~%{
z;u7|)MOe*~_Ve3ACusP|>?_|FLE0CC5UC4DTI?;GtOrm1E4FftspufI-;<|Q=zU<Z
z-PY=~hAH~U)h5t_P2$DX-Ts1OvHj`6#vSmN9Gd4^=Pf9QNna}0X*OqIocHUqyr+3c
zv*fbU5f&BQCz<@E^j(JF^h5$7{pE;K|BjP&1Mq%zm^$k-1N%^10rn?(KwsUb^Py}Q
z5UWJ9!ww=qMi#$PG$HAkomJBvf%Fb(BORa+qNC@A7`%1|c10;JiT)#5DA3T*bxM!)
z=Um4keZXs|Q*Vh=CEnB1fg?a;za#4b)9nUy;Z1k&JEZWb<n?C%weq});^L#L1Is4(
zeN0HdP{4xyCi))Ugz90Ls=Wb7jkPUyQCbIgnd3kB&3SHe0}w(eso@c}rqMV!AX1n0
znh4|29|n`+@nHk!_OanpliebAO29FADHpx<G!03G(h79ba`~S2O$u&t!|C|XXQ5~e
zGdE=CIwbWH=L~wEO<Huj>9yyB<pRPWM>N&gba;AU<}m2l{2PziNhNTvs=^WKh%mF`
zzfwaG{<n#n^@%$c1+#e~Pht7pq(-T%Cf&MPMD3WFt(%EA9+upnkaW-vtE*rgJ}SJW
z`%3tf+`LXZtmihu=%Nz9$h=c#-mjXWn1T4UMdTP>mSUu5ae9NMD_DQjT`7@5a#3gF
zHNe|k#rikA&6qIr9w@8WM3*qW6HBo3?bv(wrewRE`3lvqIeP-a{fo8#6XK>J3Yo44
zk}I7*y;-)7)S$QaS7@(UCcSVs$XSi1w-M1dy%zRw?QeX;S99D9-VAG-7}nlyaM!xu
z8K=CR!P1J&%tpt=*kJ|}v3HFHt<Le*KTa<O=^m+maF*d&`GdB}Q2kHZW+$HqDn+{1
z#&$+Fo3}0#FOTc+RE1_zejDJ_<v#}w55RBMr+nNyp>9H6ZZ*cytlC07<aO6!aCpay
z=$kAH{W}*2LeWn^CMm%{Lv@enHs<sNyUj`|=%tYd_!AQiihL_VZv>uLF%YN@0N=fr
zFfdBu;;?|%S==wbyMe?}h%7Np#7j>Jp63wUTfj%SF4PsNd95=Dk9s&mKtLv)H<{bz
zsC0_~Fo8N3XGQM_(Ski`%fa7{j%e-WM9(&V{``5@ig61T3CQ_WN*%&41#lfsdJM4f
z+OM}x$}DM<B!Egq$_Ltw`w%pWeP0{_9)P<%V>$wqW~sQjH7!zR3xFT;pC+&HxV-)e
z82n7Jh<C8UmK;^b6?sat?UJS45Tp&I)5eq0>GI;?h?ftByL!qm&q189JXKtxP3XT<
zg|`WneTyU?N7~U1Ux87s<Yn^Yk-(44&^Zh>MYTpUak%VvagMpcfISZqUK#B5e;0H3
zNtpL53Zc2l2Jd5KfsAH2pOq%!vKaVEw+>7*JD5FlKfO~pdKVO;w<2YDOkLM5lplc8
z#Z2Ej%R$s4TBe7PRT<3bR^q(rzV$#`m>X2ZG5Iq}kd35|*QHmOvvI_RU~0i}O4Z(T
z;oUVa4<tHIz2~xu_-?xtE#=dv@>Kvgbg~q{mOAujG$%_qb<)*h@z0#R^6PY@k(k4{
zMVh{#$*nQ&d0KQ!4#PXZBDoiT^st;9BX6o4JDcduayGzG`)(0=Rha^4TgVfIl`j!#
z>}-3g?On=6&4=&?rl#=%WC?X%cTtZWehpl+S)!xk@jlLdmPf`1YGJDBA&YyUj?$z~
zKA0E4CgAdpfj^}k=0Ik~+7<Sp_9lCo%{t?b?>d(8_Gq@tn|P4_)TL~z1Y|ZH*~OJ`
z<FU!LK;k8Qa?uW%EUF1f_uIeRoH!^Vj|k{F8$f!+*`6g~8{YI&`=Q$U?=gM<{p*Xl
z)Zo^k%^;zZANK4%fIrqQ*k|@70%>KM#76*qy8XTtX3O`M>Icd6oa-vdjnr<g6sHjj
z6#jzTk=QighqWvuL0~eOUmyIJ<s1Xap(qp}K0RiU=$n@w6DNO#0|>(SC8W-98UL^Z
ze5)74MmRu@{kJ8`MS_oykK5()fIR%=Q$wYAPX~dPW(F6KP0rjofM@8+MurS>*dm{P
zZ(TTLh=pF(@QK-sCDNerefR?2GbT}vxW9sHg$2#1yCLtr{DOLK4=P9Q#@BF#X9$}I
z1&LG-v3t#1dnwpV7qoZSjFXf2ax!B=5#Y=|ZDX<bL=NP!J@rN~)$V;~3!2U~NmJ#h
zk-y##Hw=`b#jaGt0UZ>w?=9NW-DeH~<eBQEvruG`Vc(KcHNGRb<_}8kVPiGFwkHK#
zRU)p4#p6cm+J;pkbt4jlpW2TbC8fNh6c{w}+c8!W4~%#F>hVLJ9Q*U`YlnU~lEe`(
z!PTpN#fHo?$>i2H^|;}6*Zi<F)3+)g^cWchb_`cT^Ugc8AMFce+0%Ds1H`g57};05
zW_hBx-vh;AhHnh$B$!z3dP;ZqCm&=S;%hmkc71wCi2nh0L{Gyi7s~qp8c(_2DL`A)
zbW`x75u*>g)xxi_6>YTd5r@ZFB4AAndGV`}r*4FywY8;%7Sy3jJwdNsDWVqR#%V$X
z1=Oc!VRAwl-1EgNkvqTv5uM;4%z=Q2B<Lbgd0Y`7fnN3^O&|;sIN%ZzmLrrz`a2&b
zE{xKsp?a5sBmW{AjKEC%-n7oV2p{luN_HG1py^;NR@FTaV7Cxf(PXKkcj5>bHjLS7
zJCQZevOc@te^TbUHB|M4*BA>9q|Q42cCf;D$LN;E5YdSf>9LZyeP4q6kkiPdOazLP
z#v-Jl(&+0D)uiN6Ns3uJ<m}QZxn&>CjN50{+erkMH0UrJ$q^pN-F2%s44b`=kj^5!
zB9QWG!6&s|AADrpsH0Yva^))OA>GtmJ6)&WxM4XrdQ{Sd%S_G|kg-5_YTR2U9l{??
ztmS?T*zH><uYIifxbWa4M8}%m($i}tnE7RUpZi|g|Ak67bNcycph_0B0iWePZxVM>
z$H@b6m*C#%oT&E3*~GVWc@#pq1=ZM-$zoYMYGvXE2mv<VRW5BlL23wJVM1hy1Wm!z
zxL`~%Ryzh^3N_YcinN1(dGNzbx<^aykp157K7J+4))hG1yRU7o3coB>BWgRU*qXy-
z_1>Pp`_V1*;lvjj;TI~~uQEf$R_(URW)P!Um&lzsyRAQxIvsqMxv(IB)~-d1Te4<)
z(|GE<D!Gm`^O-#O*aU@Xbi(yW^<MwNF@Cl*QpJOpje!~Ru0$!XGOO>nxxzf%!rX*U
z3Fi{`@4@^VhXAHopXb3q0^8#=g+tT+FZJyfMsAnf6Z1iz(b-&uw@=dcDYx8Xvcuiq
zm|Y=%^O%QNOFYOHm&H@+gVe~o4{JxLg51*pb3Vx4cuvsF(sW5ZQ9>fUmB(=bM6A_$
zPjMZ@dGk8PLY$6aa{t=M&CRMWnnY8N^Wt4tgJp8JC<IRIH`cNPyJ=Vc4GfqYB+qw(
zQ^!9jHwr#4n~2hVle;Ps%r}kTclB|-^*ep2yx##=mugETOzT~ChHdMtER}f6wHlph
zoXkiY)(W=IIvI=BVz1OE-!2A8*A}ayla6smr1|H0Oe)9<)n6sk8(o7!u};VMJq%0S
zyXzhXICbP()GL(BpB*Z;h-O#J30B+TOb?(BN=fz3PF=C?&wa~<rT7+=4G5G^xVFf#
zu^r`+RpecM+v$7L>0$3l)19uQD@bV!o@zmVlY&|t5DZWdujS%?=4z@N@jlQ)QbF0)
zc2+INNQKghl|SvbzAQ)&aw}i?Zg2}=7~rrNpATiEwqa|?ARrXG3(?;kLbaY7ke&6#
zej6nWLX5BfP<oX)5CV4jip-%5{<;~{lXbt@X7BN}JE74=t)RsqimQGv8_65iPQ%Ma
zJ^1deu>TTkh>NEFX-2t0c|qvIE&8FXuKg`A_ezx@FE>T;RA~eaVXn;%&;KU`P~GJU
z;@1BO15~hl0PH~vfJgDjqi|yNnzj9F;wpweTG~Fo`MX=;?{b=$&*#^sJ)SbM_*AN;
zN&NUX6I!G1NwrYq1CXgi)!)d&v*5Qek&yWC^5Q=o8aWA^rBP)5%?N$}|1TrdTl4=U
zBed=F`ejG9%v~T^h|rY;0v7(V@phYg;z$M15i&gfKr_CL0@1(RbP^L2s1VLl(KXHb
zR0s>|?Xf5^8#cIboc!Vp<x>J?6b%k9-oXT+Iejv^Bg;AHeMaI~NT{zbnIwXUQ5ebz
zzS7RpZ*8g5;-Dflp$)Ao&bXG!ofQ0}N|(`Vc(FCQGes+-9q)^y_tQ2?)feZ=Ed_ay
zwpLfjvxx8iI3IMV=Z??oWZJB%H-*WcqM}Gn7l{?Cm+KG6(?|pA>S%uD4LY?^ctW=G
z?V8YH)DYl4RjGz=jukyZ4CQjX;Kg{bmwesUS8V1a!<(S%{Y;C^pZDwMv{b-@d)KX>
zEH{|yc%yoct)QqZ7T`<vj3T=5IT(3YL*a4h{+&YMqxDsK%cOLpVX_VNtaV=-8rM95
z61K~@6N_70OOJM1zQ21e+xqDG1{4)WGmBPeG(L3q5*5MNW|Ui^9bOJ!g;oCUYl`DX
z5m3T#cbKyZV_0a_gC7f<6SorinXke-EAo!5<l)|T9?2Cv+&1qzQ0>L#Xg>H{S#ONG
zfU}F@PC9N5B8oNVxXTBpom|yj5sJ2T$TRXzlr>z%i<}kxiQ;D7yGq$#^HEv<YHez9
z(TGDfm}*^W3T_>=-@$~hu2dR$@EE!Bs#>C?w`((>wb3~CQQ^ppHqMv^eU)hDhA}~j
z?!-?KB1pMI!L#AZ|7qUC=zqqqralNFAQ;tS_fn%yPS?K)m{qIcuGed@=fh`<yE0O?
z3h7spX(gX5R?8Za+UraI<|)8w3H#J{Ws5y^>~C6@QPfT~9R&V6miz{>qmy4Kk1|c4
zcP<rJ%vuV3R~9Nw9$dR02VPUe{xZ0|I^}P+`o6&_Oy?sY8A5KyzMnG2)?EDjb{RG!
ziK{9uLq(;jiy>h(RslbDii<`OA;J!`zbaq~y-}=x&5h4&KCc%$4;J2RAlM)>Bx$Ce
zS-tSQRf_wd9DQ|0s8dv@*nJ?vNF`n9w26_fo@{*Y>)AKOsQDHmz#L|L;M7T~U_LB)
zF=(7}$}7<!Z4L&Mt5isMi^=({r&`(pPSVtU+{DsxhCs2*Xub5~tQ4*41%Y=GXA4Ct
zK;Qi^;pJYf7x`^V!sPG-Y0<rwo~C3hvc&}llv0!*h{XybD%!%&BUo0N`XDYOc9|P@
zypLbF{!!AZ4~*FRu8Ww)A)ro$k2$JUYx)7q*`5j8nf!$ec2q1;x^^d=fR8|oU}esR
zBH=VW=%8wUHwbp5)~EW<#~bs)K14uwYtYdNiP(W?DsiPhz?yY6=v*x7Gtlm{V#aom
zo}L^R4N7zaQHVM+>GitZq5*D*DHnxbcFqb%l9%2N0c=Bf6Gh&5Px+{Qhk%zX!23{*
zisy7M{u|m<N2~N&wA5jjX<RXm5RBq#!BO+tx8&7P@n?g;8v2<2cpAZ5IGQh}1vua-
z`>J%(v{ov|&6Bpv;}X|yIlX9!i$HRj#Tllk+7X!*jVI@|Vjtr=N^Z84F$;1HlMf{e
z7E-nk?(vF^>Kp7QeCxlX$Tmr6!-J&9v82>Lh$%Q?OF|&)F^B_xoSb6kup^e}v(MvN
z8MQu(e&${iRe}7qd_wee-fgq#Yvm6o?-ou$gqyv6?h6h#iu8~wJ*lM;oLIH56(KgG
zGsdsM$ybL65!DX^p{+jqAx?C|tD9tfcP6b9t=TP>ZnTPHntlCbGm7r1G!EZa@(!L;
zT6GLQDsy~iH%YD_Y?ajPeJ@Af5?E6@4H+`S{Hc8WzKxJ<TN5MCX4Uh3klegiYmYDP
zv4Uxv&9s=4e?i7Z<4?0Q6!3PVv+<rU?CK|Dwg)Q#bWSQ>3{W_q5k+PD>}r&*>jXqB
zOogxS&%jqI{T+bF&ei9eoM@KYy;mo+D0z9ciF~7?qS8f4?@*$lsH4JLlQkQxtvJLn
zEdboNYzyWUDQznOF^6$s_833{qU7YXD?zDiEG(pah-+U2+Mt!{Mxv1yA9vk1Btig^
z;+}@R0Lw2R8x_y<yZGOmvUkz?zR7OwIb*?`>#bp&;W&68+Y9XT#2;Y?y{C1Qko<9$
zG9f=y);$bw&-cBgRtA3Qd&E^#o5i0d<!oZZtk?n;Xtb7YyIcIIC;7D81^Yt<u+@{@
z!&)nH14QR_`v!T%dR4R-#$#o|?<^nmaT$)2x9M4emNzRwR{;eH`(NwqGUz-4Sss$=
zITg{=xA<}bIKM+d<AD~X^>EFQ38N@N6wAvyxqU=G1PQ%8LWLp@B2%_Hbzgk6P1Eas
zS6j8)4{H3{7)SZ7>}C?%`CKCwM)TuK!{A<E4^~)Q!8Ao4C4;el-x_gM_#ib}TjKCt
z@S2+hU9y?F<=L>IL4Cuz)oB+{A+JU($*CzV+m}E05V@9TbKG31#Cv7uaI-CSvF6()
zFm&DavC70NNnQ#epzx^9RqlXAmFGLT>#2)@RPZ&Scm*>_(#z1XS}M4lrB}xqkO{FY
z00ZodrpMLlv~CxrNBVQP#X|l;G}TPJ`kQD9e*C{pG&QiHGQ(dvSmvUjl7&TTiJB~Z
zN@of-)~?U@CJ9A>@-b&J$RISkuXbG*TtqNWKHlwHy9x9{71b9k-AJ6WaM8}UkzTPV
z^9$o?;uAX4;FUk@z*uaPNHj$IRR1$Kg-bcp-O3Lc_E+btTam3e4<@H9ECc_v=8VIt
zt6$0dF%pO6EmISUiyr95Q}YQd%emTJg7&RHatM2<ZQvP;_ZC+xC+PA5w6LoY`~N7%
zRL-8_X%T=lh}tRe5_5;wn}4jrod<Ds{!zaDsX#IY;4-ZxZ$-m10d4;MowT`DP{X!a
z*B&5DDT+|kW2O!Ph-K$ZF306>tO1GVTK&#fo$uW|hf+D@MnPx&6ql^1M`UAdo*;v)
z&_losG7|xd9vgSlHarZIZsH6;@}+^2(d>lT*U9$oFcb*?)~Fv$J<&2E;2mD_1XNyG
zjR(+$^sa>=0h2mSj%$7<W}e%9Z6^wvCRH(q8^5dRKk<EDpEJ_DgV5s5HS!K?8Kbeg
zX3#&X&u5lnu*&5YlOqv8rd-!LJCy+&^I^Zfds05G=OK%0wn18}RbFPL0RjifjZEbw
z2>J?_Z8!GaTn75S0fN&~BFrogt;98#Z_ibe!C1n+eBT#B<)e<OtI5tL!UzV(8`|ev
z%GJ9p7;RlrQa!SDnHD?%E6{pN!`BaXKXFwq>BVQQ$;Q^+kw~#mkxRfjIT6_N9k;0W
zSL*(QUJCbP+o^AB@h@_zYzZWM&c*5$sb2oY8SW@d5I}qmo^!F>Ja4-QIZ2A`fkN}<
z4S@Z$f)w5wrpaNO0ZV=NT@2tM=Ou-ae-JU-83(&NK?`t8-kfb_-x<j9una;vN^1SF
z6KS?zgX8wSw}>!y0a1p_M>_#f>r>*^{drC9s!~YyA>QcCSf~I!Du}GQ%63)1%d1%)
zh*dwbzfR!>5wk5`3EDau(cbbaG$iE=_QCv<dH|gG(28UNehp0peSlVw8DQYaYB|S9
zt=Gm|1u(UYCVnYt#&Vh%LP5hI<^oCs8h9jOq=4&f9cIcYPzz@T+yFFN-Rqpo)GBoS
z`G%OSNj8U56R&wVo%WRt{vw^G$g32{5^w`G&|ktY2o(c-?tnw=YXYgkwCcn;z@;{C
z`l<)dW()wx>l^{WkX^vVb9MraT$&hjPu+6(D^CM?LIfbz*{oV+AhHj5P$X<W<z6OF
z)|x3T)3B41iz09VE#Ma)NS^;iq5X;etG(fyno!q@6ae{T@0PGLFqN$EE0kcjF1)qN
zAcrt33C-Ev=w$VH_D*rnIUHsqC;l4}s)Z|61^g#k>J#idf{5_9rz`1QcWwpYdb@Ij
z_&=xk%F#`#e$MKs1q;Dx;#_soMytoO>|A09E``!1z9u<y)zK)UTM;sMwIOPS|5Yy;
zg8G^J;gQv3g{qZaR{gTwqu+z|C~qLp{w%jvJ=LkJi5(%+<d|9G(U^p=V%4*|yai}c
zdVW~q;!Bw!*25W@Z;Y6aR3Zp8_G7;gaMBs9stLZ1nJXAkaY%5oKRj6pG`zdP>7ciF
zJHJ0qdE7tTzts(<o$!K)s^Bti6=u0pWfmp>CZE<vlulcy?g`MnU@5Wx59xzg{C8kr
zizH&n9U%uADg2&I5T+<&z&BO7+1bj0eWZruIbsbbAOazSzri*R__;PK*t?G4u$atk
zz3ps$p`Nt<FgSM?6+nw~CT~>-Nb6oqNHG*?Y({czd3Mf0R{^R~np(8wk`*j<c9`0H
zd=W98OTW9pPfbOeR8Jq1$7vUSaf^JE(fX1&z!J+;l)Cs&>?}##987`rN+6z}duJEZ
zpBAOOSB}kp%n=XcNz(P2VUi`t70b|87O_8CfEgngT*}|e@mViTh8-KC?3XA^7kL+)
znX{3m`K`tMD-$*4D!Q>ubUJKoTjR3salnFB_~BhkNvUOzg-TzGDOTb+#$Cb#drrFk
z6WRI0{e%Etc(<=p#!OB^U4%oI6U$Xb7opsC>j-{b2_&SsVfO*I3rxmkc$|wtG@JEB
z#EMX|yi{mjbd=rLY%7jiIX`Km^(Y;K(1_Ora}HnQIQL;@3cRctrz&^J`mapX-Iv1I
z$*@@8Zo+Q6)+h;*#nLa5l{CCHw=<QQkQN}u(C)hP8FDi;QTLt?Td_?|C-2Uu4cnB%
z`*CI(yU#`ITF6hUY{VFDWe<>g)^p>lf>s%n!16V@w&B&UGi<I|lW;ZtskWGTD>C3v
zPB*fA&Jxh0@Y~K>P^;Ox@q~RYbfJsP(2V~GB*b(t=AexL(l<Ifx{=0kt=VKPvTXuZ
zOfnr@I1WqCS{esHc5psglE9$O<+m5B_m6|~GmtAL^1hD&ob^oR-P^q$SefYL(s`X{
z|0bx`)mtr26swf5GBB`ZOx|nje~>%M%h#0~WC`M%%XM>|TM;sTg*T7%&yv%B&r$7o
za~9^ZvQv;!L6NK{KPc(eo-agUJz-Y`gB4_GsaR6@;YG~W)W&{U;w~WFaZyV0R4D$|
zzgJ0lh=ALjJMsult}G=UAtvL*Kwp8BX8vn4Qr$z0Y<d(05lJ@NYihxl_$|4K55Fj?
znk2l}xpZFb`Od5QC_QIW^NX9w0$9^UigRSgJQ}8&f0g}%=lsHia9)LZU8`M4V;!|n
zEQGL}I<jw<pD;F;xWQGc8El2V{DM*DN;^_6<aE!}k#m?dhr}RVt5YjaSbU@v4b_T}
z%PD70Fp{tFj>~PEy~<QSZ7#9AX>OxbGtajx3y)=Tf*FRR`<@^y9Bb5<bC`!-JUr;i
zdXQ3%OYK{gnnu?R&jJhW**XC{@@TZ?I?lGr#5Iy*Nz+ynm)j$|8=Q?$db{MhmltBk
z?~w*7K7jeI*|W3<7pIZ@1W&Q3%V^IXcDlENdtg#-?i5bew?W+J|0PFNTwFX8P{f^F
zX$93i)Tk>D_dg*GOM-nmnU5Cg!UTnc`UeNY0B3^tUS3{QUKmSE1udgEK><ruhC%hS
zI6<bC<Jm8Zd=qjae>baf;x@3{XqYW?P1?l01X`_=0Sc(tHK9bKEjxA0FODjs<Ntu8
z8ge}*|6K769U6T3vR(4JKPR|!8krR7xB=#$8MU~;-vm{Lhfn;sZ2Ek>w+_3JC?9pc
z`R(UuQOtDa0Os(!Tr++=h1nx<upgK6gkfht{2V6(NVHrsjDy+@abhm5?-tK*N=C->
zp=ZC)89K#uwh*XK_3bO>Z&~qSOQB%~HcxrAng{fY`Fr~t>p<n0WUwBDBrc@e7Y=HW
zI#T{a4Cs&7?_W50)zAR9&^oEx4w`0C9>r@+V=y)JAt|klrEII2ouMpX&@qp&!U%F=
zpU1xx`}pFKr;&ZRai=9nBZSn|G55(bQ}j1b{%?*xL!_S@R;-Ej+8p`U<(wH;QcIlQ
zXB{x2hyU<>k5Q$D{lB_Cdu|^~x}=wCG=e~*#;$`lOX_jsRDmBBpKeYe|H=Rc{I1!%
ze|K;H`g@?W*WyR1@5z~ay%P>N#<X*(Nd+Fw`+r4}{R=!QqKKxs6j4C^-yl>1Tt*_`
zfzI2=GLin9NAj=v(sPPm9APNT(Epz5`+G|a^l&~Q-H}Ra$v@~VJp+CuL}Z1_1wZ=!
Ee{B@pxc~qF

literal 0
HcmV?d00001

diff --git a/docs/test_plan/README.md b/docs/test_plan/README.md
new file mode 100644
index 0000000..d250997
--- /dev/null
+++ b/docs/test_plan/README.md
@@ -0,0 +1,16 @@
+[**[Return To Main]**]
+
+# Testplans
+List of Common API Services implemented:
+* [Api Invoker Management](./api_invoker_management/README.md)
+* [Api Provider Management](./api_provider_management/README.md)
+* [Api Publish Service](./api_publish_service/README.md)
+* [Api Discover Service](./api_discover_service/README.md)
+* [Api Events Service](./api_events_service/README.md)
+* [Api Security Service](./api_security_service/README.md)
+* [Api Logging Service](./api_logging_service/README.md)
+* [Api Auditing Service](./api_auditing_service/README.md)
+* [Api Access Control Policy](./api_access_control_policy/README.md)
+
+
+ [Return To Main]: ../../README.md#test-plan-documentation
\ No newline at end of file
diff --git a/docs/test_plan/api_access_control_policy/README.md b/docs/test_plan/api_access_control_policy/README.md
new file mode 100644
index 0000000..05a9e63
--- /dev/null
+++ b/docs/test_plan/api_access_control_policy/README.md
@@ -0,0 +1,813 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Access Control Policy](#test-plan-for-capif-api-access-control-policy)
+- [Tests](#tests)
+  - [Test Case 1: Retrieve ACL](#test-case-1-retrieve-acl)
+  - [Test Case 2: Retrieve ACL with 2 Service APIs published](#test-case-2-retrieve-acl-with-2-service-apis-published)
+  - [Test Case 3: Retrieve ACL with security context created by two different Invokers](#test-case-3-retrieve-acl-with-security-context-created-by-two-different-invokers)
+  - [Test Case 4: Retrieve ACL filtered by api-invoker-id](#test-case-4-retrieve-acl-filtered-by-api-invoker-id)
+  - [Test Case 5: Retrieve ACL filtered by supported-features](#test-case-5-retrieve-acl-filtered-by-supported-features)
+  - [Test Case 6: Retrieve ACL with aef-id not valid](#test-case-6-retrieve-acl-with-aef-id-not-valid)
+  - [Test Case 7: Retrieve ACL with service-id not valid](#test-case-7-retrieve-acl-with-service-id-not-valid)
+  - [Test Case 8: Retrieve ACL with service-api-id and aef-id not valid](#test-case-8-retrieve-acl-with-service-api-id-and-aef-id-not-valid)
+  - [Test Case 9: Retrieve ACL without SecurityContext created previously by Invoker](#test-case-9-retrieve-acl-without-securitycontext-created-previously-by-invoker)
+  - [Test Case 10: Retrieve ACL filtered by api-invoker-id not present](#test-case-10-retrieve-acl-filtered-by-api-invoker-id-not-present)
+  - [Test Case 11: Retrieve ACL with APF Certificate](#test-case-11-retrieve-acl-with-apf-certificate)
+  - [Test Case 12: Retrieve ACL with AMF Certificate](#test-case-12-retrieve-acl-with-amf-certificate)
+  - [Test Case 13: Retrieve ACL with Invoker Certificate](#test-case-13-retrieve-acl-with-invoker-certificate)
+  - [Test Case 14: No ACL for invoker after be removed](#test-case-14-no-acl-for-invoker-after-be-removed)
+
+ 
+
+
+# Test Plan for CAPIF Api Access Control Policy
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Retrieve ACL
+* **Test ID**: ***capif_api_acl-1***
+* **Description**:
+  
+  This test case will check that an API Provider can retrieve ACL from CAPIF
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. contain only one object.
+        2. apiInvokerId must match apiInvokerId registered previously.
+
+
+## Test Case 2: Retrieve ACL with 2 Service APIs published
+* **Test ID**: ***capif_api_acl-2***
+* **Description**:
+  
+  This test case will check that an API Provider can retrieve ACL from CAPIF for 2 different serviceApis published.
+* **Pre-Conditions**:
+  
+  * API Provider had two Service API Published on CAPIF
+  * API Invoker had a Security Context for both Service APIs published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+
+  3. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_2
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  4. Perform [Invoker Onboarding] store apiInvokerId
+  5. Discover published APIs
+  6. Create Security Context for this Invoker for both published APIs
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  7. Provider Retrieve ACL for serviceApiId1
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use AEF Provider Certificate
+
+  8. Provider Retrieve ACL for serviceApiId2
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId2}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1 and service_2
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information for service_1.
+  7. Provider Get ACL information for service_2.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. contain one object.
+        2. apiInvokerId must match apiInvokerId registered previously.
+
+## Test Case 3: Retrieve ACL with security context created by two different Invokers
+* **Test ID**: ***capif_api_acl-3***
+* **Description**:
+  
+  This test case will check that an API Provider can retrieve ACL from CAPIF containing 2 objects.
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * Two API Invokers had a Security Context for same Service API published by provider.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker for both published APIs
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Repeat previous 3 steps in order to have a new Invoker.
+
+  7. Provider Retrieve ACL for serviceApiId
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1 and service_2
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. Contain two objects.
+        2. One object must match with apiInvokerId1 and the other one with apiInvokerId2 an registered previously.
+   
+## Test Case 4: Retrieve ACL filtered by api-invoker-id
+* **Test ID**: ***capif_api_acl-4***
+* **Description**:
+  
+  This test case will check that an API Provider can retrieve ACL filtering by apiInvokerId from CAPIF containing 1 objects.
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * Two API Invokers had a Security Context for same Service API published by provider.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  4. Perform [Invoker Onboarding] store apiInvokerId
+  6. Discover published APIs
+  7. Create Security Context for this Invoker for both published APIs
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  8. Repeat previous 3 steps in order to have a new Invoker.
+
+  9. Provider Retrieve ACL for serviceApiId
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${aef_id}&api-invoker-id={apiInvokerId1}*
+     * Use *serviceApiId*, *aefId* and apiInvokerId1
+     * Use AEF Provider Certificate
+
+  10. Provider Retrieve ACL for serviceApiId
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${aef_id}&api-invoker-id={apiInvokerId2}*
+     * Use *serviceApiId*, *aefId* and apiInvokerId2
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1 and service_2
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information with query parameter indicating first api-invoker-id.
+  7. Provider Get ACL information with query parameter indicating second api-invoker-id.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. Contain one objects.
+        2. Object must match with apiInvokerId1.
+
+  2. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. Contain one objects.
+        2. Object must match with apiInvokerId2.
+
+## Test Case 5: Retrieve ACL filtered by supported-features
+* **Test ID**: ***capif_api_acl-5***
+* **Description**:
+  **CURRENTLY NOT SUPPORTED FEATURE**
+  
+  This test case will check that an API Provider can retrieve ACL filtering by supportedFeatures from CAPIF containing 1 objects.
+
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * Two API Invokers had a Security Context for same Service API published by provider.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker for both published APIs
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Repeat previous 3 steps in order to have a new Invoker.
+
+  7. Provider Retrieve ACL for serviceApiId
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${aef_id}&supported-features={apiInvokerId1}*
+     * Use *serviceApiId*, *aefId* and apiInvokerId1
+     * Use AEF Provider Certificate
+
+  8.  Provider Retrieve ACL for serviceApiId
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${aef_id}&supported-features={apiInvokerId2}*
+     * Use *serviceApiId*, *aefId* and apiInvokerId2
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1 and service_2
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information with query parameter indicating first supported-features.
+  7. Provider Get ACL information with query parameter indicating second supported-features.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. Contain one objects.
+        2. Object must match with supportedFeatures1.
+
+  2. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. Contain one objects.
+        2. Object must match with supportedFeatures1.
+
+
+## Test Case 6: Retrieve ACL with aef-id not valid
+* **Test ID**: ***capif_api_acl-6***
+* **Description**:
+  
+  This test case will check that an API Provider can't retrieve ACL from CAPIF if aef-id is not valid
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${AEF_ID_NOT_VALID}*
+     * Use *serviceApiId* and *AEF_ID_NOT_VALID*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **404 Not Found** Response.
+     2. body returned must accomplish **Problem Details** data structure.
+     3. apiInvokerPolicies must:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "No ACLs found for the requested service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}".
+        * cause with message "Wrong id".
+
+
+## Test Case 7: Retrieve ACL with service-id not valid
+* **Test ID**: ***capif_api_acl-7***
+* **Description**:
+  
+  This test case will check that an API Provider can't retrieve ACL from CAPIF if service-api-id is not valid
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${NOT_VALID_SERVICE_API_ID}?aef-id=${aef_id}*
+     * Use *NOT_VALID_SERVICE_API_ID* and *aef_id*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **404 Not Found** Response.
+     2. body returned must accomplish **Problem Details** data structure.
+     3. apiInvokerPolicies must:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "No ACLs found for the requested service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}".
+        * cause with message "Wrong id".
+
+## Test Case 8: Retrieve ACL with service-api-id and aef-id not valid
+* **Test ID**: ***capif_api_acl-8***
+* **Description**:
+  
+  This test case will check that an API Provider can't retrieve ACL from CAPIF if service-api-id and aef-id are not valid
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${NOT_VALID_SERVICE_API_ID}?aef-id=${AEF_ID_NOT_VALID}*
+     * Use *NOT_VALID_SERVICE_API_ID* and *aef_id*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **404 Not Found** Response.
+     2. body returned must accomplish **Problem Details** data structure.
+     3. apiInvokerPolicies must:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "No ACLs found for the requested service: {NOT_VALID_SERVICE_API_ID}, aef_id: {AEF_ID_NOT_VALID}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}".
+        * cause with message "Wrong id".
+
+
+## Test Case 9: Retrieve ACL without SecurityContext created previously by Invoker
+* **Test ID**: ***capif_api_acl-9***
+* **Description**:
+  
+  This test case will check that an API Provider can't retrieve ACL if no invoker had requested Security Context to CAPIF
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker created but no Security Context for Service API published had been requested.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+
+  5. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **404 Not Found** Response.
+     2. body returned must accomplish **Problem Details** data structure.
+     3. apiInvokerPolicies must:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "No ACLs found for the requested service: {NOT_VALID_SERVICE_API_ID}, aef_id: {AEF_ID_NOT_VALID}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}".
+        * cause with message "Wrong id".
+
+## Test Case 10: Retrieve ACL filtered by api-invoker-id not present
+* **Test ID**: ***capif_api_acl-10***
+* **Description**:
+  
+  This test case will check that an API Provider get not found response if filter by not valid api-invoker-id doesn't match any registered ACL.
+* **Pre-Conditions**:
+  
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}&api-invoker-id={NOT_VALID_API_INVOKER_ID}*
+     * Use *serviceApiId*, *aefId* and *NOT_VALID_API_INVOKER_ID*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+   
+* **Expected Result**:
+
+  1. ACL Response:
+     1. **404 Not Found** Response.
+     2. body returned must accomplish **Problem Details** data structure.
+     3. apiInvokerPolicies must:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "No ACLs found for the requested service: {NOT_VALID_SERVICE_API_ID}, aef_id: {AEF_ID_NOT_VALID}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}".
+        * cause with message "Wrong id".
+
+## Test Case 11: Retrieve ACL with APF Certificate
+* **Test ID**: ***capif_api_acl-11***
+* **Description**:
+
+  This test case will check that an API Provider can't retrieve ACL from CAPIF using APF Certificate
+* **Pre-Conditions**:
+
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use APF Provider Certificate
+
+* **Execution Steps**:
+
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+
+* **Expected Result**:
+
+  1. Response to Logging Service must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 401
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "Certificate not authorized".
+
+## Test Case 12: Retrieve ACL with AMF Certificate
+* **Test ID**: ***capif_api_acl-12***
+* **Description**:
+
+  This test case will check that an API Provider can't retrieve ACL from CAPIF using AMF Certificate
+* **Pre-Conditions**:
+
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use AMF Provider Certificate
+
+* **Execution Steps**:
+
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+
+* **Expected Result**:
+
+  1. Response to Logging Service must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 401
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "Certificate not authorized".
+
+## Test Case 13: Retrieve ACL with Invoker Certificate
+* **Test ID**: ***capif_api_acl-13***
+* **Description**:
+
+  This test case will check that an API Provider can't retrieve ACL from CAPIF using Invoker Certificate
+* **Pre-Conditions**:
+
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}*
+     * Use *serviceApiId* and *aefId*
+     * Use Invoker Certificate
+
+* **Execution Steps**:
+
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information.
+
+* **Expected Result**:
+
+  1. Response to Logging Service must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 401
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "Certificate not authorized".
+
+## Test Case 14: No ACL for invoker after be removed
+* **Test ID**: ***capif_api_acl-14***
+* **Description**:
+
+  This test case will check that ACLs are removed after invoker is removed.
+* **Pre-Conditions**:
+
+  * API Provider had a Service API Published on CAPIF
+  * API Invoker had a Security Context for Service API published and ACL is present
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Store *serviceApiId*
+     * Use APF Certificate
+  
+  3. Perform [Invoker Onboarding] store apiInvokerId
+  4. Discover published APIs
+  5. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+  6. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}&api-invoker-id={api-invoker-id}*
+     * Use *serviceApiId*, *aefId* and *api-invoker-id*
+     * Use AEF Provider Certificate
+  7. Remove Invoker from CAPIF
+  8. Provider Retrieve ACL
+     * Send GET *https://{CAPIF_HOSTNAME}/access-control-policy/v1/accessControlPolicyList/${serviceApiId}?aef-id=${aef_id}&api-invoker-id={api-invoker-id}*
+     * Use *serviceApiId*, *aefId* and *api-invoker-id*
+     * Use AEF Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Provider at CCF.
+  2. Publish a provider API with name service_1
+  3. Register and onboard Invoker at CCF
+  4. Store signed Certificate
+  5. Create Security Context
+  6. Provider Get ACL information of invoker.
+  7. Remove Invoker from CAPIF.
+  8. Provider Get ACL information of invoker.
+   
+* **Expected Result**:
+  1. ACL Response:
+     1. **200 OK** Response.
+     2. body returned must accomplish **AccessControlPolicyList** data structure.
+     3. apiInvokerPolicies must:
+        1. contain only one object.
+        2. apiInvokerId must match apiInvokerId registered previously.
+
+  2. ACL Response:
+     1. **404 Not Found** Response.
+     2. body returned must accomplish **Problem Details** data structure.
+     3. apiInvokerPolicies must:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "No ACLs found for the requested service: {NOT_VALID_SERVICE_API_ID}, aef_id: {AEF_ID_NOT_VALID}, invoker: None and supportedFeatures: None".
+        * cause with message "Wrong id".
+
+
+
+[Return To All Test Plans]: ../README.md
+
+[service api description]: ../api_publish_service/service_api_description_post_example.json  "Service API Description Request"
+[publisher register body]: ../api_publish_service/publisher_register_body.json  "Publish register Body"
+[service security body]: ./service_security.json  "Service Security Request"
+[security notification body]: ./security_notification.json  "Security Notification Request"
+[access token req body]: ./access_token_req.json  "Access Token Request"
+[example]: ./access_token_req.json  "Access Token Request Example"
+[invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+[provider registration]: ../common_operations/README.md#register-a-provider "Provider Registration"
diff --git a/docs/test_plan/api_access_control_policy/service_api_description_post_example.json b/docs/test_plan/api_access_control_policy/service_api_description_post_example.json
new file mode 100644
index 0000000..b725b42
--- /dev/null
+++ b/docs/test_plan/api_access_control_policy/service_api_description_post_example.json
@@ -0,0 +1,113 @@
+{
+  "apiName": "service_1",
+  "aefProfiles": [
+    {
+      "aefId": "string",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    },
+    {
+      "aefId": "string",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    }
+  ],
+  "description": "string",
+  "supportedFeatures": "fffff",
+  "shareableInfo": {
+    "isShareable": true,
+    "capifProvDoms": [
+      "string"
+    ]
+  },
+  "serviceAPICategory": "string",
+  "apiSuppFeats": "fffff",
+  "pubApiPath": {
+    "ccfIds": [
+      "string"
+    ]
+  },
+  "ccfId": "string"
+}
\ No newline at end of file
diff --git a/docs/test_plan/api_auditing_service/README.md b/docs/test_plan/api_auditing_service/README.md
new file mode 100644
index 0000000..bd3204c
--- /dev/null
+++ b/docs/test_plan/api_auditing_service/README.md
@@ -0,0 +1,244 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Auditing Service](#test-plan-for-capif-api-auditing-service)
+- [Tests](#tests)
+  - [Test Case 1: Get a CAPIF Log Entry.](#test-case-1-creates-a-new-individual-capif-log-entry)
+
+
+# Test Plan for CAPIF Api Auditing Service
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Get CAPIF Log Entry.
+* Test ID: ***capif_api_auditing-1***
+* Description:
+
+  This test case will check that a CAPIF AMF can get log entry to Logging Service
+* Pre-Conditions:
+  
+  *  CAPIF provider is pre-authorised (has valid AMF cert from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+  *  Log Entry exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding], [invoker onboarding] 
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Create Log Entry:
+     - Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     - body [log entry request body]
+     - Use AEF Certificate
+
+  4. Get Log:
+     1. Send GET to *https://{CAPIF_HOSTNAME}/logs/v1/apiInvocationLogs?aef-id={aefId}&api-invoker-id={api-invoker-id}*
+     2. Use AMF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+  4. Get Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **200 OK**
+     2. Response Body must follow **InvocationLog** data structure with:
+        * aefId
+        * apiInvokerId
+        * logs
+
+## Test Case 2: Get CAPIF Log Entry With no Log entry in CAPIF.
+* Test ID: ***capif_api_auditing-2***
+* Description:
+
+  This test case will check that a CAPIF AEF can create log entry to Logging Service
+* Pre-Conditions:
+
+  *  CAPIF provider is pre-authorised (has valid AMF cert from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+
+
+* Information of Test:
+
+  1. Perform [provider onboarding], [invoker onboarding] 
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  4. Get Log:
+     1. Send GET to *https://{CAPIF_HOSTNAME}/logs/v1/apiInvocationLogs?aef-id={aefId}&api-invoker-id={api-invoker-id}*
+     2. Use AMF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Get Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **404 Not Found**
+    2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found Log Entry in CAPIF".
+        * cause with message "Not Exist Logs with the filters applied".
+
+
+## Test Case 3: Get CAPIF Log Entry without aef-id and api-invoker-id.
+* Test ID: ***capif_api_auditing-3***
+* Description:
+
+  This test case will check that a CAPIF AEF can create log entry to Logging Service
+* Pre-Conditions:
+
+  *  CAPIF provider is no pre-authorised (has no valid AMF cert from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+  *  Log Entry exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding], [invoker onboarding] 
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Create Log Entry:
+     - Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     - body [log entry request body]
+     - Use AEF Certificate
+
+  4. Get Log:
+     1. Send GET to *https://{CAPIF_HOSTNAME}/logs/v1/apiInvocationLogs
+     2. Use AMF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+  4. Get Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **400 Bad Request**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 400
+        * title with message "Bad Request"
+        * detail with message "aef_id and api_invoker_id parameters are mandatory".
+        * cause with message "Mandatory parameters missing".
+
+
+## Test Case 4: Get CAPIF Log Entry with filtter api-version.
+* Test ID: ***capif_api_auditing-4***
+* Description:
+
+  This test case will check that a CAPIF AMF can get log entry to Logging Service
+* Pre-Conditions:
+
+  *  CAPIF provider is pre-authorised (has valid AMF cert from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+  *  Log Entry exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding], [invoker onboarding] 
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Create Log Entry:
+     - Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     - body [log entry request body]
+     - Use AEF Certificate
+
+  4. Get Log:
+     1. Send GET to *https://{CAPIF_HOSTNAME}/logs/v1/apiInvocationLogs?aef-id={aefId}&api-invoker-id={api-invoker-id}&api-version={v1}*
+     2. Use AMF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+  4. Get Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **200 OK**
+     2. Response Body must follow **InvocationLog** data structure with:
+        * aefId
+        * apiInvokerId
+        * logs
+
+
+## Test Case 5: Get CAPIF Log Entry with filter api-version but not exist in log entry.
+* Test ID: ***capif_api_auditing-4***
+* Description:
+
+  This test case will check that a CAPIF AMF can get log entry to Logging Service
+* Pre-Conditions:
+
+  *  CAPIF provider is pre-authorised (has valid AMF cert from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+  *  Log Entry exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding], [invoker onboarding] 
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Create Log Entry:
+     - Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     - body [log entry request body]
+     - Use AEF Certificate
+
+  4. Get Log:
+     1. Send GET to *https://{CAPIF_HOSTNAME}/logs/v1/apiInvocationLogs?aef-id={aefId}&api-invoker-id={api-invoker-id}&api-version={v58}*
+     2. Use AMF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+  4. Get Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * detail with message "Parameters do not match any log entry"
+        * cause with message "No logs found".
+
+
+
+[log entry request body]: ../api_logging_service/invocation_log.json "Log Request Body"
+
+[invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+
+[provider onboarding]: ../common_operations/README.md#register-a-provider "Provider Onboarding"
+
+[Return To All Test Plans]: ../README.md
\ No newline at end of file
diff --git a/docs/test_plan/api_discover_service/README.md b/docs/test_plan/api_discover_service/README.md
new file mode 100644
index 0000000..3125c88
--- /dev/null
+++ b/docs/test_plan/api_discover_service/README.md
@@ -0,0 +1,336 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Discover Service](#test-plan-for-capif-discover-service)
+- [Tests](#tests)
+  - [Test Case 1: Discover Published service APIs by Authorised API Invoker](#test-case-1-discover-published-service-apis-by-authorised-api-invoker)
+  - [Test Case 2: Discover Published service APIs by Non Authorised API Invoker](#test-case-2-discover-published-service-apis-by-non-authorised-api-invoker)
+  - [Test Case 3: Discover Published service APIs by not registered API Invoker](#test-case-3-discover-published-service-apis-by-not-registered-api-invoker)
+  - [Test Case 4: Discover Published service APIs by registered API Invoker with 1 result filtered](#test-case-4-discover-published-service-apis-by-registered-api-invoker-with-1-result-filtered)
+  - [Test Case 5: Discover Published service APIs by registered API Invoker filtered with no match](#test-case-5-discover-published-service-apis-by-registered-api-invoker-filtered-with-no-match)
+  - [Test Case 6: Discover Published service APIs by registered API Invoker not filtered](#test-case-6-discover-published-service-apis-by-registered-api-invoker-not-filtered)
+
+
+# Test Plan for CAPIF Discover Service
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Discover Published service APIs by Authorised API Invoker
+* **Test ID**: ***capif_api_discover_service-1***
+* **Description**:
+
+  This test case will check if NetApp (Invoker) can discover published service APIs.
+* **Pre-Conditions**:
+  * Service APIs are published.
+  * NetApp was registered previously
+  * NetApp was onboarded previously with {onboardingId}
+  
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3. Request Discover Published APIs:
+     * Send GET to *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Use Invoker Certificate
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF, store certificates and Publish Service API at CCF
+  2. Register Invoker and Onboard Invoker at CCF
+  3. Discover Service APIs by Invoker
+
+* **Expected Result**:
+
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+  3. Response to Discover Request By Invoker:
+     1. **200 OK** response.
+     2. Response body must follow **DiscoveredAPIs** data structure:
+        * Check if DiscoveredAPIs contains the API Published previously
+
+
+## Test Case 2: Discover Published service APIs by Non Authorised API Invoker
+* **Test ID**: ***capif_api_discover_service-2***
+* **Description**:
+
+  This test case will check that an API Publisher can't discover published APIs because is not authorized.
+
+* **Pre-Conditions**:
+  * Service APIs are published.
+  
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3.  Request Discover Published APIs by no invoker entity:
+     * Send GET to *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Use not Invoker Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API at CCF
+  2. Register Invoker and Onboard Invoker at CCF
+  3. Discover Service APIs by no invoker entity
+
+* **Expected Result**:
+
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  3. Response to Discover Request By no invoker entity:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 401
+        * title with message "Unauthorized"
+        * detail with message "User not authorized".
+        * cause with message "Certificate not authorized".
+
+
+## Test Case 3: Discover Published service APIs by not registered API Invoker
+* **Test ID**: ***capif_api_discover_service-3***
+* **Description**:
+
+  This test case will check that a not registered invoker is forbidden to discover published APIs.
+
+* **Pre-Conditions**:
+  * Service APIs are published.
+  
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3.  Request Discover Published APIs with not valid apiInvoker:
+     * Send GET to *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={INVOKER_NOT_REGISTERED}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API at CCF
+  2. Register Invoker and Onboard Invoker at CCF
+  3. Discover Service APIs by Publisher
+
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  3. Response to Discover Request By Invoker:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "API Invoker does not exist".
+        * cause with message "API Invoker id not found".
+
+
+## Test Case 4: Discover Published service APIs by registered API Invoker with 1 result filtered
+* **Test ID**: ***capif_api_discover_service-4***
+* **Description**:
+
+  This test case will check if NetApp (Invoker) can discover published service APIs.
+* **Pre-Conditions**:
+  * At least 2 Service APIs are published.
+  * NetApp was registered previously
+  * NetApp was onboarded previously with {onboardingId}
+  
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_2
+     * Use APF Certificate
+  4.  Request Discover Published APIs filtering by api-name:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}&api-name=service_1*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+     * filter by api-name service_1
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 and service_2 at CCF
+  2. Register Invoker and Onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Discover filtered by api-name service_1 Service APIs by Invoker
+
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+  2. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+  3. Response to Discover Request By Invoker:
+     1. **200 OK** response.
+     2. Response body must follow **DiscoveredAPIs** data structure:
+        * Check if DiscoveredAPIs contains previously registered Service APIs published.
+  4. Response to Discover Request By Invoker:
+     1. **200 OK** response.
+     2. Response body must follow **DiscoveredAPIs** data structure:
+        * Check if DiscoveredAPIs contains only Service API published with api-name service_1
+
+
+## Test Case 5: Discover Published service APIs by registered API Invoker filtered with no match
+* **Test ID**: ***capif_api_discover_service-5***
+* **Description**:
+  This test case will check if NetApp (Invoker) can discover published service APIs.
+* **Pre-Conditions**:
+  * At least 2 Service APIs are published.
+  * NetApp was registered previously
+  * NetApp was onboarded previously with {onboardingId}
+  
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_2
+     * Use APF Certificate
+  4.  Request Discover Published APIs filtering by api-name not published:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}&api-name=NOT_VALID_NAME*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+     * filter by api-name NOT_VALID_NAME
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 and service_2 at CCF
+  2. Register Invoker and Onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Discover filtered by api-name not published Service APIs by Invoker
+
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+  2. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+  3. Response to Discover Request By Invoker:
+     1. **200 OK** response.
+     2. Response body must follow **DiscoveredAPIs** data structure:
+        * Check if DiscoveredAPIs contains previously registered Service APIs published.
+  4. Response to Discover Request By Invoker:
+     1. **404 Not Found** response.
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "API Invoker {api_invoker_id} has no API Published that accomplish filter conditions".
+        * cause with message "No API Published accomplish filter conditions".
+
+
+## Test Case 6: Discover Published service APIs by registered API Invoker not filtered
+* **Test ID**: ***capif_api_discover_service-6***
+* **Description**:
+
+  This test case will check if NetApp (Invoker) can discover published service APIs.
+* **Pre-Conditions**:
+  * 2 Service APIs are published.
+  * NetApp was registered previously
+  * NetApp was onboarded previously with {onboardingId}
+  
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_2
+     * Use APF Certificate
+  4.  Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 and service_2 at CCF
+  2. Register Invoker and Onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Discover without filter by Invoker
+
+* **Expected Result**:
+
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  3. Response to Discover Request By Invoker:
+     1. **200 OK** response.
+     2. Response body must follow **DiscoveredAPIs** data structure:
+        * Check if DiscoveredAPIs contains the 2 previously registered Service APIs published.
+
+
+
+   [service api description]: ./api_publish_service/service_api_description_post_example.json  "Service API **Description** Request"
+   [publisher register body]: ./api_publish_service/publisher_register_body.json  "Publish register Body"
+   [invoker onboarding body]: ../api_invoker_management/invoker_details_post_example.json  "API Invoker Request"
+   [invoker register body]: ../api_invoker_management/invoker_register_body.json  "Invoker Register Body"
+   [provider request body]: ../api_provider_management/provider_details_post_example.json  "API Provider Enrolment Request"
+   [provider request patch body]: ../api_provider_management/provider_details_enrolment_details_patch_example.json  "API Provider Enrolment Patch Request"
+   [provider getauth body]: ../api_provider_management/provider_getauth_example.json    "Get Auth Example"
+   [invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+   [provider registration]: ../common_operations/README.md#register-a-provider "Provider Registration"
+
+
+[Return To All Test Plans]: ../README.md
diff --git a/docs/test_plan/api_events_service/README.md b/docs/test_plan/api_events_service/README.md
new file mode 100644
index 0000000..417c1aa
--- /dev/null
+++ b/docs/test_plan/api_events_service/README.md
@@ -0,0 +1,265 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Events Service](#test-plan-for-capif-api-events-service)
+- [Tests](#tests)
+  - [Test Case 1: Creates a new individual CAPIF Event Subscription.](#test-case-1-creates-a-new-individual-capif-event-subscription)
+  - [Test Case 2: Creates a new individual CAPIF Event Subscription with Invalid SubscriberId](#test-case-2-creates-a-new-individual-capif-event-subscription-with-invalid-subscriberid)
+  - [Test Case 3: Deletes an individual CAPIF Event Subscription](#test-case-3-deletes-an-individual-capif-event-subscription)
+  - [Test Case 4: Deletes an individual CAPIF Event Subscription with invalid SubscriberId](#test-case-4-deletes-an-individual-capif-event-subscription-with-invalid-subscriberid)
+  - [Test Case 5: Deletes an individual CAPIF Event Subscription with invalid SubscriptionId](#test-case-5-deletes-an-individual-capif-event-subscription-with-invalid-subscriptionid)
+ 
+
+
+# Test Plan for CAPIF Api Events Service
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Creates a new individual CAPIF Event Subscription.
+* Test ID: ***capif_api_events-1***
+* Description:
+
+  This test case will check that a CAPIF subscriber (Invoker or Publisher) can Subscribe to Events
+* Pre-Conditions:
+  
+  * CAPIF subscriber is pre-authorised (has valid InvokerId or apfId from CAPIF Authority)
+
+* Information of Test:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Event Subscription:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/capif-events/v1/{subscriberId}/subscriptions*
+     2. body [event subscription request body]
+     3. Use Invoker Certificate
+
+* Execution Steps:
+  
+  1. Register Invoker and Onboard Invoker at CCF
+  2. Subscribe to Events
+  3. Retrieve {subscriberId} and {subscriptionId} from Location Header
+   
+* Expected Result:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  2. Response to Event Subscription must accomplish:
+     1. **201 Created**
+     2. The URI of the created resource shall be returned in the "Location" HTTP header, following this structure: *{apiRoot}/capif-events/{apiVersion}/{subscriberId}/subscriptions/{subscriptionId}
+     3. Response Body must follow **EventSubscription** data structure.
+
+  3. Event Subscriptions are stored in CAPIF Database
+
+
+## Test Case 2: Creates a new individual CAPIF Event Subscription with Invalid SubscriberId
+* Test ID: ***capif_api_events-2***
+* Description:
+
+  This test case will check that a CAPIF subscriber (Invoker or Publisher) cannot Subscribe to Events without valid SubcriberId
+* Pre-Conditions:
+  
+  * CAPIF subscriber is not pre-authorised (has invalid InvokerId or apfId)
+
+* Information of Test:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Event Subscription:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/capif-events/v1/{SUBSCRIBER_NOT_REGISTERED}/subscriptions*
+     2. body [event subscription request body]
+     3. Use Invoker Certificate
+
+* Execution Steps:
+  
+  1. Register Invoker and Onboard Invoker at CCF
+  2. Subscribe to Events
+   
+* Expected Result:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  2. Response to Event Subscription must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Invoker or APF or AEF or AMF Not found".
+        * cause with message "Subscriber Not Found".
+
+  3. Event Subscriptions are not stored in CAPIF Database
+
+  
+## Test Case 3: Deletes an individual CAPIF Event Subscription
+* Test ID: ***capif_api_events-3***
+* Description:
+
+  This test case will check that a CAPIF subscriber (Invoker or Publisher) can Delete an Event Subscription
+* Pre-Conditions:
+  
+  * CAPIF subscriber is pre-authorised (has valid InvokerId or apfId from CAPIF Authority)
+
+* Information of Test:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Event Subscription:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/capif-events/v1/{subscriberId}/subscriptions*
+     2. body [event subscription request body]
+     3. Use Invoker Certificate
+
+  3. Remove Event Subscription:
+     1. Send DELETE to *https://{CAPIF_HOSTNAME}/capif-events/v1/{subscriberId}/subscriptions*
+     2. Use Invoker Certificate
+
+* Execution Steps:
+  
+  1. Register Invoker and Onboard Invoker at CCF
+  2. Subscribe to Events
+  3. Retrieve {subscriberId} and {subscriptionId} from Location Header
+  4. Remove Event Subscription
+   
+* Expected Result:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  2. Response to Event Subscription must accomplish:
+     1. **201 Created**
+     2. The URI of the created resource shall be returned in the "Location" HTTP header, following this structure: *{apiRoot}/capif-events/{apiVersion}/{subscriberId}/subscriptions/{subscriptionId}
+     3. Response Body must follow **EventSubscription** data structure.
+
+  3. Event Subscriptions are stored in CAPIF Database
+  4. Remove Event Subscription:
+     1. **204 No Content**
+
+  5. Event Subscription is not present at CAPIF Database.
+
+
+## Test Case 4: Deletes an individual CAPIF Event Subscription with invalid SubscriberId
+* Test ID: ***capif_api_events-4***
+* Description:
+
+  This test case will check that a CAPIF subscriber (Invoker or Publisher) cannot Delete to Events without valid SubcriberId
+* Pre-Conditions:
+  
+  * CAPIF subscriber is pre-authorised (has valid InvokerId or apfId).
+  * CAPIF subscriber is subscribed to Events.
+
+* Information of Test:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Event Subscription:
+     1. Send POST to https://{CAPIF_HOSTNAME}/capif-events/v1/{subscriberId}/subscriptions
+     2. body [event subscription request body]
+     3. Use Invoker Certificate
+
+  3. Remove Event Subcription with not valid subscriber:
+     1. Send DELETE to to https://{CAPIF_HOSTNAME}/capif-events/v1/{SUBSCRIBER_ID_NOT_VALID}/subscriptions/{subcriptionId}
+     2. Use Invoker Certificate
+
+* Execution Steps:
+  
+  1. Register Invoker and Onboard Invoker at CCF
+  2. Subscribe to Events
+  3. Retrieve Location Header with subscriptionId.
+  4. Remove Event Subscribed with not valid Subscriber.
+   
+* Expected Result:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  2. Response to Event Subscription must accomplish:
+     1. 201 Created
+     2. The URI of the created resource shall be returned in the "Location" HTTP header, following this structure: *{apiRoot}/capif-events/{apiVersion}/{subscriberId}/subscriptions/{subscriptionId}
+     3. Response Body must follow **EventSubscription** data structure.
+
+  3. Event Subscriptions are stored in CAPIF Database
+  4. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Invoker or APF or AEF or AMF Not found".
+        * cause with message "Subscriber Not Found".
+
+
+## Test Case 5: Deletes an individual CAPIF Event Subscription with invalid SubscriptionId
+* Test ID: ***capif_api_events-5***
+* Description:
+
+  This test case will check that a CAPIF subscriber (Invoker or Publisher) cannot Delete an Event Subscription without valid SubscriptionId
+* Pre-Conditions:
+  
+  * CAPIF subscriber is pre-authorised (has invalid InvokerId or apfId).
+  * CAPIF subscriber is subscribed to Events.
+
+* Information of Test:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Event Subscription:
+     1. Send POST to https://{CAPIF_HOSTNAME}/capif-events/v1/{subscriberId}/subscriptions
+     2. body [event subscription request body]
+     3. Use Invoker Certificate
+
+  3. Remove Event Subcription with not valid subscriber:
+     1. Send DELETE to to https://{CAPIF_HOSTNAME}/capif-events/v1/{subcriberId}/subscriptions/{SUBSCRIPTION_ID_NOT_VALID}
+     2. Use Invoker Certificate
+
+* Execution Steps:
+  
+  1. Register Invoker and Onboard Invoker at CCF
+  2. Subscribe to Events
+  3. Retrieve Location Header with subscriptionId.
+  4. Remove Event Subscribed with not valid Subscriber.
+   
+* Expected Result:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+  2. Response to Event Subscription must accomplish:
+     1. **201 Created**
+     2. The URI of the created resource shall be returned in the "Location" HTTP header, following this structure: *{apiRoot}/capif-events/{apiVersion}/{subscriberId}/subscriptions/{subscriptionId}
+     3. Response Body must follow **EventSubscription** data structure.
+
+  3. Event Subscriptions are stored in CAPIF Database
+  4. Remove Event Subscription with not valid subscriber:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * detail with message "Service API not existing".
+        * cause with message "Event API subscription id not found".
+
+
+
+
+[invoker register body]: ../api_invoker_management/invoker_register_body.json  "Invoker Register Body"
+[invoker onboard request body]: ../api_invoker_management/invoker_details_post_example.json  "API Invoker Request"
+[event subscription request body]: ./event_subscription.json  "Event Subscription Request"
+[invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+
+
+[Return To All Test Plans]: ../README.md
diff --git a/docs/test_plan/api_events_service/event_subscription.json b/docs/test_plan/api_events_service/event_subscription.json
new file mode 100644
index 0000000..40dc09b
--- /dev/null
+++ b/docs/test_plan/api_events_service/event_subscription.json
@@ -0,0 +1,31 @@
+{
+  "eventFilters": [
+    {
+      "aefIds": ["aefIds", "aefIds"],
+      "apiIds": ["apiIds", "apiIds"],
+      "apiInvokerIds": ["apiInvokerIds", "apiInvokerIds"]
+    },
+    {
+      "aefIds": ["aefIds", "aefIds"],
+      "apiIds": ["apiIds", "apiIds"],
+      "apiInvokerIds": ["apiInvokerIds", "apiInvokerIds"]
+    }
+  ],
+  "eventReq": {
+    "grpRepTime": 5,
+    "immRep": true,
+    "maxReportNbr": 0,
+    "monDur": "2000-01-23T04:56:07+00:00",
+    "partitionCriteria": ["string1", "string2"],
+    "repPeriod": 6,
+    "sampRatio": 15
+  },
+  "events": ["SERVICE_API_AVAILABLE", "API_INVOKER_ONBOARDED"],
+  "notificationDestination": "http://robot.testing",
+  "requestTestNotification": true,
+  "supportedFeatures": "aaa",
+  "websockNotifConfig": {
+    "requestWebsocketUri": true,
+    "websocketUri": "websocketUri"
+  }
+}
diff --git a/docs/test_plan/api_invoker_management/README.md b/docs/test_plan/api_invoker_management/README.md
new file mode 100644
index 0000000..9846c96
--- /dev/null
+++ b/docs/test_plan/api_invoker_management/README.md
@@ -0,0 +1,306 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Invoker Management](#test-plan-for-capif-api-invoker-management)
+- [Tests](#tests)
+  - [Test Case 1: Onboard NetApp](#test-case-1-onboard-netapp)
+  - [Test Case 2: Onboard NetApp Already onboarded](#test-case-2-onboard-netapp-already-onboarded)
+  - [Test Case 3: Update Onboarded NetApp](#test-case-3-update-onboarded-netapp)
+  - [Test Case 4: Update Not Onboarded NetApp](#test-case-4-update-not-onboarded-netapp)
+  - [Test Case 5: Offboard NetApp](#test-case-5-offboard-netapp)
+  - [Test Case 6: Offboard Not previsouly Onboarded NetApp](#test-case-6-offboard-not-previsouly-onboarded-netapp)
+  - [Test Case 7: Update Onboarded NetApp Certificate](#test-case-7-update-onboarded-netapp-certificate)
+
+
+# Test Plan for CAPIF Api Invoker Management
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Onboard NetApp
+* **Test ID**: ***capif_api_invoker_management-1***
+* **Description**:
+
+  This test will try to register new NetApp at CAPIF Core.
+* **Pre-Conditions**:
+
+  * NetApp was not registered previously
+  * NetApp was not onboarded previously
+
+* **Information of Test**:
+
+  1. Create public and private key at invoker
+
+  2. Register of Invoker at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register* 
+     * body [invoker register body]
+
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [invoker getauth body]
+
+  4. Onboard Invoker:
+     * Send POST to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers*
+     * Reference Request Body: [invoker onboarding body]
+     * "onboardingInformation"->"apiInvokerPublicKey": must contain public key generated by Invoker.
+     * Send at Authorization Header the Bearer access_token obtained previously (Authorization:Bearer ${access_token})
+
+* **Execution Steps**:
+  1. Register Invoker at CCF
+  2. Onboard Invoker at CCF
+  3. Store signed Certificate
+   
+* **Expected Result**:
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+
+## Test Case 2: Onboard NetApp Already onboarded
+
+* **Test ID**: ***capif_api_invoker_management-2***
+* **Description**:
+
+  This test will check second onboard of same NetApp is not allowed.
+
+* **Pre-Conditions**:
+
+  * NetApp was registered previously
+  * NetApp was onboarded previously
+
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Repeat Onboard Invoker:
+     * Send POST to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers*
+     * Reference Request Body: [invoker onboarding body]
+     * "onboardingInformation"->"apiInvokerPublicKey": must contain public key generated by Invoker.
+     * Send at Authorization Header the Bearer access_token obtained previously (Authorization:Bearer ${access_token})
+
+* **Execution Steps**:
+  1. Register NetApp at CCF
+  2. Onboard NetApp at CCF
+  3. Store signed Certificate at NetApp
+  4. Onboard Again the NetApp at CCF
+  
+* **Expected Result**:
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+  2. Response to Second Onboard of NetApp must accomplish:
+     1. **403 Forbidden**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 403
+        * title with message "Forbidden"
+        * detail with message "Invoker Already registered".
+        * cause with message "Identical invoker public key".
+
+
+## Test Case 3: Update Onboarded NetApp  
+* **Test ID**: ***capif_api_invoker_management-3***
+* **Description**:
+
+  This test will try to update information of previous onboard NetApp at CAPIF Core.
+* **Pre-Conditions**:
+
+  * NetApp was registered previously
+  * NetApp was onboarded previously with {onboardingId}
+  
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Update information of previously onboarded Invoker:
+     * Send PUT to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers/{onboardingId}*
+     * Reference Request Body is: [put invoker onboarding body]
+       * "notificationDestination": "*http://host.docker.internal:8086/netapp_new_callback*",
+
+* **Execution Steps**:
+  
+  1. Register Invoker at CCF
+  2. Onboard Invoker at CCF
+  3. Store signed Certificate
+  4. Update Onboarding Information at CCF with a minor change on "notificationDestination"
+   
+* **Expected Result**:
+  
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+  2. Response to Update Request (PUT) with minor change must contain:
+     1. **200 OK** response.
+     2. notificationDestination on response must contain the new value
+
+
+## Test Case 4: Update Not Onboarded NetApp
+* **Test ID**: ***capif_api_invoker_management-4***
+* **Description**:
+
+  This test will try to update information of not onboarded NetApp at CAPIF Core.
+* **Pre-Conditions**:
+
+  * NetApp was registered previously
+  * NetApp was not onboarded previously
+  
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Update information of not onboarded Invoker:
+     * Send PUT to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers/{INVOKER_NOT_REGISTERED}*
+     * Reference Request Body is: [put invoker onboarding body]
+
+* **Execution Steps**:
+  
+  1. Register Invoker at CCF
+  2. Onboard Invoker at CCF
+  3. Update Onboarding Information at CCF of not onboarded
+   
+* **Expected Result**:
+  
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+  2. Response to Update Request (PUT) must contain:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Please provide an existing Netapp ID".
+        * cause with message "Not exist NetappID".
+
+
+
+## Test Case 5: Offboard NetApp
+* **Test ID**: ***capif_api_invoker_management-5***
+* **Description**:
+
+  This test case will check that a Registered NetApp can be deleted.
+* **Pre-Conditions**:
+
+  * NetApp was registered previously
+  * NetApp was onboarded previously
+
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Offboard:
+     * Send Delete to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers/{onboardingId}*
+
+* **Execution Steps**:
+
+  1. Register Invoker at CCF
+  2. Onboard Invoker at CCF
+  3. Offboard Invoker at CCF
+   
+* **Expected Result**:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+  2. Response to Offboard Request (DELETE) must contain:
+     1. **204 No Content**
+
+
+## Test Case 6: Offboard Not previsouly Onboarded NetApp
+* **Test ID**: ***capif_api_invoker_management-6***
+* **Description**:
+
+  This test case will check that a Non-Registered NetApp cannot be deleted
+* **Pre-Conditions**:
+
+  * NetApp was registered previously
+  * NetApp was not onboarded previously
+
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Offboard:
+     * Send Delete to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers/{INVOKER_NOT_REGISTERED}*
+
+* **Execution Steps**:
+
+  1. Register Invoker at CCF
+  2. Offboard Invoker at CCF
+
+* **Expected Result**:
+
+  1. Response to Offboard Request (DELETE) must contain:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Please provide an existing Netapp ID".
+        * cause with message "Not exist NetappID".
+
+## Test Case 7: Update Onboarded NetApp Certificate
+* **Test ID**: ***capif_api_invoker_management-7***
+* **Description**:
+
+  This test will try to update public key and get a new signed certificate by CAPIF Core.
+* **Pre-Conditions**:
+
+  * NetApp was registered previously
+  * NetApp was onboarded previously with {onboardingId} and {public_key_1}
+
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding] with public_key_1.
+
+  2. Create {public_key_2}
+
+  3. Update information of previously onboarded Invoker:
+     * Send PUT to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers/{onboardingId}*
+     * Reference Request Body is: [put invoker onboarding body]
+       * ["onboardingInformation"]["apiInvokerPublicKey"]: {public_key_2},
+     * Store new certificate.
+
+  4. Update information of previously onboarded Invoker Using new certificate:
+     * Send PUT to *https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers/{onboardingId}*
+     * Reference Request Body is: [put invoker onboarding body]
+       * "notificationDestination": "*http://host.docker.internal:8086/netapp_new_callback*",
+     * Use new invoker certificate
+
+* **Execution Steps**:
+
+  1. Register Invoker at CCF
+  2. Onboard Invoker at CCF
+  3. Store signed Certificate
+  4. Update Onboarding Information at CCF with new public key
+  5. Update Onboarding Information at CCF with minor change
+
+* **Expected Result**:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+        * apiInvokerId
+        * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+  2. Response to Update Request (PUT) with new public key:
+     1. **200 OK** response.
+     2. apiInvokerCertificate with new certificate on response -> store to use.
+  3. Response to Update Request (PUT) with minor change must contain:
+     1. **200 OK** response.
+     2. notificationDestination on response must contain the new value
+
+
+
+
+[invoker onboarding body]: ./invoker_details_post_example.json  "API Invoker Request"
+[invoker register body]: ./invoker_register_body.json  "Invoker Register Body"
+[put register body]: ./invoker_details_put_example.json  "API Invoker Update Request"
+[invoker getauth body]: ./invoker_getauth_example.json    "Get Auth Example"
+
+[invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+
+[Return To All Test Plans]: ../README.md
\ No newline at end of file
diff --git a/docs/test_plan/api_invoker_management/invoker_details_post_example.json b/docs/test_plan/api_invoker_management/invoker_details_post_example.json
new file mode 100644
index 0000000..c306a17
--- /dev/null
+++ b/docs/test_plan/api_invoker_management/invoker_details_post_example.json
@@ -0,0 +1,15 @@
+{
+  "notificationDestination": "http://host.docker.internal:8086/netapp_callback",
+  "supportedFeatures": "fffffff",
+  "apiInvokerInformation": "ROBOT_TESTING_INVOKER",
+  "websockNotifConfig": {
+    "requestWebsocketUri": true,
+    "websocketUri": "websocketUri"
+  },
+  "onboardingInformation": {
+    "apiInvokerPublicKey": "{PUBLIC_KEY}",
+    "onboardingSecret": "onboardingSecret",
+    "apiInvokerCertificate": "apiInvokerCertificate"
+  },
+  "requestTestNotification": true
+}
diff --git a/docs/test_plan/api_invoker_management/invoker_details_put_example.json b/docs/test_plan/api_invoker_management/invoker_details_put_example.json
new file mode 100644
index 0000000..37a1eef
--- /dev/null
+++ b/docs/test_plan/api_invoker_management/invoker_details_put_example.json
@@ -0,0 +1,393 @@
+{
+  "notificationDestination": "http://host.docker.internal:8086/netapp_new_callback",
+  "supportedFeatures": "fffffff",
+  "apiInvokerInformation": "ROBOT_TESTING_INVOKER",
+  "websockNotifConfig": {
+    "requestWebsocketUri": true,
+    "websocketUri": "websocketUri"
+  },
+  "onboardingInformation": {
+    "apiInvokerPublicKey": "{PUBLIC_KEY}",
+    "onboardingSecret": "onboardingSecret",
+    "apiInvokerCertificate": "apiInvokerCertificate"
+  },
+  "requestTestNotification": true,
+  "apiList": [
+    {
+      "serviceAPICategory": "serviceAPICategory",
+      "ccfId": "ccfId",
+      "apiName": "apiName",
+      "shareableInfo": {
+        "capifProvDoms": ["capifProvDoms", "capifProvDoms"],
+        "isShareable": true
+      },
+      "supportedFeatures": "fffffff",
+      "description": "description",
+      "apiSuppFeats": "fffffff",
+      "apiId": "apiId",
+      "aefProfiles": [
+        {
+          "securityMethods": ["PSK"],
+          "versions": [
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            },
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            }
+          ],
+          "aefId": "aefId",
+          "interfaceDescriptions": [
+            {
+              "securityMethods": ["PSK"],
+              "port": 5248,
+              "ipv4Addr": "ipv4Addr"
+            },
+            { "securityMethods": ["PSK"], "port": 5248, "ipv4Addr": "ipv4Addr" }
+          ]
+        },
+        {
+          "securityMethods": ["PSK"],
+          "versions": [
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            },
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            }
+          ],
+          "aefId": "aefId",
+          "interfaceDescriptions": [
+            {
+              "securityMethods": ["PSK"],
+              "port": 5248,
+              "ipv4Addr": "ipv4Addr"
+            },
+            { "securityMethods": ["PSK"], "port": 5248, "ipv4Addr": "ipv4Addr" }
+          ]
+        }
+      ],
+      "pubApiPath": { "ccfIds": ["ccfIds", "ccfIds"] }
+    },
+    {
+      "serviceAPICategory": "serviceAPICategory",
+      "ccfId": "ccfId",
+      "apiName": "apiName2",
+      "shareableInfo": {
+        "capifProvDoms": ["capifProvDoms", "capifProvDoms"],
+        "isShareable": true
+      },
+      "supportedFeatures": "fffffff",
+      "description": "description",
+      "apiSuppFeats": "fffffff",
+      "apiId": "apiId",
+      "aefProfiles": [
+        {
+          "securityMethods": ["PSK"],
+          "versions": [
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            },
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            }
+          ],
+          "aefId": "aefId",
+          "interfaceDescriptions": [
+            {
+              "securityMethods": ["PSK"],
+              "port": 5248,
+              "ipv4Addr": "ipv4Addr"
+            },
+            { "securityMethods": ["PSK"], "port": 5248, "ipv4Addr": "ipv4Addr" }
+          ]
+        },
+        {
+          "securityMethods": ["PSK"],
+          "versions": [
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            },
+            {
+              "apiVersion": "apiVersion",
+              "resources": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "resourceName": "resourceName",
+                  "custOpName": "custOpName",
+                  "uri": "uri",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "custOperations": [
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                },
+                {
+                  "operations": ["GET"],
+                  "description": "description",
+                  "custOpName": "custOpName",
+                  "commType": "REQUEST_RESPONSE"
+                }
+              ],
+              "expiry": "2000-01-23T04:56:07.000+00:00"
+            }
+          ],
+          "aefId": "aefId",
+          "interfaceDescriptions": [
+            {
+              "securityMethods": ["PSK"],
+              "port": 5248,
+              "ipv4Addr": "ipv4Addr"
+            },
+            { "securityMethods": ["PSK"], "port": 5248, "ipv4Addr": "ipv4Addr" }
+          ]
+        }
+      ],
+      "pubApiPath": { "ccfIds": ["ccfIds", "ccfIds"] }
+    }
+  ]
+}
diff --git a/docs/test_plan/api_invoker_management/invoker_getauth_example.json b/docs/test_plan/api_invoker_management/invoker_getauth_example.json
new file mode 100644
index 0000000..a66dad5
--- /dev/null
+++ b/docs/test_plan/api_invoker_management/invoker_getauth_example.json
@@ -0,0 +1,4 @@
+{
+  "username": "ROBOT_TESTING_INVOKER",
+  "password": "password"
+}
diff --git a/docs/test_plan/api_invoker_management/invoker_register_body.json b/docs/test_plan/api_invoker_management/invoker_register_body.json
new file mode 100644
index 0000000..e5bf1fc
--- /dev/null
+++ b/docs/test_plan/api_invoker_management/invoker_register_body.json
@@ -0,0 +1,7 @@
+{
+  "password": "password",
+  "username": "ROBOT_TESTING_INVOKER",
+  "role": "invoker",
+  "description": "Testing",
+  "cn": "ROBOT_TESTING_INVOKER"
+}
diff --git a/docs/test_plan/api_logging_service/README.md b/docs/test_plan/api_logging_service/README.md
new file mode 100644
index 0000000..913a652
--- /dev/null
+++ b/docs/test_plan/api_logging_service/README.md
@@ -0,0 +1,241 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Logging Service](#test-plan-for-capif-api-logging-service)
+- [Tests](#tests)
+  - [Test Case 1: Creates a new individual CAPIF Log Entry.](#test-case-1-creates-a-new-individual-capif-log-entry)
+  - [Test Case 2: Creates a new individual CAPIF Log Entry with Invalid aefID](#test-case-2-creates-a-new-individual-capif-log-entry-with-invalid-aefid)
+  - [Test Case 3: Creates a new individual CAPIF Log Entry with Invalid serviceAPI](#test-case-3-creates-a-new-individual-capif-log-entry-with-invalid-serviceapi)
+  - [Test Case 4: Creates a new individual CAPIF Log Entry with Invalid apiInvokerId](#test-case-4-creates-a-new-individual-capif-log-entry-with-invalid-apiinvokerid)
+
+  - [Test Case 5: Creates a new individual CAPIF Log Entry with differnted aef_id in body and request](#test-case-5-creates-a-new-individual-capif-log-entry-with-invalid-aefid-in-body)
+
+
+# Test Plan for CAPIF Api Logging Service
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Creates a new individual CAPIF Log Entry.
+* Test ID: ***capif_api_logging-1***
+* Description:
+
+  This test case will check that a CAPIF AEF can create log entry to Logging Service
+* Pre-Conditions:
+  
+  *  CAPIF provider is pre-authorised (has valid aefId from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding] and [invoker onboarding]
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Log Entry:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     2. body [log entry request body]
+     3. Use AEF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **InvocationLog** data structure with:
+        * aefId
+        * apiInvokerId
+        * logs
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invocation-logs/v1/{aefId}/logs/{logId}*
+
+
+
+
+## Test Case 2:  Creates a new individual CAPIF Log Entry with Invalid aefId
+* Test ID: ***capif_api_logging-2***
+* Description:
+
+  This test case will check that a CAPIF subscriber (AEF) cannot create Log Entry without valid aefId
+* Pre-Conditions:
+
+  * CAPIF provider is not pre-authorised (has not valid aefId from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding] and [invoker onboarding]
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Log Entry:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{not-valid-aefId}/logs*
+     2. body [log entry request body]
+     3. Use AEF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+   
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Exposer not exist".
+        * cause with message "Exposer id not found".
+
+## Test Case 3:  Creates a new individual CAPIF Log Entry with Invalid serviceAPI
+* Test ID: ***capif_api_logging-3***
+* Description:
+
+  This test case will check that a CAPIF subscriber (AEF) cannot create Log Entry without valid aefId
+* Pre-Conditions:
+  
+  * CAPIF subscriber is pre-authorised (has valid aefId from CAPIF Authority)
+
+* Information of Test:
+
+  1. Perform [provider onboarding] and [invoker onboarding]
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Log Entry:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     2. body [log entry request body with serviceAPI apiName apiId not valid]
+     3. Use AEF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Invoker not exist".
+        * cause with message "Invoker id not found".
+
+
+
+## Test Case 4:  Creates a new individual CAPIF Log Entry with Invalid apiInvokerId
+* Test ID: ***capif_api_logging-4***
+* Description:
+
+  This test case will check that a CAPIF subscriber (AEF) cannot create Log Entry without valid aefId
+* Pre-Conditions:
+  
+  * CAPIF subscriber is pre-authorised (has valid aefId from CAPIF Authority)
+
+* Information of Test:
+
+  1. Perform [provider onboarding] and [invoker onboarding]
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Log Entry:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     2. body [log entry request body with invokerId not valid]
+     3. Use AEF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+   
+* Expected Result:
+
+  1. Response to Onboard request must accomplish:
+     1. **201 Created** response.
+     2. body returned must accomplish **APIProviderEnrolmentDetails** data structure.
+     3. For each **apiProvFuncs**, we must check:
+        1. **apiProvFuncId** is set
+        2. **apiProvCert** under **regInfo** is set properly
+     5. Location Header must contain the new resource URL *{apiRoot}/api-provider-management/v1/registrations/{registrationId}*
+
+  2. Response to Logging Service must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Invoker not exist".
+        * cause with message "Invoker id not found".
+
+  3. Log Entry are not stored in CAPIF Database
+
+
+## Test Case 5:  Creates a new individual CAPIF Log Entry with Invalid aefId in body
+* Test ID: ***capif_api_logging-5***
+* Description:
+
+  This test case will check that a CAPIF subscriber (AEF) cannot create Log Entry without valid aefId in body
+* Pre-Conditions:
+
+  *  CAPIF provider is pre-authorised (has valid apfId from CAPIF Authority)
+  *  Service exist in CAPIF
+  *  Invoker exist in CAPIF
+
+* Information of Test:
+
+  1. Perform [provider onboarding] and [invoker onboarding]
+
+  2. Publish Service API at CCF:
+    - Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+    - body [service api description] with apiName service_1
+    - Use APF Certificate
+
+  3. Log Entry:
+     1. Send POST to *https://{CAPIF_HOSTNAME}/api-invocation-logs/v1/{aefId}/logs*
+     2. body [log entry request body with bad aefId] 
+     3. Use AEF Certificate
+
+* Execution Steps:
+  1. Register Provider and Invoker CCF
+  2. Publish Service
+  3. Create Log Entry
+  
+* Expected Result:
+
+  1. Response to Logging Service must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 401
+        * title with message "Unauthorized"
+        * detail with message "AEF id not matching in request and body".
+        * cause with message "Not identical AEF id".
+
+
+
+
+
+
+[log entry request body]: ./invocation_log.json "Log Request Body"
+
+[invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+
+[provider onboarding]: ../common_operations/README.md#register-a-provider "Provider Onboarding"
+
+[Return To All Test Plans]: ../README.md
diff --git a/docs/test_plan/api_logging_service/invocation_log.json b/docs/test_plan/api_logging_service/invocation_log.json
new file mode 100644
index 0000000..ceabcf0
--- /dev/null
+++ b/docs/test_plan/api_logging_service/invocation_log.json
@@ -0,0 +1,45 @@
+{
+    "aefId": "aefId",
+    "apiInvokerId": "apiInvokerId",
+    "logs": [
+      {
+        "apiId": "apiId",
+        "apiName": "apiName",
+        "apiVersion": "string",
+        "resourceName": "string",
+        "uri": "string",
+        "protocol": "HTTP_1_1",
+        "operation": "GET",
+        "result": "string",
+        "invocationTime": "2023-03-30T10:30:21.404Z",
+        "invocationLatency": 0,
+        "inputParameters": "string",
+        "outputParameters": "string",
+        "srcInterface": {
+          "ipv4Addr": "string",
+          "ipv6Addr": "string",
+          "fqdn": "string",
+          "port": 65535,
+          "apiPrefix": "string",
+          "securityMethods": [
+            "PSK",
+            "Oauth"
+          ]
+        },
+        "destInterface": {
+          "ipv4Addr": "string",
+          "ipv6Addr": "string",
+          "fqdn": "string",
+          "port": 65535,
+          "apiPrefix": "string",
+          "securityMethods": [
+            "PSK",
+            "string"
+          ]
+        },
+        "fwdInterface": "string"
+      }
+    ],
+    "supportedFeatures": "string"
+  }
+  
\ No newline at end of file
diff --git a/docs/test_plan/api_provider_management/README.md b/docs/test_plan/api_provider_management/README.md
new file mode 100644
index 0000000..547d654
--- /dev/null
+++ b/docs/test_plan/api_provider_management/README.md
@@ -0,0 +1,398 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Provider Management](#test-plan-for-capif-api-provider-management)
+- [Tests](#tests)
+  - [Test Case 1: Register Api Provider](#test-case-1-register-api-provider)
+  - [Test Case 2: Register Api Provider Already registered](#test-case-2-register-api-provider-already-registered)
+  - [Test Case 3: Update Registered Api Provider](#test-case-3-update-registered-api-provider)
+  - [Test Case 4: Update Not Registered Api Provider](#test-case-4-update-not-registered-api-provider)
+  - [Test Case 5: Partially Update Registered Api Provider](#test-case-5-partially-update-registered-api-provider)
+  - [Test Case 6: Partially Update Not Registered Api Provider](#test-case-6-partially-update-not-registered-api-provider)
+  - [Test Case 7: Delete Registered Api Provider](#test-case-7-delete-registered-api-provider)
+  - [Test Case 8: Delete Not Registered Api Provider](#test-case-8-delete-not-registered-api-provider)
+
+
+# Test Plan for CAPIF Api Provider Management
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Register Api Provider
+* **Test ID**: ***capif_api_provider_management-1***
+* **Description**:
+  
+  This test case will check that Api Provider can be registered con CCF
+* **Pre-Conditions**:
+  
+  * Provider is pre-authorised (has valid certificate from CAPIF Authority)
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+* **Execution Steps**:
+  
+  1. Create private and public key for provider and each function to register.
+  2. Register Provider.
+   
+* **Expected Result**:
+
+  1. Register Provider at Provider Management:
+     1. **201 Created** response.
+     2. body returned must accomplish **APIProviderEnrolmentDetails** data structure.
+     3. For each **apiProvFuncs**, we must check:
+        1. **apiProvFuncId** is set
+        2. **apiProvCert** under **regInfo** is set properly
+     5. Location Header must contain the new resource URL *{apiRoot}/api-provider-management/v1/registrations/{registrationId}*
+
+## Test Case 2: Register Api Provider Already registered
+* **Test ID**: ***capif_api_provider_management-2***
+* **Description**:
+  
+  This test case will check that a Api Provider previously registered cannot be re-registered
+* **Pre-Conditions**:
+  
+  * Api Provider was registered previously and there is a {registerId} for his Api Provider in the DB
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+  5. Re-Register Provider:
+     * Same regSec than Previous registration
+
+* **Execution Steps**:
+  
+  1. Create private and public key for provider and each function to register.
+  2. Register Provider.
+  3. Re-Register Provider.
+   
+* **Expected Result**:
+
+  1. Re-Register Provider:
+     1. **403 Forbidden** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status 403
+        * title with message "Forbidden"
+        * detail with message "Provider already registered".
+        * cause with message "Identical provider reg sec".
+
+## Test Case 3: Update Registered Api Provider  
+* **Test ID**: ***capif_api_provider_management-3***
+* **Description**:
+  
+  This test case will check that a Registered Api Provider can be updated
+* **Pre-Conditions**:
+  
+  * Api Provider was registered previously and there is a {registerId} for his Api Provider in the DB
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Get Resource URL from Location
+
+  5. Update Provider:
+     * Send PUT to Resource URL returned at registration *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations/{registrationId}*
+     * body [provider request body] with apiProvDomInfo set to ROBOT_TESTING_MOD
+     * Use AMF Certificate.
+
+
+* **Execution Steps**:
+  
+  1. Create private and public key for provider and each function to register.
+  2. Register Provider
+  3. Update Provider
+   
+* **Expected Result**:
+  1. Register Provider:
+     1. **201 Created** response.
+     2. body returned must accomplish **APIProviderEnrolmentDetails** data structure.
+     3. Location Header must contain the new resource URL *{apiRoot}/api-provider-management/v1/registrations/{registrationId}*
+
+
+  2. Update Provider:
+     1. **200 OK** response.
+     2. body returned must accomplish **APIProviderEnrolmentDetails** data structure, with:
+        * apiProvDomInfo set to ROBOT_TESTING_MOD
+
+
+## Test Case 4: Update Not Registered Api Provider 
+* **Test ID**: ***capif_api_provider_management-4***
+* **Description**:
+  
+  This test case will check that a Non-Registered Api Provider cannot be updated
+* **Pre-Conditions**:
+  
+  * Api Provider was not registered previously
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+  5. Update Not Registered Provider:
+     * Send PUT *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations/{API_PROVIDER_NOT_REGISTERED}*
+     * body [provider request body]
+     * Use AMF Certificate.
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  3. Update Not Registered Provider
+   
+* **Expected Result**:
+
+  1. Update Not Registered Provider:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Not Exist Provider Enrolment Details".
+        * cause with message "Not found registrations to send this api provider details".
+
+## Test Case 5: Partially Update Registered Api Provider  
+* **Test ID**: ***capif_api_provider_management-5***
+* **Description**:
+  
+  This test case will check that a Registered Api Provider can be partially updated
+* **Pre-Conditions**:
+  
+  * Api Provider was registered previously and there is a {registerId} for his Api Provider in the DB
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+  5. Partial update provider:
+     * Send PATCH *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations/{registrationId}*
+     * body [provider request patch body]
+     * Use AMF Certificate.
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Register Provider
+  3. Partial update provider
+   
+* **Expected Result**:
+
+  1. Partial update provider at Provider Management:
+     1. **200 OK** response.
+     2. body returned must accomplish **APIProviderEnrolmentDetails** data structure, with:
+        * apiProvDomInfo with "ROBOT_TESTING_MOD"
+
+## Test Case 6: Partially Update Not Registered Api Provider 
+* **Test ID**: ***capif_api_provider_management-6***
+* **Description**:
+  
+  This test case will check that a Non-Registered Api Provider cannot be partially updated  
+
+* **Pre-Conditions**:
+  
+  * Api Provider was not registered previously
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+  5. Partial update Provider:
+     * Send PATCH *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations/{API_API_PROVIDER_NOT_REGISTERED}*
+     * body [provider request patch body]
+     * Use AMF Certificate.
+  
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Register Provider
+  3. Partial update provider
+   
+* **Expected Result**:
+
+  1. Partial update provider:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Not Exist Provider Enrolment Details".
+        * cause with message "Not found registrations to send this api provider details".
+
+## Test Case 7: Delete Registered Api Provider   
+* **Test ID**: ***capif_api_provider_management-7***
+* **Description**:
+  
+  This test case will check that a Registered Api Provider can be deleted
+* **Pre-Conditions**:
+  
+  * Api Provider was registered previously
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+  5. Delete registered provider:
+     * Send DELETE *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations/{registrationId}*
+     * Use AMF Certificate.
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Register Provider
+  3. Delete Provider
+   
+* **Expected Result**:
+
+  1. Delete Provider:
+     1. **204 No Content** response.
+
+## Test Case 8: Delete Not Registered Api Provider
+* **Test ID**: ***capif_api_provider_management-8***
+* **Description**:
+  
+  This test case will check that a Non-Registered Api Provider cannot be deleted
+* **Pre-Conditions**:
+  
+  * Api Provider was not registered previously
+
+* **Information of Test**:
+
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+  
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Authentication Bearer with access_token
+     * Store each cert in a file with according name.
+
+  5. Delete registered provider at Provider Management:
+     * Send DELETE *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations/{API_PROVIDER_NOT_REGISTERED}*
+     * Use AMF Certificate.
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Delete Provider
+   
+* **Expected Result**:
+
+  1. Delete Provider:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Not Exist Provider Enrolment Details".
+        * cause with message "Not found registrations to send this api provider details".
+
+[provider register body]: ./provider_details_post_example.json  "API Provider Enrolment Request"
+
+[provider request body]: ./provider_details_post_example.json  "API Provider Enrolment Request"
+
+[provider request patch body]: ./provider_details_enrolment_details_patch_example.json  "API Provider Enrolment Patch Request"
+
+[provider getauth body]: ./provider_getauth_example.json    "Get Auth Example"
+
+[Return To All Test Plans]: ../README.md
diff --git a/docs/test_plan/api_provider_management/provider_details_enrolment_details_patch_example.json b/docs/test_plan/api_provider_management/provider_details_enrolment_details_patch_example.json
new file mode 100644
index 0000000..4dac4f4
--- /dev/null
+++ b/docs/test_plan/api_provider_management/provider_details_enrolment_details_patch_example.json
@@ -0,0 +1,29 @@
+{
+  "regSec": "<public provider key>",
+  "apiProvFuncs": [
+    {
+      "regInfo": {
+        "apiProvPubKey": "<public provider apf key>"
+      },
+      "apiProvFuncRole": "APF",
+      "apiProvFuncInfo": "APF_ROBOT_TESTING_PROVIDER"
+    },
+    {
+      "regInfo": {
+        "apiProvPubKey": "<public provider aef key>"
+      },
+      "apiProvFuncRole": "AEF",
+      "apiProvFuncInfo": "AEF_ROBOT_TESTING_PROVIDER"
+    },
+    {
+      "regInfo": {
+        "apiProvPubKey": "<public provider amf key>"
+      },
+      "apiProvFuncRole": "AMF",
+      "apiProvFuncInfo": "AMF_ROBOT_TESTING_PROVIDER"
+    }
+  ],
+  "apiProvDomInfo": "ROBOT_TESTING",
+  "suppFeat": "string",
+  "failReason": "string"
+}
\ No newline at end of file
diff --git a/docs/test_plan/api_provider_management/provider_details_post_example.json b/docs/test_plan/api_provider_management/provider_details_post_example.json
new file mode 100644
index 0000000..48e91ba
--- /dev/null
+++ b/docs/test_plan/api_provider_management/provider_details_post_example.json
@@ -0,0 +1,17 @@
+{
+  "regSec": "string",
+  "apiProvFuncs": [
+    {
+      "apiProvFuncId": "string",
+      "regInfo": {
+        "apiProvPubKey": "string",
+        "apiProvCert": "string"
+      },
+      "apiProvFuncRole": "AEF",
+      "apiProvFuncInfo": "string"
+    }
+  ],
+  "apiProvDomInfo": "string",
+  "suppFeat": "string",
+  "failReason": "string"
+}
\ No newline at end of file
diff --git a/docs/test_plan/api_provider_management/provider_getauth_example.json b/docs/test_plan/api_provider_management/provider_getauth_example.json
new file mode 100644
index 0000000..8fc82ae
--- /dev/null
+++ b/docs/test_plan/api_provider_management/provider_getauth_example.json
@@ -0,0 +1,4 @@
+{
+  "username": "ROBOT_TESTING_PROVIDER",
+  "password": "password"
+}
diff --git a/docs/test_plan/api_provider_management/provider_register_body.json b/docs/test_plan/api_provider_management/provider_register_body.json
new file mode 100644
index 0000000..fc26db2
--- /dev/null
+++ b/docs/test_plan/api_provider_management/provider_register_body.json
@@ -0,0 +1,7 @@
+{
+  "password": "password",
+  "username": "ROBOT_TESTING_PUBLISHER",
+  "role": "provider",
+  "description": "Testing",
+  "cn": "ROBOT_TESTING_PUBLISHER"
+}
diff --git a/docs/test_plan/api_publish_service/README.md b/docs/test_plan/api_publish_service/README.md
new file mode 100644
index 0000000..8487f5d
--- /dev/null
+++ b/docs/test_plan/api_publish_service/README.md
@@ -0,0 +1,599 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Publish Service](#test-plan-for-capif-api-publish-service)
+- [Tests](#tests)
+  - [Test Case 1: Publish API by Authorised API Publisher](#test-case-1-publish-api-by-authorised-api-publisher)
+  - [Test Case 2: Publish API by NON Authorised API Publisher](#test-case-2-publish-api-by-non-authorised-api-publisher)
+  - [Test Case 3: Retrieve all APIs Published by Authorised apfId](#test-case-3-retrieve-all-apis-published-by-authorised-apfid)
+  - [Test Case 4: Retrieve all APIs Published by NON Authorised apfId](#test-case-4-retrieve-all-apis-published-by-non-authorised-apfid)
+  - [Test Case 5: Retrieve single APIs Published by Authorised apfId](#test-case-5-retrieve-single-apis-published-by-authorised-apfid)
+  - [Test Case 6: Retrieve single APIs non Published by Authorised apfId](#test-case-6-retrieve-single-apis-non-published-by-authorised-apfid)
+  - [Test Case 7: Retrieve single APIs Published by NON Authorised apfId](#test-case-7-retrieve-single-apis-published-by-non-authorised-apfid)
+  - [Test Case 8: Update API Published by Authorised apfId with valid serviceApiId](#test-case-8-update-api-published-by-authorised-apfid-with-valid-serviceapiid)
+  - [Test Case 9: Update APIs Published by Authorised apfId with invalid serviceApiId](#test-case-9-update-apis-published-by-authorised-apfid-with-invalid-serviceapiid)
+  - [Test Case 10: Update APIs Published by NON Authorised apfId](#test-case-10-update-apis-published-by-non-authorised-apfid)
+  - [Test Case 11: Delete API Published by Authorised apfId with valid serviceApiId](#test-case-11-delete-api-published-by-authorised-apfid-with-valid-serviceapiid)
+  - [Test Case 12: Delete APIs Published by Authorised apfId with invalid serviceApiId](#test-case-12-delete-apis-published-by-authorised-apfid-with-invalid-serviceapiid)
+  - [Test Case 13: Delete APIs Published by NON Authorised apfId](#test-case-13-delete-apis-published-by-non-authorised-apfid)
+
+
+# Test Plan for CAPIF Api Publish Service
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Publish API by Authorised API Publisher
+* **Test ID**: ***capif_api_publish_service-1***
+* **Description**:
+  
+  This test case will check that an API Publisher can Publish an API 
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API
+  3. Retrieve {apiId} from body and Location header with new resource created from response
+   
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Published Service API is stored in CAPIF Database
+
+## Test Case 2: Publish API by NON Authorised API Publisher
+* **Test ID**: ***capif_api_publish_service-2***
+* **Description**:
+  
+  This test case will check that an API Publisher cannot Publish an API withot valid apfId 
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is NOT pre-authorised (has invalid apfId from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API with invalid APF ID at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{APF_ID_NOT_VALID}/service-apis*
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API with invalid APF ID
+
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Publisher not existing".
+        * cause with message "Publisher id not found".
+
+  2. Service API is NOT stored in CAPIF Database
+
+
+## Test Case 3: Retrieve all APIs Published by Authorised apfId 
+* **Test ID**: ***capif_api_publish_service-3***
+* **Description**:
+
+  This test case will check that an API Publisher can Retrieve all API published
+* **Pre-Conditions**:
+
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority)
+  * At least 2 service APIs are published.
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Publish Other Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_2
+     * Get apiId
+     * Use APF Certificate
+
+  4. Retrieve all published APIs:
+     * Send Get to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API service_1
+  3. Retrieve {apiId1} from body and Location header with new resource created from response
+  4. Publish Service API service_2
+  5. Retrieve {apiId2} from body and Location header with new resource created from response
+  6. Retrieve All published APIs and check if both are present.
+
+* **Expected Result**:
+  1. Response to service 1 Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId1}*
+
+  2. Response to service 2 Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId2}*
+
+  3. Published Service APIs are stored in CAPIF Database
+
+  4. Response to Retrieve all published APIs:
+     1. **200 OK**
+     2. Response body must return an array of **ServiceAPIDescription** data.
+     3. Array must contain all previously published APIs.
+
+## Test Case 4: Retrieve all APIs Published by NON Authorised apfId 
+* **Test ID**: ***capif_api_publish_service-4***
+* **Description**:
+
+  This test case will check that an API Publisher cannot Retrieve API published when apfId is not authorised 
+* **Pre-Conditions**:
+
+  * CAPIF subscriber is NOT pre-authorised (has invalid apfId from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Retrieve all published APIs:
+     * Send Get to *https://{CAPIF_HOSTNAME}/published-apis/v1/{APF_ID_NOT_VALID}/service-apis*
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Retrieve All published APIs
+   
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **401 Non Authorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Provider not existing".
+        * cause with message "Provider id not found".
+
+  2. Service API is NOT stored in CAPIF Database
+
+## Test Case 5: Retrieve single APIs Published by Authorised apfId
+* **Test ID**: ***capif_api_publish_service-5***
+* **Description**:
+  
+  This test case will check that an API Publisher can Retrieve API published one by one
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority)
+  * At least 2 service APIs are published.
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Publish Other Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_2
+     * Get apiId
+     * Use APF Certificate
+
+  4. Retrieve service_1 published APIs detail:
+     * Send Get to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{apiId1}*
+     * Use APF Certificate
+
+  5. Retrieve service_2 published APIs detail:
+     * Send Get to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{apiId2}*
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API service_1.
+  3. Retrieve {apiId1} from body and Location header with new resource created from response.
+  4. Publish Service API service_2.
+  5. Retrieve {apiId2} from body and Location header with new resource created from response.
+  6. Retrieve service_1 API Detail.
+  7. Retrieve service_2 API Detail.
+
+* **Expected Result**:
+  1. Response to service 1 Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId1}*
+
+  2. Response to service 2 Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId2}*
+
+  3. Published Service APIs are stored in CAPIF Database
+
+  4. Response to Retrieve service_1 published API using apiId1:
+     1. **200 OK**
+     2. Response body must return a **ServiceAPIDescription** data.
+     3. Array must contain same information than service_1 published registration response.
+
+  5. Response to Retrieve service_2 published API using apiId2:
+     1. **200 OK**
+     2. Response body must return a **ServiceAPIDescription** data.
+     3. Array must contain same information than service_2 published registration response.
+
+
+## Test Case 6: Retrieve single APIs non Published by Authorised apfId 
+* **Test ID**: ***capif_api_publish_service-6***
+* **Description**:
+  
+  This test case will check that an API Publisher try to get detail of not published api.
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority)
+  * No published api
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+  2. Retrieve not published APIs detail:
+     * Send Get to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{SERVICE_API_ID_NOT_VALID}*
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Retrieve not published API Detail.
+
+* **Expected Result**:
+  1. Response to Retrieve for NOT published API must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Service API not found".
+        * cause with message "No Service with specific credentials exists".
+
+
+## Test Case 7: Retrieve single APIs Published by NON Authorised apfId 
+* **Test ID**: ***capif_api_publish_service-7***
+* **Description**:
+  
+  This test case will check that an API Publisher cannot Retrieve detailed API published when apfId is not authorised 
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is NOT pre-authorised (has invalid apfId from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Retrieve detailed published APIs:
+     * Send Get to *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/${apiId}*
+     * Use Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API at CCF
+  3. Retrieve {apiId} from body and Location header with new resource created from response.
+  4. Register and onboard Invoker at CCF
+  5. Store signed Invoker Certificate
+  6. Retrieve detailed published API acting as Invoker
+   
+* **Expected Result**:
+  1. Response to Retrieve Detailed published API acting as Invoker must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "User not authorized".
+        * cause with message "Certificate not authorized".
+
+  2. Service API is NOT stored in CAPIF Database
+
+
+## Test Case 8: Update API Published by Authorised apfId with valid serviceApiId
+* **Test ID**: ***capif_api_publish_service-8***
+* **Description**:
+  
+  This test case will check that an API Publisher can Update published API with a valid serviceApiId 
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority)
+  * A service APIs is published.
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * get resource url from location Header.
+     * Use APF Certificate
+
+  3. Update published API at CCF:
+     * Send PUT to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{serivceApiId}*
+     * body [service api description] with overrided apiName to service_1_modified
+     * Use APF Certificate
+
+  4. Retrieve detail of service API:
+     * Send Get to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{serivceApiId}*
+     * check apiName is service_1_modified
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API
+  3. Retrieve {apiId} from body and Location header with new resource url created from response
+  4. Update published Service API.
+  5. Retrieve detail of Service API
+   
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Response to Update Published Service API:
+     1. **200 OK**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiName service_1_modified
+
+  3. Response to Retrieve detail of Service API:
+     1. **200 OK**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiName service_1_modified.
+  
+
+## Test Case 9: Update APIs Published by Authorised apfId with invalid serviceApiId  
+* **Test ID**: ***capif_api_publish_service-9***
+* **Description**:
+  
+  This test case will check that an API Publisher cannot Update published API with a invalid serviceApiId
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Update published API at CCF:
+     * Send PUT to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{SERVICE_API_ID_NOT_VALID}*
+     * body [service api description] with overrided apiName to ***service_1_modified***
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Update published Service API.
+   
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Response to Update Published Service API:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Service API not found".
+        * cause with message "Service API id not found".
+
+  ## Test Case 10: Update APIs Published by NON Authorised apfId  
+* **Test ID**: ***capif_api_publish_service-10***
+* **Description**:
+  
+  This test case will check that an API Publisher cannot Update API published when apfId is not authorised
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is NOT pre-authorised (has invalid apfId from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Update published API at CCF:
+     * Send PUT to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+     * body [service api description] with overrided apiName to ***service_1_modified***
+     * Use invoker certificate
+
+  4.  Retrieve detail of service API:
+     * Send Get to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{serivceApiId}*
+     * check apiName is service_1
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API at CCF
+  3. Retrieve {apiId} from body and Location header with new resource created from response.
+  4. Register and onboard Invoker at CCF
+  5. Store signed Invoker Certificate
+  6. Update published API at CCF as Invoker
+  7. Retrieve detail of Service API as publisher
+   
+* **Expected Result**:
+  1. Response to Update published API acting as Invoker must accomplish:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "User not authorized".
+        * cause with message "Certificate not authorized".
+
+  2. Response to Retrieve Detail of Service API:
+     1. **200 OK**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiName service_1.
+
+
+## Test Case 11: Delete API Published by Authorised apfId with valid serviceApiId
+* **Test ID**: ***capif_api_publish_service-11***
+* **Description**:
+  
+  This test case will check that an API Publisher can Delete published API with a valid serviceApiId
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority).
+  * A service APIs is published.
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Remove published Service API at CCF:
+     * Send DELETE to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+     * Use APF Certificate
+  4. Retrieve detail of service API:
+     * Send Get to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{serivceApiId}*
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Publish Service API
+  3. Retrieve {apiId} from body and Location header with new resource created from response
+  4. Remove published API at CCF
+  5. Try to retreive deleted service API from CCF
+   
+* **Expected Result**:
+  1. Response to Publish request must accomplish:
+     1. **201 Created**
+     2. Response Body must follow **ServiceAPIDescription** data structure with:
+        * apiId
+     3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}*
+
+  2. Published Service API is stored in CAPIF Database
+
+  3. Response to Remove published Service API at CCF:
+     1. **204 No Content**
+
+  4. Response to Retrieve for DELETED published API must accomplish:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Service API not found".
+        * cause with message "No Service with specific credentials exists".
+
+
+## Test Case 12: Delete APIs Published by Authorised apfId with invalid serviceApiId
+* **Test ID**: ***capif_api_publish_service-12***
+* **Description**:
+  
+  This test case will check that an API Publisher cannot Delete with invalid serviceApiId
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority).
+
+* **Information of Test**:
+  1. Perform [Provider Registration]
+
+  2. Remove published Service API at CCF with invalid serviceId:
+     * Send DELETE to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{SERVICE_API_ID_NOT_VALID}*
+     * Use APF Certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Remove published API at CCF with invalid serviceId
+   
+* **Expected Result**:
+  1. Response to Remove published Service API at CCF:
+     1. **404 Not Found**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status 404
+        * title with message "Not Found"
+        * detail with message "Service API not found".
+        * cause with message "Service API id not found".
+
+
+## Test Case 13: Delete APIs Published by NON Authorised apfId
+* **Test ID**: ***capif_api_publish_service-12***
+* **Description**:
+  
+  This test case will check that an API Publisher cannot Delete API published when apfId is not authorised
+* **Pre-Conditions**:
+  
+  * CAPIF subscriber is pre-authorised (has valid apfId from CAPIF Authority).
+
+* **Information of Test**:
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis*
+     * body [service api description] with apiName service_1
+     * Get apiId
+     * Use APF Certificate
+
+  3. Remove published Service API at CCF with invalid serviceId as Invoker:
+     * Send DELETE to resource URL *https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis/{SERVICE_API_ID_NOT_VALID}*
+     * Use invoker certificate.
+
+* **Execution Steps**:
+  1. Register Provider at CCF and store certificates.
+  2. Register Invoker and onboard Invoker at CCF
+  3. Remove published API at CCF with invalid serviceId as Invoker
+   
+* **Expected Result**:
+  1. Response to Remove published Service API at CCF:
+     1. **401 Unauthorized**
+     2. Error Response Body must accomplish with **ProblemDetails** data structure with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "User not authorized".
+        * cause with message "Certificate not authorized".
+
+
+   [service api description]: ./service_api_description_post_example.json  "Service API Description Request"
+   [publisher register body]: ./publisher_register_body.json  "Publish register Body"
+   [invoker onboarding body]: ../api_invoker_management/invoker_details_post_example.json  "API Invoker Request"
+   [invoker register body]: ../api_invoker_management/invoker_register_body.json  "Invoker Register Body"
+   [provider request body]: ../api_provider_management/provider_details_post_example.json  "API Provider Enrolment Request"
+   [provider request patch body]: ../api_provider_management/provider_details_enrolment_details_patch_example.json  "API Provider Enrolment Patch Request"
+   [provider getauth body]: ../api_provider_management/provider_getauth_example.json    "Get Auth Example"
+
+   [invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+   [provider registration]: ../common_operations/README.md#register-a-provider "Provider Registration"
+
+
+  [Return To All Test Plans]: ../README.md
\ No newline at end of file
diff --git a/docs/test_plan/api_publish_service/publisher_register_body.json b/docs/test_plan/api_publish_service/publisher_register_body.json
new file mode 100644
index 0000000..fc26db2
--- /dev/null
+++ b/docs/test_plan/api_publish_service/publisher_register_body.json
@@ -0,0 +1,7 @@
+{
+  "password": "password",
+  "username": "ROBOT_TESTING_PUBLISHER",
+  "role": "provider",
+  "description": "Testing",
+  "cn": "ROBOT_TESTING_PUBLISHER"
+}
diff --git a/docs/test_plan/api_publish_service/service_api_description_post_example.json b/docs/test_plan/api_publish_service/service_api_description_post_example.json
new file mode 100644
index 0000000..b725b42
--- /dev/null
+++ b/docs/test_plan/api_publish_service/service_api_description_post_example.json
@@ -0,0 +1,113 @@
+{
+  "apiName": "service_1",
+  "aefProfiles": [
+    {
+      "aefId": "string",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    },
+    {
+      "aefId": "string",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    }
+  ],
+  "description": "string",
+  "supportedFeatures": "fffff",
+  "shareableInfo": {
+    "isShareable": true,
+    "capifProvDoms": [
+      "string"
+    ]
+  },
+  "serviceAPICategory": "string",
+  "apiSuppFeats": "fffff",
+  "pubApiPath": {
+    "ccfIds": [
+      "string"
+    ]
+  },
+  "ccfId": "string"
+}
\ No newline at end of file
diff --git a/docs/test_plan/api_security_service/README.md b/docs/test_plan/api_security_service/README.md
new file mode 100644
index 0000000..c0d3e71
--- /dev/null
+++ b/docs/test_plan/api_security_service/README.md
@@ -0,0 +1,1244 @@
+[**[Return To All Test Plans]**]
+
+- [Test Plan for CAPIF Api Security Service](#test-plan-for-capif-api-security-service)
+- [Tests](#tests)
+  - [Test Case 1: Create a security context for an API invoker](#test-case-1-create-a-security-context-for-an-api-invoker)
+  - [Test Case 2: Create a security context for an API invoker with Provider role](#test-case-2-create-a-security-context-for-an-api-invoker-with-provider-role)
+  - [Test Case 3: Create a security context for an API invoker with Provider entity role and invalid apiInvokerId](#test-case-3-create-a-security-context-for-an-api-invoker-with-provider-entity-role-and-invalid-apiinvokerid)
+  - [Test Case 4: Create a security context for an API invoker with Invoker entity role and invalid apiInvokerId](#test-case-4-create-a-security-context-for-an-api-invoker-with-invoker-entity-role-and-invalid-apiinvokerid)
+  - [Test Case 5: Retrieve the Security Context of an API Invoker](#test-case-5-retrieve-the-security-context-of-an-api-invoker)
+  - [Test Case 6: Retrieve the Security Context of an API Invoker with invalid apiInvokerID](#test-case-6-retrieve-the-security-context-of-an-api-invoker-with-invalid-apiinvokerid)
+  - [Test Case 7: Retrieve the Security Context of an API Invoker with invalid apfId](#test-case-7-retrieve-the-security-context-of-an-api-invoker-with-invalid-apfid)
+  - [Test Case 8: Delete the Security Context of an API Invoker](#test-case-8-delete-the-security-context-of-an-api-invoker)
+  - [Test Case 9: Delete the Security Context of an API Invoker with Invoker entity role](#test-case-9-delete-the-security-context-of-an-api-invoker-with-invoker-entity-role)
+  - [Test Case 10: Delete the Security Context of an API Invoker with Invoker entity role and invalid apiInvokerID](#test-case-10-delete-the-security-context-of-an-api-invoker-with-invoker-entity-role-and-invalid-apiinvokerid)
+  - [Test Case 11: Delete the Security Context of an API Invoker with invalid apiInvokerID](#test-case-11-delete-the-security-context-of-an-api-invoker-with-invalid-apiinvokerid)
+  - [Test Case 12: Update the Security Context of an API Invoker](#test-case-12-update-the-security-context-of-an-api-invoker)
+  - [Test Case 13: Update the Security Context of an API Invoker with Provider entity role](#test-case-13-update-the-security-context-of-an-api-invoker-with-provider-entity-role)
+  - [Test Case 14: Update the Security Context of an API Invoker with AEF entity role and invalid apiInvokerId](#test-case-14-update-the-security-context-of-an-api-invoker-with-aef-entity-role-and-invalid-apiinvokerid)
+  - [Test Case 15: Update the Security Context of an API Invoker with invalid apiInvokerID](#test-case-15-update-the-security-context-of-an-api-invoker-with-invalid-apiinvokerid)
+  - [Test Case 16: Revoke the authorization of the API invoker for APIs.](#test-case-16-revoke-the-authorization-of-the-api-invoker-for-apis)
+  - [Test Case 17: Revoke the authorization of the API invoker for APIs without valid apfID.](#test-case-17-revoke-the-authorization-of-the-api-invoker-for-apis-without-valid-apfid)
+  - [Test Case 18: Revoke the authorization of the API invoker for APIs with invalid apiInvokerId.](#test-case-18-revoke-the-authorization-of-the-api-invoker-for-apis-with-invalid-apiinvokerid)
+  - [Test Case 19: Retrieve access token](#test-case-19-retrieve-access-token)
+  - [Test Case 20: Retrieve access token by Provider](#test-case-20-retrieve-access-token-by-provider)
+  - [Test Case 21: Retrieve access token by Provider with invalid apiInvokerId](#test-case-21-retrieve-access-token-by-provider-with-invalid-apiinvokerid)
+  - [Test Case 22: Retrieve access token with invalid apiInvokerId](#test-case-22-retrieve-access-token-with-invalid-apiinvokerid)
+  - [Test Case 23: Retrieve access token with invalid client\_id](#test-case-23-retrieve-access-token-with-invalid-client_id)
+  - [Test Case 24: Retrieve access token with unsupported grant\_type](#test-case-24-retrieve-access-token-with-unsupported-grant_type)
+  - [Test Case 25: Retrieve access token with invalid scope](#test-case-25-retrieve-access-token-with-invalid-scope)
+  - [Test Case 26: Retrieve access token with invalid aefid at scope](#test-case-26-retrieve-access-token-with-invalid-aefid-at-scope)
+  - [Test Case 27: Retrieve access token with invalid apiName at scope](#test-case-27-retrieve-access-token-with-invalid-apiname-at-scope)
+ 
+
+
+# Test Plan for CAPIF Api Security Service
+At this documentation you will have all information and related files and examples of test plan for this API.
+
+# Tests
+
+## Test Case 1: Create a security context for an API invoker
+* **Test ID**: ***capif_security_api-1***
+* **Description**:
+  
+  This test case will check that an API Invoker can create a Security context
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority)
+
+* **Information of Test**:
+  1. Perform [Invoker Onboarding]
+  2. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Store signed Certificate
+  3. Create Security Context
+   
+* **Expected Result**:
+
+  1. Create security context:
+     1. **201 Created** response.
+     2. body returned must accomplish **ServiceSecurity** data structure.
+     3. Location Header must contain the new resource URL *{apiRoot}/capif-security/v1/trustedInvokers/{apiInvokerId}*
+
+
+## Test Case 2: Create a security context for an API invoker with Provider role
+* **Test ID**: ***capif_security_api-2***
+* **Description**:
+  
+  This test case will check that an Provider cannot create a Security context with valid apiInvokerId.
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID), but user that create Security Context with Provider role
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker but using Provider certificate.
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using AEF certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context using Provider certificate
+   
+* **Expected Result**:
+
+  1. Create security context using Provider certificate:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be invoker".
+
+  2. No context stored at DB
+
+## Test Case 3: Create a security context for an API invoker with Provider entity role and invalid apiInvokerId
+* **Test ID**: ***capif_security_api-3***
+* **Description**:
+
+  This test case will check that an Provider cannot create a Security context with invalid apiInvokerID.
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID), but user that create Security Context with Provider role
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Create Security Context for this not valid apiInvokerId and using Provider certificate.
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}*
+     * body [service security body]
+     * Using AEF certificate
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Create Security Context using Provider certificate
+   
+* **Expected Result**:
+
+  1. Create security context using Provider certificate:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be invoker".
+  2. No context stored at DB
+
+## Test Case 4: Create a security context for an API invoker with Invoker entity role and invalid apiInvokerId
+* **Test ID**: ***capif_security_api-4***
+* **Description**:
+  
+  This test case will check that an Invoker cannot create a Security context with valid apiInvokerId.
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID), but user that create Security Context with invalid apiInvokerId
+
+* **Information of Test**:
+  1. Perform [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}*
+     * body [service security body]
+     * Use Invoker Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Create Security Context using Provider certificate
+   
+* **Expected Result**:
+
+  1. Create security context using Provider certificate:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Invoker not found".
+        * cause with message "API Invoker not exists or invalid ID".
+
+  2. No context stored at DB
+
+  
+## Test Case 5: Retrieve the Security Context of an API Invoker
+* **Test ID**: ***capif_security_api-5***
+* **Description**:
+  
+  This test case will check that an provider can retrieve the Security context of an API Invoker
+* **Pre-Conditions**:
+  
+  * Provider is pre-authorised (has valid apfId from CAPIF Authority) and API Invoker has created a valid Security Context
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker.
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker certificate
+
+  3. Retrieve Security Context of Invoker by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Using AEF Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context using Provider certificate
+  4. Retrieve Security Context by Provider
+   
+* **Expected Result**:
+  1. Retrieve security context:
+     1. **200 OK** response.
+     2. body returned must accomplish **ServiceSecurity** data structure.
+
+
+## Test Case 6: Retrieve the Security Context of an API Invoker with invalid apiInvokerID
+* **Test ID**: ***capif_security_api-6***
+* **Description**:
+  
+  This test case will check that an provider can retrieve the Security context of an API Invoker
+* **Pre-Conditions**:
+  
+  * Provider is pre-authorised (has valid apfId from CAPIF Authority) and API Invoker has created a valid Security Context
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Retrieve Security Context of invalid Invoker by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}*
+     * Using AEF Certificate.
+
+* **Execution Steps**:
+  
+  2. Register Provider at CCF
+  3. Create Security Context using Provider certificate
+  4. Retrieve Security Context by Provider of invalid invoker
+   
+* **Expected Result**:
+  1. Retrieve security context:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Invoker not found".
+        * cause with message "API Invoker not exists or invalid ID".
+
+
+## Test Case 7: Retrieve the Security Context of an API Invoker with invalid apfId
+* **Test ID**: ***capif_security_api-7***
+* **Description**:
+  
+  This test case will check that an Provider cannot retrieve the Security context of an API Invoker without valid apfId
+* **Pre-Conditions**:
+  
+  * API Exposure Function is not pre-authorised (has invalid apfId)
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate
+
+  3. Retrieve Security Context as Invoker role:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Using Invoker Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Store signed Certificate
+  3. Create Security Context
+  4. Retrieve Security Context as Provider.
+   
+* **Expected Result**:
+
+  1. Create security context:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be aef".
+
+
+## Test Case 8: Delete the Security Context of an API Invoker
+* **Test ID**: ***capif_security_api-8***
+* **Description**:
+  
+  This test case will check that an Provider can delete a Security context
+* **Pre-Conditions**:
+  
+  * Provider is pre-authorised (has valid apfId from CAPIF Authority) and API Invoker has created a valid Security Context
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker but using Provider certificate.
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using AEF certificate
+
+  3. Delete Security Context of Invoker by Provider:
+     * Send DELETE *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Use AEF certificate
+
+  4. Retrieve Security Context of Invoker by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Using AEF Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context using Provider certificate
+  4. Delete Security Context by Provider
+   
+* **Expected Result**:
+
+  1. Delete security context:
+     1. **204 No Content** response.
+
+  2. Retrieve security context:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Security context not found".
+        * cause with message "API Invoker not exists or invalid ID".
+
+
+## Test Case 9: Delete the Security Context of an API Invoker with Invoker entity role
+* **Test ID**: ***capif_security_api-9***
+* **Description**:
+  
+  This test case will check that an Invoker cannot delete a Security context
+* **Pre-Conditions**:
+  
+  * Provider is pre-authorised (has valid apfId from CAPIF Authority) and API Invoker has created a valid Security Context
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker certificate
+
+  3. Delete Security Context of Invoker:
+     * Send DELETE *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Use Invoker certificate
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Create Security Context using Provider certificate
+  3. Delete Security Context by Invoker
+   
+* **Expected Result**:
+
+  1. Delete security context:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be aef".
+
+
+## Test Case 10: Delete the Security Context of an API Invoker with Invoker entity role and invalid apiInvokerID
+* **Test ID**: ***capif_security_api-10***
+* **Description**:
+  
+  This test case will check that an Invoker cannot delete a Security context with invalid 
+* **Pre-Conditions**:
+  
+  * Invoker is pre-authorised.
+
+* **Information of Test**:
+
+  1. Perform [Invoker Onboarding]
+
+  2. Delete Security Context of Invoker:
+     * Send DELETE *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}*
+     * Use Invoker certificate
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Delete Security Context by invoker
+   
+* **Expected Result**:
+
+  1. Delete security context:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be aef".
+
+
+## Test Case 11: Delete the Security Context of an API Invoker with invalid apiInvokerID
+* **Test ID**: ***capif_security_api-11***
+* **Description**:
+  
+  This test case will check that an Provider cannot delete a Security context of invalid apiInvokerId
+* **Pre-Conditions**:
+  
+  * Provider is pre-authorised (has valid apfId from CAPIF Authority).
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+
+  2. Delete Security Context of Invoker by Provider:
+     * Send DELETE *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}*
+     * Use AEF certificate
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Delete Security Context by provider
+   
+* **Expected Result**:
+
+  1. Retrieve security context:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Invoker not found".
+        * cause with message "API Invoker not exists or invalid ID".
+
+
+## Test Case 12: Update the Security Context of an API Invoker 
+* **Test ID**: ***capif_security_api-12***
+* **Description**:
+  
+  This test case will check that an API Invoker can update a Security context
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+ 
+  3. Update Security Context of Invoker:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}/update*
+     * body [service security body] but with notification destination modified to http://robot.testing2
+     * Using Invoker Certificate.
+
+  4. Retrieve Security Context of Invoker by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Using AEF Certificate.
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context By Invoker
+  4. Update Security Context By Invoker
+  5. Retrieve Security Context By Provider
+   
+* **Expected Result**:
+
+  1. Update security context:
+     1. **200 OK** response.
+     2. body returned must accomplish **ServiceSecurity** data structure.
+ 
+  2. Retrieve security context:
+     1. **200 OK** response.
+     2. body returned must accomplish **ServiceSecurity** data structure.
+        1. Check is this returned object match with modified one.
+
+
+## Test Case 13: Update the Security Context of an API Invoker with Provider entity role
+* **Test ID**: ***capif_security_api-13***
+* **Description**:
+  
+  This test case will check that an Provider cannot update a Security context
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized.
+  * Invoker has created the Security Context previously.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+ 
+  3. Update Security Context of Invoker by Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}/update*
+     * body [service security body] but with notification destination modified to http://robot.testing2
+     * Using AEF Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context
+  4. Update Security Context as Provider
+   
+* **Expected Result**:
+
+  1. Update security context:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be invoker". 
+
+
+## Test Case 14: Update the Security Context of an API Invoker with AEF entity role and invalid apiInvokerId
+* **Test ID**: ***capif_security_api-14***
+* **Description**:
+  
+  This test case will check that an Provider cannot update a Security context of invalid apiInvokerId
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized.
+  * Invoker has created the Security Context previously.
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration]
+ 
+  4. Update Security Context of Invoker by Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}/update*
+     * body [service security body]
+     * Using AEF Certificate
+
+* **Execution Steps**:
+  
+  1. Register Provider at CCF
+  2. Update Security Context as Provider
+   
+* **Expected Result**:
+
+  1. Update security context:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be invoker". 
+
+
+## Test Case 15: Update the Security Context of an API Invoker with invalid apiInvokerID
+* **Test ID**: ***capif_security_api-15***
+* **Description**:
+  
+  This test case will check that an API Invoker cannot update a Security context not valid apiInvokerId
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority)
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+ 
+  2. Update Security Context of Invoker:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}/update*
+     * body [service security body]
+     * Using Invoker Certificate.
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Update Security Context
+   
+* **Expected Result**:
+
+1. Retrieve security context:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Invoker not found".
+        * cause with message "API Invoker not exists or invalid ID".
+
+
+## Test Case 16: Revoke the authorization of the API invoker for APIs.
+* **Test ID**: ***capif_security_api-16***
+* **Description**:
+  
+  This test case will check that a Provider can revoke the authorization for APIs
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context By Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate
+ 
+  3. Revoke Authorization by Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}/delete*
+     * body [security notification body]
+     * Using AEF Certificate.
+
+  4. Retrieve Security Context by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Using AEF Certificate.
+
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context by Invoker
+  4. Revoke Security Context by Provider
+  5. Retrieve Security Context by Provider
+   
+* **Expected Result**:
+
+  1. Revoke Authorization:
+     1. **204 No Content** response.
+
+  2. Retrieve security context:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Security context not found".
+        * cause with message "API Invoker has no security context".
+
+
+## Test Case 17: Revoke the authorization of the API invoker for APIs without valid apfID.
+* **Test ID**: ***capif_security_api-17***
+* **Description**:
+  
+  This test case will check that an Invoker can't revoke the authorization for APIs
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+ 
+  3. Revoke Authorization by invoker:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}/delete*
+     * body [security notification body]
+     * Using Invoker Certificate
+
+  4. Retrieve Security Context of Invoker by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * Using Provider Certificate
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context
+  4. Revoke Security Context by invoker
+  5. Retrieve Security Context
+   
+* **Expected Result**:
+
+  1. Revoke Security Context by invoker:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **401**
+        * title with message "Unauthorized"
+        * detail with message "Role not authorized for this API route".
+        * cause with message "User role must be provider". 
+
+  3. Retrieve security context:
+     1. **200 OK** response.
+     2. body returned must accomplish **ServiceSecurity** data structure.
+        1. Check is this returned object match with created one.
+
+
+## Test Case 18: Revoke the authorization of the API invoker for APIs with invalid apiInvokerId.
+* **Test ID**: ***capif_security_api-18***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot revoke the authorization for APIs for invalid apiInvokerId
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Create Security Context for this Invoker:
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+ 
+  3. Revoke Authorization by Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/trustedInvokers/{API_INVOKER_NOT_VALID}/delete*
+     * body [security notification body]
+     * Using AEF Certificate.
+
+  4. Retrieve Security Context of Invoker by Provider:
+     * Send GET *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}?authenticationInfo=true&authorizationInfo=true*
+     * This request will ask with parameter to retrieve authenticationInfo and authorizationInfo
+     * Using AEF Certificate.
+
+* **Execution Steps**:
+  
+  1. Register and onboard Invoker at CCF
+  2. Register Provider at CCF
+  3. Create Security Context
+  4. Revoke Security Context by Provider
+  5. Retrieve Security Context
+   
+* **Expected Result**:
+
+  1. Revoke Security Context by invoker:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails** data structure, with:
+        * status **404**
+        * title with message "Not Found"
+        * detail with message "Invoker not found".
+        * cause with message "API Invoker not exists or invalid ID".
+
+  3. Retrieve security context:
+     1. **200 OK** response.
+     2. body returned must accomplish **ServiceSecurity** data structure.
+        1. Check is this return one object that match with created one.
+
+
+## Test Case 19: Retrieve access token
+* **Test ID**: ***capif_security_api-19***
+* **Description**:
+  
+  This test case will check that an API Invoker can retrieve a security access token OAuth 2.0.
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerId)
+  * Service API of Provider is published
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*:
+     * body [access token req body] and example [example]
+       * ***securityId*** is apiInvokerId.
+       * ***grant_type=client_credentials***.
+       * Create Scope properly for request: ***3gpp#{aef_id}:{api_name}***
+     * Using Invoker Certificate.
+  
+* **Execution Steps**:
+  
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **200 OK**
+     2. body must follow **AccessTokenRsp** with:
+        1. access_token present
+        2. token_type=Bearer
+
+## Test Case 20: Retrieve access token by Provider
+* **Test ID**: ***capif_security_api-20***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot revoke the authorization for APIs for invalid apiInvokerId
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerID from CAPIF Authority) and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by provider:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*:
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+     * Using AEF certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Provider
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error unauthorized_client
+        * error_description=Role not authorized for this API route
+
+## Test Case 21: Retrieve access token by Provider with invalid apiInvokerId
+* **Test ID**: ***capif_security_api-21***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot retrieve a security access token without valid apiInvokerId
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised and Provider is also authorized
+
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by provider:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{API_INVOKER_NOT_VALID}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+     * Using AEF certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Provider
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **401 Unauthorized** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error unauthorized_client
+        * error_description=Role not authorized for this API route
+   
+
+## Test Case 22: Retrieve access token with invalid apiInvokerId
+* **Test ID**: ***capif_security_api-22***
+* **Description**:
+  
+  This test case will check that an API Invoker can't retrieve a security access token without valid apiInvokerId
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised (has valid apiInvokerId)
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{API_INVOKER_NOT_VALID}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+     * Using Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Invoker
+
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **404 Not Found** response.
+     2. body returned must accomplish **ProblemDetails29571** data structure, with:
+        * status 404
+        * title Not Found
+        * detail Security context not found
+        * cause API Invoker has no security context
+
+
+**NOTE: ProblemDetails29571 is the definition present for this request at swagger of ProblemDetails, and this is different from definition of ProblemDetails across other CAPIF Services**
+
+## Test Case 23: Retrieve access token with invalid client_id
+* **Test ID**: ***capif_security_api-23***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot retrieve a security access token without valid client_id at body
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+       * **client_id is not-valid** 
+     * Using Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Invoker
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **400 Bad Request** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error invalid_client
+        * error_description=Client Id not found
+
+
+## Test Case 24: Retrieve access token with unsupported grant_type
+* **Test ID**: ***capif_security_api-24***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot retrieve a security access token with unsupported grant_type
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+   
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=not_valid***
+     * Using Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Invoker
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **400 Bad Request** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error unsupported_grant_type
+        * error_description=Invalid value for `grant_type` \\(${grant_type}\\), must be one of \\['client_credentials'\\] - 'grant_type'
+
+## Test Case 25: Retrieve access token with invalid scope
+* **Test ID**: ***capif_security_api-25***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot retrieve a security access token with complete invalid scope
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+       * ***scope=not-valid-scope***
+     * Using Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Invoker
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **400 Bad Request** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error invalid_scope
+        * error_description=The first characters must be '3gpp'
+
+
+## Test Case 26: Retrieve access token with invalid aefid at scope
+* **Test ID**: ***capif_security_api-26***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot retrieve a security access token with invalid aefId at scope
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+       * ***scope=3gpp#1234:service_1***
+     * Using Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Invoker
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **400 Bad Request** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error invalid_scope
+        * error_description=One of aef_id not belongs of your security context
+
+
+## Test Case 27: Retrieve access token with invalid apiName at scope
+* **Test ID**: ***capif_security_api-27***
+* **Description**:
+  
+  This test case will check that an API Exposure Function cannot retrieve a security access token with invalid apiName at scope
+
+* **Pre-Conditions**:
+  
+  * API Invoker is pre-authorised and Provider is also authorized
+
+* **Information of Test**:
+
+  1. Perform [Provider Registration] and [Invoker Onboarding]
+
+  2. Publish Service API at CCF:
+     * Send Post to ccf_publish_url https://{CAPIF_HOSTNAME}/published-apis/v1/{apfId}/service-apis
+     * body [service api description] with apiName service_1
+     * Use APF Certificate
+
+  3. Request Discover Published APIs not filtered:
+     * Send GET to ccf_discover_url *https://{CAPIF_HOSTNAME}/service-apis/v1/allServiceAPIs?api-invoker-id={apiInvokerId}*
+     * Param api-invoker-id is mandatory
+     * Using invoker certificate
+
+  4. Create Security Context for this Invoker
+     * Send PUT *https://{CAPIF_HOSTNAME}/trustedInvokers/{apiInvokerId}*
+     * body [service security body]
+     * Using Invoker Certificate.
+     * Create Security Information Body with one **securityInfo** for each aef present at each serviceAPIDescription present at Discover.
+
+  5. Request Access Token by invoker:
+     * Sent POST *https://{CAPIF_HOSTNAME}/securities/{securityId}/token*.
+     * body [access token req body]
+       * ***securityId*** is apiInvokerId
+       * ***grant_type=client_credentials***
+       * ***scope=3gpp#{aef_id}:not-valid***
+     * Using Invoker certificate
+
+* **Execution Steps**:
+  1. Register Provider at CCF, store certificates and Publish Service API service_1 at CCF
+  2. Register and onboard Invoker at CCF
+  3. Discover Service APIs by Invoker.
+  4. Create Security Context According to Service APIs discovered.
+  5. Request Access Token by Invoker
+   
+* **Expected Result**:
+
+  1. Response to Request of Access Token:
+     1. **400 Bad Request** response.
+     2. body returned must accomplish **AccessTokenErr** data structure, with:
+        * error invalid_scope
+        * error_description=One of the api names does not exist or is not associated with the aef id provided
+
+
+  [Return To All Test Plans]: ../README.md
+
+
+
+  [service security body]: ./service_security.json  "Service Security Request"
+  [security notification body]: ./security_notification.json  "Security Notification Request"
+  [access token req body]: ./access_token_req.json  "Access Token Request"
+  [example]: ./access_token_req.json  "Access Token Request Example"
+
+  [invoker onboarding]: ../common_operations/README.md#register-an-invoker "Invoker Onboarding"
+  [provider registration]: ../common_operations/README.md#register-a-provider "Provider Registration"
+
+
diff --git a/docs/test_plan/api_security_service/access_token_req.json b/docs/test_plan/api_security_service/access_token_req.json
new file mode 100644
index 0000000..8504736
--- /dev/null
+++ b/docs/test_plan/api_security_service/access_token_req.json
@@ -0,0 +1,6 @@
+{
+    "client_id": "client_id",
+    "client_secret": "client_secret",
+    "grant_type": "client_credentials",
+    "scope": "scope"
+}
\ No newline at end of file
diff --git a/docs/test_plan/api_security_service/access_token_req_example.json b/docs/test_plan/api_security_service/access_token_req_example.json
new file mode 100644
index 0000000..070a717
--- /dev/null
+++ b/docs/test_plan/api_security_service/access_token_req_example.json
@@ -0,0 +1,5 @@
+{
+  "client_id": "bb260b4d0b3a0f954fa23f42d979ca",
+  "grant_type": "client_credentials",
+  "scope": "3gpp#af7e4cf70063814770e7b00b87273e:service_1"
+}
diff --git a/docs/test_plan/api_security_service/security_notification.json b/docs/test_plan/api_security_service/security_notification.json
new file mode 100644
index 0000000..6b94eb5
--- /dev/null
+++ b/docs/test_plan/api_security_service/security_notification.json
@@ -0,0 +1,9 @@
+{
+    "aefId": "aefId",
+    "apiIds": [
+        "apiIds",
+        "apiIds"
+    ],
+    "apiInvokerId": "api_invoker_id",
+    "cause": "OVERLIMIT_USAGE"
+}
\ No newline at end of file
diff --git a/docs/test_plan/api_security_service/service_security.json b/docs/test_plan/api_security_service/service_security.json
new file mode 100644
index 0000000..ad7bc1a
--- /dev/null
+++ b/docs/test_plan/api_security_service/service_security.json
@@ -0,0 +1,25 @@
+{
+    "notificationDestination": "http://robot.testing",
+    "supportedFeatures": "fffffff",
+    "securityInfo": [{
+        "authenticationInfo": "authenticationInfo",
+        "authorizationInfo": "authorizationInfo",
+        "interfaceDetails": {
+            "ipv4Addr": "127.0.0.1",
+            "securityMethods": ["PSK"],
+            "port": 5248
+        },
+        "prefSecurityMethods": ["PSK", "PKI", "OAUTH"],
+    },
+    {
+        "authenticationInfo": "authenticationInfo",
+        "authorizationInfo": "authorizationInfo",
+        "prefSecurityMethods": ["PSK", "PKI", "OAUTH"],
+        "aefId": "aefId"
+    }],
+    "websockNotifConfig": {
+        "requestWebsocketUri": true,
+        "websocketUri": "websocketUri"
+    },
+    "requestTestNotification": true
+}
diff --git a/docs/test_plan/common_operations/README.md b/docs/test_plan/common_operations/README.md
new file mode 100644
index 0000000..ff39d94
--- /dev/null
+++ b/docs/test_plan/common_operations/README.md
@@ -0,0 +1,86 @@
+
+# Register an Invoker
+
+## Steps to perform operation
+  1. Create public and private key at invoker
+  2. Register of Invoker at CCF:
+     * Send POST to http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register
+     * Body [invoker register body]
+
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [invoker getauth body]
+
+  4.  Onboard Invoker:     
+         * Send POST to https://{CAPIF_HOSTNAME}/api-invoker-management/v1/onboardedInvokers
+         * Reference Request Body: [invoker onboarding body]
+         * "onboardingInformation"->"apiInvokerPublicKey": must contain public key generated by Invoker.
+         * Send at Authorization Header the Bearer access_token obtained previously (Authorization:Bearer ${access_token})
+
+## Checks to ensure onboarding
+   1. Response to Register:
+      1. **201 Created**
+
+   2. Response to Get Auth:
+      1. **200 OK**
+      2. ***access_token*** returned.
+
+   3. Response to Onboard request must accomplish:
+      1. **201 Created**
+      2. Response Body must follow **APIInvokerEnrolmentDetails** data structure with:
+         * apiInvokerId
+         * onboardingInformation->apiInvokerCertificate must contain the public key signed.
+      3. Response Header **Location** must be received with URI to new resource created, following this structure: *{apiRoot}/api-invoker-management/{apiVersion}/onboardedInvokers/{onboardingId}*
+
+
+# Register a Provider
+
+## Steps to Perform operation
+  1. Create public and private key at provider for provider itself and each function (apf, aef and amf)
+  2. Register of Provider at CCF:
+     * Send POST to *http://{CAPIF_HOSTNAME}:{CAPIF_HTTP_PORT}/register*
+     * body [provider register body]
+
+  3. Obtain Access Token:
+     * Send POST to *http://{CAPIF_HOSTNAME}/getauth*
+     * Body [provider getauth body]
+
+  4. Register Provider:
+     * Send POST *https://{CAPIF_HOSTNAME}/api-provider-management/v1/registrations*
+     * body [provider request body]
+     * Send at Authorization Header the Bearer access_token obtained previously (Authorization:Bearer ${access_token})
+     * Store each cert in a file with according name.
+
+## Checks to ensure provider registration
+   1. Response to Register:
+      1. **201 Created**
+
+   2. Response to Get Auth:
+      1. **200 OK**
+      2. ***access_token*** returned.
+
+   3. Register Provider at Provider Management:
+      1. **201 Created** response.
+      2. body returned must accomplish **APIProviderEnrolmentDetails** data structure.
+      3. For each **apiProvFuncs**, we must check:
+         1. **apiProvFuncId** is set
+         2. **apiProvCert** under **regInfo** is set properly
+      4. Location Header must contain the new resource URL *{apiRoot}/api-provider-management/v1/registrations/{registrationId}*
+
+
+
+
+
+[invoker register body]: ../api_invoker_management/invoker_register_body.json  "Invoker Register Body"
+[invoker onboarding body]: ../api_invoker_management/invoker_details_post_example.json  "API Invoker Request"
+[invoker getauth body]: ../api_invoker_management/invoker_getauth_example.json    "Get Auth Example"
+
+[provider register body]: ../api_provider_management/provider_register_body.json  "Provider Register Body"
+[provider request body]: ../api_provider_management/provider_details_post_example.json  "API Provider Enrolment Request"
+[provider getauth body]: ../api_provider_management/provider_getauth_example.json    "Get Auth Example"
+
+
+
+
+
+[Return To All Test Plans]: ../README.md
diff --git a/docs/testing_with_curl/README.md b/docs/testing_with_curl/README.md
new file mode 100644
index 0000000..d8c3982
--- /dev/null
+++ b/docs/testing_with_curl/README.md
@@ -0,0 +1,369 @@
+[**[Return To Main]**]
+# Testing Using Curl
+
+- [Testing Using Curl](#testing-using-curl)
+  - [cURL scripts (TLS supported)](#curl-scripts-tls-supported)
+  - [cURL manual execution](#curl-manual-execution)
+    - [Authentication](#authentication)
+      - [Invoker](#invoker)
+      - [Provider](#provider)
+    - [JWT Authentication APIs](#jwt-authentication-apis)
+      - [Register an entity](#register-an-entity)
+      - [Get access token for an existing entity](#get-access-token-for-an-existing-entity)
+      - [Retrieve and store CA certificate](#retrieve-and-store-ca-certificate)
+      - [Sign provider certificate](#sign-provider-certificate)
+    - [Invoker Management APIs](#invoker-management-apis)
+      - [Onboard an Invoker](#onboard-an-invoker)
+      - [Update Invoker Details](#update-invoker-details)
+      - [Offboard an Invoker](#offboard-an-invoker)
+    - [Publish APIs](#publish-apis)
+      - [Publish a new API.](#publish-a-new-api)
+      - [Update a published service API.](#update-a-published-service-api)
+      - [Unpublish a published service API.](#unpublish-a-published-service-api)
+      - [Retrieve all published APIs](#retrieve-all-published-apis)
+      - [Retrieve a published service API.](#retrieve-a-published-service-api)
+    - [Discover API](#discover-api)
+      - [Discover published service APIs and retrieve a collection of APIs according to certain filter criteria.](#discover-published-service-apis-and-retrieve-a-collection-of-apis-according-to-certain-filter-criteria)
+
+## cURL scripts (TLS supported)
+Also you can follow the instructions and run the commands of the bash scripts:
+* [provider](./capif_tls_curls_exposer.sh) to test CAPIF as provider with TLS support.
+* [invoker](./capif_tls_curls_invoker.sh) to test CAPIF as invoker with TLS support.
+
+## cURL manual execution
+
+### Authentication
+This version will use TLS communication, for that purpose we have 2 different scenarios, according to role:
+* Invoker
+* Provider
+
+#### Invoker
+To authenticate an invoker user, we must perform next steps:
+- Retrieve CA certificate from platform. [Retrieve and store CA certificate](#retrieve-and-store-ca-certificate)
+- Register on the CAPIF with invoker role. [Register an entity](#register-an-entity)
+- Get a Json Web Token (JWT) in order to request onboarding [Get access token for an existing entity](#get-access-token-for-an-existing-entity)
+- Request onboarding adding public key to request. [Onboard an Invoker](#onboard-an-invoker)
+- Store certificate signed by CAPIF platform to allow TLS onwards.
+
+**Flow:**
+
+![Flow](../images/flows/04%20-%20Invoker%20Register.png)
+![Flow](../images/flows/05%20-%20Invoker%20Onboarding.png)
+
+#### Provider
+To authenticate an provider user, we must perform next steps:
+- Retrieve CA certificate from platform. [Retrieve and store CA certificate](#retrieve-and-store-ca-certificate)
+- Register on the CAPIF with provider role. [Register an entity](#register-an-entity)
+- Request sign the public key to CAPIF including beared with JWT. [Sign provider certificate](#sign-provider-certificate)
+- Store certificate signed by CAPIF platform to allow TLS onwards.
+
+**Flow:**
+
+![Flow](../images/flows/01%20-%20Register%20del%20AEF.png)
+![Flow](../images/flows/02%20-%20AEF%20API%20Provider%20registration.png)
+![Flow](../images/flows/03%20-%20AEF%20Publish.png)
+
+### JWT Authentication APIs
+These APIs are triggered by an entity (Invoker or Provider for release 1.0) to:
+- register on the CAPIF Framework
+- get a Json Web Token (JWT) in order to be authorized to call CAPIF APIs
+
+#### Register an entity
+Request
+```shell
+curl --request POST 'http://<CAPIF_HOSTNAME>:<CAPIF_HTTP_PORT>/register' --header 'Content-Type: application/json' --data '{
+    "username":"...",
+    "password":"...",
+    "role":"...",
+    "description":"...",
+    "cn":"..."
+}'
+```
+
+* Role: invoker or publisher
+* cn: common name
+
+Response body
+```json
+{
+  "id": "Entity ID",
+  "message": "Informative message"
+}
+```
+
+#### Get access token for an existing entity
+Request
+```shell
+curl --request POST 'http://<CAPIF_HOSTNAME>:<CAPIF_HTTP_PORT>/gettoken' --header 'Content-Type: application/json' --data '{
+    "username":"...",
+    "password":"...",
+    "role":"..."
+}'
+```
+
+Response body
+```json
+{
+  "access_token": "JSON Web Token for CAPIF APIs", 
+  "message": "Informative message"
+}
+```
+
+#### Retrieve and store CA certificate
+```shell
+curl --request GET 'http://<CAPIF_HOSTNAME>:<CAPIF_HTTP_PORT>/ca-root' 2>/dev/null | jq -r '.certificate' -j > <CA Certificate file>
+```
+
+#### Sign provider certificate
+```shell
+curl --request POST 'http://<CAPIF_HOSTNAME>/sign-csr' --header 'Authorization: Bearer <JWT access token>' --header 'Content-Type: application/json' --data-raw '{
+  "csr":  "RAW PUBLIC KEY CREATED BY PUBLISHER",
+  "mode":  "client",
+  "filename": provider
+}'
+```
+Response
+``` json
+{
+  "certificate": "PUBLISHER CERTIFICATE"
+}
+```
+PUBLISHER CERTIFICATE value must be stored by Provider entity to next request to CAPIF (provider.crt for example)
+
+### Invoker Management APIs
+
+These APIs are triggered by a NetApp (i.e. Invoker)
+
+#### Onboard an Invoker
+
+```shell
+curl --cacert <CA Certificate file> --request POST 'https://<CAPIF_HOSTNAME>/api-invoker-management/v1/onboardedInvokers' --header 'Authorization: Bearer <Invoker JWT access token>' --header 'Content-Type: application/json' --data-raw '{
+  "notificationDestination" : "http://X:Y/netapp_callback",
+  "supportedFeatures" : "fffffff",
+  "apiInvokerInformation" : <Invoker CommonName>,
+  "websockNotifConfig" : {
+    "requestWebsocketUri" : true,
+    "websocketUri" : "websocketUri"
+  },
+  "onboardingInformation" : {
+    "apiInvokerPublicKey" : <RAW PUBLIC KEY CREATED BY INVOKER>
+  },
+  "requestTestNotification" : true
+}'
+```
+
+Response Body
+
+``` json
+{
+  "apiInvokerId": "7da0a8d4172d7d86c536c0fbc9c372",
+  "onboardingInformation": {
+    "apiInvokerPublicKey": "RAW PUBLIC KEY CREATED BY INVOKER", 
+    "apiInvokerCertificate": "INVOKER CERTIFICATE", 
+    "onboardingSecret": "onboardingSecret"
+    }, 
+    "notificationDestination": "http://host.docker.internal:8086/netapp_callback", 
+    "requestTestNotification": true, 
+    ...
+}
+```
+
+INVOKER CERTIFICATE value must be stored by Invoker entity to next request to CAPIF (invoker.crt for example)
+
+#### Update Invoker Details
+
+```shell
+curl --location --request PUT 'https://<CAPIF_HOSTNAME>/api-invoker-management/v1/onboardedInvokers/<API Invoker ID>' --cert <Invoker Signed Certificate file> --key <Invoker Private Key> --cacert <CA Certificate file> --header 'Content-Type: application/json' --data '{
+  "notificationDestination" : "http://X:Y/netapp_callback2",
+  "supportedFeatures" : "fffffff",
+  "apiInvokerInformation" : <Invoker CommonName>,
+  "websockNotifConfig" : {
+    "requestWebsocketUri" : true,
+    "websocketUri" : "websocketUri2"
+  },
+  "onboardingInformation" : {
+    "apiInvokerPublicKey" : <RAW PUBLIC KEY CREATED BY INVOKER>
+  },
+  "requestTestNotification" : true
+}'
+```
+
+#### Offboard an Invoker
+
+```shell
+curl --cert <Invoker Signed Certificate file> --key <Invoker Private Key> --cacert <CA Certificate file> --request DELETE 'https://<CAPIF_HOSTNAME>/api-invoker-management/v1/onboardedInvokers/<API Invoker ID>' 
+```
+
+### Publish APIs
+
+These APIs are triggered by the API Publishing Function (APF) of an Provider
+
+#### Publish a new API.
+```shell
+curl --cert <Provider Signed Certificate file> --key <Provider Private Key> --cacert <CA Certificate file> --request POST 'https://<CAPIF_HOSTNAME>/published-apis/v1/<Provider Id>/service-apis'  --header 'Content-Type: application/json' --data '{
+  "apiName": "3gpp-monitoring-event",
+  "aefProfiles": [
+    {
+      "aefId": "string",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    }
+  ],
+  "description": "string",
+  "supportedFeatures": "fffff",
+  "shareableInfo": {
+    "isShareable": true,
+    "capifProvDoms": [
+      "string"
+    ]
+  },
+  "serviceAPICategory": "string",
+  "apiSuppFeats": "fffff",
+  "pubApiPath": {
+    "ccfIds": [
+      "string"
+    ]
+  },
+  "ccfId": "string"
+}'
+```
+
+#### Update a published service API.
+```shell
+curl --cert <Provider Signed Certificate file> --key <Provider Private Key> --cacert <CA Certificate file> --request PUT 'https://<CAPIF_HOSTNAME>/published-apis/v1/<APIF Id>/service-apis/<Service API Id>' --header 'Content-Type: application/json' --data '{
+  "apiName": "3gpp-monitoring-event",
+  "aefProfiles": [
+    {
+      "aefId": "string1",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    }
+  ],
+  "description": "string",
+  "supportedFeatures": "fffff",
+  "shareableInfo": {
+    "isShareable": true,
+    "capifProvDoms": [
+      "string"
+    ]
+  },
+  "serviceAPICategory": "string",
+  "apiSuppFeats": "fffff",
+  "pubApiPath": {
+    "ccfIds": [
+      "string"
+    ]
+  },
+  "ccfId": "string"
+}'
+```
+
+#### Unpublish a published service API.
+```shell
+curl --cert <Provider Signed Certificate file> --key <Provider Private Key> --cacert <CA Certificate file> --request DELETE 'https://<CAPIF_HOSTNAME>/published-apis/v1/<APF Id>/service-apis/<Service API Id>'
+```
+
+#### Retrieve all published APIs
+```shell
+curl --cert <Provider Signed Certificate file> --key <Provider Private Key> --cacert <CA Certificate file> --request GET 'https://<CAPIF_HOSTNAME>/published-apis/v1/<APF Id>/service-apis'
+```
+
+#### Retrieve a published service API.
+```shell
+curl --cert <Provider Signed Certificate file> --key <Provider Private Key> --cacert <CA Certificate file> --request GET 'https://<CAPIF_HOSTNAME>/published-apis/v1/<APF Id>/service-apis/<Service API Id>'
+```
+
+### Discover API
+
+This API is triggered by a NetApp (or Invoker)
+
+#### Discover published service APIs and retrieve a collection of APIs according to certain filter criteria.
+```shell
+curl --cert <Invoker Signed Certificate file> --key <Invoker Private Key> --cacert <CA Certificate file> --request GET 'https://<CAPIF_HOSTNAME>/service-apis/v1/allServiceAPIs?api-invoker-id=<API Invoker Id>&api-name=<API Name>&api-version=<API version e.g. v1>&aef-id=<AEF Id>&api-cat=<Service API Category>&supported-features=<SuppFeat>&api-supported-features=<API Suppfeat>'
+```
+
+
+
+[Return To Main]: ../../README.md#using-curl
\ No newline at end of file
diff --git a/docs/testing_with_curl/capif_tls_curls_exposer.sh b/docs/testing_with_curl/capif_tls_curls_exposer.sh
new file mode 100755
index 0000000..5b81712
--- /dev/null
+++ b/docs/testing_with_curl/capif_tls_curls_exposer.sh
@@ -0,0 +1,205 @@
+##### Execute Exposer curls locally
+
+##### Configure machine 
+
+##### Add in /etc/hosts: 127.0.0.1	capifcore
+
+
+##### Set environment variables 
+capifhost="capifcore"
+capifhttpport="8080"
+
+exposerpk="-----BEGIN CERTIFICATE REQUEST-----\nMIIC0TCCAbkCAQAwgYsxEDAOBgNVBAMMB2V4cG9zZXIxFzAVBgNVBAoMDlRlbGVm\nb25pY2EgSStEMRMwEQYDVQQLDApJbm5vdmF0aW9uMQ8wDQYDVQQHDAZNYWRyaWQx\nDzANBgNVBAgMBk1hZHJpZDELMAkGA1UEBhMCRVMxGjAYBgkqhkiG9w0BCQEWC2lu\nbm9AdGlkLmVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpJ7FzAI\nkzFYxLKbW54lIsQBNIQz5zQIvRZDFcrO4QLR2jQUps9giBWEDih++47JiBJyM+z1\nWkEh7b+moZhQThj7L9PKgJHRhU1oeHpSE1x/r7479J5F+CFRqFo5v9dC+2zGfP4E\nsSrNfp3MK/KQHsHhMzSt881xAHs+p2/bcM+sd/BlXC4J6E1y6Hk3ogI7kq443fcY\noUHZx9ClUSboOvXa1ZSPVxdCV6xKRraUdAKfhMGn+pYtJDsNp8Gg/BN8NXmYUzl9\ntDhjeuIxr4N38LgW3gRHLNIa8acO9eBctWw9AD20JWzFAXvvmsboBPc2wsOVcsml\ncCbisMRKX4JyKQIDAQABoAAwDQYJKoZIhvcNAQELBQADggEBAIxZ1Sec9ATbqjhi\nRz4rvhX8+myXhyfEw2MQ62jz5tpH4qIVZFtn+cZvU/ULySY10WHaBijGgx8fTaMh\nvjQbc+p3PXmgtnmt1QmoOGjDTFa6vghqpxPLSUjjCUe8yj5y24gkOImY6Cv5rzzQ\nlnTMkNvnGgpDgUeiqWcQNbwwge3zkzp9bVRgogTT+EDxiFnjTTF6iUG80sRtXMGr\nD6sygLsF2zijGGfWoKRo/7aZTQxuCiCixceVFXegMfr+eACkOjV25Kso7hYBoEdP\nkgUf5PNpl5uK3/rmPIrl/TeE0SnGGfCYP7QajE9ELRsBVmVDZJb7ZxUl1A4YydFY\ni0QOM3Y=\n-----END CERTIFICATE REQUEST-----\n"
+
+
+##### Retrieve and store CA certificate 
+
+curl --request GET "http://$capifhost:$capifhttpport/ca-root" 2>/dev/null | jq -r '.certificate' -j > ca.crt
+
+
+##### Register an entity 
+
+exposerid=$(curl --request POST "http://$capifhost:$capifhttpport/register" --header 'Content-Type: application/json' --data '{
+    "username":"exposer",
+    "password":"exposer",
+    "role":"exposer",
+    "description":"Exposer",
+    "cn":"exposer"
+}' 2>/dev/null | jq -r '.id' -j)
+
+
+##### Get access token
+
+exposertoken=$(curl --request POST "http://$capifhost:$capifhttpport/gettoken" --header 'Content-Type: application/json' --data '{
+    "username":"exposer",
+    "password":"exposer",
+    "role":"exposer"
+}' 2>/dev/null | jq -r '.access_token' -j)
+
+
+##### Sign exposer certificate
+
+curl --request POST "http://$capifhost:$capifhttpport/sign-csr" --header "Authorization: Bearer $exposertoken" --header 'Content-Type: application/json' --data-raw "{
+  \"csr\":  \"$exposerpk\",
+  \"mode\":  \"client\",
+  \"filename\": \"exposer\"
+}" 2>/dev/null | jq -r '.certificate' -j > exposer.crt
+
+
+##### Publish service
+curl --cert exposer.crt --key exposer.key --cacert ca.crt --request POST "https://$capifhost/published-apis/v1/$exposerid/service-apis"  --header 'Content-Type: application/json' --data '{
+  "apiName": "3gpp-monitoring-event",
+  "aefProfiles": [
+    {
+      "aefId": "string",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    }
+  ],
+  "description": "string",
+  "supportedFeatures": "fffff",
+  "shareableInfo": {
+    "isShareable": true,
+    "capifProvDoms": [
+      "string"
+    ]
+  },
+  "serviceAPICategory": "string",
+  "apiSuppFeats": "fffff",
+  "pubApiPath": {
+    "ccfIds": [
+      "string"
+    ]
+  },
+  "ccfId": "string"
+}' > response.json
+
+apiserviceid=$(cat response.json | jq -r '.apiId' -j)
+
+
+##### Update a published service API
+curl --cert exposer.crt --key exposer.key --cacert ca.crt --request PUT "https://$capifhost/published-apis/v1/$exposerid/service-apis/$apiserviceid" --header 'Content-Type: application/json' --data '{
+  "apiName": "3gpp-monitoring-event",
+  "aefProfiles": [
+    {
+      "aefId": "string1",
+      "versions": [
+        {
+          "apiVersion": "v1",
+          "expiry": "2021-11-30T10:32:02.004Z",
+          "resources": [
+            {
+              "resourceName": "string",
+              "commType": "REQUEST_RESPONSE",
+              "uri": "string",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ],
+          "custOperations": [
+            {
+              "commType": "REQUEST_RESPONSE",
+              "custOpName": "string",
+              "operations": [
+                "GET"
+              ],
+              "description": "string"
+            }
+          ]
+        }
+      ],
+      "protocol": "HTTP_1_1",
+      "dataFormat": "JSON",
+      "securityMethods": ["PSK"],
+      "interfaceDescriptions": [
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        },
+        {
+          "ipv4Addr": "string",
+          "port": 65535,
+          "securityMethods": ["PSK"]
+        }
+      ]
+    }
+  ],
+  "description": "string",
+  "supportedFeatures": "fffff",
+  "shareableInfo": {
+    "isShareable": true,
+    "capifProvDoms": [
+      "string"
+    ]
+  },
+  "serviceAPICategory": "string",
+  "apiSuppFeats": "fffff",
+  "pubApiPath": {
+    "ccfIds": [
+      "string"
+    ]
+  },
+  "ccfId": "string"
+}'
+
+
+##### Retrieve all published APIs
+
+curl --cert exposer.crt --key exposer.key --cacert ca.crt --request GET "https://$capifhost/published-apis/v1/$exposerid/service-apis"
+
+
+##### Retrieve a published service API
+
+curl --cert exposer.crt --key exposer.key --cacert ca.crt --request GET "https://$capifhost/published-apis/v1/$exposerid/service-apis/$apiserviceid"
+
+
+##### Unpublish a published service API
+
+curl --cert exposer.crt --key exposer.key --cacert ca.crt --request DELETE "https://$capifhost/published-apis/v1/$exposerid/service-apis/$apiserviceid"
+
+
diff --git a/docs/testing_with_curl/capif_tls_curls_invoker.sh b/docs/testing_with_curl/capif_tls_curls_invoker.sh
new file mode 100755
index 0000000..d6c287a
--- /dev/null
+++ b/docs/testing_with_curl/capif_tls_curls_invoker.sh
@@ -0,0 +1,86 @@
+##### Execute Invoker curls locally
+
+##### Configure machine 
+
+##### Add in /etc/hosts: 127.0.0.1	capifcore
+
+
+##### Set environment variables
+
+capifhost="capifcore"
+capifhttpport="8080"
+
+invokerpk="-----BEGIN CERTIFICATE REQUEST-----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\nBLU03CY=\n-----END CERTIFICATE REQUEST-----\n"
+
+
+##### Retrieve and store CA certificate
+
+curl --request GET "http://$capifhost:$capifhttpport/ca-root" 2>/dev/null | jq -r '.certificate' -j > ca.crt
+
+
+##### Register an entity 
+
+invokerid=$(curl --request POST "http://$capifhost:$capifhttpport/register" --header 'Content-Type: application/json' --data '{
+    "username":"invoker",
+    "password":"invoker",
+    "role":"invoker",
+    "description":"Invoker",
+    "cn":"invoker"
+}' 2>/dev/null | jq -r '.id' -j)
+
+
+##### Get access token 
+
+invokertoken=$(curl --request POST "http://$capifhost:$capifhttpport/gettoken" --header 'Content-Type: application/json' --data '{
+    "username":"invoker",
+    "password":"invoker",
+    "role":"invoker"
+}' 2>/dev/null | jq -r '.access_token' -j)
+
+
+##### Onboard an Invoker 
+
+curl --cacert ca.crt --request POST "https://$capifhost/api-invoker-management/v1/onboardedInvokers" --header "Authorization: Bearer $invokertoken" --header 'Content-Type: application/json' --data-raw "{
+  \"notificationDestination\" : \"http://X:Y/netapp_callback\",
+  \"supportedFeatures\" : \"fffffff\",
+  \"apiInvokerInformation\" : \"invoker\",
+  \"websockNotifConfig\" : {
+    \"requestWebsocketUri\" : true,
+    \"websocketUri\" : \"websocketUri\"
+  },
+  \"onboardingInformation\" : {
+    \"apiInvokerPublicKey\" : \"$invokerpk\"
+  },
+  \"requestTestNotification\" : true
+}" > response.json
+
+cat response.json | jq -r '.onboardingInformation.apiInvokerCertificate' -j > invoker.crt
+apiinvokerid=$(cat response.json | jq -r '.apiInvokerId' -j)
+
+
+##### Update Invoker Details 
+
+curl --location --request PUT "https://$capifhost/api-invoker-management/v1/onboardedInvokers/$apiinvokerid" --cert invoker.crt --key invoker.key --cacert ca.crt --header 'Content-Type: application/json' --data "{
+  \"notificationDestination\" : \"http://X:Y/netapp_callback2\",
+  \"supportedFeatures\" : \"fffffff\",
+  \"apiInvokerInformation\" : \"test\",
+  \"websockNotifConfig\" : {
+    \"requestWebsocketUri\" : true,
+    \"websocketUri\" : \"websocketUri2\"
+  },
+  \"onboardingInformation\" : {
+    \"apiInvokerPublicKey\" : \"$invokerpk\"
+  },
+  \"requestTestNotification\" : true
+}"
+
+
+##### Discover API 
+
+curl --cert invoker.crt --key invoker.key --cacert ca.crt --request GET "https://$capifhost/service-apis/v1/allServiceAPIs?api-invoker-id=$apiinvokerid"
+
+
+##### Offboard an Invoker 
+
+curl --cert invoker.crt --key invoker.key --cacert ca.crt --request DELETE "https://$capifhost/api-invoker-management/v1/onboardedInvokers/$apiinvokerid"
+
diff --git a/docs/testing_with_curl/exposer.key b/docs/testing_with_curl/exposer.key
new file mode 100644
index 0000000..e84c8c4
--- /dev/null
+++ b/docs/testing_with_curl/exposer.key
@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----
+MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCSknsXMAiTMVjE
+sptbniUixAE0hDPnNAi9FkMVys7hAtHaNBSmz2CIFYQOKH77jsmIEnIz7PVaQSHt
+v6ahmFBOGPsv08qAkdGFTWh4elITXH+vvjv0nkX4IVGoWjm/10L7bMZ8/gSxKs1+
+ncwr8pAeweEzNK3zzXEAez6nb9twz6x38GVcLgnoTXLoeTeiAjuSrjjd9xihQdnH
+0KVRJug69drVlI9XF0JXrEpGtpR0Ap+Ewaf6li0kOw2nwaD8E3w1eZhTOX20OGN6
+4jGvg3fwuBbeBEcs0hrxpw714Fy1bD0APbQlbMUBe++axugE9zbCw5VyyaVwJuKw
+xEpfgnIpAgMBAAECggEACs11TqlcIG5qd/N1Ts8ni9noACpe4ZiXV578lRkW8++E
+xEZtX+P4iIm+wK+3DYGhvyp430naGsD30rF62FMaVr8xmCijC/nIoutTGqS38t8G
+Ns+C/2Lrjj+fvemJyGasSaKOjdIc9L/OWG7MiE/+05LU2bTKvfrIwXvT4NGg2ei1
+NDO8vS5fRHYZ1LyCyrCDetP2aYrTlPao20hmU4IDyh4N17wLuPgijC+AuqR2Xic0
+Mk4ofZ/6Y3oN0rrov2yG7IXjMJQI469IQ6TJLlyFc8tQIF5Y3CMMCMuVMq5m33bq
+/6bow4/VYFG8mPzy7lQLQ8YeEPsgDKL0pB4zqDr7ZwKBgQDJRJoG2PSaEOt6DIKV
+84to73oD9x9lOSrmaH2/NzL3mwLXP2Is4nmLzEDQvA0UhTZe9c0n6OoE3uRZ1gAu
+JIe3zXTJSK4/ysmePUZL1js5bKtuHBrcSCOupWRuJXbaXK5uqISDHUgHiRw3bq8y
+g8SZY/JOBPyJhVlKhmhNCYMi9wKBgQC6bjJ//tLpH6EG4ux0O2StzUoHrvV2cyUj
+RRxGvAt92sdsZaVKmIW/SlLy8tv5HJqblfn6m7aY/vUYbN3AfMJ4teLZz5Y//CH3
+jPchHyk/uhh7gxufiD65i5bfVyRt54tDbyVDc2/1prUyD5W4q4UNOmvhXym5saIc
+U5WNCnSr3wKBgQCs8MaM5bVgAPPlfoRixs9ejo/AgoK2nqWvL9AFEzA3NDn/rJX2
+TW/1YL+83Ck9Ha33cKwlA+y53LBIRSsIexknJWKZZltbsysFTk9t8JoZILg5N+sY
+puAKPFGMl6KFxSeZLDIY23s+BmF5fCEMfc7botbclUpN/IgaEl3i/C5zRwKBgHsx
+lKdmEaNBZlwxmgTYtpfvH2tiXwwN3M2ovp2zZ3icGMn1hTt8/GzCxXuLpnbAQx5r
+BcxoF0qUuAuS7RpklvHDZ4t9FJFloGCAQ1Ic0FovNDxyD8/k7WYY6vLdF9KUfj9q
+c9pVrvdKWVQiXlKw7PQn1eAQzXbK/g/v39Raw2xLAoGBAILTLY3sGBNkFCVhJlyZ
+DaIwkbtnpCBT2T7DUupw51aLhh4rnuJ5wA3uGdRqoKVYSc9DuOwB/yNFGuQDElxQ
+jfKlX0X5xItaxZ5FR4EvGCnqBJl6JM3QekzhXtq5VdY5zIf/HHqFYebcMFrkEicZ
+uuAZd4wa+jn9SR9mUYtS+Lq+
+-----END PRIVATE KEY-----
diff --git a/docs/testing_with_curl/invoker.key b/docs/testing_with_curl/invoker.key
new file mode 100644
index 0000000..15b96bb
--- /dev/null
+++ b/docs/testing_with_curl/invoker.key
@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/docs/testing_with_postman/CAPIF.postman_collection.json b/docs/testing_with_postman/CAPIF.postman_collection.json
new file mode 100644
index 0000000..e65c826
--- /dev/null
+++ b/docs/testing_with_postman/CAPIF.postman_collection.json
@@ -0,0 +1,982 @@
+{
+	"info": {
+		"_postman_id": "5cfdf0d7-3b3c-4961-9cb9-84c2bf85056c",
+		"name": "CAPIF",
+		"schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json",
+		"_exporter_id": "31608242",
+		"_collection_link": "https://red-comet-993867.postman.co/workspace/Team-Workspace~bfc7c442-a60c-4bb1-8730-fdabc2df89b9/collection/31608242-5cfdf0d7-3b3c-4961-9cb9-84c2bf85056c?action=share&source=collection_link&creator=31608242"
+	},
+	"item": [
+		{
+			"name": "01-register_user_provider",
+			"event": [
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"pm.environment.set('ONBOARDING_URL', res.ccf_api_onboarding_url);",
+							"pm.environment.set('PUBLISH_URL', res.ccf_publish_url);",
+							"pm.environment.set('USER_ID', res.id);",
+							""
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"request": {
+				"method": "POST",
+				"header": [],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"password\": \"{{PASSWORD}}\",\n\"username\": \"{{USERNAME}}\",\n\"description\": \"provider\",\n\"role\": \"provider\",\n\"cn\": \"provider\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{REGISTER_HOSTNAME}}:{{REGISTER_PORT}}/register",
+					"protocol": "https",
+					"host": [
+						"{{REGISTER_HOSTNAME}}"
+					],
+					"port": "{{REGISTER_PORT}}",
+					"path": [
+						"register"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "02-getauth_provider",
+			"event": [
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"",
+							"pm.environment.set('CA_ROOT', res.ca_root);",
+							"pm.environment.set('ACCESS_TOKEN', res.access_token);",
+							"",
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_ca',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: res",
+							"                    }",
+							"                }, function (err, res) {",
+							"                    console.log(res);",
+							"                });",
+							"            }, 5000);"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"request": {
+				"method": "POST",
+				"header": [],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"password\": \"{{PASSWORD}}\",\n\"username\": \"{{USERNAME}}\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{REGISTER_HOSTNAME}}:{{REGISTER_PORT}}/getauth",
+					"protocol": "https",
+					"host": [
+						"{{REGISTER_HOSTNAME}}"
+					],
+					"port": "{{REGISTER_PORT}}",
+					"path": [
+						"getauth"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "03-onboard_provider",
+			"event": [
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"if (pm.response.code == 201){",
+							"    ",
+							"    pm.environment.set('PROVIDER_ID', res.apiProvDomId);",
+							"",
+							"    const roleVariableMapping = {",
+							"    \"AEF\": { id: 'AEF_ID', cert: 'AEF_CERT' },",
+							"    \"APF\": { id: 'APF_ID', cert: 'APF_CERT' },",
+							"    \"AMF\": { id: 'AMF_ID', cert: 'AMF_CERT' }",
+							"    };",
+							"",
+							"    res.apiProvFuncs.forEach(function(elemento) {",
+							"        const role = elemento.apiProvFuncRole;",
+							"        if (roleVariableMapping.hasOwnProperty(role)) {",
+							"            const variables = roleVariableMapping[role];",
+							"            pm.environment.set(variables.id, elemento.apiProvFuncId);",
+							"            pm.environment.set(variables.cert, elemento.regInfo.apiProvCert);",
+							"",
+							"        }",
+							"    });",
+							"",
+							"}",
+							"",
+							"",
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"",
+							"var res = JSON.parse(pm.request.body.raw);",
+							"",
+							"res.apiProvFuncs.forEach(function(elemento) {",
+							"",
+							"    setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/generate_csr',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: elemento",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    j_file = JSON.parse(response.text());",
+							"                    elemento.regInfo.apiProvPubKey = j_file.csr;",
+							"                    pm.environment.set(elemento.apiProvFuncRole+'_KEY', j_file.key);",
+							"                });",
+							"            }, 5000);",
+							"",
+							"});",
+							"",
+							"pm.request.body.raw = res;"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"request": {
+				"auth": {
+					"type": "bearer",
+					"bearer": [
+						{
+							"key": "token",
+							"value": "{{ACCESS_TOKEN}}",
+							"type": "string"
+						}
+					]
+				},
+				"method": "POST",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"apiProvFuncs\": [\n    {\n    \"regInfo\": {\n        \"apiProvPubKey\": \"\"\n    },\n    \"apiProvFuncRole\": \"AEF\",\n    \"apiProvFuncInfo\": \"dummy_aef\"\n    },\n    {\n    \"regInfo\": {\n        \"apiProvPubKey\": \"\"\n    },\n    \"apiProvFuncRole\": \"APF\",\n    \"apiProvFuncInfo\": \"dummy_apf\"\n    },\n    {\n    \"regInfo\": {\n        \"apiProvPubKey\": \"\"\n    },\n    \"apiProvFuncRole\": \"AMF\",\n    \"apiProvFuncInfo\": \"dummy_amf\"\n    }\n],\n\"apiProvDomInfo\": \"This is provider\",\n\"suppFeat\": \"fff\",\n\"failReason\": \"string\",\n\"regSec\": \"{{ACCESS_TOKEN}}\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/{{ONBOARDING_URL}}",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"{{ONBOARDING_URL}}"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "04-publish_api",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_cert',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: {cert: pm.environment.get('APF_CERT'), key:pm.environment.get('APF_KEY')}",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    console.log(response)",
+							"                });",
+							"            }, 5000);",
+							"",
+							"",
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							""
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"strictSSL": true
+			},
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "POST",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "raw",
+					"raw": "\n{\n    \"apiName\": \"hello_api_demo_v2\",\n    \"aefProfiles\": [\n      {\n        \"aefId\": \"{{AEF_ID}}\",\n        \"versions\": [\n          {\n            \"apiVersion\": \"v1\",\n            \"expiry\": \"2021-11-30T10:32:02.004Z\",\n            \"resources\": [\n              {\n                \"resourceName\": \"hello-endpoint\",\n                \"commType\": \"REQUEST_RESPONSE\",\n                \"uri\": \"/hello\",\n                \"custOpName\": \"string\",\n                \"operations\": [\n                  \"POST\"\n                ],\n                \"description\": \"Endpoint to receive a welcome message\"\n              }\n            ],\n            \"custOperations\": [\n              {\n                \"commType\": \"REQUEST_RESPONSE\",\n                \"custOpName\": \"string\",\n                \"operations\": [\n                  \"POST\"\n                ],\n                \"description\": \"string\"\n              }\n            ]\n          }\n        ],\n        \"protocol\": \"HTTP_1_1\",\n        \"dataFormat\": \"JSON\",\n        \"securityMethods\": [\"Oauth\"],\n        \"interfaceDescriptions\": [\n          {\n            \"ipv4Addr\": \"localhost\",\n            \"port\": 8088,\n            \"securityMethods\": [\"Oauth\"]\n          }\n        ]\n      }\n    ],\n    \"description\": \"Hello api services\",\n    \"supportedFeatures\": \"fffff\",\n    \"shareableInfo\": {\n      \"isShareable\": true,\n      \"capifProvDoms\": [\n        \"string\"\n      ]\n    },\n    \"serviceAPICategory\": \"string\",\n    \"apiSuppFeats\": \"fffff\",\n    \"pubApiPath\": {\n      \"ccfIds\": [\n        \"string\"\n      ]\n    },\n    \"ccfId\": \"string\"\n  }",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/published-apis/v1/{{APF_ID}}/service-apis",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"published-apis",
+						"v1",
+						"{{APF_ID}}",
+						"service-apis"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "05-register_user_invoker",
+			"event": [
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"pm.environment.set('ONBOARDING_URL_INVOKER', res.ccf_onboarding_url);",
+							"pm.environment.set('DISCOVER_URL', res.ccf_discover_url);",
+							"pm.environment.set('USER_INVOKER_ID', res.id);",
+							""
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"request": {
+				"method": "POST",
+				"header": [],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"password\": \"{{PASSWORD}}\",\n\"username\": \"{{USERNAME_INVOKER}}\",\n\"description\": \"invoker\",\n\"role\": \"invoker\",\n\"cn\": \"invoker\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{REGISTER_HOSTNAME}}:{{REGISTER_PORT}}/register",
+					"protocol": "https",
+					"host": [
+						"{{REGISTER_HOSTNAME}}"
+					],
+					"port": "{{REGISTER_PORT}}",
+					"path": [
+						"register"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "06-getauth_invoker",
+			"event": [
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"",
+							"pm.environment.set('CA_ROOT', res.ca_root);",
+							"pm.environment.set('ACCESS_TOKEN_INVOKER', res.access_token);",
+							"",
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_ca',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: res",
+							"                    }",
+							"                }, function (err, res) {",
+							"                    console.log(res);",
+							"                });",
+							"            }, 5000);"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"request": {
+				"method": "POST",
+				"header": [],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"password\": \"{{PASSWORD}}\",\n\"username\": \"{{USERNAME_INVOKER}}\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{REGISTER_HOSTNAME}}:{{REGISTER_PORT}}/getauth",
+					"protocol": "https",
+					"host": [
+						"{{REGISTER_HOSTNAME}}"
+					],
+					"port": "{{REGISTER_PORT}}",
+					"path": [
+						"getauth"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "07-onboard_invoker",
+			"event": [
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"if (pm.response.code == 201){",
+							"    ",
+							"    pm.environment.set('INVOKER_ID', res.apiInvokerId);",
+							"    pm.environment.set('INVOKER_CERT', res.onboardingInformation.apiInvokerCertificate);",
+							"}",
+							"",
+							"",
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"",
+							"var res = JSON.parse(pm.request.body.raw);",
+							"",
+							"",
+							"setTimeout(() => {",
+							"            pm.sendRequest({",
+							"                url: 'http://localhost:3000/generate_csr_invoker',",
+							"                method: 'POST',",
+							"                header: 'Content-Type:application/json',",
+							"                encoding: 'binary',",
+							"                body: {",
+							"                    mode: 'raw',",
+							"                    raw: {}",
+							"                }",
+							"            }, function (err, response) {",
+							"                j_file = JSON.parse(response.text());",
+							"                res.onboardingInformation.apiInvokerPublicKey = j_file.csr;",
+							"                pm.environment.set('INVOKER_KEY', j_file.key);",
+							"            });",
+							"        }, 5000);",
+							"",
+							"",
+							"pm.request.body.raw = res;"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"request": {
+				"auth": {
+					"type": "bearer",
+					"bearer": [
+						{
+							"key": "token",
+							"value": "{{ACCESS_TOKEN_INVOKER}}",
+							"type": "string"
+						}
+					]
+				},
+				"method": "POST",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n  \"notificationDestination\" : \"http://host.docker.internal:8086/netapp_callback\",\n  \"supportedFeatures\" : \"fffffff\",\n  \"apiInvokerInformation\" : \"dummy\",\n  \"websockNotifConfig\" : {\n    \"requestWebsocketUri\" : true,\n    \"websocketUri\" : \"websocketUri\"\n  },\n  \"onboardingInformation\" : {\n    \"apiInvokerPublicKey\" : \"\"\n  },\n  \"requestTestNotification\" : true\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/{{ONBOARDING_URL_INVOKER}}",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"{{ONBOARDING_URL_INVOKER}}"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "08-discover",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_cert',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: {cert: pm.environment.get('INVOKER_CERT'), key:pm.environment.get('INVOKER_KEY')}",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    console.log(response)",
+							"                });",
+							"            }, 5000);",
+							"",
+							"",
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"if (pm.response.code == 200){",
+							"",
+							"    res.serviceAPIDescriptions.forEach(function(api) {",
+							"        pm.environment.set('API_SERVICE_ID', api.apiId);",
+							"        pm.environment.set('API_NAME', api.apiName);",
+							"        pm.environment.set('API_AEF_ID', api.aefProfiles[0].aefId);",
+							"        pm.environment.set('IPV4ADDR', api.aefProfiles[0].interfaceDescriptions[0].ipv4Addr);",
+							"        pm.environment.set('PORT', api.aefProfiles[0].interfaceDescriptions[0].port);",
+							"        pm.environment.set('URI', api.aefProfiles[0].versions[0].resources[0].uri);",
+							"    });",
+							"}"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"disableBodyPruning": true,
+				"strictSSL": true
+			},
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "GET",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "raw",
+					"raw": "",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/{{DISCOVER_URL}}{{INVOKER_ID}}",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"{{DISCOVER_URL}}{{INVOKER_ID}}"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "09-security_context",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_cert',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: {cert: pm.environment.get('INVOKER_CERT'), key:pm.environment.get('INVOKER_KEY')}",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    console.log(response)",
+							"                });",
+							"            }, 5000);",
+							"",
+							"",
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							""
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"strictSSL": true
+			},
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "PUT",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n  \"securityInfo\": [\n    {\n      \"prefSecurityMethods\": [\n        \"Oauth\"\n      ],\n      \"authenticationInfo\": \"string\",\n      \"authorizationInfo\": \"string\",\n      \"aefId\": \"{{API_AEF_ID}}\",\n      \"apiId\": \"{{API_SERVICE_ID}}\"\n    }\n  ],\n  \"notificationDestination\": \"https://mynotificationdest.com\",\n  \"requestTestNotification\": true,\n  \"websockNotifConfig\": {\n    \"websocketUri\": \"string\",\n    \"requestWebsocketUri\": true\n  },\n  \"supportedFeatures\": \"fff\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/capif-security/v1/trustedInvokers/{{INVOKER_ID}}",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"capif-security",
+						"v1",
+						"trustedInvokers",
+						"{{INVOKER_ID}}"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "10-get_token",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_cert',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: {cert: pm.environment.get('INVOKER_CERT'), key:pm.environment.get('INVOKER_KEY')}",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    console.log(response)",
+							"                });",
+							"            }, 5000);",
+							"",
+							"",
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							"var res = JSON.parse(responseBody);",
+							"if (pm.response.code == 200){",
+							"    pm.environment.set('NETAPP_SERVICE_TOKEN', res.access_token);",
+							"}"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"strictSSL": true,
+				"disabledSystemHeaders": {}
+			},
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "POST",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "urlencoded",
+					"urlencoded": [
+						{
+							"key": "client_id",
+							"value": "{{INVOKER_ID}}",
+							"type": "text"
+						},
+						{
+							"key": "grant_type",
+							"value": "client_credentials",
+							"type": "text"
+						},
+						{
+							"key": "client_secret",
+							"value": "string",
+							"type": "text"
+						},
+						{
+							"key": "scope",
+							"value": "3gpp#{{API_AEF_ID}}:{{API_NAME}}",
+							"type": "text"
+						}
+					]
+				},
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/capif-security/v1/securities/{{INVOKER_ID}}/token",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"capif-security",
+						"v1",
+						"securities",
+						"{{INVOKER_ID}}",
+						"token"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "11-call_service",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							""
+						],
+						"type": "text/javascript"
+					}
+				},
+				{
+					"listen": "test",
+					"script": {
+						"exec": [
+							""
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"strictSSL": false
+			},
+			"request": {
+				"auth": {
+					"type": "bearer",
+					"bearer": [
+						{
+							"key": "token",
+							"value": "{{NETAPP_SERVICE_TOKEN}}",
+							"type": "string"
+						}
+					]
+				},
+				"method": "POST",
+				"header": [
+					{
+						"key": "",
+						"value": "",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"name\": {{USERNAME_INVOKER}}\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "http://{{IPV4ADDR}}:{{PORT}}{{URI}}",
+					"protocol": "http",
+					"host": [
+						"{{IPV4ADDR}}"
+					],
+					"port": "{{PORT}}{{URI}}"
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "offboard_provider",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_cert',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: {cert: pm.environment.get('AMF_CERT'), key:pm.environment.get('AMF_KEY')}",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    console.log(response)",
+							"                });",
+							"            }, 5000);"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"strictSSL": true
+			},
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "DELETE",
+				"header": [],
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/{{ONBOARDING_URL}}/{{PROVIDER_ID}}",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"{{ONBOARDING_URL}}",
+						"{{PROVIDER_ID}}"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "offboard_invoker",
+			"event": [
+				{
+					"listen": "prerequest",
+					"script": {
+						"exec": [
+							"setTimeout(() => {",
+							"                pm.sendRequest({",
+							"                    url: 'http://localhost:3000/write_cert',",
+							"                    method: 'POST',",
+							"                    header: 'Content-Type:application/json',",
+							"                    encoding: 'binary',",
+							"                    body: {",
+							"                        mode: 'raw',",
+							"                        raw: {cert: pm.environment.get('INVOKER_CERT'), key:pm.environment.get('INVOKER_KEY')}",
+							"                    }",
+							"                }, function (err, response) {",
+							"                    console.log(response)",
+							"                });",
+							"            }, 5000);"
+						],
+						"type": "text/javascript"
+					}
+				}
+			],
+			"protocolProfileBehavior": {
+				"strictSSL": true
+			},
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "DELETE",
+				"header": [],
+				"url": {
+					"raw": "https://{{CAPIF_HOSTNAME}}/{{ONBOARDING_URL_INVOKER}}/{{INVOKER_ID}}",
+					"protocol": "https",
+					"host": [
+						"{{CAPIF_HOSTNAME}}"
+					],
+					"path": [
+						"{{ONBOARDING_URL_INVOKER}}",
+						"{{INVOKER_ID}}"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "remove_user_invoker",
+			"request": {
+				"method": "DELETE",
+				"header": [],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"password\": \"{{PASSWORD}}\",\n\"username\": \"{{USERNAME_INVOKER}}\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{REGISTER_HOSTNAME}}:{{REGISTER_PORT}}/remove",
+					"protocol": "https",
+					"host": [
+						"{{REGISTER_HOSTNAME}}"
+					],
+					"port": "{{REGISTER_PORT}}",
+					"path": [
+						"remove"
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "remove_user_provider",
+			"request": {
+				"method": "DELETE",
+				"header": [],
+				"body": {
+					"mode": "raw",
+					"raw": "{\n\"password\": \"{{PASSWORD}}\",\n\"username\": \"{{USERNAME}}\"\n}",
+					"options": {
+						"raw": {
+							"language": "json"
+						}
+					}
+				},
+				"url": {
+					"raw": "https://{{REGISTER_HOSTNAME}}:{{REGISTER_PORT}}/remove",
+					"protocol": "https",
+					"host": [
+						"{{REGISTER_HOSTNAME}}"
+					],
+					"port": "{{REGISTER_PORT}}",
+					"path": [
+						"remove"
+					]
+				}
+			},
+			"response": []
+		}
+	]
+}
\ No newline at end of file
diff --git a/docs/testing_with_postman/CAPIF.postman_environment.json b/docs/testing_with_postman/CAPIF.postman_environment.json
new file mode 100644
index 0000000..ab3839e
--- /dev/null
+++ b/docs/testing_with_postman/CAPIF.postman_environment.json
@@ -0,0 +1,237 @@
+{
+	"id": "f2daf431-63c4-4275-8755-4cc5de2e566d",
+	"name": "CAPIF",
+	"values": [
+		{
+			"key": "CAPIF_HOSTNAME",
+			"value": "capifcore",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "CAPIF_PORT",
+			"value": "8080",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "REGISTER_HOSTNAME",
+			"value": "localhost",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "REGISTER_PORT",
+			"value": "8084",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "USERNAME",
+			"value": "ProviderONE",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "PASSWORD",
+			"value": "pass",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "CALLBACK_IP",
+			"value": "host.docker.internal",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "CALLBACK_PORT",
+			"value": "8087",
+			"type": "default",
+			"enabled": true
+		},
+		{
+			"key": "ONBOARDING_URL",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "PUBLISH_URL",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "USER_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "CA_ROOT",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "ACCESS_TOKEN",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "APF_KEY",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "AMF_KEY",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "AEF_KEY",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "PROVIDER_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "AEF_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "AEF_CERT",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "APF_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "APF_CERT",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "AMF_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "AMF_CERT",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "ONBOARDING_URL_INVOKER",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "DISCOVER_URL",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "USER_INVOKER_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "ACCESS_TOKEN_INVOKER",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "INVOKER_KEY",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "INVOKER_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "INVOKER_CERT",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "API_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "API_NAME",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "IPV4ADDR",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "PORT",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "URI",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "API_SERVICE_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "API_AEF_ID",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		},
+		{
+			"key": "NETAPP_SERVICE_TOKEN",
+			"value": "",
+			"type": "any",
+			"enabled": true
+		}
+	],
+	"_postman_variable_scope": "environment",
+	"_postman_exported_at": "2023-12-20T10:47:32.128Z",
+	"_postman_exported_using": "Postman/10.21.4"
+}
\ No newline at end of file
diff --git a/docs/testing_with_postman/README.md b/docs/testing_with_postman/README.md
new file mode 100644
index 0000000..6d36b32
--- /dev/null
+++ b/docs/testing_with_postman/README.md
@@ -0,0 +1,108 @@
+[**[Return To Main]**]
+
+# CAPIF in Postman
+In this section we can use Postman to publish an API as a provider and use it as an invoker.
+
+## Requisites
+
+- We will need to have Node.js installed since we will use a small script to create the CSRs of the certificates.
+- An instance of CAPIF (If it is not local, certain variables would have to be modified both in the Node.js script and in the Postman environment variables).
+
+## First steps
+
+1. Install the Node dependencies to run the script with:
+
+```
+npm i
+```
+
+2. Run the script.js with the following command:
+
+```
+node script.js
+```
+
+3. Import Postman collection and environment variables (CAPIF.postman_collection.json and CAPIF.postman_environment.json)
+
+## Not Local CAPIF
+
+If the CAPIF is not local, the host and port of both the CAPIF and the register would have to be specified in the variables, and the CAPIF_HOSTNAME in the script, necessary to obtain the server certificate.
+
+**Enviroments in Postman**
+```
+CAPIF_HOSTNAME     capifcore
+CAPIF_PORT         8080
+REGISTER_HOSTNAME  register
+REGISTER_PORT      8084
+```
+
+**Const in script.js**
+```
+CAPIF_HOSTNAME    capifcore
+```
+
+## CAPIF Flow
+Once the first steps have been taken, we can now use Postman requests. These requests are numbered in the order that must be followed to obtain everything necessary from CAPIF.
+
+### Publication of an API
+
+- **01-register_user_provider**
+- **02-getauth_provider**
+- **03-onboard_provider**
+
+At this point we move on to using certificate authentication in CAPIF. In Postman it is necessary to add the certificates manually and using more than one certificate for the same host as we do in CAPIF complicates things. For this reason, we use the script to overwrite a certificate and a key when it is necessary to have a specific one.
+
+To configure go to **settings** in Postman and open the **certificates** section. 
+
+- Here, activate the **CA certificates** option and add the **ca_cert.pem** file found in the **Responses** folder.
+- Adds a client certificate specifying the CAPIF host being used and the files **client_cert.crt** and **client_key.key** in the **Responses** folder.
+
+
+Once this is done, the node script will be in charge of changing the certificate that is necessary in each request.
+
+- **04-publish_api** 
+
+Once the api is published, we can start it. In this case we have a test one created in python that can be executed with the following command:
+
+```
+python3 hello_api.py
+```
+
+The API publication interface is set to localhost with port 8088, so the service must be set up locally. If you wanted to build it on another site, you would have to change the interface description in the body of publish_api.
+
+With this the provider part would be finished.
+
+### Calling the API
+
+- **05-register_user_invoker**
+- **06-getauth_invoker**
+- **07-onboard_invoker**
+
+At this point we move on to using certificate authentication in CAPIF. **If you did not configure the provider's certificates, you would have to do it now**.
+
+- **08-discover**
+- **09-security_context**
+- **10-get_token**
+- **11-call_service**
+
+With this, we would have made the API call and finished the flow.
+
+### Other requests
+
+Other requests that we have added are the following:
+
+- **offboard_provider**      Performs offboarding of the provider, thereby eliminating the published APIs.
+- **offboard_invoker**       Offboards the invoker, also eliminating access to the APIs of that invoker.
+- **remove_user_invoker**    Delete the user created for the invoker.
+- **remove_user_provider**   Delete the user created for the provider.
+
+## Notes
+
+- This process is designed to teach how requests are made in Postman and the flow that should be followed to publish and use an API.
+- It is possible that if external CAPIFs are used (Public CAPIF) the test data may already be used or the API already registered.
+- It is necessary to have the Node service running to make the certificate change for the requests, otherwise it will not work.
+- We are working on adding more requests to the Postman collection.
+- This collection is a testing guide and is recommended for testing purposes only.
+
+[Return To Main]: ../../README.md#using-postman
+
diff --git a/docs/testing_with_postman/hello_api.py b/docs/testing_with_postman/hello_api.py
new file mode 100644
index 0000000..0b2a359
--- /dev/null
+++ b/docs/testing_with_postman/hello_api.py
@@ -0,0 +1,38 @@
+from flask import Flask, jsonify, request
+from flask_jwt_extended import jwt_required, JWTManager, get_jwt_identity, get_jwt
+import ssl
+from werkzeug import serving
+import socket, ssl
+import OpenSSL
+from OpenSSL import crypto
+import jwt
+import pyone
+
+app = Flask(__name__)
+
+jwt_flask = JWTManager(app)
+
+
+with open("Responses/cert_server.pem", "rb") as cert_file:
+            cert= cert_file.read()
+
+crtObj = crypto.load_certificate(crypto.FILETYPE_PEM, cert)
+pubKeyObject = crtObj.get_pubkey()
+pubKeyString = crypto.dump_publickey(crypto.FILETYPE_PEM,pubKeyObject)
+
+app.config['JWT_ALGORITHM'] = 'RS256'
+app.config['JWT_PUBLIC_KEY'] = pubKeyString
+
+
+@app.route("/hello", methods=["POST"])
+@jwt_required()
+def hello():
+
+    request_data = request.get_json()
+
+    user_name = request_data['name']
+
+    return jsonify(f"Hello: {user_name}, welcome to CAPIF.")
+
+if __name__ == '__main__':
+    serving.run_simple("0.0.0.0", 8088, app)
diff --git a/docs/testing_with_postman/package.json b/docs/testing_with_postman/package.json
new file mode 100644
index 0000000..6d612a7
--- /dev/null
+++ b/docs/testing_with_postman/package.json
@@ -0,0 +1,16 @@
+{
+    "name": "node-server",
+    "version": "1.0.0",
+    "description": "",
+    "main": "index.js",
+    "scripts": {
+      "test": "echo \"Error: no test specified\" && exit 1"
+    },
+    "author": "",
+    "license": "ISC",
+    "dependencies": {
+      "body-parser": "^1.18.3",
+      "express": "^4.16.3",
+      "shelljs": "^0.8.2"
+    }
+  }
\ No newline at end of file
diff --git a/docs/testing_with_postman/script.js b/docs/testing_with_postman/script.js
new file mode 100644
index 0000000..980f81f
--- /dev/null
+++ b/docs/testing_with_postman/script.js
@@ -0,0 +1,199 @@
+// Change this variable if another host is used for CAPIF
+const CAPIF_HOSTNAME = 'capifcore';
+
+const express = require('express'),
+  app = express(),
+  fs = require('fs'),
+  shell = require('shelljs'),
+
+
+  folderPath = './Responses/',
+  bodyParser = require('body-parser'),
+  path = require('path');
+
+const { exec } = require('child_process');
+
+// Create the folder path in case it doesn't exist
+shell.mkdir('-p', folderPath);
+
+ // Change the limits according to your response size
+app.use(bodyParser.json({limit: '50mb', extended: true}));
+app.use(bodyParser.urlencoded({ limit: '50mb', extended: true })); 
+var opensslCommand = ''
+
+if (CAPIF_HOSTNAME.includes(':')){
+  opensslCommand = `openssl s_client -connect ${CAPIF_HOSTNAME} | openssl x509 -text > ./Responses/cert_server.pem`;
+}
+else{
+  opensslCommand = `openssl s_client -connect ${CAPIF_HOSTNAME}:443 | openssl x509 -text > ./Responses/cert_server.pem`;
+}
+
+exec(opensslCommand, (error, stdout, stderr) => {
+  if (error) {
+    console.error(`Error generating CSR: ${stderr}`);
+  }
+});
+
+fs.writeFileSync('./Responses/client_cert.crt', '');
+fs.writeFileSync('./Responses/client_key.key', '');
+
+app.get('/', (req, res) => res.send('Hello, I write data to file. Send them requests!'));
+
+app.post('/generate_csr', (req, res) => {
+
+  console.log(req.body);
+  const csrFilePath = 'Responses/'+req.body.apiProvFuncRole+'_csr.pem';
+  const privateKeyFilePath = 'Responses/'+req.body.apiProvFuncRole+'_key.key';
+
+  const subjectInfo = {
+    country: 'ES',
+    state: 'Madrid',
+    locality: 'Madrid',
+    organization: 'Telefonica I+D',
+    organizationalUnit: 'IT Department',
+    emailAddress: 'admin@example.com',
+  };
+
+  const opensslCommand = `openssl req -newkey rsa:2048 -nodes -keyout ${privateKeyFilePath} -out ${csrFilePath} -subj "/C=${subjectInfo.country}/ST=${subjectInfo.state}/L=${subjectInfo.locality}/O=${subjectInfo.organization}/OU=${subjectInfo.organizationalUnit}/emailAddress=${subjectInfo.emailAddress}"`;
+
+  exec(opensslCommand, (error, stdout, stderr) => {
+    if (error) {
+      console.error(`Error generating CSR: ${stderr}`);
+    } else {
+      console.log('CSR generated successfully:');
+      fs.readFile(csrFilePath, 'utf8', (readError, csrContent) => {
+        if (readError) {
+          console.error(`Error reading CSR: ${readError}`);
+          res.status(500).send('Error reading CSR');
+        } else {
+          console.log('CSR read successfully:');
+          // Send the CSR content in the response
+          fs.readFile(privateKeyFilePath, 'utf8', (readError, keyContent) => {
+            if (readError) {
+              console.error(`Error reading KEY: ${readError}`);
+              res.status(500).send('Error reading KEY');
+            } else {
+              console.log('KEY read successfully:');
+              // Send the CSR content in the response
+              fs.unlink(csrFilePath, (err) => {
+                if (err) {
+                  console.error(`Error deleting file: ${err.message}`);
+                } 
+              });
+              fs.unlink(privateKeyFilePath, (err) => {
+                if (err) {
+                  console.error(`Error deleting file: ${err.message}`);
+                } 
+              });
+              res.send({csr: csrContent, key: keyContent});
+            }
+          });
+        }
+      });
+    }
+  });
+});
+
+app.post('/generate_csr_invoker', (req, res) => {
+
+  console.log(req.body);
+  const csrFilePath = 'Responses/invoker_csr.pem';
+  const privateKeyFilePath = 'Responses/invoker_key.key';
+
+  const subjectInfo = {
+    country: 'ES',
+    state: 'Madrid',
+    locality: 'Madrid',
+    organization: 'Telefonica I+D',
+    organizationalUnit: 'IT Department',
+    emailAddress: 'admin@example.com',
+  };
+
+  const opensslCommand = `openssl req -newkey rsa:2048 -nodes -keyout ${privateKeyFilePath} -out ${csrFilePath} -subj "/C=${subjectInfo.country}/ST=${subjectInfo.state}/L=${subjectInfo.locality}/O=${subjectInfo.organization}/OU=${subjectInfo.organizationalUnit}/emailAddress=${subjectInfo.emailAddress}"`;
+
+  exec(opensslCommand, (error, stdout, stderr) => {
+    if (error) {
+      console.error(`Error generating CSR: ${stderr}`);
+    } else {
+      console.log('CSR generated successfully:');
+      fs.readFile(csrFilePath, 'utf8', (readError, csrContent) => {
+        if (readError) {
+          console.error(`Error reading CSR: ${readError}`);
+          res.status(500).send('Error reading CSR');
+        } else {
+          console.log('CSR read successfuly:');
+          // Send the CSR content in the response
+          fs.readFile(privateKeyFilePath, 'utf8', (readError, keyContent) => {
+            if (readError) {
+              console.error(`Error reading KEY: ${readError}`);
+              res.status(500).send('Error reading KEY');
+            } else {
+              console.log('KEY read successfully:');
+              // Send the CSR content in the response
+              fs.unlink(csrFilePath, (err) => {
+                if (err) {
+                  console.error(`Error deleting file: ${err.message}`);
+                } 
+              });
+              fs.unlink(privateKeyFilePath, (err) => {
+                if (err) {
+                  console.error(`Error deleting file: ${err.message}`);
+                } 
+              });
+              res.send({csr: csrContent, key: keyContent});
+            }
+          });
+        }
+      });
+    }
+  });
+});
+
+
+app.post('/write_cert', (req, res) => {
+  let extension = 'crt',
+    fsMode = 'writeFile',
+    filename = "client_cert",
+    filePath = `${path.join(folderPath, filename)}.${extension}`,
+    options = {encoding: 'binary'};
+  fs[fsMode](filePath, req.body.cert, options, (err) => {
+    if (err) {
+      console.log(err);
+      res.send('Error');
+    }
+  });
+  extension = 'key';
+  filename = "client_key";
+  filePath = `${path.join(folderPath, filename)}.${extension}`;
+  fs[fsMode](filePath, req.body.key, options, (err) => {
+    if (err) {
+      console.log(err);
+      res.send('Error');
+    }
+    else {
+      res.send('Success');
+    }
+  });
+});
+
+app.post('/write_ca', (req, res) => {
+  let extension = 'pem',
+    fsMode = 'writeFile',
+    filename = "ca_cert",
+    filePath = `${path.join(folderPath, filename)}.${extension}`,
+    options = {encoding: 'binary'};
+  fs[fsMode](filePath, req.body.ca_root, options, (err) => {
+    if (err) {
+      console.log(err);
+      res.send('Error');
+    }
+    else {
+      res.send('Success');
+    }
+  });
+});
+
+app.listen(3000, () => {
+  console.log('ResponsesToFile App is listening now! Send them requests my way!');
+  console.log(`Data is being stored at location: ${path.join(process.cwd(), folderPath)}`);
+});
\ No newline at end of file
diff --git a/docs/testing_with_robot/README.md b/docs/testing_with_robot/README.md
new file mode 100644
index 0000000..71504c1
--- /dev/null
+++ b/docs/testing_with_robot/README.md
@@ -0,0 +1,74 @@
+[**[Return To Main]**]
+# Testing With Robot Framework
+
+- [Testing With Robot Framework](#testing-with-robot-framework)
+  - [Steps to Test](#steps-to-test)
+  - [Script Test Execution](#script-test-execution)
+  - [Manual Build And Test Execution](#manual-build-and-test-execution)
+  - [Test result review](#test-result-review)
+
+## Steps to Test
+
+To run any test locally you will need *docker* and *docker-compose* installed in order run services and execute test plan. Steps will be:
+* **Run All Services**: See section [Run All CAPIF Services](../../README.md#run-all-capif-services-locally-with-docker-images)
+* **Run desired tests**: At this point we have 2 options:
+  * **Using helper script**: [Script Test Execution](#script-test-execution)
+  * **Build robot docker image and execute manually robot docker**: [Manual Build And Test Execution](#manual-build-and-test-execution)
+
+
+## Script Test Execution
+This script will build robot docker image if it's need and execute tests selected by "include" option. Just go to service folder, execute and follow steps.
+```
+./runCapifTests.sh --include <TAG>
+```
+Results will be stored at <REPOSITORY_FOLDER>/results
+
+Please check parameters (include) under *Test Execution* at [Manual Build And Test Execution](#manual-build-and-test-execution).
+
+## Manual Build And Test Execution
+
+* **Build Robot docker image**:
+```
+cd tools/robot
+docker build . -t 5gnow-robot-test:latest
+```
+
+* **Tests Execution**:
+  
+Execute all tests locally:
+```
+<PATH_TO_REPOSITORY>=path in local machine to repository cloned.
+<PATH_RESULT_FOLDER>=path to a folder on local machine to store results of Robot Framework execution.
+<CAPIF_HOSTNAME>=Is the hostname set when run.sh is executed, by default it will be capifcore.
+<CAPIF_HTTP_PORT>=This is the port to reach when robot framework want to reach CAPIF deployment using http, this should be set to port without TLS set on Nginx, 8080 by default.
+
+To execute all tests run :
+docker run -ti --rm --network="host" -v <PATH_TO_REPOSITORY>/tests:/opt/robot-tests/tests -v <PATH_RESULT_FOLDER>:/opt/robot-tests/results 5gnow-robot-test:latest --variable CAPIF_HOSTNAME:capifcore --variable CAPIF_HTTP_PORT:8080 --include all
+```
+
+Execute specific tests locally:
+```
+To run more specific tests, for example, only one functionality:
+<TAG>=Select one from list:
+  "capif_api_discover_service",
+  "capif_api_invoker_management",
+  "capif_api_publish_service",
+  "capif_api_events",
+  "capif_security_api
+
+And Run:
+docker run -ti --rm --network="host" -v <PATH_TO_REPOSITORY>/tests:/opt/robot-tests/tests -v <PATH_RESULT_FOLDER>:/opt/robot-tests/results 5gnow-robot-test:latest --variable CAPIF_HOSTNAME:capifcore --variable CAPIF_HTTP_PORT:8080 --include <TAG>
+```
+
+## Test result review
+
+In order to Review results after tests, you can check general report at <PATH_RESULT_FOLDER>/report.html or if you need more detailed information <PATH_RESULT_FOLDER>/log.html, example:
+* Report:
+![Report](../images/robot_report_example.png)
+* Detailed information:
+![Log](../images/robot_log_example.png)
+
+**NOTE: If you need more detail at Robot Framework Logs you can set log level option just adding to command --loglevel DEBUG**
+
+
+[Return To Main]: ../../README.md#robot-framework
\ No newline at end of file
diff --git a/helm/README-vault.md b/helm/README-vault.md
new file mode 100644
index 0000000..0fab958
--- /dev/null
+++ b/helm/README-vault.md
@@ -0,0 +1,52 @@
+# Install vault
+```
+$ helm repo add hashicorp https://helm.releases.hashicorp.com
+$ helm upgrade --install vault hashicorp/vault -n mon --set server.standalone.enabled=true --create-namespace
+
+# if you are using ingress controller, please use:
+$ helm upgrade --install vault hashicorp/vault -n mon --set server.ingress.enabled=true --set server.ingress.hosts[0].host="vault.mon.int" --set server.ingress.ingressClassName=nginx --set server.standalone.enabled=true --create-namespace
+
+# verify pods are running
+$ kubectl -n mon get pods
+
+```
+NOTA: If using ingressRoute. Please, create a file with:
+
+```
+---
+
+apiVersion: traefik.containo.us/v1alpha1 
+kind: IngressRoute
+metadata:
+  name: vault-ingress-route 
+  namespace: mon
+spec:
+  entryPoints: [web] 
+  routes:
+    - kind: Rule
+      match: Host(`vault.mon.int`)
+      services:
+        - kind: Service
+          name: vault-internal 
+          port: 8200
+          scheme: http
+
+```
+```
+# deploy ingress route
+
+$ kubectl apply -f ingress-route.yaml
+```
+# Creating vault PKI and certificates
+
+## Considerations:
+  - If you change values by default in the `capi/values.yaml`. Please, consider have a look of some topics:
+    - You will need to create PKI and certificates, therefore. The `VAULT_TOKEN` provided must have sufficient permissions in Vault to create it
+    - Modify:
+      - `namespace` in `vault-job/vault-job.yaml`. The namespace should be changed in the entire file. By default is `mon` (same namespace when capif is deployed)
+      - `export VAULT_ADDR` using the service deployed to vault. By default is `http://vault-internal:8200`
+      - `export VAULT_TOKEN` using the token created to vault. By default is `dev-only-token`
+      - `DOMAIN1` - variable used for generate certificate (CSR) to capif `(ex: DOMAIN1=capif.mobile.cloud)`.
+```
+$ kubectl apply -f vault-job/
+```
\ No newline at end of file
diff --git a/helm/README.md b/helm/README.md
new file mode 100644
index 0000000..3fd0ff3
--- /dev/null
+++ b/helm/README.md
@@ -0,0 +1,47 @@
+# Install CAPIF in Kubernetes using HELM
+
+## Dependencies
+- Helm
+-  `Ingress` already in cluster (if configured in capif - `values.yaml`)
+  - ```
+    # OPTIONAL - if not exists Ingress in cluster, use this command to install it
+    $ helm upgrade --install ingress-nginx ingress-nginx --repo https://kubernetes.github.io/ingress-nginx --set rbac.create=true --set controller.service.type=NodePort
+
+    # OPTIONAL - if you need specify the nodePort in cluster use
+    $ helm upgrade --install ingress-nginx ingress-nginx --repo https://kubernetes.github.io/ingress-nginx --set rbac.create=true --set controller.service.type=NodePort --set controller.service.nodePorts.http=32080 --set controller.service.nodePorts.https=32443 --namespace ingress-nginx --create-namespace --set controller.extraArgs."enable-ssl-passthrough=true" --kubeconfig ../oneke-new.kubeconfig 
+
+    # Check if ssl-passthrough is enabled in nginx controller.
+    $ kubectl -n ingress-nginx get deploy -o yaml | grep passthrough
+    ```
+-  `PersistentVolumeClain` already in cluster (if configured in capif)
+
+## Considerations before to install/deploy:
+- **Prometheus**: 
+    - You can install prometheus but you will need permissions to deploy prometheus in the cluster. The helm creates a ClusterRole to access to all resources in the cluster. 
+    - If you don't have permission or there is already provided a Prometheus
+      in the cluster. in `capif/values.yaml` gives the field `monitoring.prometheus.enable: ""`
+        - Grafana will need the endpoint to prometheus. Please keep in mind setup the grafana's field in `capif/values.yaml`
+- **Vault**:
+    - You will need a instance of vault already deployed. If the cluster doesn't provide the vault instance. You can install it following the next [steps](https://github.com/Telefonica/CAPIF_Future_Network_Lab/blob/main/helm/README-vault.md)
+    - Once the vault is provided in the cluster. You need to create the PKI and certificates. Follow the vault-job [step](https://github.com/Telefonica/CAPIF_Future_Network_Lab/blob/main/helm/README-vault.md#creating-vault-pki-and-certificates) to create it
+        - Setup the `parametersVault.env.VaultHostname`: This is the endPoint to vault. This endpoint can be a service/ingress of kubernetes
+        - Setup `parametersVault.env.VaultPort`: This is the port listenting to vault instance
+        - Setup `parametersVault.env.vaultAccessToken`: This is the token used for capif to create the certificates in vault. If vault owns of you. Use the token created in [Vault readme](https://github.com/Telefonica/CAPIF_Future_Network_Lab/blob/main/helm/README-vault.md#creating-vault-pki-and-certificates) . Otherwise, the admin
+        of the cluster will provide you the token. This token will need sufficient permissions to create PKI and certificates.
+- **CAPIF**
+    - Please, have a look of [`values.yaml`](https://github.com/Telefonica/CAPIF_Future_Network_Lab/blob/main/helm/capif/values.yaml) file and setup according to the conditions
+ ```
+ # download dependencies 
+ $ helm dependency build capif/
+
+# check ingress_ip.oneke
+kubectl get svc -A | grep nginx
+
+# install capif
+$ helm upgrade --install -n mon monitoring-capif capif/ --set nginx.nginx.env.capifHostname=mon-capif.monitoring.int --set ingress_ip.oneke="10.17.173.127" --atomic --create-namespace
+ ```
+
+NOTA: The deployment can take until 8 minutes to be ready. Please, if it fails, re-install CAPIF
+
+## Troubleshooting
+- [`Mongo stuck`](https://www.ibm.com/docs/en/cloud-paks/cp-biz-automation/20.0.x?topic=troubleshooting-mongodb-pod-fails-start-container-exit-code-14-100)
\ No newline at end of file
diff --git a/helm/capif/.helmignore b/helm/capif/.helmignore
new file mode 100644
index 0000000..0e8a0eb
--- /dev/null
+++ b/helm/capif/.helmignore
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
diff --git a/helm/capif/Chart.yaml b/helm/capif/Chart.yaml
new file mode 100644
index 0000000..625f958
--- /dev/null
+++ b/helm/capif/Chart.yaml
@@ -0,0 +1,26 @@
+apiVersion: v2
+name: capif
+description: A Helm chart to CAPIF in Kubernetes
+# A chart can be either an 'application' or a 'library' chart.
+#
+# Application charts are a collection of templates that can be packaged into versioned archives
+# to be deployed.
+#
+# Library charts provide useful utilities or functions for the chart developer. They're included as
+# a dependency of application charts to inject those utilities and functions into the rendering
+# pipeline. Library charts do not define any templates and therefore cannot be deployed.
+type: application
+# This is the chart version. This version number should be incremented each time you make changes
+# to the chart and its templates, including the app version.
+# Versions are expected to follow Semantic Versioning (https://semver.org/)
+version: v3.1.4
+# This is the version number of the application being deployed. This version number should be
+# incremented each time you make changes to the application. Versions are not expected to
+# follow Semantic Versioning. They should reflect the version the application is using.
+# It is recommended to use it with quotes.
+appVersion: "v3.1.4"
+dependencies:
+  - name: "tempo"
+    condition: tempo.enabled
+    repository: "https://grafana.github.io/helm-charts"
+    version: "^1.3.1"
diff --git a/helm/capif/README.md b/helm/capif/README.md
new file mode 100644
index 0000000..a78b060
--- /dev/null
+++ b/helm/capif/README.md
@@ -0,0 +1,304 @@
+# Helm of CAPIF
+
+![Version: v1.0.0](https://img.shields.io/badge/Version-v1.0.0-informational?style=for-the-badge)
+![Type: application](https://img.shields.io/badge/Type-application-informational?style=for-the-badge)
+![AppVersion: v1.0.0](https://img.shields.io/badge/AppVersion-v1.0.0-informational?style=for-the-badge)
+
+## Description
+
+A Helm chart to CAPIF in Kubernetes
+
+## Usage
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| CapifClient.enable | string | `"true"` | If enable capif client. |
+| CapifClient.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| CapifClient.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/client"` | The docker image repository to use |
+| CapifClient.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| CapifClient.ports[0].name | string | `"8080"` |  |
+| CapifClient.ports[0].port | int | `8080` |  |
+| CapifClient.ports[0].targetPort | int | `8080` |  |
+| CapifClient.replicas | int | `1` |  |
+| CapifClient.resources.limits.cpu | string | `"100m"` |  |
+| CapifClient.resources.limits.memory | string | `"128Mi"` |  |
+| CapifClient.resources.requests.cpu | string | `"100m"` |  |
+| CapifClient.resources.requests.memory | string | `"128Mi"` |  |
+| CapifClient.type | string | `"ClusterIP"` |  |
+| accessControlPolicy.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| accessControlPolicy.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| accessControlPolicy.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/access-control-policy"` | The docker image repository to use |
+| accessControlPolicy.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| accessControlPolicy.ports[0].name | string | `"8080"` |  |
+| accessControlPolicy.ports[0].port | int | `8080` |  |
+| accessControlPolicy.ports[0].targetPort | int | `8080` |  |
+| accessControlPolicy.replicas | int | `1` |  |
+| accessControlPolicy.resources.limits.cpu | string | `"100m"` |  |
+| accessControlPolicy.resources.limits.memory | string | `"128Mi"` |  |
+| accessControlPolicy.resources.requests.cpu | string | `"100m"` |  |
+| accessControlPolicy.resources.requests.memory | string | `"128Mi"` |  |
+| accessControlPolicy.type | string | `"ClusterIP"` |  |
+| apiInvocationLogs.apiInvocationLogs.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| apiInvocationLogs.apiInvocationLogs.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| apiInvocationLogs.apiInvocationLogs.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/api-invocation-logs-api"` | The docker image repository to use |
+| apiInvocationLogs.apiInvocationLogs.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| apiInvocationLogs.apiInvocationLogs.resources.limits.cpu | string | `"100m"` |  |
+| apiInvocationLogs.apiInvocationLogs.resources.limits.memory | string | `"128Mi"` |  |
+| apiInvocationLogs.apiInvocationLogs.resources.requests.cpu | string | `"100m"` |  |
+| apiInvocationLogs.apiInvocationLogs.resources.requests.memory | string | `"128Mi"` |  |
+| apiInvocationLogs.ports[0].name | string | `"8080"` |  |
+| apiInvocationLogs.ports[0].port | int | `8080` |  |
+| apiInvocationLogs.ports[0].targetPort | int | `8080` |  |
+| apiInvocationLogs.replicas | int | `1` |  |
+| apiInvocationLogs.type | string | `"ClusterIP"` |  |
+| apiInvokerManagement.apiInvokerManagement.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| apiInvokerManagement.apiInvokerManagement.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| apiInvokerManagement.apiInvokerManagement.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/api-invoker-management-api"` | The docker image repository to use |
+| apiInvokerManagement.apiInvokerManagement.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| apiInvokerManagement.apiInvokerManagement.resources.limits.cpu | string | `"100m"` |  |
+| apiInvokerManagement.apiInvokerManagement.resources.limits.memory | string | `"128Mi"` |  |
+| apiInvokerManagement.apiInvokerManagement.resources.requests.cpu | string | `"100m"` |  |
+| apiInvokerManagement.apiInvokerManagement.resources.requests.memory | string | `"128Mi"` |  |
+| apiInvokerManagement.ports[0].name | string | `"8080"` |  |
+| apiInvokerManagement.ports[0].port | int | `8080` |  |
+| apiInvokerManagement.ports[0].targetPort | int | `8080` |  |
+| apiInvokerManagement.replicas | int | `1` |  |
+| apiInvokerManagement.type | string | `"ClusterIP"` |  |
+| apiProviderManagement.apiProviderManagement.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| apiProviderManagement.apiProviderManagement.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| apiProviderManagement.apiProviderManagement.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/api-provider-management-api"` | The docker image repository to use |
+| apiProviderManagement.apiProviderManagement.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| apiProviderManagement.apiProviderManagement.resources.limits.cpu | string | `"100m"` |  |
+| apiProviderManagement.apiProviderManagement.resources.limits.memory | string | `"128Mi"` |  |
+| apiProviderManagement.apiProviderManagement.resources.requests.cpu | string | `"100m"` |  |
+| apiProviderManagement.apiProviderManagement.resources.requests.memory | string | `"128Mi"` |  |
+| apiProviderManagement.ports[0].name | string | `"8080"` |  |
+| apiProviderManagement.ports[0].port | int | `8080` |  |
+| apiProviderManagement.ports[0].targetPort | int | `8080` |  |
+| apiProviderManagement.replicas | int | `1` |  |
+| apiProviderManagement.type | string | `"ClusterIP"` |  |
+| capifEvents.capifEvents.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| capifEvents.capifEvents.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| capifEvents.capifEvents.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/events-api"` | The docker image repository to use |
+| capifEvents.capifEvents.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| capifEvents.capifEvents.resources.limits.cpu | string | `"100m"` |  |
+| capifEvents.capifEvents.resources.limits.memory | string | `"128Mi"` |  |
+| capifEvents.capifEvents.resources.requests.cpu | string | `"100m"` |  |
+| capifEvents.capifEvents.resources.requests.memory | string | `"128Mi"` |  |
+| capifEvents.ports[0].name | string | `"8080"` |  |
+| capifEvents.ports[0].port | int | `8080` |  |
+| capifEvents.ports[0].targetPort | int | `8080` |  |
+| capifEvents.replicas | int | `1` |  |
+| capifEvents.type | string | `"ClusterIP"` |  |
+| capifRoutingInfo.capifRoutingInfo.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| capifRoutingInfo.capifRoutingInfo.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| capifRoutingInfo.capifRoutingInfo.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/routing-info-api"` | The docker image repository to use |
+| capifRoutingInfo.capifRoutingInfo.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| capifRoutingInfo.capifRoutingInfo.resources.limits.cpu | string | `"100m"` |  |
+| capifRoutingInfo.capifRoutingInfo.resources.limits.memory | string | `"128Mi"` |  |
+| capifRoutingInfo.capifRoutingInfo.resources.requests.cpu | string | `"100m"` |  |
+| capifRoutingInfo.capifRoutingInfo.resources.requests.memory | string | `"128Mi"` |  |
+| capifRoutingInfo.ports[0].name | string | `"8080"` |  |
+| capifRoutingInfo.ports[0].port | int | `8080` |  |
+| capifRoutingInfo.ports[0].targetPort | int | `8080` |  |
+| capifRoutingInfo.replicas | int | `1` |  |
+| capifRoutingInfo.type | string | `"ClusterIP"` |  |
+| capifSecurity.capifSecurity.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| capifSecurity.capifSecurity.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| capifSecurity.capifSecurity.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/security-api"` | The docker image repository to use |
+| capifSecurity.capifSecurity.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| capifSecurity.capifSecurity.resources.limits.cpu | string | `"100m"` |  |
+| capifSecurity.capifSecurity.resources.limits.memory | string | `"128Mi"` |  |
+| capifSecurity.capifSecurity.resources.requests.cpu | string | `"100m"` |  |
+| capifSecurity.capifSecurity.resources.requests.memory | string | `"128Mi"` |  |
+| capifSecurity.ports[0].name | string | `"8080"` |  |
+| capifSecurity.ports[0].port | int | `8080` |  |
+| capifSecurity.ports[0].targetPort | int | `8080` |  |
+| capifSecurity.replicas | int | `1` |  |
+| capifSecurity.type | string | `"ClusterIP"` |  |
+| env | string | `""` | The Environment variable. Use openshift if you are deploying in Openshift cluster. anotherwise use the field empty |
+| ingress.ip | string | `"10.17.173.127"` |  |
+| kubernetesClusterDomain | string | `"cluster.local"` |  |
+| logs.enable | string | `"true"` | If register enabled. enable: true, enable: "" = not enabled |
+| logs.logs.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| logs.logs.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| logs.logs.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/auditing-api"` | The docker image repository to use |
+| logs.logs.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| logs.logs.resources.limits.cpu | string | `"100m"` |  |
+| logs.logs.resources.limits.memory | string | `"128Mi"` |  |
+| logs.logs.resources.requests.cpu | string | `"100m"` |  |
+| logs.logs.resources.requests.memory | string | `"128Mi"` |  |
+| logs.ports[0].name | string | `"8080"` |  |
+| logs.ports[0].port | int | `8080` |  |
+| logs.ports[0].targetPort | int | `8080` |  |
+| logs.replicas | int | `1` |  |
+| logs.type | string | `"ClusterIP"` |  |
+| mongo.mongo.env.mongoInitdbRootPassword | string | `"example"` |  |
+| mongo.mongo.env.mongoInitdbRootUsername | string | `"root"` |  |
+| mongo.mongo.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| mongo.mongo.image.repository | string | `"mongo"` | The docker image repository to use |
+| mongo.mongo.image.tag | string | `"6.0.2"` | The docker image tag to use @default Chart version |
+| mongo.mongo.resources | object | `{}` |  |
+| mongo.persistence | object | `{"enable":"true","storage":"8Gi"}` | If mongo.persistence enabled. enable: true, enable: "" = not enabled |
+| mongo.ports[0].name | string | `"27017"` |  |
+| mongo.ports[0].port | int | `27017` |  |
+| mongo.ports[0].targetPort | int | `27017` |  |
+| mongo.replicas | int | `1` |  |
+| mongo.type | string | `"ClusterIP"` |  |
+| mongoExpress.mongoExpress.env.meConfigMongodbAdminpassword | string | `"example"` |  |
+| mongoExpress.mongoExpress.env.meConfigMongodbAdminusername | string | `"root"` |  |
+| mongoExpress.mongoExpress.env.meConfigMongodbUrl | string | `"mongodb://root:example@mongo:27017/"` |  |
+| mongoExpress.mongoExpress.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| mongoExpress.mongoExpress.image.repository | string | `"mongo-express"` | The docker image repository to use |
+| mongoExpress.mongoExpress.image.tag | string | `"1.0.0-alpha.4"` | The docker image tag to use @default Chart version |
+| mongoExpress.mongoExpress.resources.limits.cpu | string | `"100m"` |  |
+| mongoExpress.mongoExpress.resources.limits.memory | string | `"128Mi"` |  |
+| mongoExpress.mongoExpress.resources.requests.cpu | string | `"100m"` |  |
+| mongoExpress.mongoExpress.resources.requests.memory | string | `"128Mi"` |  |
+| mongoExpress.ports[0].name | string | `"8082"` |  |
+| mongoExpress.ports[0].port | int | `8082` |  |
+| mongoExpress.ports[0].targetPort | int | `8081` |  |
+| mongoExpress.replicas | int | `1` |  |
+| mongoExpress.type | string | `"ClusterIP"` |  |
+| mongoRegister.mongo.env.mongoInitdbRootPassword | string | `"example"` |  |
+| mongoRegister.mongo.env.mongoInitdbRootUsername | string | `"root"` |  |
+| mongoRegister.mongo.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| mongoRegister.mongo.image.repository | string | `"mongo"` | The docker image repository to use |
+| mongoRegister.mongo.image.tag | string | `"6.0.2"` | The docker image tag to use @default Chart version |
+| mongoRegister.mongo.resources | object | `{}` |  |
+| mongoRegister.ports[0].name | string | `"27017"` |  |
+| mongoRegister.ports[0].port | int | `27017` |  |
+| mongoRegister.ports[0].targetPort | int | `27017` |  |
+| mongoRegister.replicas | int | `1` |  |
+| mongoRegister.type | string | `"ClusterIP"` |  |
+| monitoring.enable | string | `"true"` |  |
+| monitoring.enable | string | `"true"` | If monitoring enabled. enable: true, enable: "" = not enabled |
+| monitoring.fluentBit.env.lokiUrl | string | `"http://loki:3100/loki/api/v1/push"` |  |
+| monitoring.fluentBit.image.repository | string | `"grafana/fluent-bit-plugin-loki"` | The docker image repository to use |
+| monitoring.fluentBit.image.tag | string | `"latest"` | The docker image tag to use @default Chart version |
+| monitoring.fluentBit.resources | object | `{}` |  |
+| monitoring.grafana.env.gfAuthAnonymousEnable | bool | `true` |  |
+| monitoring.grafana.env.gfAuthAnonymousOrgRole | string | `"Admin"` |  |
+| monitoring.grafana.env.gfSecurityAdminPassword | string | `"secure_pass"` |  |
+| monitoring.grafana.env.gfSecurityAllowEmbedding | bool | `true` |  |
+| monitoring.grafana.env.lokiUrl | string | `"http://loki:3100"` |  |
+| monitoring.grafana.env.prometheusUrl | string | `"http://prometheus.mon.svc.cluster.local:9090"` |  |
+| monitoring.grafana.env.tempoUrl | string | `"http://monitoring-capif-tempo:3100"` |  |
+| monitoring.grafana.image.repository | string | `"grafana/grafana"` | The docker image repository to use |
+| monitoring.grafana.image.tag | string | `"latest"` | The docker image tag to use @default Chart version |
+| monitoring.grafana.ingress | object | `{"annotations":null,"enabled":true,"hosts":[{"host":"grafana.5gnacar.int","paths":[{"path":"/","pathType":"Prefix"}]}],"ingressClassName":"nginx","tls":[]}` | If ingress enabled=true, use monitoring.grafana.ingressRoute.enable="" |
+| monitoring.grafana.ingressRoute | object | `{"enable":"","host":"grafana.5gnacar.int"}` | If ingressRoute enable=true, use monitoring.grafana.ingress.enabled="" |
+| monitoring.grafana.persistence | object | `{"enable":"true","storage":"100Mi"}` | If grafana.persistence enabled. enable: true, enable: "" = not enabled |
+| monitoring.grafana.resources | object | `{}` |  |
+| monitoring.grafana.service.port | int | `3000` |  |
+| monitoring.grafana.service.type | string | `"ClusterIP"` |  |
+| monitoring.loki.image.repository | string | `"grafana/loki"` | The docker image repository to use |
+| monitoring.loki.image.tag | string | `"2.8.0"` | The docker image tag to use @default Chart version |
+| monitoring.loki.persistence | object | `{"enable":"true","storage":"100Mi"}` | If grafana.persistence enabled. enable: true, enable: "" = not enabled |
+| monitoring.loki.resources | object | `{}` |  |
+| monitoring.otel.configMap.tempoEndpoint | string | `"monitoring-capif-tempo:4317"` |  |
+| monitoring.otel.image.repository | string | `"otel/opentelemetry-collector"` | The docker image repository to use |
+| monitoring.otel.image.tag | string | `"0.81.0"` | The docker image tag to use @default Chart version |
+| monitoring.otel.resources | object | `{}` |  |
+| monitoring.prometheus.enable | string | `"true"` | It will deploy prometheus |
+| monitoring.prometheus.image.repository | string | `"prom/prometheus"` | The docker image repository to use |
+| monitoring.prometheus.image.tag | string | `"latest"` | The docker image tag to use @default Chart version |
+| monitoring.prometheus.ingress.annotations | string | `nil` |  |
+| monitoring.prometheus.ingress.enabled | bool | `true` |  |
+| monitoring.prometheus.ingress.hosts[0].host | string | `"prometheus.5gnacar.int"` |  |
+| monitoring.prometheus.ingress.hosts[0].paths[0].path | string | `"/"` |  |
+| monitoring.prometheus.ingress.hosts[0].paths[0].pathType | string | `"Prefix"` |  |
+| monitoring.prometheus.ingress.ingressClassName | string | `"nginx"` |  |
+| monitoring.prometheus.ingress.tls | list | `[]` |  |
+| monitoring.prometheus.ingressRoute | object | `{"enable":"","host":"prometheus.5gnacar.int"}` | If ingressRoute enable=true, use monitoring.prometheus.ingress.enabled="" |
+| monitoring.prometheus.persistence.enable | string | `"true"` |  |
+| monitoring.prometheus.persistence.storage | string | `"8Gi"` |  |
+| monitoring.prometheus.resources | object | `{}` |  |
+| monitoring.prometheus.service.port | int | `9090` |  |
+| monitoring.prometheus.service.type | string | `"ClusterIP"` |  |
+| monitoring.renderer.env.enableMetrics | string | `"true"` |  |
+| monitoring.renderer.image.repository | string | `"grafana/grafana-image-renderer"` | The docker image repository to use |
+| monitoring.renderer.image.tag | string | `"latest"` | The docker image tag to use @default Chart version |
+| monitoring.renderer.resources | object | `{}` |  |
+| nginx.annotations."nginx.ingress.kubernetes.io/backend-protocol" | string | `"HTTPS"` |  |
+| nginx.annotations."nginx.ingress.kubernetes.io/ssl-passthrough" | string | `"true"` |  |
+| nginx.annotations."nginx.ingress.kubernetes.io/ssl-redirect" | string | `"true"` |  |
+| nginx.ingressClassName | string | `"nginx"` |  |
+| nginx.ingressType | string | `"Ingress"` | if nginx.ingressType: "Ingress". set up monitoring.prometheus.ingress: true and monitoring.grafana.ingress: true Use IngressRoute if you want to use Gateway API. ex traefix |
+| nginx.nginx.env.capifHostname | string | `"my-capif.apps.ocp-epg.hi.inet"` | Ingress's host to Capif |
+| nginx.nginx.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| nginx.nginx.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/nginx"` | The docker image repository to use |
+| nginx.nginx.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| nginx.nginx.resources.limits.cpu | string | `"100m"` |  |
+| nginx.nginx.resources.limits.memory | string | `"128Mi"` |  |
+| nginx.nginx.resources.requests.cpu | string | `"100m"` |  |
+| nginx.nginx.resources.requests.memory | string | `"128Mi"` |  |
+| nginx.ports[0].name | string | `"8080"` |  |
+| nginx.ports[0].port | int | `8080` |  |
+| nginx.ports[0].targetPort | int | `8080` |  |
+| nginx.ports[1].name | string | `"443"` |  |
+| nginx.ports[1].port | int | `443` |  |
+| nginx.ports[1].targetPort | int | `443` |  |
+| nginx.replicas | int | `1` |  |
+| nginx.type | string | `"ClusterIP"` |  |
+| parametersVault.env.vaultAccessToken | string | `"dev-only-token"` |  |
+| parametersVault.env.vaultHostname | string | `"vault-internal.mon.svc.cluster.local"` |  |
+| parametersVault.env.vaultPort | int | `8200` |  |
+| publishedApis.ports[0].name | string | `"8080"` |  |
+| publishedApis.ports[0].port | int | `8080` |  |
+| publishedApis.ports[0].targetPort | int | `8080` |  |
+| publishedApis.publishedApis.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| publishedApis.publishedApis.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| publishedApis.publishedApis.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/publish-service-api"` | The docker image repository to use |
+| publishedApis.publishedApis.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| publishedApis.publishedApis.resources.limits.cpu | string | `"100m"` |  |
+| publishedApis.publishedApis.resources.limits.memory | string | `"128Mi"` |  |
+| publishedApis.publishedApis.resources.requests.cpu | string | `"100m"` |  |
+| publishedApis.publishedApis.resources.requests.memory | string | `"128Mi"` |  |
+| publishedApis.replicas | int | `1` |  |
+| publishedApis.type | string | `"ClusterIP"` |  |
+| redis.ports[0].name | string | `"6379"` |  |
+| redis.ports[0].port | int | `6379` |  |
+| redis.ports[0].targetPort | int | `6379` |  |
+| redis.redis.env.redisReplicationMode | string | `"master"` |  |
+| redis.redis.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| redis.redis.image.repository | string | `"redis"` | The docker image repository to use |
+| redis.redis.image.tag | string | `"alpine"` | The docker image tag to use @default Chart version |
+| redis.redis.resources.limits.cpu | string | `"100m"` |  |
+| redis.redis.resources.limits.memory | string | `"128Mi"` |  |
+| redis.redis.resources.requests.cpu | string | `"100m"` |  |
+| redis.redis.resources.requests.memory | string | `"128Mi"` |  |
+| redis.replicas | int | `1` |  |
+| redis.type | string | `"ClusterIP"` |  |
+| register.enable | string | `"true"` | If register enabled. enable: true, enable: "" = not enabled |
+| register.ports[0].name | string | `"8080"` |  |
+| register.ports[0].port | int | `8084` |  |
+| register.ports[0].targetPort | int | `8080` |  |
+| register.register.env.mongoHost | string | `"mongo-register"` |  |
+| register.register.env.mongoPort | int | `27017` |  |
+| register.register.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| register.register.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/jwtauth"` | The docker image repository to use |
+| register.register.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| register.register.resources.limits.cpu | string | `"100m"` |  |
+| register.register.resources.limits.memory | string | `"128Mi"` |  |
+| register.register.resources.requests.cpu | string | `"100m"` |  |
+| register.register.resources.requests.memory | string | `"128Mi"` |  |
+| register.replicas | int | `1` |  |
+| register.type | string | `"ClusterIP"` |  |
+| serviceApis.ports[0].name | string | `"8080"` |  |
+| serviceApis.ports[0].port | int | `8080` |  |
+| serviceApis.ports[0].targetPort | int | `8080` |  |
+| serviceApis.replicas | int | `1` |  |
+| serviceApis.serviceApis.env | object | `{"monitoring":"true"}` | If env.monitoring: true. Setup monitoring.enable: true |
+| serviceApis.serviceApis.image.imagePullPolicy | string | `"Always"` | Image pull policy: Always, IfNotPresent |
+| serviceApis.serviceApis.image.repository | string | `"public.ecr.aws/o2v4a8t6/opencapif/discover-service-api"` | The docker image repository to use |
+| serviceApis.serviceApis.image.tag | string | `""` | The docker image tag to use @default Chart version |
+| serviceApis.serviceApis.resources.limits.cpu | string | `"100m"` |  |
+| serviceApis.serviceApis.resources.limits.memory | string | `"128Mi"` |  |
+| serviceApis.serviceApis.resources.requests.cpu | string | `"100m"` |  |
+| serviceApis.serviceApis.resources.requests.memory | string | `"128Mi"` |  |
+| serviceApis.type | string | `"ClusterIP"` |  |
+| tempo | object | `{"enabled":true,"persistence":{"enabled":true,"size":"3Gi"},"tempo":{"metricsGenerator":{"enabled":true,"remoteWriteUrl":"http://prometheus.mon.svc.cluster.local:9090/api/v1/write"}}}` | If monitoring.enable: "true". Also enable tempo.enabled: true |
+
diff --git a/helm/capif/docker-monitoring.json b/helm/capif/docker-monitoring.json
new file mode 100644
index 0000000..8a3102a
--- /dev/null
+++ b/helm/capif/docker-monitoring.json
@@ -0,0 +1,690 @@
+{
+    "annotations": {
+      "list": [
+        {
+          "builtIn": 1,
+          "datasource": {
+            "type": "grafana",
+            "uid": "-- Grafana --"
+          },
+          "enable": true,
+          "hide": true,
+          "iconColor": "rgba(0, 211, 255, 1)",
+          "name": "Annotations & Alerts",
+          "type": "dashboard"
+        }
+      ]
+    },
+    "description": "Docker monitoring with Prometheus and cAdvisor",
+    "editable": true,
+    "fiscalYearStartMonth": 0,
+    "gnetId": 193,
+    "graphTooltip": 1,
+    "id": 1,
+    "links": [],
+    "liveNow": false,
+    "panels": [
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "none"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 8,
+          "x": 0,
+          "y": 0
+        },
+        "id": 7,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "mean"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "9.5.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "count(container_last_seen{image!=\"\"})",
+            "intervalFactor": 2,
+            "legendFormat": "",
+            "metric": "container_last_seen",
+            "refId": "A",
+            "step": 240
+          }
+        ],
+        "title": "Running containers",
+        "transparent": true,
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "mbytes"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 8,
+          "x": 8,
+          "y": 0
+        },
+        "id": 5,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "9.5.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum(container_memory_usage_bytes{image!=\"\"})/1024/1024",
+            "intervalFactor": 2,
+            "legendFormat": "",
+            "metric": "container_memory_usage_bytes",
+            "refId": "A",
+            "step": 240
+          }
+        ],
+        "title": "Total Memory Usage",
+        "transparent": true,
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "percent"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 8,
+          "x": 16,
+          "y": 0
+        },
+        "id": 6,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "9.5.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum(rate(container_cpu_user_seconds_total{image!=\"\"}[5m]) * 100)",
+            "intervalFactor": 2,
+            "legendFormat": "",
+            "metric": "container_memory_usage_bytes",
+            "refId": "A",
+            "step": 240
+          }
+        ],
+        "title": "Total CPU Usage",
+        "transparent": true,
+        "type": "stat"
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 2,
+        "editable": true,
+        "error": false,
+        "fill": 1,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 24,
+          "x": 0,
+          "y": 3
+        },
+        "hiddenSeries": false,
+        "id": 2,
+        "isNew": true,
+        "legend": {
+          "alignAsTable": true,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "9.5.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "rate(container_cpu_user_seconds_total{image!=\"\"}[5m]) * 100",
+            "intervalFactor": 2,
+            "legendFormat": "{{name}}",
+            "metric": "cpu",
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "CPU Usage",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 0,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "percent",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": true
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 2,
+        "editable": true,
+        "error": false,
+        "fill": 1,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 24,
+          "x": 0,
+          "y": 10
+        },
+        "hiddenSeries": false,
+        "id": 1,
+        "isNew": true,
+        "legend": {
+          "alignAsTable": true,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "9.5.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "container_memory_usage_bytes{image!=\"\"}",
+            "hide": false,
+            "intervalFactor": 2,
+            "legendFormat": "{{name}}",
+            "metric": "container_memory_usage_bytes",
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Memory Usage",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 0,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "bytes",
+            "label": "",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": false
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "editable": true,
+        "error": false,
+        "fill": 1,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 12,
+          "x": 0,
+          "y": 17
+        },
+        "hiddenSeries": false,
+        "id": 3,
+        "isNew": true,
+        "legend": {
+          "avg": false,
+          "current": false,
+          "max": false,
+          "min": false,
+          "show": true,
+          "total": false,
+          "values": false
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "9.5.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "irate(container_network_receive_bytes_total{image!=\"\"}[5m])",
+            "intervalFactor": 2,
+            "legendFormat": "{{name}}",
+            "metric": "container_network_receive_bytes_total",
+            "refId": "A",
+            "step": 20
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Network Rx",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 0,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "Bps",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": true
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "editable": true,
+        "error": false,
+        "fill": 1,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 12,
+          "x": 12,
+          "y": 17
+        },
+        "hiddenSeries": false,
+        "id": 4,
+        "isNew": true,
+        "legend": {
+          "avg": false,
+          "current": false,
+          "max": false,
+          "min": false,
+          "show": true,
+          "total": false,
+          "values": false
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "9.5.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "irate(container_network_transmit_bytes_total{image!=\"\"}[5m])",
+            "intervalFactor": 2,
+            "legendFormat": "{{name}}",
+            "refId": "A",
+            "step": 20
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Network Tx",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 0,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "Bps",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": true
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      }
+    ],
+    "refresh": "10s",
+    "schemaVersion": 38,
+    "style": "dark",
+    "tags": [
+      "docker"
+    ],
+    "templating": {
+      "list": []
+    },
+    "time": {
+      "from": "now-3h",
+      "to": "now"
+    },
+    "timepicker": {
+      "refresh_intervals": [
+        "5s",
+        "10s",
+        "30s",
+        "1m",
+        "5m",
+        "15m",
+        "30m",
+        "1h",
+        "2h",
+        "1d"
+      ],
+      "time_options": [
+        "5m",
+        "15m",
+        "1h",
+        "6h",
+        "12h",
+        "24h",
+        "2d",
+        "7d",
+        "30d"
+      ]
+    },
+    "timezone": "browser",
+    "title": "Docker monitoring",
+    "uid": "f66dea48-ca2f-46fb-a6f0-50bf50502d74",
+    "version": 2,
+    "weekStart": ""
+}
\ No newline at end of file
diff --git a/helm/capif/kubernetes-dashboard.json b/helm/capif/kubernetes-dashboard.json
new file mode 100644
index 0000000..ac97f80
--- /dev/null
+++ b/helm/capif/kubernetes-dashboard.json
@@ -0,0 +1,2629 @@
+{
+    "annotations": {
+      "list": [
+        {
+          "$$hashKey": "object:103",
+          "builtIn": 1,
+          "datasource": {
+            "type": "datasource",
+            "uid": "grafana"
+          },
+          "enable": true,
+          "hide": true,
+          "iconColor": "rgba(0, 211, 255, 1)",
+          "name": "Annotations & Alerts",
+          "type": "dashboard"
+        }
+      ]
+    },
+    "description": "Monitors Kubernetes cluster using Prometheus. Shows overall cluster CPU / Memory / Filesystem usage as well as individual pod, containers, systemd services statistics. Uses cAdvisor metrics only.",
+    "editable": true,
+    "fiscalYearStartMonth": 0,
+    "gnetId": 12740,
+    "graphTooltip": 0,
+    "id": 7,
+    "links": [],
+    "liveNow": false,
+    "panels": [
+      {
+        "collapsed": false,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 0
+        },
+        "id": 33,
+        "panels": [],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Network I/O pressure",
+        "type": "row"
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 2,
+        "editable": true,
+        "error": false,
+        "fieldConfig": {
+          "defaults": {
+            "links": []
+          },
+          "overrides": []
+        },
+        "fill": 1,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 6,
+          "w": 24,
+          "x": 0,
+          "y": 1
+        },
+        "height": "200px",
+        "hiddenSeries": false,
+        "id": 32,
+        "legend": {
+          "alignAsTable": false,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": false,
+          "show": false,
+          "sideWidth": 200,
+          "sort": "current",
+          "sortDesc": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "10.0.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (rate (container_network_receive_bytes_total{kubernetes_io_hostname=~\"^$Node$\"}[1m]))",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "Received",
+            "metric": "network",
+            "refId": "A",
+            "step": 10
+          },
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "- sum (rate (container_network_transmit_bytes_total{kubernetes_io_hostname=~\"^$Node$\"}[1m]))",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "Sent",
+            "metric": "network",
+            "refId": "B",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Network I/O pressure",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 0,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "Bps",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "Bps",
+            "logBase": 1,
+            "show": false
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "collapsed": false,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 7
+        },
+        "id": 34,
+        "panels": [],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Total usage",
+        "type": "row"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "max": 100,
+            "min": 0,
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "rgba(50, 172, 45, 0.97)",
+                  "value": null
+                },
+                {
+                  "color": "rgba(237, 129, 40, 0.89)",
+                  "value": 65
+                },
+                {
+                  "color": "rgba(245, 54, 54, 0.9)",
+                  "value": 90
+                }
+              ]
+            },
+            "unit": "percent"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 5,
+          "w": 8,
+          "x": 0,
+          "y": 8
+        },
+        "id": 4,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "showThresholdLabels": false,
+          "showThresholdMarkers": true
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (container_memory_working_set_bytes{id=\"/\",kubernetes_io_hostname=~\"^$Node$\"}) / sum (machine_memory_bytes{kubernetes_io_hostname=~\"^$Node$\"}) * 100",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Cluster memory usage",
+        "type": "gauge"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "max": 100,
+            "min": 0,
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "rgba(50, 172, 45, 0.97)",
+                  "value": null
+                },
+                {
+                  "color": "rgba(237, 129, 40, 0.89)",
+                  "value": 65
+                },
+                {
+                  "color": "rgba(245, 54, 54, 0.9)",
+                  "value": 90
+                }
+              ]
+            },
+            "unit": "percent"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 5,
+          "w": 8,
+          "x": 8,
+          "y": 8
+        },
+        "id": 6,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "showThresholdLabels": false,
+          "showThresholdMarkers": true
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (rate (container_cpu_usage_seconds_total{id=\"/\",kubernetes_io_hostname=~\"^$Node$\"}[1m])) / sum (machine_cpu_cores{kubernetes_io_hostname=~\"^$Node$\"}) * 100",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Cluster CPU usage (1m avg)",
+        "type": "gauge"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "max": 100,
+            "min": 0,
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "rgba(50, 172, 45, 0.97)",
+                  "value": null
+                },
+                {
+                  "color": "rgba(237, 129, 40, 0.89)",
+                  "value": 65
+                },
+                {
+                  "color": "rgba(245, 54, 54, 0.9)",
+                  "value": 90
+                }
+              ]
+            },
+            "unit": "percent"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 5,
+          "w": 8,
+          "x": 16,
+          "y": 8
+        },
+        "id": 7,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "showThresholdLabels": false,
+          "showThresholdMarkers": true
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (container_fs_usage_bytes{device=~\"^/dev/[sv]d[a-z][1-9]$\",id=\"/\",kubernetes_io_hostname=~\"^$Node$\"}) / sum (container_fs_limit_bytes{device=~\"^/dev/[sv]d[a-z][1-9]$\",id=\"/\",kubernetes_io_hostname=~\"^$Node$\"}) * 100",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "",
+            "metric": "",
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Cluster filesystem usage",
+        "type": "gauge"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "bytes"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 4,
+          "x": 0,
+          "y": 13
+        },
+        "id": 9,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (container_memory_working_set_bytes{id=\"/\",kubernetes_io_hostname=~\"^$Node$\"})",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Used",
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "bytes"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 4,
+          "x": 4,
+          "y": 13
+        },
+        "id": 10,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (machine_memory_bytes{kubernetes_io_hostname=~\"^$Node$\"})",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Total",
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "none"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 4,
+          "x": 8,
+          "y": 13
+        },
+        "id": 11,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (rate (container_cpu_usage_seconds_total{id=\"/\",kubernetes_io_hostname=~\"^$Node$\"}[1m]))",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Used",
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "none"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 4,
+          "x": 12,
+          "y": 13
+        },
+        "id": 12,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (machine_cpu_cores{kubernetes_io_hostname=~\"^$Node$\"})",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Total",
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "bytes"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 4,
+          "x": 16,
+          "y": 13
+        },
+        "id": 13,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (container_fs_usage_bytes{device=~\"^/dev/[sv]d[a-z][1-9]$\",id=\"/\",kubernetes_io_hostname=~\"^$Node$\"})",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Used",
+        "type": "stat"
+      },
+      {
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "fieldConfig": {
+          "defaults": {
+            "color": {
+              "mode": "thresholds"
+            },
+            "decimals": 2,
+            "mappings": [
+              {
+                "options": {
+                  "match": "null",
+                  "result": {
+                    "text": "N/A"
+                  }
+                },
+                "type": "special"
+              }
+            ],
+            "thresholds": {
+              "mode": "absolute",
+              "steps": [
+                {
+                  "color": "green",
+                  "value": null
+                },
+                {
+                  "color": "red",
+                  "value": 80
+                }
+              ]
+            },
+            "unit": "bytes"
+          },
+          "overrides": []
+        },
+        "gridPos": {
+          "h": 3,
+          "w": 4,
+          "x": 20,
+          "y": 13
+        },
+        "id": 14,
+        "links": [],
+        "maxDataPoints": 100,
+        "options": {
+          "colorMode": "none",
+          "graphMode": "none",
+          "justifyMode": "auto",
+          "orientation": "horizontal",
+          "reduceOptions": {
+            "calcs": [
+              "lastNotNull"
+            ],
+            "fields": "",
+            "values": false
+          },
+          "textMode": "auto"
+        },
+        "pluginVersion": "10.0.2",
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "sum (container_fs_limit_bytes{device=~\"^/dev/[sv]d[a-z][1-9]$\",id=\"/\",kubernetes_io_hostname=~\"^$Node$\"})",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "title": "Total",
+        "type": "stat"
+      },
+      {
+        "collapsed": false,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 16
+        },
+        "id": 35,
+        "panels": [],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Pods CPU usage",
+        "type": "row"
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 3,
+        "editable": true,
+        "error": false,
+        "fieldConfig": {
+          "defaults": {
+            "links": []
+          },
+          "overrides": []
+        },
+        "fill": 0,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 24,
+          "x": 0,
+          "y": 17
+        },
+        "height": "",
+        "hiddenSeries": false,
+        "id": 17,
+        "legend": {
+          "alignAsTable": true,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "sort": "current",
+          "sortDesc": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "10.0.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "editorMode": "code",
+            "expr": "sum (rate (container_cpu_usage_seconds_total{image!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (pod)",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "{{ pod }}",
+            "metric": "container_cpu",
+            "range": true,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Pods CPU usage (1m avg)",
+        "tooltip": {
+          "msResolution": true,
+          "shared": true,
+          "sort": 2,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "$$hashKey": "object:112",
+            "format": "none",
+            "label": "cores",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "$$hashKey": "object:113",
+            "format": "short",
+            "logBase": 1,
+            "show": false
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "collapsed": false,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 24
+        },
+        "id": 39,
+        "panels": [],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Pods memory usage",
+        "type": "row"
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 2,
+        "editable": true,
+        "error": false,
+        "fieldConfig": {
+          "defaults": {
+            "links": []
+          },
+          "overrides": []
+        },
+        "fill": 0,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 24,
+          "x": 0,
+          "y": 25
+        },
+        "hiddenSeries": false,
+        "id": 25,
+        "legend": {
+          "alignAsTable": true,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "sideWidth": 200,
+          "sort": "current",
+          "sortDesc": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "10.0.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "editorMode": "code",
+            "expr": "sum (container_memory_working_set_bytes{image!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}) by (pod)",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "{{ pod }}",
+            "metric": "container_memory_usage:sort_desc",
+            "range": true,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Pods memory usage",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 2,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "$$hashKey": "object:181",
+            "format": "bytes",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "$$hashKey": "object:182",
+            "format": "short",
+            "logBase": 1,
+            "show": false
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "collapsed": false,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 32
+        },
+        "id": 43,
+        "panels": [],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Pods network I/O",
+        "type": "row"
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 2,
+        "editable": true,
+        "error": false,
+        "fieldConfig": {
+          "defaults": {
+            "links": []
+          },
+          "overrides": []
+        },
+        "fill": 1,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 24,
+          "x": 0,
+          "y": 33
+        },
+        "hiddenSeries": false,
+        "id": 16,
+        "legend": {
+          "alignAsTable": true,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "sideWidth": 200,
+          "sort": "current",
+          "sortDesc": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "10.0.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "editorMode": "code",
+            "expr": "sum (rate (container_network_receive_bytes_total{image!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (pod)",
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "-> {{ pod }}",
+            "metric": "network",
+            "range": true,
+            "refId": "A",
+            "step": 10
+          },
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "expr": "- sum (rate (container_network_transmit_bytes_total{image!=\"\",name=~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (pod)",
+            "hide": true,
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "<- {{ pod }}",
+            "metric": "network",
+            "refId": "B",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Pods network I/O (1m avg)",
+        "tooltip": {
+          "msResolution": false,
+          "shared": true,
+          "sort": 2,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "Bps",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": false
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 40
+        },
+        "id": 37,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 3,
+            "editable": true,
+            "error": false,
+            "fieldConfig": {
+              "defaults": {
+                "links": []
+              },
+              "overrides": []
+            },
+            "fill": 0,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 7,
+              "w": 24,
+              "x": 0,
+              "y": 41
+            },
+            "height": "",
+            "hiddenSeries": false,
+            "id": 24,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "hideEmpty": false,
+              "hideZero": false,
+              "max": false,
+              "min": false,
+              "rightSide": true,
+              "show": true,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "alertThreshold": true
+            },
+            "percentage": false,
+            "pluginVersion": "10.0.2",
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": false,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_cpu_usage_seconds_total{image!=\"\",name=~\"^k8s_.*\",container!=\"POD\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (container, pod)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "pod: {{ pod }}| {{ container }}",
+                "metric": "container_cpu",
+                "refId": "A",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_cpu_usage_seconds_total{image!=\"\",name!~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (kubernetes_io_hostname, name, image)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "docker: {{ kubernetes_io_hostname }} | {{ image }} ({{ name }})",
+                "metric": "container_cpu",
+                "refId": "B",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_cpu_usage_seconds_total{rkt_container_name!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (kubernetes_io_hostname, rkt_container_name)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "rkt: {{ kubernetes_io_hostname }} | {{ rkt_container_name }}",
+                "metric": "container_cpu",
+                "refId": "C",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "Containers CPU usage (1m avg)",
+            "tooltip": {
+              "msResolution": true,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "$$hashKey": "object:337",
+                "format": "none",
+                "label": "cores",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "$$hashKey": "object:338",
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Containers CPU usage",
+        "type": "row"
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 41
+        },
+        "id": 41,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 2,
+            "editable": true,
+            "error": false,
+            "fieldConfig": {
+              "defaults": {
+                "links": []
+              },
+              "overrides": []
+            },
+            "fill": 0,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 7,
+              "w": 24,
+              "x": 0,
+              "y": 42
+            },
+            "hiddenSeries": false,
+            "id": 27,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "max": false,
+              "min": false,
+              "rightSide": true,
+              "show": true,
+              "sideWidth": 200,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "alertThreshold": true
+            },
+            "percentage": false,
+            "pluginVersion": "10.0.2",
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": false,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (container_memory_working_set_bytes{image!=\"\",name=~\"^k8s_.*\",container!=\"POD\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}) by (container, pod)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "pod: {{ pod }} | {{ container }}",
+                "metric": "container_memory_usage:sort_desc",
+                "refId": "A",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (container_memory_working_set_bytes{image!=\"\",name!~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}) by (kubernetes_io_hostname, name, image)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "docker: {{ kubernetes_io_hostname }} | {{ image }} ({{ name }})",
+                "metric": "container_memory_usage:sort_desc",
+                "refId": "B",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (container_memory_working_set_bytes{rkt_container_name!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}) by (kubernetes_io_hostname, rkt_container_name)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "rkt: {{ kubernetes_io_hostname }} | {{ rkt_container_name }}",
+                "metric": "container_memory_usage:sort_desc",
+                "refId": "C",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "Containers memory usage",
+            "tooltip": {
+              "msResolution": false,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "$$hashKey": "object:406",
+                "format": "bytes",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "$$hashKey": "object:407",
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Containers memory usage",
+        "type": "row"
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 42
+        },
+        "id": 44,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 2,
+            "editable": true,
+            "error": false,
+            "fieldConfig": {
+              "defaults": {
+                "links": []
+              },
+              "overrides": []
+            },
+            "fill": 1,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 7,
+              "w": 24,
+              "x": 0,
+              "y": 43
+            },
+            "hiddenSeries": false,
+            "id": 30,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "max": false,
+              "min": false,
+              "rightSide": true,
+              "show": true,
+              "sideWidth": 200,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "alertThreshold": true
+            },
+            "percentage": false,
+            "pluginVersion": "10.0.2",
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": false,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_network_receive_bytes_total{image!=\"\",name=~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (container, pod)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "-> pod: {{ pod }} | {{ container }}",
+                "metric": "network",
+                "refId": "B",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "- sum (rate (container_network_transmit_bytes_total{image!=\"\",name=~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (container, pod)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "<- pod: {{ pod }} | {{ container }}",
+                "metric": "network",
+                "refId": "D",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_network_receive_bytes_total{image!=\"\",name!~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (kubernetes_io_hostname, name, image)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "-> docker: {{ kubernetes_io_hostname }} | {{ image }} ({{ name }})",
+                "metric": "network",
+                "refId": "A",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "- sum (rate (container_network_transmit_bytes_total{image!=\"\",name!~\"^k8s_.*\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (kubernetes_io_hostname, name, image)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "<- docker: {{ kubernetes_io_hostname }} | {{ image }} ({{ name }})",
+                "metric": "network",
+                "refId": "C",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_network_transmit_bytes_total{rkt_container_name!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (kubernetes_io_hostname, rkt_container_name)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "-> rkt: {{ kubernetes_io_hostname }} | {{ rkt_container_name }}",
+                "metric": "network",
+                "refId": "E",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "- sum (rate (container_network_transmit_bytes_total{rkt_container_name!=\"\",kubernetes_io_hostname=~\"^$Node$\",namespace=~\"^$namespace$\"}[1m])) by (kubernetes_io_hostname, rkt_container_name)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "<- rkt: {{ kubernetes_io_hostname }} | {{ rkt_container_name }}",
+                "metric": "network",
+                "refId": "F",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "Containers network I/O (1m avg)",
+            "tooltip": {
+              "msResolution": false,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "format": "Bps",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "Containers network I/O",
+        "type": "row"
+      },
+      {
+        "collapsed": false,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 43
+        },
+        "id": 36,
+        "panels": [],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "System services CPU usage",
+        "type": "row"
+      },
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "prometheus",
+          "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+        },
+        "decimals": 3,
+        "editable": true,
+        "error": false,
+        "fieldConfig": {
+          "defaults": {
+            "links": []
+          },
+          "overrides": []
+        },
+        "fill": 0,
+        "fillGradient": 0,
+        "grid": {},
+        "gridPos": {
+          "h": 7,
+          "w": 24,
+          "x": 0,
+          "y": 44
+        },
+        "height": "",
+        "hiddenSeries": false,
+        "id": 23,
+        "legend": {
+          "alignAsTable": true,
+          "avg": true,
+          "current": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "sort": "current",
+          "sortDesc": true,
+          "total": false,
+          "values": true
+        },
+        "lines": true,
+        "linewidth": 2,
+        "links": [],
+        "nullPointMode": "connected",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "10.0.2",
+        "pointradius": 5,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": false,
+        "steppedLine": true,
+        "targets": [
+          {
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "editorMode": "code",
+            "expr": "sum (rate (container_cpu_usage_seconds_total{systemd_service_name!=\"\",kubernetes_io_hostname=~\"^$Node$\"}[1m])) by (systemd_service_name)",
+            "hide": false,
+            "interval": "10s",
+            "intervalFactor": 1,
+            "legendFormat": "{{ systemd_service_name }}",
+            "metric": "container_cpu",
+            "range": true,
+            "refId": "A",
+            "step": 10
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "System services CPU usage (1m avg)",
+        "tooltip": {
+          "msResolution": true,
+          "shared": true,
+          "sort": 2,
+          "value_type": "cumulative"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "none",
+            "label": "cores",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": false
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 51
+        },
+        "id": 40,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 2,
+            "editable": true,
+            "error": false,
+            "fill": 0,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 7,
+              "w": 24,
+              "x": 0,
+              "y": 29
+            },
+            "hiddenSeries": false,
+            "id": 26,
+            "isNew": true,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "max": false,
+              "min": false,
+              "rightSide": true,
+              "show": true,
+              "sideWidth": 200,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "dataLinks": []
+            },
+            "percentage": false,
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": true,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (container_memory_working_set_bytes{systemd_service_name!=\"\",kubernetes_io_hostname=~\"^$Node$\"}) by (systemd_service_name)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "{{ systemd_service_name }}",
+                "metric": "container_memory_usage:sort_desc",
+                "refId": "A",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "System services memory usage",
+            "tooltip": {
+              "msResolution": false,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "format": "bytes",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "System services memory usage",
+        "type": "row"
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 52
+        },
+        "id": 38,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 3,
+            "editable": true,
+            "error": false,
+            "fieldConfig": {
+              "defaults": {
+                "links": []
+              },
+              "overrides": []
+            },
+            "fill": 0,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 14,
+              "w": 24,
+              "x": 0,
+              "y": 46
+            },
+            "hiddenSeries": false,
+            "id": 20,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "max": false,
+              "min": false,
+              "rightSide": false,
+              "show": true,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "alertThreshold": true
+            },
+            "percentage": false,
+            "pluginVersion": "10.0.2",
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": false,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_cpu_usage_seconds_total{id!=\"/\",kubernetes_io_hostname=~\"^$Node$\"}[1m])) by (id)",
+                "hide": false,
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "{{ id }}",
+                "metric": "container_cpu",
+                "refId": "A",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "All processes CPU usage (1m avg)",
+            "tooltip": {
+              "msResolution": true,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "$$hashKey": "object:254",
+                "format": "none",
+                "label": "cores",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "$$hashKey": "object:255",
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "All processes CPU usage",
+        "type": "row"
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 53
+        },
+        "id": 42,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 2,
+            "editable": true,
+            "error": false,
+            "fill": 0,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 14,
+              "w": 24,
+              "x": 0,
+              "y": 47
+            },
+            "hiddenSeries": false,
+            "id": 28,
+            "isNew": true,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "max": false,
+              "min": false,
+              "rightSide": false,
+              "show": true,
+              "sideWidth": 200,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "dataLinks": []
+            },
+            "percentage": false,
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": true,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (container_memory_working_set_bytes{id!=\"/\",kubernetes_io_hostname=~\"^$Node$\"}) by (id)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "{{ id }}",
+                "metric": "container_memory_usage:sort_desc",
+                "refId": "A",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "All processes memory usage",
+            "tooltip": {
+              "msResolution": false,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "format": "bytes",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "All processes memory usage",
+        "type": "row"
+      },
+      {
+        "collapsed": true,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "gridPos": {
+          "h": 1,
+          "w": 24,
+          "x": 0,
+          "y": 54
+        },
+        "id": 45,
+        "panels": [
+          {
+            "aliasColors": {},
+            "bars": false,
+            "dashLength": 10,
+            "dashes": false,
+            "datasource": {
+              "type": "prometheus",
+              "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+            },
+            "decimals": 2,
+            "editable": true,
+            "error": false,
+            "fill": 1,
+            "fillGradient": 0,
+            "grid": {},
+            "gridPos": {
+              "h": 14,
+              "w": 24,
+              "x": 0,
+              "y": 48
+            },
+            "hiddenSeries": false,
+            "id": 29,
+            "isNew": true,
+            "legend": {
+              "alignAsTable": true,
+              "avg": true,
+              "current": true,
+              "max": false,
+              "min": false,
+              "rightSide": false,
+              "show": true,
+              "sideWidth": 200,
+              "sort": "current",
+              "sortDesc": true,
+              "total": false,
+              "values": true
+            },
+            "lines": true,
+            "linewidth": 2,
+            "links": [],
+            "nullPointMode": "connected",
+            "options": {
+              "dataLinks": []
+            },
+            "percentage": false,
+            "pointradius": 5,
+            "points": false,
+            "renderer": "flot",
+            "seriesOverrides": [],
+            "spaceLength": 10,
+            "stack": false,
+            "steppedLine": false,
+            "targets": [
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "sum (rate (container_network_receive_bytes_total{id!=\"/\",kubernetes_io_hostname=~\"^$Node$\"}[1m])) by (id)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "-> {{ id }}",
+                "metric": "network",
+                "refId": "A",
+                "step": 10
+              },
+              {
+                "datasource": {
+                  "type": "prometheus",
+                  "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+                },
+                "expr": "- sum (rate (container_network_transmit_bytes_total{id!=\"/\",kubernetes_io_hostname=~\"^$Node$\"}[1m])) by (id)",
+                "interval": "10s",
+                "intervalFactor": 1,
+                "legendFormat": "<- {{ id }}",
+                "metric": "network",
+                "refId": "B",
+                "step": 10
+              }
+            ],
+            "thresholds": [],
+            "timeRegions": [],
+            "title": "All processes network I/O (1m avg)",
+            "tooltip": {
+              "msResolution": false,
+              "shared": true,
+              "sort": 2,
+              "value_type": "cumulative"
+            },
+            "type": "graph",
+            "xaxis": {
+              "mode": "time",
+              "show": true,
+              "values": []
+            },
+            "yaxes": [
+              {
+                "format": "Bps",
+                "logBase": 1,
+                "show": true
+              },
+              {
+                "format": "short",
+                "logBase": 1,
+                "show": false
+              }
+            ],
+            "yaxis": {
+              "align": false
+            }
+          }
+        ],
+        "targets": [
+          {
+            "datasource": {
+              "type": "datasource",
+              "uid": "grafana"
+            },
+            "refId": "A"
+          }
+        ],
+        "title": "All processes network I/O",
+        "type": "row"
+      }
+    ],
+    "refresh": "10s",
+    "schemaVersion": 38,
+    "style": "dark",
+    "tags": [
+      "kubernetes"
+    ],
+    "templating": {
+      "list": [
+        {
+          "allValue": "",
+          "current": {
+            "selected": true,
+            "text": "monitoring",
+            "value": "monitoring"
+          },
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "definition": "label_values(namespace)",
+          "hide": 0,
+          "includeAll": true,
+          "multi": false,
+          "name": "namespace",
+          "options": [],
+          "query": "label_values(namespace)",
+          "refresh": 1,
+          "regex": "",
+          "skipUrlSync": false,
+          "sort": 0,
+          "tagValuesQuery": "",
+          "tagsQuery": "",
+          "type": "query",
+          "useTags": false
+        },
+        {
+          "allValue": ".*",
+          "current": {
+            "selected": false,
+            "text": "All",
+            "value": "$__all"
+          },
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "definition": "",
+          "hide": 0,
+          "includeAll": true,
+          "multi": false,
+          "name": "Node",
+          "options": [],
+          "query": "label_values(kubernetes_io_hostname)",
+          "refresh": 1,
+          "regex": "",
+          "skipUrlSync": false,
+          "sort": 0,
+          "tagValuesQuery": "",
+          "tagsQuery": "",
+          "type": "query",
+          "useTags": false
+        }
+      ]
+    },
+    "time": {
+      "from": "now-5m",
+      "to": "now"
+    },
+    "timepicker": {
+      "refresh_intervals": [
+        "5s",
+        "10s",
+        "30s",
+        "1m",
+        "5m",
+        "15m",
+        "30m",
+        "1h",
+        "2h",
+        "1d"
+      ],
+      "time_options": [
+        "5m",
+        "15m",
+        "1h",
+        "6h",
+        "12h",
+        "24h",
+        "2d",
+        "7d",
+        "30d"
+      ]
+    },
+    "timezone": "browser",
+    "title": "Kubernetes Monitoring Dashboard",
+    "uid": "msqzbWjWk",
+    "version": 2,
+    "weekStart": ""
+  }
\ No newline at end of file
diff --git a/helm/capif/loki-logs.json b/helm/capif/loki-logs.json
new file mode 100644
index 0000000..e7e4d72
--- /dev/null
+++ b/helm/capif/loki-logs.json
@@ -0,0 +1,281 @@
+{
+    "annotations": {
+      "list": [
+        {
+          "builtIn": 1,
+          "datasource": {
+            "type": "datasource",
+            "uid": "grafana"
+          },
+          "enable": true,
+          "hide": true,
+          "iconColor": "rgba(0, 211, 255, 1)",
+          "name": "Annotations & Alerts",
+          "type": "dashboard"
+        }
+      ]
+    },
+    "description": "Simple Loki dashboard",
+    "editable": true,
+    "fiscalYearStartMonth": 0,
+    "gnetId": 13198,
+    "graphTooltip": 0,
+    "id": 9,
+    "links": [],
+    "liveNow": false,
+    "panels": [
+      {
+        "aliasColors": {},
+        "bars": false,
+        "dashLength": 10,
+        "dashes": false,
+        "datasource": {
+          "type": "loki",
+          "uid": "$datasource"
+        },
+        "fill": 0,
+        "fillGradient": 0,
+        "gridPos": {
+          "h": 8,
+          "w": 24,
+          "x": 0,
+          "y": 0
+        },
+        "hiddenSeries": false,
+        "id": 4,
+        "legend": {
+          "alignAsTable": true,
+          "avg": false,
+          "current": false,
+          "hideEmpty": true,
+          "hideZero": true,
+          "max": false,
+          "min": false,
+          "rightSide": true,
+          "show": true,
+          "total": false,
+          "values": false
+        },
+        "lines": true,
+        "linewidth": 1,
+        "nullPointMode": "null",
+        "options": {
+          "alertThreshold": true
+        },
+        "percentage": false,
+        "pluginVersion": "9.5.2",
+        "pointradius": 2,
+        "points": false,
+        "renderer": "flot",
+        "seriesOverrides": [],
+        "spaceLength": 10,
+        "stack": true,
+        "steppedLine": false,
+        "targets": [
+          {
+            "datasource": {
+              "uid": "$datasource"
+            },
+            "editorMode": "code",
+            "expr": "count_over_time({job=\"fluent-bit\"}[1m])",
+            "legendFormat": "{{ container_name }}",
+            "queryType": "range",
+            "refId": "A"
+          }
+        ],
+        "thresholds": [],
+        "timeRegions": [],
+        "title": "Metric Rate",
+        "tooltip": {
+          "shared": true,
+          "sort": 2,
+          "value_type": "individual"
+        },
+        "type": "graph",
+        "xaxis": {
+          "mode": "time",
+          "show": true,
+          "values": []
+        },
+        "yaxes": [
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": true
+          },
+          {
+            "format": "short",
+            "logBase": 1,
+            "show": true
+          }
+        ],
+        "yaxis": {
+          "align": false
+        }
+      },
+      {
+        "datasource": {
+          "type": "loki",
+          "uid": "e4f43364-7019-45a7-aa7a-14ce2d4ddb0b"
+        },
+        "gridPos": {
+          "h": 14,
+          "w": 24,
+          "x": 0,
+          "y": 8
+        },
+        "id": 2,
+        "options": {
+          "dedupStrategy": "none",
+          "enableLogDetails": true,
+          "prettifyLogMessage": false,
+          "showCommonLabels": false,
+          "showLabels": false,
+          "showTime": true,
+          "sortOrder": "Descending",
+          "wrapLogMessage": true
+        },
+        "pluginVersion": "7.1.3",
+        "targets": [
+          {
+            "datasource": {
+              "type": "loki",
+              "uid": "e4f43364-7019-45a7-aa7a-14ce2d4ddb0b"
+            },
+            "editorMode": "code",
+            "expr": "{job=~\"fluent-bit\"} |~ \"$string\"",
+            "legendFormat": "",
+            "queryType": "range",
+            "refId": "A"
+          }
+        ],
+        "title": "Loki Search",
+        "type": "logs"
+      }
+    ],
+    "refresh": "1m",
+    "schemaVersion": 38,
+    "style": "dark",
+    "tags": [],
+    "templating": {
+      "list": [
+        {
+          "current": {
+            "selected": false,
+            "text": "Loki",
+            "value": "Loki"
+          },
+          "hide": 0,
+          "includeAll": false,
+          "multi": false,
+          "name": "datasource",
+          "options": [],
+          "query": "loki",
+          "queryValue": "",
+          "refresh": 1,
+          "regex": "",
+          "skipUrlSync": false,
+          "type": "datasource"
+        },
+        {
+          "allValue": ".*",
+          "current": {
+            "selected": false,
+            "text": "All",
+            "value": "$__all"
+          },
+          "datasource": {
+            "type": "loki",
+            "uid": "$datasource"
+          },
+          "definition": "label_values(container_name)",
+          "hide": 0,
+          "includeAll": true,
+          "label": "app",
+          "multi": false,
+          "name": "app",
+          "options": [],
+          "query": "label_values(container_name)",
+          "refresh": 2,
+          "regex": "(.*)-.*-.*-.*-.*-.*",
+          "skipUrlSync": false,
+          "sort": 0,
+          "tagValuesQuery": "",
+          "tagsQuery": "",
+          "type": "query",
+          "useTags": false
+        },
+        {
+          "allValue": ".*",
+          "current": {
+            "selected": false,
+            "text": "All",
+            "value": "$__all"
+          },
+          "datasource": {
+            "type": "loki",
+            "uid": "$datasource"
+          },
+          "definition": "label_values(container_name)",
+          "hide": 0,
+          "includeAll": true,
+          "label": "job",
+          "multi": false,
+          "name": "job",
+          "options": [],
+          "query": "label_values(container_name)",
+          "refresh": 2,
+          "regex": "$app-(.*)",
+          "skipUrlSync": false,
+          "sort": 0,
+          "tagValuesQuery": "",
+          "tagsQuery": "",
+          "type": "query",
+          "useTags": false
+        },
+        {
+          "current": {
+            "selected": false,
+            "text": "",
+            "value": ""
+          },
+          "hide": 0,
+          "label": "string",
+          "name": "string",
+          "options": [
+            {
+              "selected": true,
+              "text": "",
+              "value": ""
+            }
+          ],
+          "query": "",
+          "skipUrlSync": false,
+          "type": "textbox"
+        }
+      ]
+    },
+    "time": {
+      "from": "now-1h",
+      "to": "now"
+    },
+    "timepicker": {
+      "refresh_intervals": [
+        "5s",
+        "10s",
+        "30s",
+        "1m",
+        "5m",
+        "15m",
+        "30m",
+        "1h",
+        "2h",
+        "1d"
+      ]
+    },
+    "timezone": "",
+    "title": "Loki Logs",
+    "uid": "ffxEJdvGz",
+    "version": 6,
+    "weekStart": ""
+}
\ No newline at end of file
diff --git a/helm/capif/templates/_helpers.tpl b/helm/capif/templates/_helpers.tpl
new file mode 100644
index 0000000..35ce1ec
--- /dev/null
+++ b/helm/capif/templates/_helpers.tpl
@@ -0,0 +1,62 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "capif.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "capif.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "capif.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "capif.labels" -}}
+helm.sh/chart: {{ include "capif.chart" . }}
+{{ include "capif.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "capif.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "capif.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "capif.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "capif.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
diff --git a/helm/capif/templates/access-control-policy.yaml b/helm/capif/templates/access-control-policy.yaml
new file mode 100644
index 0000000..8b2b198
--- /dev/null
+++ b/helm/capif/templates/access-control-policy.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: access-control-policy
+  labels:
+    io.kompose.service: access-control-policy
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.accessControlPolicy.type }}
+  selector:
+    io.kompose.service: access-control-policy
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.accessControlPolicy.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/api-invocation-logs.yaml b/helm/capif/templates/api-invocation-logs.yaml
new file mode 100644
index 0000000..a9b4d8f
--- /dev/null
+++ b/helm/capif/templates/api-invocation-logs.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: api-invocation-logs
+  labels:
+    io.kompose.service: api-invocation-logs
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.apiInvocationLogs.type }}
+  selector:
+    io.kompose.service: api-invocation-logs
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.apiInvocationLogs.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/api-invoker-management.yaml b/helm/capif/templates/api-invoker-management.yaml
new file mode 100644
index 0000000..3eaeda4
--- /dev/null
+++ b/helm/capif/templates/api-invoker-management.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: api-invoker-management
+  labels:
+    io.kompose.service: api-invoker-management
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.apiInvokerManagement.type }}
+  selector:
+    io.kompose.service: api-invoker-management
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.apiInvokerManagement.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/api-provider-management.yaml b/helm/capif/templates/api-provider-management.yaml
new file mode 100644
index 0000000..4237986
--- /dev/null
+++ b/helm/capif/templates/api-provider-management.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: api-provider-management
+  labels:
+    io.kompose.service: api-provider-management
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.apiProviderManagement.type }}
+  selector:
+    io.kompose.service: api-provider-management
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.apiProviderManagement.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/capif-events-configmap.yaml b/helm/capif/templates/capif-events-configmap.yaml
new file mode 100644
index 0000000..ca31c23
--- /dev/null
+++ b/helm/capif/templates/capif-events-configmap.yaml
@@ -0,0 +1,28 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-events-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'col': 'eventsdetails',
+      'certs_col': "certs",
+      'capif_invokers_col': 'invokerdetails',
+      'capif_providers_col': 'providerenrolmentdetails',
+      'host': 'mongo',
+      'port': "27017"
+    }   
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
diff --git a/helm/capif/templates/capif-events.yaml b/helm/capif/templates/capif-events.yaml
new file mode 100644
index 0000000..40b3d7b
--- /dev/null
+++ b/helm/capif/templates/capif-events.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: capif-events
+  labels:
+    io.kompose.service: capif-events
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.capifEvents.type }}
+  selector:
+    io.kompose.service: capif-events
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.capifEvents.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/capif-invocation-configmap.yaml b/helm/capif/templates/capif-invocation-configmap.yaml
new file mode 100644
index 0000000..68fc1f1
--- /dev/null
+++ b/helm/capif/templates/capif-invocation-configmap.yaml
@@ -0,0 +1,29 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-invocation-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'logs_col': 'invocationlogs',
+      'invoker_col': 'invokerdetails',
+      'prov_col': 'providerenrolmentdetails',
+      'serv_col': 'serviceapidescriptions',
+      'capif_users_col': "user",
+      'host': 'mongo',
+      'port': "27017"
+    }
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
diff --git a/helm/capif/templates/capif-invoker-configmap.yaml b/helm/capif/templates/capif-invoker-configmap.yaml
new file mode 100644
index 0000000..32bab3c
--- /dev/null
+++ b/helm/capif/templates/capif-invoker-configmap.yaml
@@ -0,0 +1,41 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-invoker-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'col': 'invokerdetails',
+      'capif_users_col': "user",
+      'certs_col': "certs",
+      'service_col': 'serviceapidescriptions',
+      'host': 'mongo',
+      'port': "27017"
+    }
+    mongo_register: {
+      'user': '{{ .Values.mongoRegister.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongoRegister.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif_users',
+      'col': 'user',
+      'host': 'mongo-register',
+      'port': '27017'
+    }
+    ca_factory: {
+      "url": {{ quote .Values.parametersVault.env.vaultHostname }},
+      "port": {{ quote .Values.parametersVault.env.vaultPort }},
+      "token": {{ quote .Values.parametersVault.env.vaultAccessToken }}
+    }
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
\ No newline at end of file
diff --git a/helm/capif/templates/capif-logs-configmap.yaml b/helm/capif/templates/capif-logs-configmap.yaml
new file mode 100644
index 0000000..53cae6e
--- /dev/null
+++ b/helm/capif/templates/capif-logs-configmap.yaml
@@ -0,0 +1,27 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-logs-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'logs_col': 'invocationlogs',
+      'capif_users_col': "user",
+      'host': 'mongo',
+      'port': "27017"
+    }
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
+
diff --git a/helm/capif/templates/capif-provider-configmap.yaml b/helm/capif/templates/capif-provider-configmap.yaml
new file mode 100644
index 0000000..28e530f
--- /dev/null
+++ b/helm/capif/templates/capif-provider-configmap.yaml
@@ -0,0 +1,41 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-provider-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'col': 'providerenrolmentdetails',
+      'certs_col': "certs",
+      'capif_users': 'user',
+      'host': 'mongo',
+      'port': "27017"
+    }
+    mongo_register: {
+      'user': '{{ .Values.mongoRegister.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongoRegister.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif_users',
+      'col': 'user',
+      'host': 'mongo-register',
+      'port': '27017'
+    }
+    ca_factory: {
+      "url": {{ quote .Values.parametersVault.env.vaultHostname }},
+      "port": {{ quote .Values.parametersVault.env.vaultPort }},
+      "token": {{ quote .Values.parametersVault.env.vaultAccessToken }}
+    }
+
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
\ No newline at end of file
diff --git a/helm/capif/templates/capif-published-configmap.yaml b/helm/capif/templates/capif-published-configmap.yaml
new file mode 100644
index 0000000..507afd4
--- /dev/null
+++ b/helm/capif/templates/capif-published-configmap.yaml
@@ -0,0 +1,27 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-published-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'col': 'serviceapidescriptions',
+      'certs_col': "certs",
+      'capif_provider_col': "providerenrolmentdetails",
+      'host': 'mongo',
+      'port': "27017"
+    }
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
\ No newline at end of file
diff --git a/helm/capif/templates/capif-routing-info.yaml b/helm/capif/templates/capif-routing-info.yaml
new file mode 100644
index 0000000..6de48aa
--- /dev/null
+++ b/helm/capif/templates/capif-routing-info.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: capif-routing-info
+  labels:
+    io.kompose.service: capif-routing-info
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.capifRoutingInfo.type }}
+  selector:
+    io.kompose.service: capif-routing-info
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.capifRoutingInfo.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/capif-security-configmap.yaml b/helm/capif/templates/capif-security-configmap.yaml
new file mode 100644
index 0000000..ade6a59
--- /dev/null
+++ b/helm/capif/templates/capif-security-configmap.yaml
@@ -0,0 +1,28 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-security-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'col': 'security',
+      'capif_service_col': 'serviceapidescriptions',
+      'certs_col': "certs",
+      'capif_invokers' : 'invokerdetails',
+      'host': 'mongo',
+      'port': "27017"
+    }
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
\ No newline at end of file
diff --git a/helm/capif/templates/capif-security.yaml b/helm/capif/templates/capif-security.yaml
new file mode 100644
index 0000000..e0bf7d8
--- /dev/null
+++ b/helm/capif/templates/capif-security.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: capif-security
+  labels:
+    io.kompose.service: capif-security
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.capifSecurity.type }}
+  selector:
+    io.kompose.service: capif-security
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.capifSecurity.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/capif-service-configmap.yaml b/helm/capif/templates/capif-service-configmap.yaml
new file mode 100644
index 0000000..1cd3d66
--- /dev/null
+++ b/helm/capif/templates/capif-service-configmap.yaml
@@ -0,0 +1,27 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: capif-service-configmap
+data:
+  config.yaml: |
+    mongo: {
+      'user': '{{ .Values.mongo.mongo.env.mongoInitdbRootUsername }}',
+      'password': '{{ .Values.mongo.mongo.env.mongoInitdbRootPassword }}',
+      'db': 'capif',
+      'col': 'serviceapidescriptions',
+      'invokers_col': 'invokerdetails',
+      'capif_users_col': "user",
+      'host': 'mongo',
+      'port': "27017"
+    }
+
+    monitoring: {
+      "fluent_bit_host": fluent-bit,
+      "fluent_bit_port": 24224,
+      "opentelemetry_url": "otel-collector",
+      "opentelemetry_port": "55680",
+      "opentelemetry_max_queue_size": 8192,
+      "opentelemetry_schedule_delay_millis": 20000,
+      "opentelemetry_max_export_batch_size": 2048,
+      "opentelemetry_export_timeout_millis": 60000
+    }
\ No newline at end of file
diff --git a/helm/capif/templates/deployment.yaml b/helm/capif/templates/deployment.yaml
new file mode 100644
index 0000000..4c2e026
--- /dev/null
+++ b/helm/capif/templates/deployment.yaml
@@ -0,0 +1,1001 @@
+{{- if eq .Values.CapifClient.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: capif-client
+  labels:
+    io.kompose.service: capif-client
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.CapifClient.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: capif-client
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: capif-client
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: CAPIF_HOSTNAME
+          value: nginx.mon.svc.cluster.local
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        image: {{ .Values.CapifClient.image.repository }}:{{ .Values.CapifClient.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.CapifClient.image.imagePullPolicy }}
+        name: capif-client
+        resources:
+            {{- toYaml .Values.CapifClient.resources | nindent 12 }}
+      restartPolicy: Always
+{{- end }}
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: access-control-policy
+  labels:
+    io.kompose.service: access-control-policy
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.accessControlPolicy.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: access-control-policy
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: access-control-policy
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: CAPIF_HOSTNAME
+          value: {{ quote .Values.nginx.nginx.env.capifHostname }}
+        - name: MONITORING
+          value: {{ quote .Values.accessControlPolicy.env.monitoring }}
+        image: {{ .Values.accessControlPolicy.image.repository }}:{{ .Values.accessControlPolicy.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.accessControlPolicy.image.imagePullPolicy }}
+        name: access-control-policy
+        ports:
+        - containerPort: 8080
+        resources:
+            {{- toYaml .Values.accessControlPolicy.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 10
+          periodSeconds: 5
+      restartPolicy: Always
+
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: api-invocation-logs
+  labels:
+    io.kompose.service: api-invocation-logs
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.apiInvocationLogs.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: api-invocation-logs
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: api-invocation-logs
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-invocation-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: CAPIF_HOSTNAME
+          value: {{ quote .Values.nginx.nginx.env.capifHostname }}
+        - name: MONITORING
+          value: {{ quote .Values.apiInvocationLogs.apiInvocationLogs.env.monitoring }}
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.apiInvocationLogs.apiInvocationLogs.image.repository }}:{{ .Values.apiInvocationLogs.apiInvocationLogs.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.apiInvocationLogs.apiInvocationLogs.image.imagePullPolicy }}
+        name: api-invocation-logs
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-invocation-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.apiInvocationLogs.apiInvocationLogs.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 10
+          periodSeconds: 5
+      volumes:
+      - name: capif-invocation-config
+        configMap:
+          name: capif-invocation-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: api-invoker-management
+  labels:
+    io.kompose.service: api-invoker-management
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.apiInvokerManagement.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: api-invoker-management
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: api-invoker-management
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-invoker-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.apiInvokerManagement.apiInvokerManagement.env.monitoring }}
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        image: {{ .Values.apiInvokerManagement.apiInvokerManagement.image.repository }}:{{
+          .Values.apiInvokerManagement.apiInvokerManagement.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.apiInvokerManagement.apiInvokerManagement.image.imagePullPolicy }}
+        name: api-invoker-management
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-invoker-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.apiInvokerManagement.apiInvokerManagement.resources | nindent 12 }}
+      volumes:
+      - name: capif-invoker-config
+        configMap:
+          name: capif-invoker-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: api-provider-management
+  labels:
+    io.kompose.service: api-provider-management
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.apiProviderManagement.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: api-provider-management
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: api-provider-management
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-provider-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.apiProviderManagement.apiProviderManagement.env.monitoring }}
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        image: {{ .Values.apiProviderManagement.apiProviderManagement.image.repository
+          }}:{{ .Values.apiProviderManagement.apiProviderManagement.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.apiProviderManagement.apiProviderManagement.image.imagePullPolicy }}
+        name: api-provider-management
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-provider-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.apiProviderManagement.apiProviderManagement.resources | nindent 12 }}
+      volumes:
+      - name: capif-provider-config
+        configMap:
+          name: capif-provider-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: capif-events
+  labels:
+    io.kompose.service: capif-events
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.capifEvents.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: capif-events
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: capif-events
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-events-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.capifEvents.capifEvents.env.monitoring }}
+        image: {{ .Values.capifEvents.capifEvents.image.repository }}:{{ .Values.capifEvents.capifEvents.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.capifEvents.capifEvents.image.imagePullPolicy }}
+        name: capif-events
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-events-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.capifEvents.capifEvents.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 5
+          periodSeconds: 5
+      volumes:
+      - name: capif-events-config
+        configMap:
+          name: capif-events-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: capif-routing-info
+  labels:
+    io.kompose.service: capif-routing-info
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.capifRoutingInfo.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: capif-routing-info
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: capif-routing-info
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.capifRoutingInfo.capifRoutingInfo.env.monitoring }}
+        image: {{ .Values.capifRoutingInfo.capifRoutingInfo.image.repository }}:{{ .Values.capifRoutingInfo.capifRoutingInfo.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.capifRoutingInfo.capifRoutingInfo.image.imagePullPolicy }}
+        name: capif-routing-info
+        ports:
+        - containerPort: 8080
+        resources:
+            {{- toYaml .Values.capifRoutingInfo.capifRoutingInfo.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 5
+          periodSeconds: 5
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: capif-security
+  labels:
+    io.kompose.service: capif-security
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.capifSecurity.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: capif-security
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: capif-security
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-security-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: CAPIF_HOSTNAME
+          value: {{ quote .Values.nginx.nginx.env.capifHostname }}
+        - name: MONITORING
+          value: {{ quote .Values.capifSecurity.capifSecurity.env.monitoring }}
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.capifSecurity.capifSecurity.image.repository }}:{{ .Values.capifSecurity.capifSecurity.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.capifSecurity.capifSecurity.image.imagePullPolicy }}
+        name: capif-security
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-security-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.capifSecurity.capifSecurity.resources | nindent 12 }}
+      volumes:
+      - name: capif-security-config
+        configMap:
+          name: capif-security-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+      restartPolicy: Always
+
+{{- if eq .Values.register.enable "true" }}
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: register
+  labels:
+    io.kompose.service: register
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.register.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: register
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: register
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/register-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        image: {{ .Values.register.register.image.repository }}:{{ .Values.register.register.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.register.register.image.imagePullPolicy }}
+        name: register
+        ports:
+        - containerPort: 8080
+        resources:
+            {{- toYaml .Values.register.register.resources | nindent 12 }}
+        volumeMounts:
+          - name: register-configmap
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+      volumes:
+      - name:  register-configmap
+        configMap:
+          name: register-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mongo-register
+  labels:
+    io.kompose.service: mongo-register
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.mongoRegister.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: mongo-register
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: mongo-register
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: MONGO_INITDB_ROOT_PASSWORD
+          value: {{ quote .Values.mongoRegister.mongo.env.mongoInitdbRootPassword }}
+        - name: MONGO_INITDB_ROOT_USERNAME
+          value: {{ quote .Values.mongoRegister.mongo.env.mongoInitdbRootUsername }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.mongoRegister.mongo.image.repository }}:{{ .Values.mongoRegister.mongo.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.mongoRegister.mongo.image.imagePullPolicy }}
+        name: mongo-register
+        ports:
+        - containerPort: 27017
+        resources:
+            {{- toYaml .Values.mongoRegister.mongo.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 27017
+#          initialDelaySeconds: 5
+          periodSeconds: 5
+      restartPolicy: Always
+{{- end }}
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: logs
+  labels:
+    io.kompose.service: logs
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.logs.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: logs
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: logs
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-logs-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.logs.logs.env.monitoring }}
+        image: {{ .Values.logs.logs.image.repository }}:{{ .Values.logs.logs.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.logs.logs.image.imagePullPolicy }}
+        name: logs
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-logs-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.logs.logs.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 5
+          periodSeconds: 5
+      volumes:
+      - name: capif-logs-config
+        configMap:
+          name: capif-logs-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mongo
+  labels:
+    io.kompose.service: mongo
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.mongo.replicas }}
+  strategy:
+    type: Recreate
+  selector:
+    matchLabels:
+      io.kompose.service: mongo
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: mongo
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: MONGO_INITDB_ROOT_PASSWORD
+          value: {{ quote .Values.mongo.mongo.env.mongoInitdbRootPassword }}
+        - name: MONGO_INITDB_ROOT_USERNAME
+          value: {{ quote .Values.mongo.mongo.env.mongoInitdbRootUsername }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.mongo.mongo.image.repository }}:{{ .Values.mongo.mongo.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.mongo.mongo.image.imagePullPolicy }}
+        name: mongo
+        ports:
+        - containerPort: 27017
+        securityContext:
+            runAsUser: 0
+        {{- if eq .Values.mongo.persistence.enable "true" }}
+        volumeMounts:
+            - name: mongo-pvc
+              mountPath: /data/db
+        {{- end }}
+        resources:
+            {{- toYaml .Values.mongo.mongo.resources | nindent 12 }}
+        livenessProbe:
+          tcpSocket:
+            port: 27017
+          initialDelaySeconds: 20
+          periodSeconds: 5
+        readinessProbe:
+          tcpSocket:
+            port: 27017
+#          initialDelaySeconds: 5
+          periodSeconds: 5
+      - name: mongo-helper
+        image: busybox
+        command:
+          - sh
+          - -c
+          - while true ; do echo alive ; sleep 10 ; done
+        {{- if eq .Values.mongo.persistence.enable "true" }}
+        volumeMounts:
+        - mountPath: /mongodata
+          name: mongo-pvc
+        {{- end }}
+      {{- if eq .Values.mongo.persistence.enable "true" }}
+      volumes:
+      - name: mongo-pvc
+        persistentVolumeClaim:
+          claimName: mongo-pvc
+      {{- end }}
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mongo-express
+  labels:
+    io.kompose.service: mongo-express
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.mongoExpress.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: mongo-express
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: mongo-express
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: ME_CONFIG_MONGODB_ADMINPASSWORD
+          value: {{ quote .Values.mongoExpress.mongoExpress.env.meConfigMongodbAdminpassword
+            }}
+        - name: ME_CONFIG_MONGODB_ADMINUSERNAME
+          value: {{ quote .Values.mongoExpress.mongoExpress.env.meConfigMongodbAdminusername
+            }}
+        - name: ME_CONFIG_MONGODB_URL
+          value: {{ quote .Values.mongoExpress.mongoExpress.env.meConfigMongodbUrl }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.mongoExpress.mongoExpress.image.repository }}:{{ .Values.mongoExpress.mongoExpress.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.mongoExpress.mongoExpress.image.imagePullPolicy }}
+        name: mongo-express
+        ports:
+        - containerPort: 8081
+        resources:
+            {{- toYaml .Values.mongoExpress.mongoExpress.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8081
+#          initialDelaySeconds: 0
+          periodSeconds: 5     
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+  labels:
+    io.kompose.service: nginx
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.nginx.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: nginx
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: nginx
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: CAPIF_HOSTNAME
+          value: {{ quote .Values.nginx.nginx.env.capifHostname }}
+        - name: VAULT_HOSTNAME
+          value: {{ quote .Values.parametersVault.env.vaultHostname }}
+        - name: VAULT_PORT
+          value: {{ quote .Values.parametersVault.env.vaultPort }}
+        - name: VAULT_ACCESS_TOKEN
+          value: {{ quote .Values.parametersVault.env.vaultAccessToken }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.nginx.nginx.image.repository }}:{{ .Values.nginx.nginx.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.nginx.nginx.image.imagePullPolicy }}
+        name: nginx
+        ports:
+        - containerPort: 8080
+        - containerPort: 443
+        livenessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 20
+          periodSeconds: 5
+#        readinessProbe:
+#          tcpSocket:
+#            port: 8080
+#          initialDelaySeconds: 60
+#          periodSeconds: 5
+        resources:
+            {{- toYaml .Values.nginx.nginx.resources | nindent 12 }}
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: published-apis
+  labels:
+    io.kompose.service: published-apis
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.publishedApis.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: published-apis
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: published-apis
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-published-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.publishedApis.publishedApis.env.monitoring }}
+        image: {{ .Values.publishedApis.publishedApis.image.repository }}:{{ .Values.publishedApis.publishedApis.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.publishedApis.publishedApis.image.imagePullPolicy }}
+        name: published-apis
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-published-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.publishedApis.publishedApis.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 5
+          periodSeconds: 5
+      volumes:
+      - name: capif-published-config
+        configMap:
+          name: capif-published-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: redis
+  labels:
+    io.kompose.service: redis
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.redis.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: redis
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: redis
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - args:
+        - redis-server
+        env:
+        - name: REDIS_REPLICATION_MODE
+          value: {{ quote .Values.redis.redis.env.redisReplicationMode }}
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        image: {{ .Values.redis.redis.image.repository }}:{{ .Values.redis.redis.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.redis.redis.image.imagePullPolicy }}
+        name: redis
+        ports:
+        - containerPort: 6379
+        resources:
+            {{- toYaml .Values.redis.redis.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 6379
+#          initialDelaySeconds: 5
+          periodSeconds: 5
+        livenessProbe:
+          tcpSocket:
+            port: 6379
+          initialDelaySeconds: 5
+          periodSeconds: 5
+      restartPolicy: Always
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: service-apis
+  labels:
+    io.kompose.service: service-apis
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+spec:
+  replicas: {{ .Values.serviceApis.replicas }}
+  selector:
+    matchLabels:
+      io.kompose.service: service-apis
+    {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        io.kompose.network/services-default: "true"
+        io.kompose.service: service-apis
+      {{- include "capif.selectorLabels" . | nindent 8 }}
+      annotations:
+        date: "{{  now | unixEpoch }}"
+        checksum/config: {{ include (print $.Template.BasePath "/capif-service-configmap.yaml") . | sha256sum }}
+    spec:
+      hostAliases:
+        - ip: "{{ .Values.ingress.ip }}"
+          hostnames:
+            - "{{ .Values.nginx.nginx.env.capifHostname }}"
+      containers:
+      - env:
+        - name: KUBERNETES_CLUSTER_DOMAIN
+          value: {{ quote .Values.kubernetesClusterDomain }}
+        - name: MONITORING
+          value: {{ quote .Values.serviceApis.serviceApis.env.monitoring }}
+        image: {{ .Values.serviceApis.serviceApis.image.repository }}:{{ .Values.serviceApis.serviceApis.image.tag | default .Chart.AppVersion }}
+        imagePullPolicy: {{ .Values.serviceApis.serviceApis.image.imagePullPolicy }}
+        name: service-apis
+        ports:
+        - containerPort: 8080
+        volumeMounts:
+          - name: capif-service-config
+            mountPath: /usr/src/app/config.yaml
+            subPath: config.yaml
+        resources:
+            {{- toYaml .Values.serviceApis.serviceApis.resources | nindent 12 }}
+        readinessProbe:
+          tcpSocket:
+            port: 8080
+          initialDelaySeconds: 5
+          periodSeconds: 5
+      volumes:
+      - name: capif-service-config
+        configMap:
+          name: capif-service-configmap
+          items:
+          - key: "config.yaml"
+            path: "config.yaml"
+      restartPolicy: Always
\ No newline at end of file
diff --git a/helm/capif/templates/fluent-bit-service.yaml b/helm/capif/templates/fluent-bit-service.yaml
new file mode 100644
index 0000000..90653b3
--- /dev/null
+++ b/helm/capif/templates/fluent-bit-service.yaml
@@ -0,0 +1,24 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  creationTimestamp: null
+  labels:
+    io.kompose.service: fluent-bit
+    {{- include "capif.labels" . | nindent 4 }}
+  name: fluent-bit
+spec:
+  ports:
+    - name: "24224-tcp"
+      port: 24224
+      targetPort: 24224
+    - name: 24224-udp
+      port: 24224
+      protocol: UDP
+      targetPort: 24224
+  selector:
+    io.kompose.service: fluent-bit
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/fluentbit-configmap.yaml b/helm/capif/templates/fluentbit-configmap.yaml
new file mode 100644
index 0000000..20467b1
--- /dev/null
+++ b/helm/capif/templates/fluentbit-configmap.yaml
@@ -0,0 +1,24 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: fluent-bit-configmap
+data:
+  LOKI_URL: {{ quote .Values.monitoring.fluentBit.env.lokiUrl }}
+  fluent-bit.conf: |
+    [INPUT]
+        Name        forward
+        Listen      0.0.0.0
+        Port        24224
+    [Output]
+        Name grafana-loki
+        Match *
+        Url ${LOKI_URL}
+        RemoveKeys source
+        Labels {job="fluent-bit"}
+        LabelKeys container_name, traceID
+        BatchWait 1s
+        BatchSize 1001024
+        LineFormat json
+        LogLevel info
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/fluentbit-deployment.yaml b/helm/capif/templates/fluentbit-deployment.yaml
new file mode 100644
index 0000000..925ec02
--- /dev/null
+++ b/helm/capif/templates/fluentbit-deployment.yaml
@@ -0,0 +1,59 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: fluent-bit
+    {{- include "capif.labels" . | nindent 4 }}
+  name: fluent-bit
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      io.kompose.service: fluent-bit
+      {{- include "capif.selectorLabels" . | nindent 6 }}
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      annotations:
+        kompose.cmd: kompose -f docker-compose.yml convert
+        kompose.version: 1.28.0 (c4137012e)
+        checksum/config: {{ include (print $.Template.BasePath "/fluentbit-configmap.yaml") . | sha256sum }}
+      creationTimestamp: null
+      labels:
+        io.kompose.network/monitoring-default: "true"
+        io.kompose.service: fluent-bit
+        {{- include "capif.selectorLabels" . | nindent 8 }}
+    spec:
+      containers:
+        - env:
+            - name: LOKI_URL
+              valueFrom:
+                configMapKeyRef:
+                  name: fluent-bit-configmap
+                  key: LOKI_URL
+          image: {{ .Values.monitoring.fluentBit.image.repository }}:{{ .Values.monitoring.fluentBit.image.tag }}
+          name: fluent-bit
+          ports:
+            - containerPort: 24224
+            - containerPort: 24224
+              protocol: UDP
+          resources:
+            {{- toYaml .Values.monitoring.fluentBit.resources | nindent 12 }}
+          volumeMounts:
+            - name: fluent-bit-conf
+              mountPath: /fluent-bit/etc/fluent-bit.conf
+              subPath: fluent-bit.conf
+      restartPolicy: Always
+      volumes:
+        - name: fluent-bit-conf
+          configMap:
+            name: fluent-bit-configmap
+            items:
+            - key: "fluent-bit.conf"
+              path: "fluent-bit.conf"
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/grafana-configmap.yaml b/helm/capif/templates/grafana-configmap.yaml
new file mode 100644
index 0000000..654101f
--- /dev/null
+++ b/helm/capif/templates/grafana-configmap.yaml
@@ -0,0 +1,108 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: datasources
+data:
+  datasources.yaml: |
+    apiVersion: 1 
+    datasources:
+      - name: Loki
+        type: loki
+        uid: e4f43364-7019-45a7-aa7a-14ce2d4ddb0b
+        typeName: Loki
+        typeLogoUrl: public/app/plugins/datasource/loki/img/loki_icon.svg
+        access: proxy
+        url: {{ .Values.monitoring.grafana.env.lokiUrl }}
+        user: ''
+        database: ''
+        basicAuth: false
+        isDefault: false
+        jsonData:
+          derivedFields:
+          - datasourceUid: fee7e008-f836-424a-b701-88cad583c715
+            matcherRegex: '"traceID":\s*"([a-fA-F0-9]+)"'
+            name: traceID
+            url: "$${__value.raw}"
+        readOnly: false 
+      - name: Prometheus
+        type: prometheus
+        typeName: Prometheus
+        typeLogoUrl: public/app/plugins/datasource/prometheus/img/prometheus_logo.svg
+        access: proxy
+        url: {{ .Values.monitoring.grafana.env.prometheusUrl }}
+        uid: af6b44aa-0703-4979-825c-c1afba946534
+        user: ''
+        database: ''
+        basicAuth: false
+        isDefault: false
+        jsonData:
+          httpMethod: POST
+          prometheusType: Prometheus
+          prometheusVersion: 2.40.1
+        readOnly: false 
+      - name: Tempo
+        type: tempo
+        typeName: Tempo
+        typeLogoUrl: public/app/plugins/datasource/tempo/img/tempo_logo.svg
+        uid: fee7e008-f836-424a-b701-88cad583c715
+        access: proxy
+        url: {{ .Values.monitoring.grafana.env.tempoUrl }} 
+        user: ''
+        database: ''
+        basicAuth: false
+        isDefault: false
+        jsonData:
+          lokiSearch:
+            datasourceUid: e4f43364-7019-45a7-aa7a-14ce2d4ddb0b
+        readOnly: false
+---
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: default
+data:
+  default.yaml: |
+    apiVersion: 1
+    providers:
+      - name: Default # A uniquely identifiable name for the provider
+        orgId: 1
+        folder: "" # The folder where to place the dashboards
+        folderUid: ""
+        type: file
+        disableDeletion: false
+        allowUiUpdates: true
+        options:
+          path: /var/lib/grafana/dashboards
+
+---
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: docker-monitoring
+data:
+  Docker-monitoring.json: |-
+{{ .Files.Get "docker-monitoring.json" | indent 4 }}
+
+---
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: kubernetes-dashboard
+data:
+  kubernetes-dashboard.json: |
+{{ .Files.Get "kubernetes-dashboard.json" | indent 4 }}
+
+---
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: loki-logs
+data:
+  loki-logs.json: |
+{{ .Files.Get "loki-logs.json" | indent 4 }}
+{{- end }}
diff --git a/helm/capif/templates/grafana-deployment.yaml b/helm/capif/templates/grafana-deployment.yaml
new file mode 100644
index 0000000..844f32e
--- /dev/null
+++ b/helm/capif/templates/grafana-deployment.yaml
@@ -0,0 +1,109 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: grafana
+    {{- include "capif.labels" . | nindent 4 }}
+  name: grafana
+spec:
+  replicas: 1
+  strategy:
+    type: Recreate
+  selector:
+    matchLabels:
+      io.kompose.service: grafana
+      {{- include "capif.selectorLabels" . | nindent 6 }}
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      annotations:
+        kompose.cmd: kompose -f docker-compose.yml convert
+        kompose.version: 1.28.0 (c4137012e)
+        checksum/config: {{ include (print $.Template.BasePath "/grafana-configmap.yaml") . | sha256sum }}
+      labels:
+        io.kompose.network/monitoring-default: "true"
+        io.kompose.service: grafana
+        {{- include "capif.selectorLabels" . | nindent 8 }}
+    spec:
+      containers:
+        - env:
+            - name: GF_AUTH_ANONYMOUS_ENABLED
+              value: {{ quote .Values.monitoring.grafana.env.gfAuthAnonymousEnable }}
+            - name: GF_SECURITY_ALLOW_EMBEDDING
+              value: {{ quote .Values.monitoring.grafana.env.gfSecurityAllowEmbedding }}
+            - name: GF_PATHS_PROVISIONING
+              value: /etc/grafana/provisioning
+          image: {{ .Values.monitoring.grafana.image.repository }}:{{ .Values.monitoring.grafana.image.tag }}
+          name: grafana
+          envFrom:
+            - secretRef:
+                name: grafana-secrets
+          ports:
+            - containerPort: 3000
+          resources:
+            {{- toYaml .Values.monitoring.grafana.resources | nindent 12 }}
+          securityContext:
+            runAsUser: 0
+          volumeMounts:
+            - name: grafana-datasources
+              mountPath: /etc/grafana/provisioning/datasources/datasources.yaml
+              subPath: datasources.yaml
+            - name: grafana-default
+              mountPath: /etc/grafana/provisioning/dashboards/default.yaml
+              subPath: default.yaml
+            - name: grafana-docker
+              mountPath: /var/lib/grafana/dashboards/Docker-monitoring.json
+              subPath: Docker-monitoring.json
+            - name: kubernetes-dashboard
+              mountPath: /var/lib/grafana/dashboards/kubernetes-dashboard.json
+              subPath: kubernetes-dashboard.json
+            - name: grafana-loki
+              mountPath: /var/lib/grafana/dashboards/Loki-Logs.json
+              subPath: loki-logs.json
+            {{- if eq .Values.monitoring.grafana.persistence.enable "true" }}
+            - name: grafana-claim0
+              mountPath: /var/lib/grafana
+            {{- end }}
+      volumes:
+      - name: grafana-datasources
+        configMap:
+          name: datasources
+          items:
+          - key: "datasources.yaml"
+            path: "datasources.yaml"
+      - name: grafana-default
+        configMap:
+          name: default
+          items:
+          - key: "default.yaml"
+            path: "default.yaml"
+      - name: grafana-docker
+        configMap:
+          name: docker-monitoring
+          items:
+          - key: "Docker-monitoring.json"
+            path: "Docker-monitoring.json"
+      - name: kubernetes-dashboard
+        configMap:
+          name: kubernetes-dashboard
+          items:
+          - key: "kubernetes-dashboard.json"
+            path: "kubernetes-dashboard.json"
+      - name: grafana-loki
+        configMap:
+          name: loki-logs
+          items:
+          - key: "loki-logs.json"
+            path: "loki-logs.json"
+    {{- if eq .Values.monitoring.grafana.persistence.enable "true" }}
+      - name: grafana-claim0
+        persistentVolumeClaim:
+          claimName: grafana-claim0
+    {{- end }}
+      restartPolicy: Always
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/grafana-ingress-route.yaml b/helm/capif/templates/grafana-ingress-route.yaml
new file mode 100644
index 0000000..2e2648b
--- /dev/null
+++ b/helm/capif/templates/grafana-ingress-route.yaml
@@ -0,0 +1,18 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.grafana.ingressRoute.enable "true" }}
+apiVersion: traefik.containo.us/v1alpha1 
+kind: IngressRoute
+metadata:
+  name: grafana-ingress-route 
+spec:
+  entryPoints: [web] 
+  routes:
+    - kind: Rule
+      match: Host(`{{ .Values.monitoring.grafana.ingressRoute.host }}`)
+      services:
+        - kind: Service
+          name: grafana 
+          port: {{ .Values.monitoring.grafana.service.port }}
+          scheme: http
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/grafana-ingress.yaml b/helm/capif/templates/grafana-ingress.yaml
new file mode 100644
index 0000000..7d7d0cb
--- /dev/null
+++ b/helm/capif/templates/grafana-ingress.yaml
@@ -0,0 +1,34 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if .Values.monitoring.grafana.ingress.enabled -}}
+{{- $svcPort := .Values.monitoring.grafana.service.port -}}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: grafana-ingress
+  labels:
+    {{- include "capif.labels" . | nindent 4 }}
+  {{- with .Values.monitoring.grafana.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+{{- if .Values.monitoring.grafana.ingress.ingressClassName }}
+  ingressClassName: {{ .Values.monitoring.grafana.ingress.ingressClassName }}
+{{- end }}
+  rules:
+    {{- range .Values.monitoring.grafana.ingress.hosts }}
+  - host: {{ .host | quote }}
+    http:
+      paths:
+        {{- range .paths }}
+        - path: {{ .path }}
+          pathType: {{ .pathType }}
+          backend:
+            service:
+              name: grafana
+              port:
+                number: {{ $svcPort }}
+        {{- end }}
+    {{- end }}
+{{- end }}
+{{- end }}
diff --git a/helm/capif/templates/grafana-pvc.yaml b/helm/capif/templates/grafana-pvc.yaml
new file mode 100644
index 0000000..b2c6672
--- /dev/null
+++ b/helm/capif/templates/grafana-pvc.yaml
@@ -0,0 +1,16 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.grafana.persistence.enable "true" }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  labels:
+    io.kompose.service: grafana-claim0
+  name: grafana-claim0
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ .Values.monitoring.grafana.persistence.storage }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/grafana-secrets.yaml b/helm/capif/templates/grafana-secrets.yaml
new file mode 100644
index 0000000..a6796d4
--- /dev/null
+++ b/helm/capif/templates/grafana-secrets.yaml
@@ -0,0 +1,10 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: grafana-secrets
+type: Opaque
+data:
+  GF_AUTH_ANONYMOUS_ORG_ROLE: {{ .Values.monitoring.grafana.env.gfAuthAnonymousOrgRole | b64enc | quote }}
+  GF_SECURITY_ADMIN_PASSWORD: {{ .Values.monitoring.grafana.env.gfSecurityAdminPassword | b64enc | quote }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/grafana-service.yaml b/helm/capif/templates/grafana-service.yaml
new file mode 100644
index 0000000..c628043
--- /dev/null
+++ b/helm/capif/templates/grafana-service.yaml
@@ -0,0 +1,17 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: grafana
+  labels:
+    {{- include "capif.labels" . | nindent 4 }}
+spec:
+  type: {{ .Values.monitoring.grafana.service.type }}
+  ports:
+    - port: {{ .Values.monitoring.grafana.service.port }}
+      targetPort: {{ .Values.monitoring.grafana.service.port }}
+      protocol: TCP
+      name: http-port
+  selector:
+    io.kompose.service: grafana
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/logs.yaml b/helm/capif/templates/logs.yaml
new file mode 100644
index 0000000..7382eff
--- /dev/null
+++ b/helm/capif/templates/logs.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: logs
+  labels:
+    io.kompose.service: logs
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.logs.type }}
+  selector:
+    io.kompose.service: logs
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.logs.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/loki-deployment.yaml b/helm/capif/templates/loki-deployment.yaml
new file mode 100644
index 0000000..cadf37d
--- /dev/null
+++ b/helm/capif/templates/loki-deployment.yaml
@@ -0,0 +1,54 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: loki
+    {{- include "capif.labels" . | nindent 4 }}
+  name: loki
+spec:
+  replicas: 1
+  strategy:
+    type: Recreate
+  selector:
+    matchLabels:
+      io.kompose.service: loki
+      {{- include "capif.selectorLabels" . | nindent 6 }}
+  strategy: {}
+  template:
+    metadata:
+      annotations:
+        kompose.cmd: kompose -f docker-compose.yml convert
+        kompose.version: 1.28.0 (c4137012e)
+      labels:
+        io.kompose.network/monitoring-default: "true"
+        io.kompose.service: loki
+        {{- include "capif.selectorLabels" . | nindent 8 }}
+    spec:
+      containers:
+        - args:
+            - -config.file=/etc/loki/local-config.yaml
+          image: {{ .Values.monitoring.loki.image.repository }}:{{ .Values.monitoring.loki.image.tag }}
+          name: loki
+          ports:
+            - containerPort: 3100
+          {{- if eq .Values.monitoring.loki.persistence.enable "true" }}
+          volumeMounts:
+            - name: loki-claim0
+              mountPath: /loki/wal
+          {{- end }}
+          resources:
+            {{- toYaml .Values.monitoring.loki.resources | nindent 12 }}
+          securityContext:
+            runAsUser: 0
+    {{- if eq .Values.monitoring.loki.persistence.enable "true" }}
+      volumes:
+      - name: loki-claim0
+        persistentVolumeClaim:
+          claimName: loki-claim0
+    {{- end }}
+      restartPolicy: Always
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/loki-pvc.yaml b/helm/capif/templates/loki-pvc.yaml
new file mode 100644
index 0000000..7da7816
--- /dev/null
+++ b/helm/capif/templates/loki-pvc.yaml
@@ -0,0 +1,16 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.loki.persistence.enable "true" }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  labels:
+    io.kompose.service: loki-claim0
+  name: loki-claim0
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ .Values.monitoring.loki.persistence.storage }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/loki-service.yaml b/helm/capif/templates/loki-service.yaml
new file mode 100644
index 0000000..cf711a9
--- /dev/null
+++ b/helm/capif/templates/loki-service.yaml
@@ -0,0 +1,19 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: loki
+    {{- include "capif.labels" . | nindent 4 }}
+  name: loki
+spec:
+  ports:
+    - name: "loki-port"
+      port: 3100
+      targetPort: 3100
+  selector:
+    io.kompose.service: loki
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/mongo-express.yaml b/helm/capif/templates/mongo-express.yaml
new file mode 100644
index 0000000..28d553b
--- /dev/null
+++ b/helm/capif/templates/mongo-express.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mongo-express
+  labels:
+    io.kompose.service: mongo-express
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.mongoExpress.type }}
+  selector:
+    io.kompose.service: mongo-express
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.mongoExpress.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/mongo-pvc.yaml b/helm/capif/templates/mongo-pvc.yaml
new file mode 100644
index 0000000..2996d57
--- /dev/null
+++ b/helm/capif/templates/mongo-pvc.yaml
@@ -0,0 +1,16 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.mongo.persistence.enable "true" }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  labels:
+    io.kompose.service: mongo-pvc
+  name: mongo-pvc
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ .Values.mongo.persistence.storage }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/mongo-register.yaml b/helm/capif/templates/mongo-register.yaml
new file mode 100644
index 0000000..82b307f
--- /dev/null
+++ b/helm/capif/templates/mongo-register.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mongo-register
+  labels:
+    io.kompose.service: mongo-register
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.mongoRegister.type }}
+  selector:
+    io.kompose.service: mongo-register
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.mongoRegister.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/mongo.yaml b/helm/capif/templates/mongo.yaml
new file mode 100644
index 0000000..8642764
--- /dev/null
+++ b/helm/capif/templates/mongo.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mongo
+  labels:
+    io.kompose.service: mongo
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.mongo.type }}
+  selector:
+    io.kompose.service: mongo
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.mongo.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/nginx-ingress-route.yaml b/helm/capif/templates/nginx-ingress-route.yaml
new file mode 100644
index 0000000..57ca0be
--- /dev/null
+++ b/helm/capif/templates/nginx-ingress-route.yaml
@@ -0,0 +1,17 @@
+{{- if eq .Values.nginx.ingressType "IngressRoute" }}
+---
+apiVersion: traefik.containo.us/v1alpha1 
+kind: IngressRoute
+metadata:
+  name: nginx-capif-ingress-route
+spec:
+  entryPoints: [web] 
+  routes:
+    - kind: Rule
+      match: Host(`{{ .Values.nginx.nginx.env.capifHostname }} && Path(`/ca-root`, `/sign-csr`, `/certdata`, `/register`, `/testdata`, `/getauth`, `/test`)`)
+      services:
+        - kind: Service
+          name: nginx 
+          port: 8080
+          scheme: http
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/nginx-ssl-ingress-route.yaml b/helm/capif/templates/nginx-ssl-ingress-route.yaml
new file mode 100644
index 0000000..8c806b6
--- /dev/null
+++ b/helm/capif/templates/nginx-ssl-ingress-route.yaml
@@ -0,0 +1,18 @@
+{{- if eq .Values.nginx.ingressType "IngressRoute" }}
+---
+apiVersion: traefik.containo.us/v1alpha1 
+kind: IngressRoute
+metadata:
+  name: nginx-ssl-capif-ingress-route 
+spec:
+  entryPoints: [web] 
+  routes:
+    - kind: Rule
+      match: Host(`{{ .Values.nginx.nginx.env.capifHostname }}`)
+      services:
+        - kind: Service
+          name: nginx 
+          port: 443
+      tls:
+        passthrough: true
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/nginx-ssl-route.yaml b/helm/capif/templates/nginx-ssl-route.yaml
new file mode 100644
index 0000000..3e24b72
--- /dev/null
+++ b/helm/capif/templates/nginx-ssl-route.yaml
@@ -0,0 +1,22 @@
+{{- if eq .Values.env "openshift" }}
+apiVersion: route.openshift.io/v1
+kind: Route
+metadata:
+  labels:
+  name: nginx-ssl
+spec:
+  host: {{ .Values.nginx.nginx.env.capifHostname }}
+  port:
+    targetPort: "443"
+  tls:
+    termination: passthrough
+  to:
+    kind: Service
+    name: nginx
+    weight: 100
+status:
+  ingress:
+  - conditions:
+    host: {{ .Values.nginx.nginx.env.capifHostname }}
+    routerCanonicalHostname: router-default.apps.ocp-epg.hi.inet
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/nginx-ssl.yaml b/helm/capif/templates/nginx-ssl.yaml
new file mode 100644
index 0000000..275e2c7
--- /dev/null
+++ b/helm/capif/templates/nginx-ssl.yaml
@@ -0,0 +1,32 @@
+{{- if eq .Values.nginx.ingressType "Ingress" }}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: nginx-register
+  labels:
+  {{- include "capif.labels" . | nindent 4 }}
+  {{- with .Values.nginx.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+    cert-manager.io/issuer: letsencrypt-issuer
+  {{- end }}
+spec:
+{{- if .Values.nginx.ingressClassName }}
+  ingressClassName: {{ .Values.nginx.ingressClassName }}
+{{- end }}
+  rules:
+  - host: "register{{ .Values.nginx.nginx.env.capifHostname }}"
+    http:
+      paths:
+      - backend:
+          service:
+            name: 'register'
+            port:
+              number: 8084
+        path: /
+        pathType: Prefix
+  tls:
+  - hosts:
+    - "register{{ .Values.nginx.nginx.env.capifHostname }}"
+    secretName: letsencrypt-secret
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/nginx.yaml b/helm/capif/templates/nginx.yaml
new file mode 100644
index 0000000..61856f5
--- /dev/null
+++ b/helm/capif/templates/nginx.yaml
@@ -0,0 +1,48 @@
+{{- if eq .Values.nginx.ingressType "Ingress" }}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: nginx
+  labels:
+  {{- include "capif.labels" . | nindent 4 }}
+  {{- with .Values.nginx.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+    nginx.ingress.kubernetes.io/backend-protocol: "HTTPS"
+    nginx.ingress.kubernetes.io/ssl-passthrough: "true"
+    nginx.ingress.kubernetes.io/ssl-redirect: "true"
+  {{- end }}
+spec:
+{{- if .Values.nginx.ingressClassName }}
+  ingressClassName: {{ .Values.nginx.ingressClassName }}
+{{- end }}
+  rules:
+  - host: "{{ .Values.nginx.nginx.env.capifHostname }}"
+    http:
+      paths:
+      - backend:
+          service:
+            name: 'nginx'
+            port:
+              number: 443
+        path: /
+        pathType: Prefix
+{{- end }}
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  labels:
+    io.kompose.service: nginx
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.nginx.type }}
+  selector:
+    io.kompose.service: nginx
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.nginx.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/otel-collector-configmap.yaml b/helm/capif/templates/otel-collector-configmap.yaml
new file mode 100644
index 0000000..fed1535
--- /dev/null
+++ b/helm/capif/templates/otel-collector-configmap.yaml
@@ -0,0 +1,37 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: open-telemetry-configmap
+data:
+  otel-collector-config.yaml: |
+    receivers:
+      otlp:
+        protocols:
+          grpc:
+            endpoint: 0.0.0.0:55680
+          http:
+            endpoint: 0.0.0.0:4318
+
+    processors:
+      batch:
+
+
+    exporters:
+      logging:
+        loglevel: debug
+      otlp:
+        #timeout: 60s
+        endpoint: {{ .Values.monitoring.otel.configMap.tempoEndpoint }}
+        tls:
+          insecure: true
+
+
+    service:
+      pipelines:
+        traces:
+          receivers: [otlp]
+          processors: [batch]
+          # exporters: [otlp]
+          exporters: [otlp]
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/otel-collector-deployment.yaml b/helm/capif/templates/otel-collector-deployment.yaml
new file mode 100644
index 0000000..8c83eca
--- /dev/null
+++ b/helm/capif/templates/otel-collector-deployment.yaml
@@ -0,0 +1,54 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: otel-collector
+    {{- include "capif.labels" . | nindent 4 }}
+  name: otel-collector
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      io.kompose.service: otel-collector
+      {{- include "capif.selectorLabels" . | nindent 6 }}
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      annotations:
+        kompose.cmd: kompose -f docker-compose.yml convert
+        kompose.version: 1.28.0 (c4137012e)
+        checksum/config: {{ include (print $.Template.BasePath "/otel-collector-configmap.yaml") . | sha256sum }}
+      labels:
+        io.kompose.network/monitoring-default: "true"
+        io.kompose.service: otel-collector
+        {{- include "capif.selectorLabels" . | nindent 8 }}
+    spec:
+      containers:
+        - args:
+            - --config
+            - /etc/otel-collector-config.yaml
+          image: {{ .Values.monitoring.otel.image.repository }}:{{ .Values.monitoring.otel.image.tag }}
+          name: otel-collector
+          ports:
+            - containerPort: 55680
+            - containerPort: 4317
+          resources:
+            {{- toYaml .Values.monitoring.otel.resources | nindent 12 }}
+          volumeMounts:
+            - name: op-telemetry
+              mountPath: /etc/otel-collector-config.yaml
+              subPath: otel-collector-config.yaml
+      restartPolicy: Always
+      volumes:
+        - name: op-telemetry
+          configMap:
+            name: open-telemetry-configmap
+            items:
+            - key: "otel-collector-config.yaml"
+              path: "otel-collector-config.yaml"
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/otel-collector-service.yaml b/helm/capif/templates/otel-collector-service.yaml
new file mode 100644
index 0000000..761b8ce
--- /dev/null
+++ b/helm/capif/templates/otel-collector-service.yaml
@@ -0,0 +1,22 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: otel-collector
+    {{- include "capif.labels" . | nindent 4 }}
+  name: otel-collector
+spec:
+  ports:
+    - name: "grpc-port"
+      port: 55680
+      targetPort: 55680
+    - name: "http-port"
+      port: 4318
+      targetPort: 4318
+  selector:
+    io.kompose.service: otel-collector
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/prometheus-clusterrole.yaml b/helm/capif/templates/prometheus-clusterrole.yaml
new file mode 100644
index 0000000..3470ffd
--- /dev/null
+++ b/helm/capif/templates/prometheus-clusterrole.yaml
@@ -0,0 +1,49 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: prometheus
+  labels:
+    app: prometheus
+rules:
+- apiGroups: [""]
+  resources:
+  - nodes
+  - nodes/proxy
+  - services
+  - endpoints
+  - pods
+  verbs: ["get", "list", "watch"]
+- apiGroups:
+  - extensions
+  resources:
+  - ingresses
+  verbs: ["get", "list", "watch"]
+- nonResourceURLs: ["/metrics"]
+  verbs: ["get"]
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: prometheus
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app: prometheus
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: prometheus
+  labels:
+    app: prometheus
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: prometheus
+subjects:
+- kind: ServiceAccount
+  name: prometheus
+  namespace: {{ .Release.Namespace }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/prometheus-configmap.yaml b/helm/capif/templates/prometheus-configmap.yaml
new file mode 100644
index 0000000..d2ab952
--- /dev/null
+++ b/helm/capif/templates/prometheus-configmap.yaml
@@ -0,0 +1,141 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  labels:
+    app: prometheus
+  name: prometheus-config
+data:
+  prometheus.rules: |-
+    groups:
+    - name: devopscube alert
+      rules:
+      - alert: High Pod Memory
+        expr: sum(container_memory_usage_bytes) > 1
+        for: 1m
+        labels:
+          severity: slack
+        annotations:
+          summary: High Memory Usage
+  prometheus.yml: |-
+    global:
+      scrape_interval: 30s
+      scrape_timeout: 10s
+    scrape_configs:
+    #------------- configuration to collect pods metrics kubelet -------------------
+    - job_name: 'kubernetes-cadvisor'
+      scheme: https
+      tls_config:
+        ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+      bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+      kubernetes_sd_configs:
+      - role: node
+      relabel_configs:
+      - action: labelmap
+        regex: __meta_kubernetes_node_label_(.+)
+      - target_label: __address__
+        replacement: kubernetes.default.svc:443
+      - source_labels: [__meta_kubernetes_node_name]
+        regex: (.+)
+        target_label: __metrics_path__
+        replacement: /api/v1/nodes/${1}/proxy/metrics/cadvisor
+    #------------- configuration to collect pods metrics -------------------
+    - job_name: 'kubernetes-pods'
+      honor_labels: true
+      kubernetes_sd_configs:
+      - role: pod
+      relabel_configs:
+      # select only those pods that has "prometheus.io/scrape: true" annotation
+      - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_scrape]
+        action: keep
+        regex: true
+      # set metrics_path (default is /metrics) to the metrics path specified in "prometheus.io/path: <metric path>" annotation.
+      - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_path]
+        action: replace
+        target_label: __metrics_path__
+        regex: (.+)
+      # set the scrapping port to the port specified in "prometheus.io/port: <port>" annotation and set address accordingly.
+      - source_labels: [__address__, __meta_kubernetes_pod_annotation_prometheus_io_port]
+        action: replace
+        regex: ([^:]+)(?::\d+)?;(\d+)
+        replacement: $1:$2
+        target_label: __address__
+      - action: labelmap
+        regex: __meta_kubernetes_pod_label_(.+)
+      - source_labels: [__meta_kubernetes_namespace]
+        action: replace
+        target_label: kubernetes_namespace
+      - source_labels: [__meta_kubernetes_pod_name]
+        action: replace
+        target_label: kubernetes_pod_name
+
+    #-------------- configuration to collect metrics from service endpoints -----------------------
+    - job_name: 'kubernetes-service-endpoints'
+      honor_labels: true
+      kubernetes_sd_configs:
+      - role: endpoints
+      relabel_configs:
+      # select only those endpoints whose service has "prometheus.io/scrape: true" annotation
+      - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_scrape]
+        action: keep
+        regex: true
+      # set the metrics_path to the path specified in "prometheus.io/path: <metric path>" annotation.
+      - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_path]
+        action: replace
+        target_label: __metrics_path__
+        regex: (.+)
+      # set the scrapping port to the port specified in "prometheus.io/port: <port>" annotation and set address accordingly.
+      - source_labels: [__address__, __meta_kubernetes_service_annotation_prometheus_io_port]
+        action: replace
+        target_label: __address__
+        regex: ([^:]+)(?::\d+)?;(\d+)
+        replacement: $1:$2
+      - action: labelmap
+        regex: __meta_kubernetes_service_label_(.+)
+      - source_labels: [__meta_kubernetes_namespace]
+        action: replace
+        target_label: kubernetes_namespace
+      - source_labels: [__meta_kubernetes_service_name]
+        action: replace
+        target_label: kubernetes_name
+
+    #---------------- configuration to collect metrics from kubernetes apiserver -------------------------
+    - job_name: 'kubernetes-apiservers'
+      honor_labels: true
+      kubernetes_sd_configs:
+      - role: endpoints
+      # kubernetes apiserver serve metrics on a TLS secure endpoints. so, we have to use "https" scheme
+      scheme: https
+      # we have to provide certificate to establish tls secure connection
+      tls_config:
+        ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+      #  bearer_token_file is required for authorizating prometheus server to kubernetes apiserver
+      bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+
+      relabel_configs:
+      - source_labels: [__meta_kubernetes_namespace, __meta_kubernetes_service_name, __meta_kubernetes_endpoint_port_name]
+        action: keep
+        regex: default;kubernetes;https
+
+    #--------------- configuration to collect metrics from nodes -----------------------
+    - job_name: 'kubernetes-nodes'
+      honor_labels: true
+      scheme: https
+      tls_config:
+        ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+      bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+
+      kubernetes_sd_configs:
+      - role: node
+      relabel_configs:
+      - action: labelmap
+        regex: __meta_kubernetes_node_label_(.+)
+      - target_label: __address__
+        replacement: kubernetes.default.svc:443
+      - source_labels: [__meta_kubernetes_node_name]
+        regex: (.+)
+        target_label: __metrics_path__
+        replacement: /api/v1/nodes/${1}/proxy/metrics
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/prometheus-deployment.yaml b/helm/capif/templates/prometheus-deployment.yaml
new file mode 100644
index 0000000..d70cf09
--- /dev/null
+++ b/helm/capif/templates/prometheus-deployment.yaml
@@ -0,0 +1,68 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: prometheus
+  labels:
+    app: prometheus
+    {{- include "capif.labels" . | nindent 4 }}
+spec:
+  replicas: 1
+  strategy:
+    type: Recreate
+  selector:
+    matchLabels:
+      app: prometheus
+      {{- include "capif.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      annotations:
+        checksum/config: {{ include (print $.Template.BasePath "/prometheus-configmap.yaml") . | sha256sum }}
+      labels:
+        app: prometheus
+        {{- include "capif.selectorLabels" . | nindent 8 }}
+    spec:
+      serviceAccountName: prometheus
+      containers:
+      - name: prometheus
+        image: {{ .Values.monitoring.prometheus.image.repository }}:{{ .Values.monitoring.prometheus.image.tag }}
+        args:
+        - "--config.file=/etc/prometheus/prometheus.yml"
+        - "--storage.tsdb.path=/prometheus/"
+        - "--storage.tsdb.retention.time={{.Values.monitoring.prometheus.retentionTime }}"
+        ports:
+        - containerPort: 9090
+        resources:
+          {{- toYaml .Values.monitoring.prometheus.resources | nindent 12 }}
+        securityContext:
+          runAsUser: 0
+        livenessProbe:
+          tcpSocket:
+            port: 9090
+          initialDelaySeconds: 20
+        volumeMounts:
+        - name: prometheus-config
+          mountPath: /etc/prometheus/
+        {{- if eq .Values.monitoring.prometheus.persistence.enable "true" }}
+        - name: prometheus-storage-volume
+          mountPath: /prometheus/
+        {{ else }}
+        - name: prometheus-storage
+          mountPath: /prometheus/
+        {{- end }}
+      volumes:
+      - name: prometheus-config
+        configMap:
+          defaultMode: 420
+          name: prometheus-config
+      {{- if eq .Values.monitoring.prometheus.persistence.enable "true" }}
+      - name: prometheus-storage-volume
+        persistentVolumeClaim:
+          claimName: prometheus-pvc
+      {{ else }}
+      - name: prometheus-storage
+        emptyDir: {}
+      {{- end }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/prometheus-ingress-route.yaml b/helm/capif/templates/prometheus-ingress-route.yaml
new file mode 100644
index 0000000..b7a0d2b
--- /dev/null
+++ b/helm/capif/templates/prometheus-ingress-route.yaml
@@ -0,0 +1,20 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.ingressRoute.enable "true" }}
+apiVersion: traefik.containo.us/v1alpha1 
+kind: IngressRoute
+metadata:
+  name: prometheus-ingress-route 
+spec:
+  entryPoints: [web] 
+  routes:
+    - kind: Rule
+      match: Host(`{{ .Values.monitoring.prometheus.ingressRoute.host }}`)
+      services:
+        - kind: Service
+          name: prometheus 
+          port: {{ .Values.monitoring.prometheus.service.port }}
+          scheme: http
+{{- end }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/prometheus-ingress.yaml b/helm/capif/templates/prometheus-ingress.yaml
new file mode 100644
index 0000000..d082973
--- /dev/null
+++ b/helm/capif/templates/prometheus-ingress.yaml
@@ -0,0 +1,36 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+{{- if .Values.monitoring.prometheus.ingress.enabled -}}
+{{- $svcPort := .Values.monitoring.prometheus.service.port -}}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: prometheus-ingress
+  labels:
+    {{- include "capif.labels" . | nindent 4 }}
+  {{- with .Values.monitoring.prometheus.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+{{- if .Values.monitoring.prometheus.ingress.ingressClassName }}
+  ingressClassName: {{ .Values.monitoring.prometheus.ingress.ingressClassName }}
+{{- end }}
+  rules:
+    {{- range .Values.monitoring.prometheus.ingress.hosts }}
+  - host: {{ .host | quote }}
+    http:
+      paths:
+        {{- range .paths }}
+        - path: {{ .path }}
+          pathType: {{ .pathType }}
+          backend:
+            service:
+              name: prometheus
+              port:
+                number: {{ $svcPort }}
+        {{- end }}
+    {{- end }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/helm/capif/templates/prometheus-pvc.yaml b/helm/capif/templates/prometheus-pvc.yaml
new file mode 100644
index 0000000..0ba676f
--- /dev/null
+++ b/helm/capif/templates/prometheus-pvc.yaml
@@ -0,0 +1,19 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.persistence.enable "true" }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: prometheus-pvc
+  labels:
+    app: prometheus
+    {{- include "capif.labels" . | nindent 4 }}
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ .Values.monitoring.prometheus.persistence.storage }}
+{{- end }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/prometheus-service.yaml b/helm/capif/templates/prometheus-service.yaml
new file mode 100644
index 0000000..778dbd5
--- /dev/null
+++ b/helm/capif/templates/prometheus-service.yaml
@@ -0,0 +1,22 @@
+{{- if eq .Values.monitoring.enable "true" }}
+{{- if eq .Values.monitoring.prometheus.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    prometheus.io/path: /metrics
+    prometheus.io/port: {{ quote .Values.monitoring.prometheus.service.port }}
+    prometheus.io/scrape: "true"
+  name: prometheus
+  labels:
+    {{- include "capif.labels" . | nindent 4 }}
+spec:
+  type: {{ .Values.monitoring.prometheus.service.type }}
+  ports:
+  - port: {{ .Values.monitoring.prometheus.service.port }}
+    protocol: TCP
+    targetPort: {{ .Values.monitoring.prometheus.service.port }}
+  selector:
+    app: prometheus
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/published-apis.yaml b/helm/capif/templates/published-apis.yaml
new file mode 100644
index 0000000..a5444f1
--- /dev/null
+++ b/helm/capif/templates/published-apis.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: published-apis
+  labels:
+    io.kompose.service: published-apis
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.publishedApis.type }}
+  selector:
+    io.kompose.service: published-apis
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.publishedApis.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/redis.yaml b/helm/capif/templates/redis.yaml
new file mode 100644
index 0000000..3254a95
--- /dev/null
+++ b/helm/capif/templates/redis.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: redis
+  labels:
+    io.kompose.service: redis
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.redis.type }}
+  selector:
+    io.kompose.service: redis
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.redis.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/templates/register-configmap.yaml b/helm/capif/templates/register-configmap.yaml
new file mode 100644
index 0000000..51293a5
--- /dev/null
+++ b/helm/capif/templates/register-configmap.yaml
@@ -0,0 +1,21 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: register-configmap
+  labels:
+  {{- include "capif.labels" . | nindent 4 }}
+data:
+  config.yaml: |-
+    mongo: {
+      'user': 'root',
+      'password': 'example',
+      'db': 'capif_users',
+      'col': 'user',
+      'host': '{{ .Values.register.register.env.mongoHost }}',
+      'port': '{{ .Values.register.register.env.mongoPort }}'
+    }
+    ca_factory: {
+      "url": "{{ .Values.parametersVault.env.vaultHostname }}",
+      "port": "{{ .Values.parametersVault.env.vaultPort }}",
+      "token": "{{ .Values.parametersVault.env.vaultAccessToken }}"
+    }
\ No newline at end of file
diff --git a/helm/capif/templates/register.yaml b/helm/capif/templates/register.yaml
new file mode 100644
index 0000000..2de1d64
--- /dev/null
+++ b/helm/capif/templates/register.yaml
@@ -0,0 +1,19 @@
+{{- if eq .Values.register.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: register
+  labels:
+    io.kompose.service: register
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.register.type }}
+  selector:
+    io.kompose.service: register
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.register.ports | toYaml | nindent 2 -}}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/renderer-configmap.yaml b/helm/capif/templates/renderer-configmap.yaml
new file mode 100644
index 0000000..0159fcb
--- /dev/null
+++ b/helm/capif/templates/renderer-configmap.yaml
@@ -0,0 +1,8 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: renderer-configmap
+data:
+  ENABLE_METRICS: {{ quote .Values.monitoring.renderer.env.enableMetrics }}
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/renderer-deployment.yaml b/helm/capif/templates/renderer-deployment.yaml
new file mode 100644
index 0000000..83a7ee2
--- /dev/null
+++ b/helm/capif/templates/renderer-deployment.yaml
@@ -0,0 +1,44 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: renderer
+    {{- include "capif.labels" . | nindent 4 }}
+  name: renderer
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      io.kompose.service: renderer
+      {{- include "capif.selectorLabels" . | nindent 6 }}
+  strategy: {}
+  template:
+    metadata:
+      annotations:
+        kompose.cmd: kompose -f docker-compose.yml convert
+        kompose.version: 1.28.0 (c4137012e)
+        checksum/config: {{ include (print $.Template.BasePath "/renderer-configmap.yaml") . | sha256sum }}
+      labels:
+        io.kompose.network/monitoring-default: "true"
+        io.kompose.service: renderer
+        {{- include "capif.selectorLabels" . | nindent 8 }}
+    spec:
+      containers:
+        - env:
+            - name: ENABLE_METRICS
+              valueFrom:
+                configMapKeyRef:
+                  name: renderer-configmap
+                  key: ENABLE_METRICS
+          image: {{ .Values.monitoring.renderer.image.repository }}:{{ .Values.monitoring.renderer.image.tag }}
+          name: grafana-image-renderer
+          ports:
+            - containerPort: 8081
+          resources:
+            {{- toYaml .Values.monitoring.renderer.resources | nindent 12 }}
+      restartPolicy: Always
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/renderer-service.yaml b/helm/capif/templates/renderer-service.yaml
new file mode 100644
index 0000000..471a51d
--- /dev/null
+++ b/helm/capif/templates/renderer-service.yaml
@@ -0,0 +1,18 @@
+{{- if eq .Values.monitoring.enable "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  labels:
+    io.kompose.service: renderer
+  name: renderer
+spec:
+  ports:
+    - name: "rendere-port"
+      port: 8081
+      targetPort: 8081
+  selector:
+    io.kompose.service: renderer
+{{- end }}
\ No newline at end of file
diff --git a/helm/capif/templates/service-apis.yaml b/helm/capif/templates/service-apis.yaml
new file mode 100644
index 0000000..bff1af5
--- /dev/null
+++ b/helm/capif/templates/service-apis.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: service-apis
+  labels:
+    io.kompose.service: service-apis
+  {{- include "capif.labels" . | nindent 4 }}
+  annotations:
+    kompose.cmd: kompose -f ../services/docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+spec:
+  type: {{ .Values.serviceApis.type }}
+  selector:
+    io.kompose.service: service-apis
+  {{- include "capif.selectorLabels" . | nindent 4 }}
+  ports:
+	{{- .Values.serviceApis.ports | toYaml | nindent 2 -}}
\ No newline at end of file
diff --git a/helm/capif/values.yaml b/helm/capif/values.yaml
new file mode 100644
index 0000000..a2aea33
--- /dev/null
+++ b/helm/capif/values.yaml
@@ -0,0 +1,660 @@
+# -- The Environment variable. Use openshift if you are deploying in Openshift cluster. anotherwise use the field empty
+env: ""
+
+# Use the Ip address dude for the kubernetes to your Ingress Controller ej: kubectl -n NAMESPACE_CAPIF get ing 
+ingress: 
+    ip: "10.17.173.127"
+
+monitoring:
+  enable: "true"
+
+accessControlPolicy:
+  image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/access-control-policy"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+  # -- If env.monitoring: true. Setup monitoring.enable: true
+  env: 
+      monitoring: "true"
+  resources:
+    limits:
+      cpu: 100m
+      memory: 128Mi
+    requests:
+      cpu: 100m
+      memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+
+CapifClient:
+  # -- If enable capif client.
+  enable: "true"
+  image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/client"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+  resources:
+    limits:
+      cpu: 100m
+      memory: 128Mi
+    requests:
+      cpu: 100m
+      memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+
+apiInvocationLogs:
+  apiInvocationLogs:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/api-invocation-logs-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env: 
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+apiInvokerManagement:
+  apiInvokerManagement:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/api-invoker-management-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+apiProviderManagement:
+  apiProviderManagement:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/api-provider-management-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+capifEvents:
+  capifEvents:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/events-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+capifRoutingInfo:
+  capifRoutingInfo:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/routing-info-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+capifSecurity:
+  capifSecurity:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/security-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+register:
+  # -- If register enabled. enable: true, enable: "" = not enabled
+  enable: "true"
+  register:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/register"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    env:
+      mongoHost: mongo-register
+      mongoPort: 27017
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8084
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+mongoRegister:
+  mongo:
+    env:
+      # User's password MongoDB
+      mongoInitdbRootPassword: example
+      # Name of User's mongodb
+      mongoInitdbRootUsername: root
+    image:
+      # -- The docker image repository to use
+      repository: "mongo"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: "6.0.2"
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    resources: {}
+#     limits:
+#       cpu: 100m
+#       memory: 128Mi
+#     requests:
+#       cpu: 100m
+#       memory: 128Mi
+  ports:
+  - name: "27017"
+    port: 27017
+    targetPort: 27017
+  replicas: 1
+  type: ClusterIP
+
+kubernetesClusterDomain: cluster.local
+logs:
+  # -- If register enabled. enable: true, enable: "" = not enabled
+  enable: "true"
+  logs:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/auditing-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  type: ClusterIP
+mongo:
+  mongo:
+    env:
+      # User's password MongoDB
+      mongoInitdbRootPassword: example
+      # Name of User's mongodb
+      mongoInitdbRootUsername: root
+    image:
+      # -- The docker image repository to use
+      repository: "mongo"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: "6.0.2"
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    resources: {}
+#     limits:
+#       cpu: 100m
+#       memory: 128Mi
+#     requests:
+#       cpu: 100m
+#       memory: 128Mi
+  ports:
+  - name: "27017"
+    port: 27017
+    targetPort: 27017
+  replicas: 1
+  type: ClusterIP
+  # -- If mongo.persistence enabled. enable: true, enable: "" = not enabled
+  persistence:
+    enable: "true"
+    storage: 8Gi
+mongoExpress:
+  mongoExpress:
+    env:
+      # User's password MongoDB
+      meConfigMongodbAdminpassword: example
+      # Name of User's mongodb
+      meConfigMongodbAdminusername: root
+      # URI for connecting MongoDB
+      meConfigMongodbUrl: mongodb://root:example@mongo:27017/
+    image:
+      # -- The docker image repository to use
+      repository: "mongo-express"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: "1.0.0-alpha.4"
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8082"
+    port: 8082
+    targetPort: 8081
+  replicas: 1
+  type: ClusterIP
+nginx:
+  # -- if nginx.ingressType: "Ingress". set up monitoring.prometheus.ingress: true
+  # and monitoring.grafana.ingress: true
+  # Use IngressRoute if you want to use Gateway API. ex traefix
+  ingressType: "Ingress"
+  ingressClassName: nginx
+  annotations:
+    # kubernetes.io/ingress.class: nginx
+    # kubernetes.io/tls-acme: "true"
+    nginx.ingress.kubernetes.io/backend-protocol: "HTTPS"
+    nginx.ingress.kubernetes.io/ssl-passthrough: "true"
+    nginx.ingress.kubernetes.io/ssl-redirect: "true"
+  nginx:
+    env:
+      # -- Ingress's host to Capif
+      capifHostname: "my-capif.apps.ocp-epg.hi.inet"
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/nginx"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  - name: "443"
+    port: 443
+    targetPort: 443
+  replicas: 1
+  type: ClusterIP
+publishedApis:
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  publishedApis:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/publish-service-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  replicas: 1
+  type: ClusterIP
+redis:
+  ports:
+  - name: "6379"
+    port: 6379
+    targetPort: 6379
+  redis:
+    env:
+      # Mode of replication
+      redisReplicationMode: master
+    image:
+      # -- The docker image repository to use
+      repository: "redis"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: "alpine"
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  replicas: 1
+  type: ClusterIP
+serviceApis:
+  ports:
+  - name: "8080"
+    port: 8080
+    targetPort: 8080
+  replicas: 1
+  serviceApis:
+    image:
+      # -- The docker image repository to use
+      repository: "public.ecr.aws/o2v4a8t6/opencapif/discover-service-api"
+      # -- The docker image tag to use
+      # @default Chart version
+      tag: ""
+      # -- Image pull policy: Always, IfNotPresent
+      imagePullPolicy: Always
+    # -- If env.monitoring: true. Setup monitoring.enable: true
+    env:
+      monitoring: "true"
+    resources:
+     limits:
+       cpu: 100m
+       memory: 128Mi
+     requests:
+       cpu: 100m
+       memory: 128Mi
+  type: ClusterIP
+parametersVault:
+  env: 
+    vaultHostname: vault-internal.mon.svc.cluster.local
+    vaultPort: 8200
+    vaultAccessToken: dev-only-token
+# -- With tempo.enabled: false. It won't be deployed
+# -- If monitoring.enable: "true". Also enable tempo.enabled: true
+tempo:
+  enabled: true
+  tempo:
+    metricsGenerator:
+      enabled: true
+      remoteWriteUrl: "http://prometheus.mon.svc.cluster.local:9090/api/v1/write"
+  persistence:
+    enabled: true
+    size: 3Gi
+monitoring:
+  # -- If monitoring enabled. enable: true, enable: "" = not enabled
+  enable:  "true"
+  fluentBit:
+      image: 
+        # -- The docker image repository to use
+        repository: "grafana/fluent-bit-plugin-loki"
+        # -- The docker image tag to use
+        # @default Chart version
+        tag: "latest"
+      env:
+        lokiUrl: http://loki:3100/loki/api/v1/push
+      resources: {}
+        # limits:
+        #   cpu: 100m
+        #   memory: 128Mi
+        # requests:
+        #   cpu: 100m
+        #   memory: 128Mi
+  loki:
+      image: 
+        # -- The docker image repository to use
+        repository: "grafana/loki"
+        # -- The docker image tag to use
+        # @default Chart version
+        tag: "2.8.0"
+      resources: {}
+        # limits:
+        #   cpu: 100m
+        #   memory: 128Mi
+        # requests:
+        #   cpu: 100m
+        #   memory: 128Mi
+      # -- If grafana.persistence enabled. enable: true, enable: "" = not enabled
+      persistence:
+        enable: "true"
+        storage: 100Mi
+  otel:
+      image: 
+        # -- The docker image repository to use
+        repository: "otel/opentelemetry-collector"
+        # -- The docker image tag to use
+        # @default Chart version
+        tag: "0.81.0"
+      configMap:
+        tempoEndpoint: monitoring-capif-tempo:4317
+      resources: {}
+        # limits:
+        #   cpu: 100m
+        #   memory: 128Mi
+        # requests:
+        #   cpu: 100m
+        #   memory: 128Mi
+  renderer:
+      image: 
+        # -- The docker image repository to use
+        repository: "grafana/grafana-image-renderer"
+        # -- The docker image tag to use
+        # @default Chart version
+        tag: "latest"
+      env:
+        enableMetrics: "true"
+      resources: {}
+        # limits:
+        #   cpu: 100m
+        #   memory: 128Mi
+        # requests:
+        #   cpu: 100m
+        #   memory: 128Mi
+  prometheus:
+      # -- With prometheus.enabled: "". It won't be deployed. prometheus.enable: "true"
+      # -- It will deploy prometheus
+      enable: "true"
+      image: 
+        # -- The docker image repository to use
+        repository: "prom/prometheus"
+        # -- The docker image tag to use
+        # @default Chart version
+        tag: "latest"
+      retentionTime: 5d
+      resources: {}
+        # limits:
+        #   cpu: 100m
+        #   memory: 128Mi
+        # requests:
+        #   cpu: 100m
+        #   memory: 128Mi
+      persistence:
+        enable: "true"
+        storage: 8Gi
+      service:
+        type: ClusterIP
+        port: 9090
+      ingress:
+        enabled: true
+        ingressClassName: nginx
+        annotations:
+          # kubernetes.io/ingress.class: nginx
+          # kubernetes.io/tls-acme: "true"
+        hosts:
+          - host: prometheus.5gnacar.int
+            paths:
+              - path: /
+                pathType: Prefix
+        tls: []
+        #  - secretName: chart-example-tls
+        #    hosts:
+        #      - chart-example.local
+      # -- If ingressRoute enable=true, use monitoring.prometheus.ingress.enabled=""
+      ingressRoute:
+        enable: ""
+        host:  prometheus.5gnacar.int
+  grafana:
+      image: 
+        # -- The docker image repository to use
+        repository: "grafana/grafana"
+        # -- The docker image tag to use
+        # @default Chart version
+        tag: "latest"
+      env:
+        gfAuthAnonymousEnable: true
+        gfSecurityAllowEmbedding: true
+        gfAuthAnonymousOrgRole: Admin
+        gfSecurityAdminPassword:  secure_pass
+        lokiUrl: http://loki:3100
+        prometheusUrl: http://prometheus.mon.svc.cluster.local:9090
+        tempoUrl: http://monitoring-capif-tempo:3100
+      resources: {}
+        # limits:
+        #   cpu: 100m
+        #   memory: 128Mi
+        # requests:
+        #   cpu: 100m
+        #   memory: 128Mi
+      # -- If grafana.persistence enabled. enable: true, enable: "" = not enabled
+      persistence:
+        enable: "true"
+        storage: 100Mi
+      service:
+        type: ClusterIP
+        port: 3000
+      # -- If ingress enabled=true, use monitoring.grafana.ingressRoute.enable=""
+      ingress:
+        enabled: true
+        ingressClassName: nginx
+        annotations:
+          # kubernetes.io/ingress.class: nginx
+          # kubernetes.io/tls-acme: "true"
+        hosts:
+          - host: grafana.5gnacar.int
+            paths:
+              - path: /
+                pathType: Prefix
+        tls: []
+        #  - secretName: chart-example-tls
+        #    hosts:
+        #      - chart-example.local     
+      # -- If ingressRoute enable=true, use monitoring.grafana.ingress.enabled=""
+      ingressRoute:
+        enable: ""
+        host:  grafana.5gnacar.int
diff --git a/helm/helmfile-capif.yaml b/helm/helmfile-capif.yaml
new file mode 100644
index 0000000..610e64a
--- /dev/null
+++ b/helm/helmfile-capif.yaml
@@ -0,0 +1,19 @@
+# helm upgrade --install -n mon monitoring-capif capif/ --set nginx.nginx.env.capifHostname=mon-capif.monitoring.int \
+# --set ingress_ip.oneke="10.17.173.127" --set env=oneke --atomic
+helmDefaults:
+  createNamespace: true
+  timeout: 600
+releases:
+  - name: monitoring-capif
+    chart: ./capif/
+    namespace: monitoring
+#    atomic: true
+    wait: true
+    values:
+      - ./capif/values.yaml
+      - nginx:
+          nginx:
+            env:
+              capifHostname: monitoring-capif.monitoring.int
+      - ingress:
+          ip: "10.17.173.127"
\ No newline at end of file
diff --git a/helm/vault-job/vault-job.yaml b/helm/vault-job/vault-job.yaml
new file mode 100644
index 0000000..6e0e9ce
--- /dev/null
+++ b/helm/vault-job/vault-job.yaml
@@ -0,0 +1,251 @@
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: vault-prepare-certs
+  namespace: mon
+  labels:
+    io.kompose.service: api-invocation-logs
+    app: capif
+    app.kubernetes.io/name: capif
+    app.kubernetes.io/instance: capif
+data:
+  vault-prepare-certs.sh: |-
+     #!/bin/sh
+    
+     echo "install dependencies"
+     apk add --no-cache jq openssl
+
+     # Establecer las variables de entorno de Vault
+
+     export VAULT_ADDR='http://vault-internal:8200'
+     
+     # In standalone's mode. Please use the root's token
+     # or the token with the sufficient permissions
+     # to execute the next commands in vault
+     # otherwise, if use the vault as dev's mode. Just
+     # type the token's dev.
+     export VAULT_TOKEN="dev-only-token"
+     export DOMAIN1=capif.mobilesandbox.cloud
+     
+     vault secrets enable pki
+     
+     echo "# Generar una CA en Vault #"
+     vault secrets tune -max-lease-ttl=87600h pki
+     
+     vault write -field=certificate pki/root/generate/internal \
+          common_name="capif" \
+          issuer_name="root-2023" \
+          ttl=87600h > root_2023_ca.crt
+    
+     echo "# check root_2023_ca.crt #"
+     cat root_2023_ca.crt
+     
+     vault write pki/config/urls \
+          issuing_certificates="$VAULT_ADDR/v1/pki/ca" \
+          crl_distribution_points="$VAULT_ADDR/v1/pki/crl"
+     
+     # # Generar una CA intermedia en Vault
+     vault secrets enable -path=pki_int pki
+     
+     vault secrets tune -max-lease-ttl=43800h pki_int
+     
+     vault write -format=json pki_int/intermediate/generate/internal \
+          common_name="capif Intermediate Authority" \
+          issuer_name="capif-intermediate" \
+         | jq -r '.data.csr' > pki_intermediate.csr
+     
+     echo "### content pki_intermediate.csr ###"
+     cat pki_intermediate.csr
+     
+     # Firmar la CA intermedia con la CA raíz
+     vault write -format=json pki/root/sign-intermediate \
+          issuer_ref="root-2023" \
+          csr=@pki_intermediate.csr \
+          format=pem_bundle ttl="43800h" \
+          | jq -r '.data.certificate' > capif_intermediate.cert.pem
+     
+     # Configurar la CA intermedia en Vault
+     vault write pki_int/intermediate/set-signed certificate=@capif_intermediate.cert.pem
+     
+     #Crear rol en Vault
+     vault write pki_int/roles/my-ca use_csr_common_name=true require_cn=false allowed_domains="*" allow_any_name=true allow_bare_domains=true allow_glob_domains=true allow_subdomains=true max_ttl=4300h ttl=4300h
+     
+     # Emitir un certificado firmado por la CA intermedia
+     # vault write -format=json pki_int/issue/my-ca \
+     #   common_name="nginx.mon.svc.cluster.local" \
+     #   format=pem_bundle ttl="438h" \
+     #   | jq -r '.data.certificate' > ccf_cert.crt.pem \
+     #   && jq -r '.data.issuing_ca' > root_ca.crt.pem \
+     #   && jq -r '.data.private_key' > private_key.pem
+     
+     #   vault write -format=json pki_int/issue/my-ca \
+     #   common_name="nginx.mon.svc.cluster.local" \
+     #   format=pem_bundle ttl="438h" \
+     #   | jq -r '.data.private_key as $private_key | .data.issuing_ca as $issuing_ca | .data.certificate as $certificate | [$private_key, $issuing_ca, $certificate]' > cert_data.json
+     
+     
+     #Create CSR
+     openssl genrsa -out ./server.key 2048
+     
+     cat > ./foo.cnf <<EOF
+     [ req ]
+     distinguished_name = req_distinguished_name
+     req_extensions = v3_req
+     
+     [ req_distinguished_name ]
+     countryName = \$ENV::COUNTRY
+     countryName_default = \$ENV::COUNTRY
+     stateOrProvinceName = \$ENV::STATE
+     stateOrProvinceName_default = \$ENV::STATE
+     localityName = \$ENV::LOCALITY
+     localityName_default = \$ENV::LOCALITY
+     organizationName = \$ENV::ORGNAME
+     organizationName_default = \$ENV::ORGNAME
+     organizationalUnitName  = \$ENV::ORGUNIT
+     organizationalUnitName_default  = \$ENV::ORGUNIT
+     commonName = capif
+     commonName_max  = 64
+     emailAddress = Email Address
+     emailAddress_max = 64
+     emailAddress_default = \$ENV::EMAIL
+     
+     [ v3_req ]
+     subjectAltName = @alt_names
+     
+     [alt_names]
+     DNS.1 = \$ENV::DOMAIN1
+     DNS.2 = \$ENV::DOMAIN2
+     DNS.3 = \$ENV::DOMAIN3
+     EOF
+
+     export DOMAIN2=nginx.mon.svc.cluster.local
+     export DOMAIN3=nginx.mon-staging.svc.cluster.local
+     export COUNTRY=ES                # 2 letter country-code
+     export STATE=Madrid            # state or province name
+     export LOCALITY=Madrid        # Locality Name (e.g. city)
+     export ORGNAME="Telefonica I+D" # Organization Name (eg, company)
+     export ORGUNIT=Innovation                  # Organizational Unit Name (eg. section)
+     export COMMONNAME="nginx.mon.svc.cluster.local"
+     export EMAIL=inno@tid.es    # certificate's email address
+     # optional extra details
+     CHALLENGE=""                # challenge password
+     COMPANY=""                  # company name
+     
+     # DAYS="-days 365"
+     
+     # create the certificate request
+     openssl req -new $DAYS -batch -key ./server.key -out ./server.csr -config ./foo.cnf -extensions v3_req
+     
+     echo "### verify the Subject Alternative Name (SAN) ###"
+     openssl req -text -noout -verify -in ./server.csr | grep 'DNS'
+
+
+     #cat <<__EOF__ | openssl req -new $DAYS -nodes -keyout client.key -out client.csr
+     #cat <<__EOF__ | openssl req -new $DAYS -key ./server.key -out ./server.csr
+     #$COUNTRY
+     #$STATE
+     #$LOCALITY
+     #$ORGNAME
+     #$ORGUNIT
+     #$COMMONNAME
+     #$EMAIL
+     #$CHALLENGE
+     #$COMPANY
+     #__EOF__
+     
+     # vault write -format=json pki_int/issue/my-ca \
+     #   csr=@server.csr \
+     #   format=pem_bundle ttl="438h" \
+     #   | jq -r '.data.private_key as $private_key | .data.issuing_ca as $issuing_ca | .data.certificate as $certificate | [$private_key, $issuing_ca, $certificate]' > cert_data.json
+     
+     vault write -format=json pki_int/sign/my-ca  format=pem_bundle ttl="43000h" csr=@server.csr | jq -r '.data.issuing_ca as $issuing_ca | .data.certificate as $certificate | [$issuing_ca, $certificate]' > cert_data.json
+     
+     jq -r '.[0]' cert_data.json > root_ca.crt.pem
+     echo "### content root_ca.crt.pem ###"
+     cat root_ca.crt.pem
+
+     echo "### content server_certificate.crt.pem ###"
+     jq -r '.[1]' cert_data.json > server_certificate.crt.pem
+     
+     openssl x509 -pubkey -noout -in server_certificate.crt.pem  > server_certificate_pub.pem
+     
+     #vault kv put secret/ca ca=@root_ca.crt.pem root_2023_ca.crt
+     
+     #cat root_2023_ca.crt root_2023_ca.crt > ca.crt
+     
+     cat > certificados_concatenados.crt << EOF
+     $(cat "root_2023_ca.crt")
+     $(cat "root_ca.crt.pem")
+     EOF
+     echo "### content of root_2023_ca.crt ###"
+     cat root_2023_ca.crt
+
+     echo "### content of root_ca.crt.pem ###"
+     cat root_ca.crt.pem
+
+     echo "### content of certificados_concatenados.crt ###"
+     cat certificados_concatenados.crt
+     
+     # vault kv put secret/ca ca=@root_2023_ca.crt
+
+     echo "### enable secrets kv ###"
+     vault secrets enable -path=secret -version=2 kv
+
+     vault kv put secret/ca ca=@certificados_concatenados.crt
+     
+     vault kv put secret/server_cert cert=@server_certificate.crt.pem
+     
+     vault kv put secret/server_cert/pub pub_key=@server_certificate_pub.pem
+     
+     vault kv put secret/server_cert/private key=@server.key
+     
+     #POLICY_NAME="my-policy"
+     #POLICY_FILE="my-policy.hcl"
+     #TOKEN_ID="read-ca-token"
+     
+     # Crear la política en Vault
+     #echo "path \"secret/data/ca\" {
+     #  capabilities = [\"read\"]
+     #}" > "$POLICY_FILE"
+     
+     #vault policy write "$POLICY_NAME" "$POLICY_FILE"
+     
+     # Generar un nuevo token y asignar la política
+     #TOKEN=$(vault token create -id="$TOKEN_ID" -policy="$POLICY_NAME" -format=json | jq -r '.auth.client_token')
+     
+     #echo "Token generado:"
+     #echo "$TOKEN"
+---
+
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: vault-pki
+  namespace: mon
+  labels:
+    io.kompose.service: vault-pki
+    app: capif
+    app.kubernetes.io/name: capif
+    app.kubernetes.io/instance: capif
+spec:
+  template:
+    spec:
+      containers:
+      - name: vault-pki
+        image: docker.io/hashicorp/vault:1.15.1
+        command: ["./vault-prepare-certs.sh"]
+        volumeMounts:
+          - name: vault-prepare-certs
+            mountPath: vault-prepare-certs.sh
+            subPath: vault-prepare-certs.sh
+      restartPolicy: Never
+      volumes:
+      - name:  vault-prepare-certs
+        configMap:
+          name: vault-prepare-certs
+          defaultMode: 0777
+          items:
+          - key: "vault-prepare-certs.sh"
+            path: "vault-prepare-certs.sh"
+  backoffLimit: 4
diff --git a/monitoring/docker-compose.yml b/monitoring/docker-compose.yml
new file mode 100644
index 0000000..41f647f
--- /dev/null
+++ b/monitoring/docker-compose.yml
@@ -0,0 +1,110 @@
+version: '3'
+services:
+  prometheus:
+    image: prom/prometheus:latest
+    container_name: prometheus
+    user: "${DUID}:${DGID}"
+    volumes:
+      - ./prometheus/prometheus.yml:/etc/prometheus/prometheus.yml
+      - ./prometheus/prometheus_db:/var/lib/prometheus
+      - ./prometheus/prometheus_db:/prometheus
+      - ./prometheus/prometheus_db:/etc/prometheus
+      - ./prometheus/alert.rules:/etc/prometheus/alert.rules
+    command:
+      - '--config.file=/etc/prometheus/prometheus.yml'
+      - '--web.route-prefix=/'
+      - '--storage.tsdb.retention.time=200h'
+      - '--web.enable-lifecycle'
+    restart: unless-stopped
+    ports:
+      - '9090:9090'
+
+  # cadvisor collects metrics about running containers
+  cadvisor:
+    image: gcr.io/cadvisor/cadvisor:v0.47.2
+    container_name: cadvisor
+    ports:
+    - 8090:8080
+    volumes:
+    - /:/rootfs:ro
+    - /var/run:/var/run:rw
+    - /sys:/sys:ro
+    - /var/lib/docker/:/var/lib/docker:ro
+    - /var/run/docker.sock:/var/run/docker.sock:rw
+
+  grafana:
+    image: grafana/grafana
+    user: "${DUID}:${DGID}"
+    environment:
+      - GF_SECURITY_ADMIN_PASSWORD=secure_pass
+      - GF_PATHS_PROVISIONING=/etc/grafana/provisioning
+      - GF_AUTH_ANONYMOUS_ENABLED=true
+      - GF_AUTH_ANONYMOUS_ORG_ROLE=Admin
+    volumes:
+      - ./grafana/grafana_config/grafana.ini:/etc/grafana/grafana.ini
+      - ./grafana/grafana_db:/var/lib/grafana
+      - ./grafana/grafana_provisioning/grafana-datasources.yaml:/etc/grafana/provisioning/datasources/datasources.yaml
+      - ./grafana/grafana_provisioning/grafana-default-provisioning.yaml:/etc/grafana/provisioning/dashboards/default.yaml
+      - ./grafana/grafana_dashboards/Docker-monitoring.json:/var/lib/grafana/dashboards/Docker-monitoring.json
+      - ./grafana/grafana_dashboards/Loki-Logs.json:/var/lib/grafana/dashboards/Loki-Logs.json
+
+    depends_on:
+      - prometheus
+    ports:
+      - '3000:3000'
+
+  # loki save and analyze logs
+  loki:
+    image: grafana/loki:2.8.0
+    ports:
+      - "3100:3100"
+    command: -config.file=/etc/loki/local-config.yaml
+
+  # promtail send docker logs to loki
+  promtail:
+    image: grafana/promtail:2.8.0
+    volumes:
+      - /var/log:/var/log
+    command: -config.file=/etc/promtail/config.yml
+
+  # grafana image renderer
+  renderer:
+    image: grafana/grafana-image-renderer:latest
+    container_name: grafana-image-renderer
+    expose:
+      - "8081"
+    environment:
+      ENABLE_METRICS: "true"
+
+  # fluent-bit send logs to loki
+  fluent-bit:
+    image: grafana/fluent-bit-plugin-loki:latest
+    container_name: fluent-bit
+    environment:
+      - LOKI_URL=http://loki:3100/loki/api/v1/push
+    volumes:
+      - ./fluent_bit/fluent-bit.conf:/fluent-bit/etc/fluent-bit.conf
+    ports:
+      - "24224:24224"
+      - "24224:24224/udp"
+
+  # opentelemetry collector
+  otel-collector:
+    image: otel/opentelemetry-collector:latest
+    ports:
+      - 55680:55680
+      - 4317:4317
+    volumes:
+      - ./otlp_collector/otel-config.yaml:/etc/otel-collector-config.yaml
+    command: ["--config", "/etc/otel-collector-config.yaml"]
+
+  # tempo is a distributed tracing backend
+  tempo:
+    image: grafana/tempo:latest
+    command: [ "-config.file=/etc/tempo.yaml" ]
+    volumes:
+      - ./tempo/tempo.yaml:/etc/tempo.yaml
+      - ./tempo/tempo-data:/tmp/tempo
+    ports:
+      - 3102:3100
+
diff --git a/monitoring/fluent_bit/fluent-bit.conf b/monitoring/fluent_bit/fluent-bit.conf
new file mode 100644
index 0000000..ab11a28
--- /dev/null
+++ b/monitoring/fluent_bit/fluent-bit.conf
@@ -0,0 +1,15 @@
+[INPUT]
+    Name        forward
+    Listen      0.0.0.0
+    Port        24224
+[Output]
+    Name grafana-loki
+    Match *
+    Url ${LOKI_URL}
+    RemoveKeys source
+    Labels {job="fluent-bit"}
+    LabelKeys container_name, traceID
+    BatchWait 1s
+    BatchSize 1001024
+    LineFormat json
+    LogLevel info
\ No newline at end of file
diff --git a/monitoring/grafana/grafana_config/grafana.ini b/monitoring/grafana/grafana_config/grafana.ini
new file mode 100644
index 0000000..c69fa95
--- /dev/null
+++ b/monitoring/grafana/grafana_config/grafana.ini
@@ -0,0 +1,1894 @@
+##################### Grafana Configuration Example #####################
+#
+# Everything has defaults so you only need to uncomment things you want to
+# change
+
+# possible values : production, development
+;app_mode = production
+
+# instance name, defaults to HOSTNAME environment variable value or hostname if HOSTNAME var is empty
+;instance_name = ${HOSTNAME}
+
+# force migration will run migrations that might cause dataloss
+;force_migration = false
+
+#################################### Paths ####################################
+[paths]
+# Path to where grafana can store temp files, sessions, and the sqlite3 db (if that is used)
+;data = /var/lib/grafana/dashboards
+
+# Temporary files in `data` directory older than given duration will be removed
+;temp_data_lifetime = 24h
+
+# Directory where grafana can store logs
+;logs = /var/log/grafana
+
+# Directory where grafana will automatically scan and look for plugins
+;plugins = /var/lib/grafana/plugins
+
+# folder that contains provisioning config files that grafana will apply on startup and while running.
+;provisioning = conf/provisioning
+
+#################################### Server ####################################
+[server]
+# Protocol (http, https, h2, socket)
+;protocol = http
+
+# This is the minimum TLS version allowed. By default, this value is empty. Accepted values are: TLS1.2, TLS1.3. If nothing is set TLS1.2 would be taken
+;min_tls_version = ""
+
+# The ip address to bind to, empty will bind to all interfaces
+;http_addr =
+
+# The http port  to use
+;http_port = 3000
+
+# The public facing domain name used to access grafana from a browser
+;domain = localhost
+
+# Redirect to correct domain if host header does not match domain
+# Prevents DNS rebinding attacks
+;enforce_domain = false
+
+# The full public facing url you use in browser, used for redirects and emails
+# If you use reverse proxy and sub path specify full url (with sub path)
+;root_url = %(protocol)s://%(domain)s:%(http_port)s/
+
+# Serve Grafana from subpath specified in `root_url` setting. By default it is set to `false` for compatibility reasons.
+;serve_from_sub_path = false
+
+# Log web requests
+;router_logging = false
+
+# the path relative working path
+;static_root_path = public
+
+# enable gzip
+;enable_gzip = false
+
+# https certs & key file
+;cert_file =
+;cert_key =
+
+# Unix socket gid
+# Changing the gid of a file without privileges requires that the target group is in the group of the process and that the process is the file owner
+# It is recommended to set the gid as http server user gid
+# Not set when the value is -1
+;socket_gid =
+
+# Unix socket mode
+;socket_mode =
+
+# Unix socket path
+;socket =
+
+# CDN Url
+;cdn_url =
+
+# Sets the maximum time using a duration format (5s/5m/5ms) before timing out read of an incoming request and closing idle connections.
+# `0` means there is no timeout for reading the request.
+;read_timeout = 0
+
+# This setting enables you to specify additional headers that the server adds to HTTP(S) responses.
+[server.custom_response_headers]
+#exampleHeader1 = exampleValue1
+#exampleHeader2 = exampleValue2
+
+#################################### GRPC Server #########################
+;[grpc_server]
+;network = "tcp"
+;address = "127.0.0.1:10000"
+;use_tls = false
+;cert_file =
+;key_file =
+
+#################################### Database ####################################
+[database]
+# You can configure the database connection by specifying type, host, name, user and password
+# as separate properties or as on string using the url properties.
+
+# Either "mysql", "postgres" or "sqlite3", it's your choice
+;type = sqlite3
+;host = 127.0.0.1:3306
+;name = grafana
+;user = root
+# If the password contains # or ; you have to wrap it with triple quotes. Ex """#password;"""
+;password =
+
+# Use either URL or the previous fields to configure the database
+# Example: mysql://user:secret@host:port/database
+;url =
+
+# For "postgres", use either "disable", "require" or "verify-full"
+# For "mysql", use either "true", "false", or "skip-verify".
+;ssl_mode = disable
+
+# Database drivers may support different transaction isolation levels.
+# Currently, only "mysql" driver supports isolation levels.
+# If the value is empty - driver's default isolation level is applied.
+# For "mysql" use "READ-UNCOMMITTED", "READ-COMMITTED", "REPEATABLE-READ" or "SERIALIZABLE".
+;isolation_level =
+
+;ca_cert_path =
+;client_key_path =
+;client_cert_path =
+;server_cert_name =
+
+# For "sqlite3" only, path relative to data_path setting
+;path = grafana.db
+
+# Max idle conn setting default is 2
+;max_idle_conn = 2
+
+# Max conn setting default is 0 (mean not set)
+;max_open_conn =
+
+# Connection Max Lifetime default is 14400 (means 14400 seconds or 4 hours)
+;conn_max_lifetime = 14400
+
+# Set to true to log the sql calls and execution times.
+;log_queries =
+
+# For "sqlite3" only. cache mode setting used for connecting to the database. (private, shared)
+;cache_mode = private
+
+# For "sqlite3" only. Enable/disable Write-Ahead Logging, https://sqlite.org/wal.html. Default is false.
+;wal = false
+
+# For "mysql" only if migrationLocking feature toggle is set. How many seconds to wait before failing to lock the database for the migrations, default is 0.
+;locking_attempt_timeout_sec = 0
+
+# For "sqlite" only. How many times to retry query in case of database is locked failures. Default is 0 (disabled).
+;query_retries = 0
+
+# For "sqlite" only. How many times to retry transaction in case of database is locked failures. Default is 5.
+;transaction_retries = 5
+
+# Set to true to add metrics and tracing for database queries.
+;instrument_queries = false
+
+################################### Data sources #########################
+[datasources]
+# Upper limit of data sources that Grafana will return. This limit is a temporary configuration and it will be deprecated when pagination will be introduced on the list data sources API.
+;datasource_limit = 5000
+
+#################################### Cache server #############################
+[remote_cache]
+# Either "redis", "memcached" or "database" default is "database"
+;type = database
+
+# cache connectionstring options
+# database: will use Grafana primary database.
+# redis: config like redis server e.g. `addr=127.0.0.1:6379,pool_size=100,db=0,ssl=false`. Only addr is required. ssl may be 'true', 'false', or 'insecure'.
+# memcache: 127.0.0.1:11211
+;connstr =
+
+# prefix prepended to all the keys in the remote cache
+; prefix =
+
+# This enables encryption of values stored in the remote cache
+;encryption =
+
+#################################### Data proxy ###########################
+[dataproxy]
+
+# This enables data proxy logging, default is false
+;logging = false
+
+# How long the data proxy waits to read the headers of the response before timing out, default is 30 seconds.
+# This setting also applies to core backend HTTP data sources where query requests use an HTTP client with timeout set.
+;timeout = 30
+
+# How long the data proxy waits to establish a TCP connection before timing out, default is 10 seconds.
+;dialTimeout = 10
+
+# How many seconds the data proxy waits before sending a keepalive probe request.
+;keep_alive_seconds = 30
+
+# How many seconds the data proxy waits for a successful TLS Handshake before timing out.
+;tls_handshake_timeout_seconds = 10
+
+# How many seconds the data proxy will wait for a server's first response headers after
+# fully writing the request headers if the request has an "Expect: 100-continue"
+# header. A value of 0 will result in the body being sent immediately, without
+# waiting for the server to approve.
+;expect_continue_timeout_seconds = 1
+
+# Optionally limits the total number of connections per host, including connections in the dialing,
+# active, and idle states. On limit violation, dials will block.
+# A value of zero (0) means no limit.
+;max_conns_per_host = 0
+
+# The maximum number of idle connections that Grafana will keep alive.
+;max_idle_connections = 100
+
+# How many seconds the data proxy keeps an idle connection open before timing out.
+;idle_conn_timeout_seconds = 90
+
+# If enabled and user is not anonymous, data proxy will add X-Grafana-User header with username into the request, default is false.
+;send_user_header = false
+
+# Limit the amount of bytes that will be read/accepted from responses of outgoing HTTP requests.
+;response_limit = 0
+
+# Limits the number of rows that Grafana will process from SQL data sources.
+;row_limit = 1000000
+
+# Sets a custom value for the `User-Agent` header for outgoing data proxy requests. If empty, the default value is `Grafana/<BuildVersion>` (for example `Grafana/9.0.0`).
+;user_agent =
+
+#################################### Analytics ####################################
+[analytics]
+# Server reporting, sends usage counters to stats.grafana.org every 24 hours.
+# No ip addresses are being tracked, only simple counters to track
+# running instances, dashboard and error counts. It is very helpful to us.
+# Change this option to false to disable reporting.
+;reporting_enabled = true
+
+# The name of the distributor of the Grafana instance. Ex hosted-grafana, grafana-labs
+;reporting_distributor = grafana-labs
+
+# Set to false to disable all checks to https://grafana.com
+# for new versions of grafana. The check is used
+# in some UI views to notify that a grafana update exists.
+# This option does not cause any auto updates, nor send any information
+# only a GET request to https://raw.githubusercontent.com/grafana/grafana/main/latest.json to get the latest version.
+;check_for_updates = true
+
+# Set to false to disable all checks to https://grafana.com
+# for new versions of plugins. The check is used
+# in some UI views to notify that a plugin update exists.
+# This option does not cause any auto updates, nor send any information
+# only a GET request to https://grafana.com to get the latest versions.
+;check_for_plugin_updates = true
+
+# Google Analytics universal tracking code, only enabled if you specify an id here
+;google_analytics_ua_id =
+
+# Google Analytics 4 tracking code, only enabled if you specify an id here
+;google_analytics_4_id =
+
+# When Google Analytics 4 Enhanced event measurement is enabled, we will try to avoid sending duplicate events and let Google Analytics 4 detect navigation changes, etc.
+;google_analytics_4_send_manual_page_views = false
+
+# Google Tag Manager ID, only enabled if you specify an id here
+;google_tag_manager_id =
+
+# Rudderstack write key, enabled only if rudderstack_data_plane_url is also set
+;rudderstack_write_key =
+
+# Rudderstack data plane url, enabled only if rudderstack_write_key is also set
+;rudderstack_data_plane_url =
+
+# Rudderstack SDK url, optional, only valid if rudderstack_write_key and rudderstack_data_plane_url is also set
+;rudderstack_sdk_url =
+
+# Rudderstack Config url, optional, used by Rudderstack SDK to fetch source config
+;rudderstack_config_url =
+
+# Intercom secret, optional, used to hash user_id before passing to Intercom via Rudderstack
+;intercom_secret =
+
+# Controls if the UI contains any links to user feedback forms
+;feedback_links_enabled = true
+
+#################################### Security ####################################
+[security]
+# disable creation of admin user on first start of grafana
+;disable_initial_admin_creation = false
+
+# default admin user, created on startup
+;admin_user = admin
+
+# default admin password, can be changed before first start of grafana,  or in profile settings
+;admin_password = admin
+
+# default admin email, created on startup
+;admin_email = admin@localhost
+
+# used for signing
+;secret_key = SW2YcwTIb9zpOOhoPsMm
+
+# current key provider used for envelope encryption, default to static value specified by secret_key
+;encryption_provider = secretKey.v1
+
+# list of configured key providers, space separated (Enterprise only): e.g., awskms.v1 azurekv.v1
+;available_encryption_providers =
+
+# disable gravatar profile images
+;disable_gravatar = false
+
+# data source proxy whitelist (ip_or_domain:port separated by spaces)
+;data_source_proxy_whitelist =
+
+# disable protection against brute force login attempts
+;disable_brute_force_login_protection = false
+
+# set to true if you host Grafana behind HTTPS. default is false.
+;cookie_secure = false
+
+# set cookie SameSite attribute. defaults to `lax`. can be set to "lax", "strict", "none" and "disabled"
+;cookie_samesite = lax
+
+# set to true if you want to allow browsers to render Grafana in a <frame>, <iframe>, <embed> or <object>. default is false.
+allow_embedding = false
+
+# Set to true if you want to enable http strict transport security (HSTS) response header.
+# HSTS tells browsers that the site should only be accessed using HTTPS.
+;strict_transport_security = false
+
+# Sets how long a browser should cache HSTS. Only applied if strict_transport_security is enabled.
+;strict_transport_security_max_age_seconds = 86400
+
+# Set to true if to enable HSTS preloading option. Only applied if strict_transport_security is enabled.
+;strict_transport_security_preload = false
+
+# Set to true if to enable the HSTS includeSubDomains option. Only applied if strict_transport_security is enabled.
+;strict_transport_security_subdomains = false
+
+# Set to true to enable the X-Content-Type-Options response header.
+# The X-Content-Type-Options response HTTP header is a marker used by the server to indicate that the MIME types advertised
+# in the Content-Type headers should not be changed and be followed.
+;x_content_type_options = true
+
+# Set to true to enable the X-XSS-Protection header, which tells browsers to stop pages from loading
+# when they detect reflected cross-site scripting (XSS) attacks.
+;x_xss_protection = true
+
+# Enable adding the Content-Security-Policy header to your requests.
+# CSP allows to control resources the user agent is allowed to load and helps prevent XSS attacks.
+;content_security_policy = false
+
+# Set Content Security Policy template used when adding the Content-Security-Policy header to your requests.
+# $NONCE in the template includes a random nonce.
+# $ROOT_PATH is server.root_url without the protocol.
+;content_security_policy_template = """script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' $NONCE;object-src 'none';font-src 'self';style-src 'self' 'unsafe-inline' blob:;img-src * data:;base-uri 'self';connect-src 'self' grafana.com ws://$ROOT_PATH wss://$ROOT_PATH;manifest-src 'self';media-src 'none';form-action 'self';"""
+
+# Enable adding the Content-Security-Policy-Report-Only header to your requests.
+# Allows you to monitor the effects of a policy without enforcing it.
+;content_security_policy_report_only = false
+
+# Set Content Security Policy Report Only template used when adding the Content-Security-Policy-Report-Only header to your requests.
+# $NONCE in the template includes a random nonce.
+# $ROOT_PATH is server.root_url without the protocol.
+;content_security_policy_report_only_template = """script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' $NONCE;object-src 'none';font-src 'self';style-src 'self' 'unsafe-inline' blob:;img-src * data:;base-uri 'self';connect-src 'self' grafana.com ws://$ROOT_PATH wss://$ROOT_PATH;manifest-src 'self';media-src 'none';form-action 'self';"""
+# Controls if old angular plugins are supported or not. This will be disabled by default in future release
+;angular_support_enabled = true
+
+# List of additional allowed URLs to pass by the CSRF check, separated by spaces. Suggested when authentication comes from an IdP.
+;csrf_trusted_origins = example.com
+
+# List of allowed headers to be set by the user, separated by spaces. Suggested to use for if authentication lives behind reverse proxies.
+;csrf_additional_headers =
+
+# The CSRF check will be executed even if the request has no login cookie.
+;csrf_always_check = false
+
+# Comma-separated list of plugins ids that won't be loaded inside the frontend sandbox
+;disable_frontend_sandbox_for_plugins =
+
+[security.encryption]
+# Defines the time-to-live (TTL) for decrypted data encryption keys stored in memory (cache).
+# Please note that small values may cause performance issues due to a high frequency decryption operations.
+;data_keys_cache_ttl = 15m
+
+# Defines the frequency of data encryption keys cache cleanup interval.
+# On every interval, decrypted data encryption keys that reached the TTL are removed from the cache.
+;data_keys_cache_cleanup_interval = 1m
+
+#################################### Snapshots ###########################
+[snapshots]
+# set to false to remove snapshot functionality
+;enabled = true
+
+# snapshot sharing options
+;external_enabled = true
+;external_snapshot_url = https://snapshots.raintank.io
+;external_snapshot_name = Publish to snapshots.raintank.io
+
+# Set to true to enable this Grafana instance act as an external snapshot server and allow unauthenticated requests for
+# creating and deleting snapshots.
+;public_mode = false
+
+# remove expired snapshot
+;snapshot_remove_expired = true
+
+#################################### Dashboards History ##################
+[dashboards]
+# Number dashboard versions to keep (per dashboard). Default: 20, Minimum: 1
+;versions_to_keep = 20
+
+# Minimum dashboard refresh interval. When set, this will restrict users to set the refresh interval of a dashboard lower than given interval. Per default this is 5 seconds.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;min_refresh_interval = 5s
+
+# Path to the default home dashboard. If this value is empty, then Grafana uses StaticRootPath + "dashboards/home.json"
+;default_home_dashboard_path =
+
+#################################### Users ###############################
+[users]
+# disable user signup / registration
+;allow_sign_up = true
+
+# Allow non admin users to create organizations
+;allow_org_create = true
+
+# Set to true to automatically assign new users to the default organization (id 1)
+;auto_assign_org = true
+
+# Set this value to automatically add new users to the provided organization (if auto_assign_org above is set to true)
+;auto_assign_org_id = 1
+
+# Default role new users will be automatically assigned
+;auto_assign_org_role = Viewer
+
+# Require email validation before sign up completes
+;verify_email_enabled = false
+
+# Background text for the user field on the login page
+;login_hint = email or username
+;password_hint = password
+
+# Default UI theme ("dark" or "light")
+;default_theme = dark
+
+# Default UI language (supported IETF language tag, such as en-US)
+;default_language = en-US
+
+# Path to a custom home page. Users are only redirected to this if the default home dashboard is used. It should match a frontend route and contain a leading slash.
+;home_page =
+
+# External user management, these options affect the organization users view
+;external_manage_link_url =
+;external_manage_link_name =
+;external_manage_info =
+
+# Viewers can edit/inspect dashboard settings in the browser. But not save the dashboard.
+;viewers_can_edit = false
+
+# Editors can administrate dashboard, folders and teams they create
+;editors_can_admin = false
+
+# The duration in time a user invitation remains valid before expiring. This setting should be expressed as a duration. Examples: 6h (hours), 2d (days), 1w (week). Default is 24h (24 hours). The minimum supported duration is 15m (15 minutes).
+;user_invite_max_lifetime_duration = 24h
+
+# Enter a comma-separated list of users login to hide them in the Grafana UI. These users are shown to Grafana admins and themselves.
+; hidden_users =
+
+[secretscan]
+# Enable secretscan feature
+;enabled = false
+
+# Interval to check for token leaks
+;interval = 5m
+
+# base URL of the grafana token leak check service
+;base_url = https://secret-scanning.grafana.net
+
+# URL to send outgoing webhooks to in case of detection
+;oncall_url =
+
+# Whether to revoke the token if a leak is detected or just send a notification
+;revoke = true
+
+[service_accounts]
+# Service account maximum expiration date in days.
+# When set, Grafana will not allow the creation of tokens with expiry greater than this setting.
+; token_expiration_day_limit =
+
+[auth]
+# Login cookie name
+;login_cookie_name = grafana_session
+
+# Disable usage of Grafana build-in login solution.
+;disable_login = false
+
+# The maximum lifetime (duration) an authenticated user can be inactive before being required to login at next visit. Default is 7 days (7d). This setting should be expressed as a duration, e.g. 5m (minutes), 6h (hours), 10d (days), 2w (weeks), 1M (month). The lifetime resets at each successful token rotation.
+;login_maximum_inactive_lifetime_duration =
+
+# The maximum lifetime (duration) an authenticated user can be logged in since login time before being required to login. Default is 30 days (30d). This setting should be expressed as a duration, e.g. 5m (minutes), 6h (hours), 10d (days), 2w (weeks), 1M (month).
+;login_maximum_lifetime_duration =
+
+# How often should auth tokens be rotated for authenticated users when being active. The default is each 10 minutes.
+;token_rotation_interval_minutes = 10
+
+# Set to true to disable (hide) the login form, useful if you use OAuth, defaults to false
+;disable_login_form = false
+
+# Set to true to disable the sign out link in the side menu. Useful if you use auth.proxy or auth.jwt, defaults to false
+;disable_signout_menu = false
+
+# URL to redirect the user to after sign out
+;signout_redirect_url =
+
+# Set to true to attempt login with OAuth automatically, skipping the login screen.
+# This setting is ignored if multiple OAuth providers are configured.
+# Deprecated, use auto_login option for specific provider instead.
+;oauth_auto_login = false
+
+# OAuth state max age cookie duration in seconds. Defaults to 600 seconds.
+;oauth_state_cookie_max_age = 600
+
+# Skip forced assignment of OrgID 1 or 'auto_assign_org_id' for social logins
+# Deprecated, use skip_org_role_sync option for specific provider instead.
+;oauth_skip_org_role_update_sync = false
+
+# limit of api_key seconds to live before expiration
+;api_key_max_seconds_to_live = -1
+
+# Set to true to enable SigV4 authentication option for HTTP-based datasources.
+;sigv4_auth_enabled = false
+
+# Set to true to enable verbose logging of SigV4 request signing
+;sigv4_verbose_logging = false
+
+# Set to true to enable Azure authentication option for HTTP-based datasources.
+;azure_auth_enabled = false
+
+# Set to skip the organization role from JWT login and use system's role assignment instead.
+; skip_org_role_sync = false
+
+# Use email lookup in addition to the unique ID provided by the IdP
+;oauth_allow_insecure_email_lookup = false
+
+#################################### Anonymous Auth ######################
+[auth.anonymous]
+# enable anonymous access
+;enabled = false
+
+# specify organization name that should be used for unauthenticated users
+;org_name = Main Org.
+
+# specify role for unauthenticated users
+;org_role = Viewer
+
+# mask the Grafana version number for unauthenticated users
+;hide_version = false
+
+#################################### GitHub Auth ##########################
+[auth.github]
+;name = GitHub
+;icon = github
+;enabled = false
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_id
+;client_secret = some_secret
+;scopes = user:email,read:org
+;auth_url = https://github.com/login/oauth/authorize
+;token_url = https://github.com/login/oauth/access_token
+;api_url = https://api.github.com/user
+;allowed_domains =
+;team_ids =
+;allowed_organizations =
+;role_attribute_path =
+;role_attribute_strict = false
+;allow_assign_grafana_admin = false
+;skip_org_role_sync = false
+
+#################################### GitLab Auth #########################
+[auth.gitlab]
+;name = GitLab
+;icon = gitlab
+;enabled = false
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_id
+;client_secret = some_secret
+;scopes = openid email profile
+;auth_url = https://gitlab.com/oauth/authorize
+;token_url = https://gitlab.com/oauth/token
+;api_url = https://gitlab.com/api/v4
+;allowed_domains =
+;allowed_groups =
+;role_attribute_path =
+;role_attribute_strict = false
+;allow_assign_grafana_admin = false
+;skip_org_role_sync = false
+;tls_skip_verify_insecure = false
+;tls_client_cert =
+;tls_client_key =
+;tls_client_ca =
+;use_pkce = true
+
+#################################### Google Auth ##########################
+[auth.google]
+;name = Google
+;icon = google
+;enabled = false
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_client_id
+;client_secret = some_client_secret
+;scopes = openid email profile
+;auth_url = https://accounts.google.com/o/oauth2/v2/auth
+;token_url = https://oauth2.googleapis.com/token
+;api_url = https://openidconnect.googleapis.com/v1/userinfo
+;allowed_domains =
+;hosted_domain =
+;skip_org_role_sync = false
+;use_pkce = true
+
+#################################### Grafana.com Auth ####################
+[auth.grafana_com]
+;name = Grafana.com
+;icon = grafana
+;enabled = false
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_id
+;client_secret = some_secret
+;scopes = user:email
+;allowed_organizations =
+;skip_org_role_sync = false
+
+#################################### Azure AD OAuth #######################
+[auth.azuread]
+;name = Microsoft
+;icon = microsoft
+;enabled = false
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_client_id
+;client_secret = some_client_secret
+;scopes = openid email profile
+;auth_url = https://login.microsoftonline.com/<tenant-id>/oauth2/v2.0/authorize
+;token_url = https://login.microsoftonline.com/<tenant-id>/oauth2/v2.0/token
+;allowed_domains =
+;allowed_groups =
+;allowed_organizations =
+;role_attribute_strict = false
+;allow_assign_grafana_admin = false
+;use_pkce = true
+# prevent synchronizing users organization roles
+;skip_org_role_sync = false
+
+#################################### Okta OAuth #######################
+[auth.okta]
+;name = Okta
+;enabled = false
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_id
+;client_secret = some_secret
+;scopes = openid profile email groups
+;auth_url = https://<tenant-id>.okta.com/oauth2/v1/authorize
+;token_url = https://<tenant-id>.okta.com/oauth2/v1/token
+;api_url = https://<tenant-id>.okta.com/oauth2/v1/userinfo
+;allowed_domains =
+;allowed_groups =
+;role_attribute_path =
+;role_attribute_strict = false
+;allow_assign_grafana_admin = false
+;skip_org_role_sync = false
+;use_pkce = true
+
+#################################### Generic OAuth ##########################
+[auth.generic_oauth]
+;enabled = false
+;name = OAuth
+;allow_sign_up = true
+;auto_login = false
+;client_id = some_id
+;client_secret = some_secret
+;scopes = user:email,read:org
+;empty_scopes = false
+;email_attribute_name = email:primary
+;email_attribute_path =
+;login_attribute_path =
+;name_attribute_path =
+;id_token_attribute_name =
+;auth_url = https://foo.bar/login/oauth/authorize
+;token_url = https://foo.bar/login/oauth/access_token
+;api_url = https://foo.bar/user
+;teams_url =
+;allowed_domains =
+;team_ids =
+;allowed_organizations =
+;role_attribute_path =
+;role_attribute_strict = false
+;groups_attribute_path =
+;team_ids_attribute_path =
+;tls_skip_verify_insecure = false
+;tls_client_cert =
+;tls_client_key =
+;tls_client_ca =
+;use_pkce = false
+;auth_style =
+;allow_assign_grafana_admin = false
+
+#################################### Basic Auth ##########################
+[auth.basic]
+;enabled = true
+
+#################################### Auth Proxy ##########################
+[auth.proxy]
+;enabled = false
+;header_name = X-WEBAUTH-USER
+;header_property = username
+;auto_sign_up = true
+;sync_ttl = 60
+;whitelist = 192.168.1.1, 192.168.2.1
+;headers = Email:X-User-Email, Name:X-User-Name
+# Non-ASCII strings in header values are encoded using quoted-printable encoding
+;headers_encoded = false
+# Read the auth proxy docs for details on what the setting below enables
+;enable_login_token = false
+
+#################################### Auth JWT ##########################
+[auth.jwt]
+;enabled = true
+;header_name = X-JWT-Assertion
+;email_claim = sub
+;username_claim = sub
+;jwk_set_url = https://foo.bar/.well-known/jwks.json
+;jwk_set_file = /path/to/jwks.json
+;cache_ttl = 60m
+;expect_claims = {"aud": ["foo", "bar"]}
+;key_file = /path/to/key/file
+;role_attribute_path =
+;role_attribute_strict = false
+;auto_sign_up = false
+;url_login = false
+;allow_assign_grafana_admin = false
+
+#################################### Auth LDAP ##########################
+[auth.ldap]
+;enabled = false
+;config_file = /etc/grafana/ldap.toml
+;allow_sign_up = true
+# prevent synchronizing ldap users organization roles
+;skip_org_role_sync = false
+
+# LDAP background sync (Enterprise only)
+# At 1 am every day
+;sync_cron = "0 1 * * *"
+;active_sync_enabled = true
+
+#################################### AWS ###########################
+[aws]
+# Enter a comma-separated list of allowed AWS authentication providers.
+# Options are: default (AWS SDK Default), keys (Access && secret key), credentials (Credentials field), ec2_iam_role (EC2 IAM Role)
+; allowed_auth_providers = default,keys,credentials
+
+# Allow AWS users to assume a role using temporary security credentials.
+# If true, assume role will be enabled for all AWS authentication providers that are specified in aws_auth_providers
+; assume_role_enabled = true
+
+# Specify max no of pages to be returned by the ListMetricPages API
+; list_metrics_page_limit = 500
+
+# Experimental, for use in Grafana Cloud only. Please do not set.
+; external_id =
+
+#################################### Azure ###############################
+[azure]
+# Azure cloud environment where Grafana is hosted
+# Possible values are AzureCloud, AzureChinaCloud, AzureUSGovernment and AzureGermanCloud
+# Default value is AzureCloud (i.e. public cloud)
+;cloud = AzureCloud
+
+# Specifies whether Grafana hosted in Azure service with Managed Identity configured (e.g. Azure Virtual Machines instance)
+# If enabled, the managed identity can be used for authentication of Grafana in Azure services
+# Disabled by default, needs to be explicitly enabled
+;managed_identity_enabled = false
+
+# Client ID to use for user-assigned managed identity
+# Should be set for user-assigned identity and should be empty for system-assigned identity
+;managed_identity_client_id =
+
+# Specifies whether Azure AD Workload Identity authentication should be enabled in datasources that support it
+# For more documentation on Azure AD Workload Identity, review this documentation:
+# https://azure.github.io/azure-workload-identity/docs/
+# Disabled by default, needs to be explicitly enabled
+;workload_identity_enabled = false
+
+# Tenant ID of the Azure AD Workload Identity
+# Allows to override default tenant ID of the Azure AD identity associated with the Kubernetes service account
+;workload_identity_tenant_id =
+
+# Client ID of the Azure AD Workload Identity
+# Allows to override default client ID of the Azure AD identity associated with the Kubernetes service account
+;workload_identity_client_id =
+
+# Custom path to token file for the Azure AD Workload Identity
+# Allows to set a custom path to the projected service account token file
+;workload_identity_token_file =
+
+# Specifies whether user identity authentication (on behalf of currently signed-in user) should be enabled in datasources
+# that support it (requires AAD authentication)
+# Disabled by default, needs to be explicitly enabled
+;user_identity_enabled = false
+
+# Override token URL for Azure Active Directory
+# By default is the same as token URL configured for AAD authentication settings
+;user_identity_token_url =
+
+# Override ADD application ID which would be used to exchange users token to an access token for the datasource
+# By default is the same as used in AAD authentication or can be set to another application (for OBO flow)
+;user_identity_client_id =
+
+# Override the AAD application client secret
+# By default is the same as used in AAD authentication or can be set to another application (for OBO flow)
+;user_identity_client_secret =
+
+#################################### Role-based Access Control ###########
+[rbac]
+;permission_cache = true
+
+# Reset basic roles permissions on boot
+# Warning left to true, basic roles permissions will be reset on every boot
+#reset_basic_roles = false
+
+#################################### SMTP / Emailing ##########################
+[smtp]
+;enabled = false
+;host = localhost:25
+;user =
+# If the password contains # or ; you have to wrap it with triple quotes. Ex """#password;"""
+;password =
+;cert_file =
+;key_file =
+;skip_verify = false
+;from_address = admin@grafana.localhost
+;from_name = Grafana
+# EHLO identity in SMTP dialog (defaults to instance_name)
+;ehlo_identity = dashboard.example.com
+# SMTP startTLS policy (defaults to 'OpportunisticStartTLS')
+;startTLS_policy = NoStartTLS
+
+[emails]
+;welcome_email_on_sign_up = false
+;templates_pattern = emails/*.html, emails/*.txt
+;content_types = text/html
+
+#################################### Logging ##########################
+[log]
+# Either "console", "file", "syslog". Default is console and  file
+# Use space to separate multiple modes, e.g. "console file"
+;mode = console file
+
+# Either "debug", "info", "warn", "error", "critical", default is "info"
+;level = info
+
+# optional settings to set different levels for specific loggers. Ex filters = sqlstore:debug
+;filters =
+
+# Set the default error message shown to users. This message is displayed instead of sensitive backend errors which should be obfuscated. Default is the same as the sample value.
+;user_facing_default_error = "please inspect Grafana server log for details"
+
+# For "console" mode only
+[log.console]
+;level =
+
+# log line format, valid options are text, console and json
+;format = console
+
+# For "file" mode only
+[log.file]
+;level =
+
+# log line format, valid options are text, console and json
+;format = text
+
+# This enables automated log rotate(switch of following options), default is true
+;log_rotate = true
+
+# Max line number of single file, default is 1000000
+;max_lines = 1000000
+
+# Max size shift of single file, default is 28 means 1 << 28, 256MB
+;max_size_shift = 28
+
+# Segment log daily, default is true
+;daily_rotate = true
+
+# Expired days of log file(delete after max days), default is 7
+;max_days = 7
+
+[log.syslog]
+;level =
+
+# log line format, valid options are text, console and json
+;format = text
+
+# Syslog network type and address. This can be udp, tcp, or unix. If left blank, the default unix endpoints will be used.
+;network =
+;address =
+
+# Syslog facility. user, daemon and local0 through local7 are valid.
+;facility =
+
+# Syslog tag. By default, the process' argv[0] is used.
+;tag =
+
+[log.frontend]
+# Should Faro javascript agent be initialized
+;enabled = false
+
+# Custom HTTP endpoint to send events to. Default will log the events to stdout.
+;custom_endpoint = /log-grafana-javascript-agent
+
+# Requests per second limit enforced an extended period, for Grafana backend log ingestion endpoint (/log).
+;log_endpoint_requests_per_second_limit = 3
+
+# Max requests accepted per short interval of time for Grafana backend log ingestion endpoint (/log).
+;log_endpoint_burst_limit = 15
+
+# Should error instrumentation be enabled, only affects Grafana Javascript Agent
+;instrumentations_errors_enabled = true
+
+# Should console instrumentation be enabled, only affects Grafana Javascript Agent
+;instrumentations_console_enabled = false
+
+# Should webvitals instrumentation be enabled, only affects Grafana Javascript Agent
+;instrumentations_webvitals_enabled = false
+
+# Api Key, only applies to Grafana Javascript Agent provider
+;api_key = testApiKey
+
+#################################### Usage Quotas ########################
+[quota]
+; enabled = false
+
+#### set quotas to -1 to make unlimited. ####
+# limit number of users per Org.
+; org_user = 10
+
+# limit number of dashboards per Org.
+; org_dashboard = 100
+
+# limit number of data_sources per Org.
+; org_data_source = 10
+
+# limit number of api_keys per Org.
+; org_api_key = 10
+
+# limit number of alerts per Org.
+;org_alert_rule = 100
+
+# limit number of orgs a user can create.
+; user_org = 10
+
+# Global limit of users.
+; global_user = -1
+
+# global limit of orgs.
+; global_org = -1
+
+# global limit of dashboards
+; global_dashboard = -1
+
+# global limit of api_keys
+; global_api_key = -1
+
+# global limit on number of logged in users.
+; global_session = -1
+
+# global limit of alerts
+;global_alert_rule = -1
+
+# global limit of correlations
+; global_correlations = -1
+
+#################################### Unified Alerting ####################
+[unified_alerting]
+#Enable the Unified Alerting sub-system and interface. When enabled we'll migrate all of your alert rules and notification channels to the new system. New alert rules will be created and your notification channels will be converted into an Alertmanager configuration. Previous data is preserved to enable backwards compatibility but new data is removed.```
+;enabled = true
+
+# Comma-separated list of organization IDs for which to disable unified alerting. Only supported if unified alerting is enabled.
+;disabled_orgs =
+
+# Specify the frequency of polling for admin config changes.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;admin_config_poll_interval = 60s
+
+# Specify the frequency of polling for Alertmanager config changes.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;alertmanager_config_poll_interval = 60s
+
+# The redis server address that should be connected to.
+;ha_redis_address =
+
+# The username that should be used to authenticate with the redis server.
+;ha_redis_username =
+
+# The password that should be used to authenticate with the redis server.
+;ha_redis_password =
+
+# The redis database, by default it's 0.
+;ha_redis_db =
+
+# A prefix that is used for every key or channel that is created on the redis server
+# as part of HA for alerting.
+;ha_redis_prefix =
+
+# The name of the cluster peer that will be used as identifier. If none is
+# provided, a random one will be generated.
+;ha_redis_peer_name =
+
+# Listen address/hostname and port to receive unified alerting messages for other Grafana instances. The port is used for both TCP and UDP. It is assumed other Grafana instances are also running on the same port. The default value is `0.0.0.0:9094`.
+;ha_listen_address = "0.0.0.0:9094"
+
+# Listen address/hostname and port to receive unified alerting messages for other Grafana instances. The port is used for both TCP and UDP. It is assumed other Grafana instances are also running on the same port. The default value is `0.0.0.0:9094`.
+;ha_advertise_address = ""
+
+# Comma-separated list of initial instances (in a format of host:port) that will form the HA cluster. Configuring this setting will enable High Availability mode for alerting.
+;ha_peers = ""
+
+# Time to wait for an instance to send a notification via the Alertmanager. In HA, each Grafana instance will
+# be assigned a position (e.g. 0, 1). We then multiply this position with the timeout to indicate how long should
+# each instance wait before sending the notification to take into account replication lag.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;ha_peer_timeout = "15s"
+
+# The label is an optional string to include on each packet and stream.
+# It uniquely identifies the cluster and prevents cross-communication
+# issues when sending gossip messages in an enviromenet with multiple clusters.
+;ha_label =
+
+# The interval between sending gossip messages. By lowering this value (more frequent) gossip messages are propagated
+# across cluster more quickly at the expense of increased bandwidth usage.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;ha_gossip_interval = "200ms"
+
+# The interval between gossip full state syncs. Setting this interval lower (more frequent) will increase convergence speeds
+# across larger clusters at the expense of increased bandwidth usage.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;ha_push_pull_interval = "60s"
+
+# Enable or disable alerting rule execution. The alerting UI remains visible. This option has a legacy version in the `[alerting]` section that takes precedence.
+;execute_alerts = true
+
+# Alert evaluation timeout when fetching data from the datasource. This option has a legacy version in the `[alerting]` section that takes precedence.
+# The timeout string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;evaluation_timeout = 30s
+
+# Number of times we'll attempt to evaluate an alert rule before giving up on that evaluation. This option has a legacy version in the `[alerting]` section that takes precedence.
+;max_attempts = 3
+
+# Minimum interval to enforce between rule evaluations. Rules will be adjusted if they are less than this value  or if they are not multiple of the scheduler interval (10s). Higher values can help with resource management as we'll schedule fewer evaluations over time. This option has a legacy version in the `[alerting]` section that takes precedence.
+# The interval string is a possibly signed sequence of decimal numbers, followed by a unit suffix (ms, s, m, h, d), e.g. 30s or 1m.
+;min_interval = 10s
+
+[unified_alerting.reserved_labels]
+# Comma-separated list of reserved labels added by the Grafana Alerting engine that should be disabled.
+# For example: `disabled_labels=grafana_folder`
+;disabled_labels =
+
+[unified_alerting.state_history]
+# Enable the state history functionality in Unified Alerting. The previous states of alert rules will be visible in panels and in the UI.
+; enabled = true
+
+# Select which pluggable state history backend to use. Either "annotations", "loki", or "multiple"
+# "loki" writes state history to an external Loki instance. "multiple" allows history to be written to multiple backends at once.
+# Defaults to "annotations".
+; backend = "multiple"
+
+# For "multiple" only.
+# Indicates the main backend used to serve state history queries.
+# Either "annotations" or "loki"
+; primary = "loki"
+
+# For "multiple" only.
+# Comma-separated list of additional backends to write state history data to.
+; secondaries = "annotations"
+
+# For "loki" only.
+# URL of the external Loki instance.
+# Either "loki_remote_url", or both of "loki_remote_read_url" and "loki_remote_write_url" is required for the "loki" backend.
+; loki_remote_url = "http://loki:3100"
+
+# For "loki" only.
+# URL of the external Loki's read path. To be used in configurations where Loki has separated read and write URLs.
+# Either "loki_remote_url", or both of "loki_remote_read_url" and "loki_remote_write_url" is required for the "loki" backend.
+; loki_remote_read_url = "http://loki-querier:3100"
+
+# For "loki" only.
+# URL of the external Loki's write path. To be used in configurations where Loki has separated read and write URLs.
+# Either "loki_remote_url", or both of "loki_remote_read_url" and "loki_remote_write_url" is required for the "loki" backend.
+; loki_remote_write_url = "http://loki-distributor:3100"
+
+# For "loki" only.
+# Optional tenant ID to attach to requests sent to Loki.
+; loki_tenant_id = 123
+
+# For "loki" only.
+# Optional username for basic authentication on requests sent to Loki. Can be left blank to disable basic auth.
+; loki_basic_auth_username = "myuser"
+
+# For "loki" only.
+# Optional password for basic authentication on requests sent to Loki. Can be left blank.
+; loki_basic_auth_password = "mypass"
+
+[unified_alerting.state_history.external_labels]
+# Optional extra labels to attach to outbound state history records or log streams.
+# Any number of label key-value-pairs can be provided.
+; mylabelkey = mylabelvalue
+
+#################################### Alerting ############################
+[alerting]
+# Disable legacy alerting engine & UI features
+;enabled = false
+
+# Makes it possible to turn off alert execution but alerting UI is visible
+;execute_alerts = true
+
+# Default setting for new alert rules. Defaults to categorize error and timeouts as alerting. (alerting, keep_state)
+;error_or_timeout = alerting
+
+# Default setting for how Grafana handles nodata or null values in alerting. (alerting, no_data, keep_state, ok)
+;nodata_or_nullvalues = no_data
+
+# Alert notifications can include images, but rendering many images at the same time can overload the server
+# This limit will protect the server from render overloading and make sure notifications are sent out quickly
+;concurrent_render_limit = 5
+
+# Default setting for alert calculation timeout. Default value is 30
+;evaluation_timeout_seconds = 30
+
+# Default setting for alert notification timeout. Default value is 30
+;notification_timeout_seconds = 30
+
+# Default setting for max attempts to sending alert notifications. Default value is 3
+;max_attempts = 3
+
+# Makes it possible to enforce a minimal interval between evaluations, to reduce load on the backend
+;min_interval_seconds = 1
+
+# Configures for how long alert annotations are stored. Default is 0, which keeps them forever.
+# This setting should be expressed as a duration. Examples: 6h (hours), 10d (days), 2w (weeks), 1M (month).
+;max_annotation_age =
+
+# Configures max number of alert annotations that Grafana stores. Default value is 0, which keeps all alert annotations.
+;max_annotations_to_keep =
+
+#################################### Annotations #########################
+[annotations]
+# Configures the batch size for the annotation clean-up job. This setting is used for dashboard, API, and alert annotations.
+;cleanupjob_batchsize = 100
+
+# Enforces the maximum allowed length of the tags for any newly introduced annotations. It can be between 500 and 4096 inclusive (which is the respective's column length). Default value is 500.
+# Setting it to a higher value would impact performance therefore is not recommended.
+;tags_length = 500
+
+[annotations.dashboard]
+# Dashboard annotations means that annotations are associated with the dashboard they are created on.
+
+# Configures how long dashboard annotations are stored. Default is 0, which keeps them forever.
+# This setting should be expressed as a duration. Examples: 6h (hours), 10d (days), 2w (weeks), 1M (month).
+;max_age =
+
+# Configures max number of dashboard annotations that Grafana stores. Default value is 0, which keeps all dashboard annotations.
+;max_annotations_to_keep =
+
+[annotations.api]
+# API annotations means that the annotations have been created using the API without any
+# association with a dashboard.
+
+# Configures how long Grafana stores API annotations. Default is 0, which keeps them forever.
+# This setting should be expressed as a duration. Examples: 6h (hours), 10d (days), 2w (weeks), 1M (month).
+;max_age =
+
+# Configures max number of API annotations that Grafana keeps. Default value is 0, which keeps all API annotations.
+;max_annotations_to_keep =
+
+#################################### Explore #############################
+[explore]
+# Enable the Explore section
+;enabled = true
+
+#################################### Help #############################
+[help]
+# Enable the Help section
+;enabled = true
+
+#################################### Profile #############################
+[profile]
+# Enable the Profile section
+;enabled = true
+
+#################################### News #############################
+[news]
+# Enable the news feed section
+; news_feed_enabled = true
+
+#################################### Query #############################
+[query]
+# Set the number of data source queries that can be executed concurrently in mixed queries. Default is the number of CPUs.
+;concurrent_query_limit =
+
+#################################### Query History #############################
+[query_history]
+# Enable the Query history
+;enabled = true
+
+#################################### Internal Grafana Metrics ##########################
+# Metrics available at HTTP URL /metrics and /metrics/plugins/:pluginId
+[metrics]
+# Disable / Enable internal metrics
+;enabled           = true
+# Graphite Publish interval
+;interval_seconds  = 10
+# Disable total stats (stat_totals_*) metrics to be generated
+;disable_total_stats = false
+# The interval at which the total stats collector will update the stats. Default is 1800 seconds.
+;total_stats_collector_interval_seconds = 1800
+
+#If both are set, basic auth will be required for the metrics endpoints.
+; basic_auth_username =
+; basic_auth_password =
+
+# Metrics environment info adds dimensions to the `grafana_environment_info` metric, which
+# can expose more information about the Grafana instance.
+[metrics.environment_info]
+#exampleLabel1 = exampleValue1
+#exampleLabel2 = exampleValue2
+
+# Send internal metrics to Graphite
+[metrics.graphite]
+# Enable by setting the address setting (ex localhost:2003)
+;address =
+;prefix = prod.grafana.%(instance_name)s.
+
+#################################### Grafana.com integration  ##########################
+# Url used to import dashboards directly from Grafana.com
+[grafana_com]
+;url = https://grafana.com
+;api_url = https://grafana.com/api
+
+#################################### Distributed tracing ############
+# Opentracing is deprecated use opentelemetry instead
+[tracing.jaeger]
+# Enable by setting the address sending traces to jaeger (ex localhost:6831)
+;address = localhost:6831
+# Tag that will always be included in when creating new spans. ex (tag1:value1,tag2:value2)
+;always_included_tag = tag1:value1
+# Type specifies the type of the sampler: const, probabilistic, rateLimiting, or remote
+;sampler_type = const
+# jaeger samplerconfig param
+# for "const" sampler, 0 or 1 for always false/true respectively
+# for "probabilistic" sampler, a probability between 0 and 1
+# for "rateLimiting" sampler, the number of spans per second
+# for "remote" sampler, param is the same as for "probabilistic"
+# and indicates the initial sampling rate before the actual one
+# is received from the mothership
+;sampler_param = 1
+# sampling_server_url is the URL of a sampling manager providing a sampling strategy.
+;sampling_server_url =
+# Whether or not to use Zipkin propagation (x-b3- HTTP headers).
+;zipkin_propagation = false
+# Setting this to true disables shared RPC spans.
+# Not disabling is the most common setting when using Zipkin elsewhere in your infrastructure.
+;disable_shared_zipkin_spans = false
+
+[tracing.opentelemetry]
+# attributes that will always be included in when creating new spans. ex (key1:value1,key2:value2)
+;custom_attributes = key1:value1,key2:value2
+
+[tracing.opentelemetry.jaeger]
+# jaeger destination (ex http://localhost:14268/api/traces)
+; address = http://localhost:14268/api/traces
+# Propagation specifies the text map propagation format: w3c, jaeger
+; propagation = jaeger
+
+# This is a configuration for OTLP exporter with GRPC protocol
+[tracing.opentelemetry.otlp]
+# otlp destination (ex localhost:4317)
+; address = localhost:4317
+# Propagation specifies the text map propagation format: w3c, jaeger
+; propagation = w3c
+
+#################################### External image storage ##########################
+[external_image_storage]
+# Used for uploading images to public servers so they can be included in slack/email messages.
+# you can choose between (s3, webdav, gcs, azure_blob, local)
+;provider =
+
+[external_image_storage.s3]
+;endpoint =
+;path_style_access =
+;bucket =
+;region =
+;path =
+;access_key =
+;secret_key =
+
+[external_image_storage.webdav]
+;url =
+;public_url =
+;username =
+;password =
+
+[external_image_storage.gcs]
+;key_file =
+;bucket =
+;path =
+
+[external_image_storage.azure_blob]
+;account_name =
+;account_key =
+;container_name =
+;sas_token_expiration_days =
+
+[external_image_storage.local]
+# does not require any configuration
+
+[rendering]
+# Options to configure a remote HTTP image rendering service, e.g. using https://github.com/grafana/grafana-image-renderer.
+# URL to a remote HTTP image renderer service, e.g. http://localhost:8081/render, will enable Grafana to render panels and dashboards to PNG-images using HTTP requests to an external service.
+;server_url =
+# If the remote HTTP image renderer service runs on a different server than the Grafana server you may have to configure this to a URL where Grafana is reachable, e.g. http://grafana.domain/.
+;callback_url =
+# An auth token that will be sent to and verified by the renderer. The renderer will deny any request without an auth token matching the one configured on the renderer side.
+;renderer_token = -
+# Concurrent render request limit affects when the /render HTTP endpoint is used. Rendering many images at the same time can overload the server,
+# which this setting can help protect against by only allowing a certain amount of concurrent requests.
+;concurrent_render_request_limit = 30
+# Determines the lifetime of the render key used by the image renderer to access and render Grafana.
+# This setting should be expressed as a duration. Examples: 10s (seconds), 5m (minutes), 2h (hours).
+# Default is 5m. This should be more than enough for most deployments.
+# Change the value only if image rendering is failing and you see `Failed to get the render key from cache` in Grafana logs.
+;render_key_lifetime = 5m
+
+[panels]
+# If set to true Grafana will allow script tags in text panels. Not recommended as it enable XSS vulnerabilities.
+;disable_sanitize_html = false
+
+[plugins]
+;enable_alpha = false
+;app_tls_skip_verify_insecure = false
+# Enter a comma-separated list of plugin identifiers to identify plugins to load even if they are unsigned. Plugins with modified signatures are never loaded.
+;allow_loading_unsigned_plugins =
+# Enable or disable installing / uninstalling / updating plugins directly from within Grafana.
+;plugin_admin_enabled = false
+;plugin_admin_external_manage_enabled = false
+;plugin_catalog_url = https://grafana.com/grafana/plugins/
+# Enter a comma-separated list of plugin identifiers to hide in the plugin catalog.
+;plugin_catalog_hidden_plugins =
+# Log all backend requests for core and external plugins.
+;log_backend_requests = false
+# Disable download of the public key for verifying plugin signature.
+; public_key_retrieval_disabled = false
+# Force download of the public key for verifying plugin signature on startup. If disabled, the public key will be retrieved every 10 days.
+# Requires public_key_retrieval_disabled to be false to have any effect.
+; public_key_retrieval_on_startup = false
+
+#################################### Grafana Live ##########################################
+[live]
+# max_connections to Grafana Live WebSocket endpoint per Grafana server instance. See Grafana Live docs
+# if you are planning to make it higher than default 100 since this can require some OS and infrastructure
+# tuning. 0 disables Live, -1 means unlimited connections.
+;max_connections = 100
+
+# allowed_origins is a comma-separated list of origins that can establish connection with Grafana Live.
+# If not set then origin will be matched over root_url. Supports wildcard symbol "*".
+;allowed_origins =
+
+# engine defines an HA (high availability) engine to use for Grafana Live. By default no engine used - in
+# this case Live features work only on a single Grafana server. Available options: "redis".
+# Setting ha_engine is an EXPERIMENTAL feature.
+;ha_engine =
+
+# ha_engine_address sets a connection address for Live HA engine. Depending on engine type address format can differ.
+# For now we only support Redis connection address in "host:port" format.
+# This option is EXPERIMENTAL.
+;ha_engine_address = "127.0.0.1:6379"
+
+#################################### Grafana Image Renderer Plugin ##########################
+[plugin.grafana-image-renderer]
+# Instruct headless browser instance to use a default timezone when not provided by Grafana, e.g. when rendering panel image of alert.
+# See ICU’s metaZones.txt (https://cs.chromium.org/chromium/src/third_party/icu/source/data/misc/metaZones.txt) for a list of supported
+# timezone IDs. Fallbacks to TZ environment variable if not set.
+;rendering_timezone =
+
+# Instruct headless browser instance to use a default language when not provided by Grafana, e.g. when rendering panel image of alert.
+# Please refer to the HTTP header Accept-Language to understand how to format this value, e.g. 'fr-CH, fr;q=0.9, en;q=0.8, de;q=0.7, *;q=0.5'.
+;rendering_language =
+
+# Instruct headless browser instance to use a default device scale factor when not provided by Grafana, e.g. when rendering panel image of alert.
+# Default is 1. Using a higher value will produce more detailed images (higher DPI), but will require more disk space to store an image.
+;rendering_viewport_device_scale_factor =
+
+# Instruct headless browser instance whether to ignore HTTPS errors during navigation. Per default HTTPS errors are not ignored. Due to
+# the security risk it's not recommended to ignore HTTPS errors.
+;rendering_ignore_https_errors =
+
+# Instruct headless browser instance whether to capture and log verbose information when rendering an image. Default is false and will
+# only capture and log error messages. When enabled, debug messages are captured and logged as well.
+# For the verbose information to be included in the Grafana server log you have to adjust the rendering log level to debug, configure
+# [log].filter = rendering:debug.
+;rendering_verbose_logging =
+
+# Instruct headless browser instance whether to output its debug and error messages into running process of remote rendering service.
+# Default is false. This can be useful to enable (true) when troubleshooting.
+;rendering_dumpio =
+
+# Additional arguments to pass to the headless browser instance. Default is --no-sandbox. The list of Chromium flags can be found
+# here (https://peter.sh/experiments/chromium-command-line-switches/). Multiple arguments is separated with comma-character.
+;rendering_args =
+
+# You can configure the plugin to use a different browser binary instead of the pre-packaged version of Chromium.
+# Please note that this is not recommended, since you may encounter problems if the installed version of Chrome/Chromium is not
+# compatible with the plugin.
+;rendering_chrome_bin =
+
+# Instruct how headless browser instances are created. Default is 'default' and will create a new browser instance on each request.
+# Mode 'clustered' will make sure that only a maximum of browsers/incognito pages can execute concurrently.
+# Mode 'reusable' will have one browser instance and will create a new incognito page on each request.
+;rendering_mode =
+
+# When rendering_mode = clustered, you can instruct how many browsers or incognito pages can execute concurrently. Default is 'browser'
+# and will cluster using browser instances.
+# Mode 'context' will cluster using incognito pages.
+;rendering_clustering_mode =
+# When rendering_mode = clustered, you can define the maximum number of browser instances/incognito pages that can execute concurrently. Default is '5'.
+;rendering_clustering_max_concurrency =
+# When rendering_mode = clustered, you can specify the duration a rendering request can take before it will time out. Default is `30` seconds.
+;rendering_clustering_timeout =
+
+# Limit the maximum viewport width, height and device scale factor that can be requested.
+;rendering_viewport_max_width =
+;rendering_viewport_max_height =
+;rendering_viewport_max_device_scale_factor =
+
+# Change the listening host and port of the gRPC server. Default host is 127.0.0.1 and default port is 0 and will automatically assign
+# a port not in use.
+;grpc_host =
+;grpc_port =
+
+[support_bundles]
+# Enable support bundle creation (default: true)
+#enabled = true
+# Only server admins can generate and view support bundles (default: true)
+#server_admin_only = true
+# If set, bundles will be encrypted with the provided public keys separated by whitespace
+#public_keys = ""
+
+[enterprise]
+# Path to a valid Grafana Enterprise license.jwt file
+;license_path =
+
+[feature_toggles]
+# there are currently two ways to enable feature toggles in the `grafana.ini`.
+# you can either pass an array of feature you want to enable to the `enable` field or
+# configure each toggle by setting the name of the toggle to true/false. Toggles set to true/false
+# will take presidence over toggles in the `enable` list.
+
+;enable = feature1,feature2
+
+;feature1 = true
+;feature2 = false
+
+[date_formats]
+# For information on what formatting patterns that are supported https://momentjs.com/docs/#/displaying/
+
+# Default system date format used in time range picker and other places where full time is displayed
+;full_date = YYYY-MM-DD HH:mm:ss
+
+# Used by graph and other places where we only show small intervals
+;interval_second = HH:mm:ss
+;interval_minute = HH:mm
+;interval_hour = MM/DD HH:mm
+;interval_day = MM/DD
+;interval_month = YYYY-MM
+;interval_year = YYYY
+
+# Experimental feature
+;use_browser_locale = false
+
+# Default timezone for user preferences. Options are 'browser' for the browser local timezone or a timezone name from IANA Time Zone database, e.g. 'UTC' or 'Europe/Amsterdam' etc.
+;default_timezone = browser
+
+[expressions]
+# Enable or disable the expressions functionality.
+;enabled = true
+
+[geomap]
+# Set the JSON configuration for the default basemap
+;default_baselayer_config = `{
+;  "type": "xyz",
+;  "config": {
+;    "attribution": "Open street map",
+;    "url": "https://tile.openstreetmap.org/{z}/{x}/{y}.png"
+;  }
+;}`
+
+# Enable or disable loading other base map layers
+;enable_custom_baselayers = true
+
+# Move an app plugin referenced by its id (including all its pages) to a specific navigation section
+[navigation.app_sections]
+# The following will move an app plugin with the id of `my-app-id` under the `cfg` section
+# my-app-id = cfg
+
+# Move a specific app plugin page (referenced by its `path` field) to a specific navigation section
+[navigation.app_standalone_pages]
+# The following will move the page with the path "/a/my-app-id/my-page" from `my-app-id` to the `cfg` section
+# /a/my-app-id/my-page = cfg
+
+#################################### Secure Socks5 Datasource Proxy #####################################
+[secure_socks_datasource_proxy]
+; enabled = false
+; root_ca_cert =
+; client_key =
+; client_cert =
+; server_name =
+# The address of the socks5 proxy datasources should connect to
+; proxy_address =
+; show_ui = true
+
+################################## Feature Management ##############################################
+[feature_management]
+hidden_toggles =
+read_only_toggles =
+# Enterprise only
+[white_labeling]
+# Set to your company name to override application title
+;app_title =
+
+# Set to main title on the login page
+;login_title =
+
+# Set to login subtitle
+;login_subtitle =
+
+# Set to complete url to override login logo
+;login_logo =
+
+# Set to complete css background expression to override login background
+# example: login_background = url(http://www.bhmpics.com/wallpapers/starfield-1920x1080.jpg)
+;login_background =
+
+# Set to complete css background expression to override login box background
+;login_box_background =
+
+# Set to complete url to override menu logo
+;menu_logo =
+
+# Set to complete url to override fav icon (icon shown in browser tab)
+;fav_icon =
+
+# Set to complete url to override apple/ios icon
+;apple_touch_icon =
+
+# Set to complete url to override loading logo
+;loading_logo =
+
+# Set to `true` to remove the Grafana edition from appearing in the footer
+;hide_edition =
+
+# Below is an example for how to replace the default footer & help links with 2 custom links
+;footer_links = support guides
+;footer_links_support_text = Support
+;footer_links_support_url = http://your.support.site
+;footer_links_guides_text = Guides
+;footer_links_guides_url = http://your.guides.site
+
+[white_labeling.public_dashboards]
+# Hides the footer for the public dashboards if set to "true"
+# example: footer_hide = true
+;footer_hide =
+# Set to text shown in the footer
+;footer_text =
+# Set to complete url to override public dashboard footer logo
+;footer_logo =
+# Set to link for the footer
+;footer_link =
+
+[usage_insights.export]
+# Enable the usage insights export feature
+; enabled = false
+# Storage type
+; storage = loki
+
+[usage_insights.export.storage.loki]
+# Set the communication protocol to use with Loki (can be grpc or http)
+; type = grpc
+# Set the address for writing logs to Loki (format must be host:port)
+; url = localhost:9095
+# Defaults to true. If true, it establishes a secure connection to Loki
+; tls = true
+# Set the tenant id for Loki communications. Disabled by default.
+# Mandatory to interact with Loki running in multi-tenant mode.
+tenant_id =
+
+[reporting]
+# Enable/disable the reporting feature. If disabled, no reports will be generated
+;enabled = true
+# Set timeout for each panel rendering request
+;rendering_timeout = 10s
+# Set maximum number of concurrent calls to the rendering service
+;concurrent_render_limit = 4
+# Set the scale factor for rendering images. 2 is enough for monitor resolutions
+# 4 would be better for printed material. Setting a higher value affects performance and memory
+;image_scale_factor = 2
+# Set the maximum file size in megabytes for the CSV attachments
+; max_attachment_size_mb = 10
+# Path to the directory containing fonts
+;fonts_path =
+# Name of the TrueType font file with Regular style
+;font_regular = DejaVuSansCondensed.ttf
+# Name of the TrueType font file with Bold style
+;font_bold = DejaVuSansCondensed-Bold.ttf
+# Name of the TrueType font file with Italic style
+;font_italic = DejaVuSansCondensed-Oblique.ttf
+
+[analytics]
+# Enable the analytics feature
+;enabled = true
+
+[analytics.summaries]
+# Set interval for writing dashboard usage stats buffer to database
+;buffer_write_interval = 30s
+# Set timeout for writing dashboard usage stats buffer to database
+;buffer_write_timeout = 3s
+# Set interval for trying to rollup per dashboard usage summary
+# only rolled up at most once per day
+;rollup_interval = 4h
+# Set timeout for trying to rollup per dashboard usage summary
+;rollup_timeout = 60s
+
+[analytics.views]
+# Set age for recent active users
+;recent_users_age = 10m
+
+[auditing]
+# Enable the auditing feature
+; enabled = false
+# List of enabled loggers
+;loggers = file
+# Keep dashboard content in the logs (request or response fields); this can significantly increase the size of your logs.
+;log_dashboard_content = false
+# Keep requests and responses body; this can significantly increase the size of your logs.
+;verbose = false
+# Write an audit log for every status code.
+# By default it only logs the following ones: 2XX, 3XX, 401, 403 and 500.
+;log_all_status_codes = false
+# Maximum response body (in bytes) to be audited; 500KiB by default.
+# May help reducing the memory footprint caused by auditing.
+;max_response_size_bytes = 512000
+
+[auditing.logs.file]
+# Path to logs folder
+;path = data/log
+# Maximum log files to keep
+;max_files = 5
+# Max size in megabytes per log file
+;max_file_size_mb = 256
+
+[auditing.logs.loki]
+# Set the communication protocol to use with Loki (can be grpc or http)
+;type = grpc
+# Set the address for writing logs to Loki (format must be host:port)
+;url = localhost:9095
+# Defaults to true. If true, it establishes a secure connection to Loki
+;tls = true
+# Set the tenant id for Loki communications. Disabled by default.
+# Mandatory to interact with Loki running in multi-tenant mode.
+;tenant_id =
+
+#################################### SAML Auth ###########################
+[auth.saml]
+# Defaults to false. If true, the feature is enabled.
+;enabled = false
+# Enable SAML single logout
+;single_logout = false
+# Defaults to true. Allow new Grafana users to be created through SAML login.
+;allow_sign_up = true
+# Set to true to attempt login with SAML automatically, skipping the login screen.
+# This setting is ignored if multiple auth providers are configured to use auto login.
+;auto_login = false
+# Base64-encoded public X.509 certificate. Used to sign requests to the IdP
+;certificate =
+# Path to the public X.509 certificate. Used to sign requests to the IdP
+;certificate_path =
+# Base64-encoded private key. Used to decrypt assertions from the IdP
+;private_key =
+;# Path to the private key. Used to decrypt assertions from the IdP
+;private_key_path =
+# Signature algorithm using for signing requests to the IdP. Supported values are rsa-sha1, rsa-sha256, rsa-sha512.
+# If non-empty, authentication requests will be signed. Default is empty (requests not signed).
+;signature_algorithm =
+# Base64-encoded IdP SAML metadata XML. Used to verify and obtain binding locations from the IdP
+;idp_metadata =
+# Path to the SAML metadata XML. Used to verify and obtain binding locations from the IdP
+;idp_metadata_path =
+# URL to fetch SAML IdP metadata. Used to verify and obtain binding locations from the IdP
+;idp_metadata_url =
+# Duration, since the IdP issued a response and the SP is allowed to process it. Defaults to 90 seconds.
+;max_issue_delay = 90s
+# Duration, for how long the SP's metadata should be valid. Defaults to 48 hours.
+;metadata_valid_duration = 48h
+# Allow IdP-initiated SSO
+;allow_idp_initiated = false
+# Relay state for IdP-initiated SSO. Should match relay state configured in IdP
+;relay_state =
+# Friendly name or name of the attribute within the SAML assertion to use as the user's name
+;assertion_attribute_name = displayName
+# Friendly name or name of the attribute within the SAML assertion to use as the user's login handle
+;assertion_attribute_login = mail
+# Friendly name or name of the attribute within the SAML assertion to use as the user's email
+;assertion_attribute_email = mail
+# Friendly name or name of the attribute within the SAML assertion to use as the user's groups
+;assertion_attribute_groups = group
+# Friendly name or name of the attribute within the SAML assertion to use as the user's roles
+;assertion_attribute_role = role
+# Friendly name or name of the attribute within the SAML assertion to use as the user's organization Id
+;assertion_attribute_org = organizatio
+# List of comma- or space-separated organizations. User should be a member of at least one organization to log in.
+;allowed_organizations = Engineering, Sales
+# List of comma- or space-separated Organization:OrgId:Role mappings. Organization can be `*` meaning "All users". Role is optional and can have the following values: `Viewer`, `Editor` or `Admin`.
+;org_mapping = Engineering:2, Sales:3
+# List of comma- or space-separated roles which will be mapped into the Editor role
+;role_values_editor = editor, developer
+# List of comma- or space-separated roles which will be mapped into the Admin role
+;role_values_admin = admin
+# List of comma- or space-separated roles which will be mapped into the Grafana Admin (Super Admin) role
+;role_values_grafana_admin = superadmin
+# Name identifier format to use with the IdP
+;name_id_format = urn:oasis:names:tc:SAML:2.0:nameid-format:transient
+
+[keystore.vault]
+# Location of the Vault server
+;url =
+# Vault's namespace if using Vault with multi-tenancy
+;namespace =
+# Method for authenticating towards Vault. Vault is inactive if this option is not set
+# Possible values: token
+;auth_method =
+# Secret token to connect to Vault when auth_method is token
+;token =
+# Time between checking if there are any secrets which needs to be renewed.
+;lease_renewal_interval = 5m
+# Time until expiration for tokens which are renewed. Should have a value higher the lease_renewal_interval
+;lease_renewal_expires_within = 15m
+# New duration for renewed tokens. Vault may be configured to ignore this value and impose a stricter limit.
+;lease_renewal_increment = 1h
+
+[auth.security]
+# Protected roles defines a set of user roles for which Grafana will not try to map users that have previously logged in
+# with one solution with another. Configuration values are separated by space,
+# possible values are = all editors viewers org_admins server_admins
+;protected_roles =
+
+[security.egress]
+# Allow and deny lists can be used to control what hosts can be accessed based on what a user can configure through the ui.
+# This includes:
+# - datasource requests
+# - alerting channels
+# a list of hostnames or IP adresses separated by spaces for which outgoing requests will be blocked
+;host_deny_list =
+# a list of hostnames or IP adresses separated by spaces for which requests will be allowed, all other requests will be blocked
+;host_allow_list =
+
+# a list of headers that will be stripped from outgoing datasource and alerting requests
+;header_drop_list =
+# a list of cookies that will be stripped from outgoing datasource requests
+;cookie_drop_list =
+
+[security.encryption]
+# Encryption algorithm used to encrypt secrets stored into the database and cookies,
+# possible values are aes-cfb and aes-gcm.
+;algorithm = aes-cfb
+
+# Example of AWS Key Management Service provider setup
+[security.encryption.awskms.v1]
+# Reference to KMS key - either  key ID, key ARN, alias name or ARN.
+# Alias needs to be prefixed with "alias".
+# To specify a KMS key in a different AWS account, use the ARN or alias.
+# Examples of each type:
+# Key ID:     1234abcd-12ab-34cd-56ef-1234567890ab
+# Key ARN:    arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab
+# Alias name: alias/ExampleAlias
+# Alias ARN:  arn:aws:kms:us-east-2:111122223333:alias/ExampleAlias
+;key_id =
+# AWS access key ID
+;access_key_id =
+# AWS secret access key
+;secret_access_key =
+# AWS region (e.g., eu-north-1)
+;region =
+
+# Example of Azure Key Vault provider setup
+[security.encryption.azurekv.v1]
+# Azure Application directory ID (tenant)
+;tenant_id =
+# Azure Application application ID (client)
+;client_id =
+# Azure Application client secret
+;client_secret =
+# Azure Key Vault key name
+;key_id =
+# Azure Key Vault uri
+;vault_uri =
+
+# Example of Google Cloud KMS provider setup
+[security.encryption.googlekms.v1]
+# Google Cloud KMS key ID, see details https://cloud.google.com/kms/docs/getting-resource-ids#getting_the_id_for_a_key_and_version
+;key_id =
+# Path to service credentials JSON file, see details https://cloud.google.com/docs/authentication/getting-started
+;credentials_file =
+
+# Example of Hashicorp Vault provider setup
+[security.encryption.hashicorpvault.v1]
+# Token used to authenticate within Vault. We suggest to use periodic tokens: more on token types https://www.vaultproject.io/docs/concepts/tokens#service-tokens
+;token =
+# Location of the Vault server
+;url =
+# Mount point of the transit secret engine
+;transit_engine_path =
+# Key ring name
+;key_ring =
+# Specifies how often to check if a token needs to be renewed, should be less than a token's TTL or period value
+;token_renewal_interval = 5m
+
+
+# Caching is disabled on all data source by default
+# Visit the data source settings to enable caching
+[caching]
+# Setting 'enabled' to true enables query caching for data sources with configured caching.
+# To disable caching for a specific data source, refer to the data source’s configuration page.
+; enabled = true
+# The caching backend to use when storing cached queries. Options: redis, memory
+; backend = "memory"
+# The default TTL (time to live) if no other TTL is available.
+; ttl = 5m
+# This value limits the size of a single cache value. If a cache value (or query result) is submitted that exceeds this size, then it will be rejected.
+# To disable this limit, set this value to zero.
+; max_value_mb = 10
+# Method to use when filtering headers for caches that supports caching headers.
+# Permitted options: allowlist, denylist.
+; header_filtering = "allowlist"
+
+[caching.encryption]
+# Setting 'enabled' to true enables encryption of the values in the cache.
+;enabled = true
+# The key used for the encryption of the values in the cache. If it is not specified and encryption is enabled, the key will be randomly
+# generated on startup. This must be specified to allow the encrypted cache to persist between Grafana restarts. If not specified, the cache
+# will be cleared upon restarts.
+;encryption_key = "oH0aaomqRDyd7gkvZTKwsxVwlvFpyhko"
+
+[caching.memory]
+# When storing cache data, how often a background process will clean up stale data from the in-memory cache
+; gc_interval = 1m
+# The maximum size of the in-memory cache in megabytes. Once this size is reached, new cache items will be rejected. For more flexible control over cache eviction policies and size, please use the Redis or Memcached backend
+# To disable the maximum, set this value to 0. WARNING: Disabling the maximum is not recommended in production environments.
+; max_size_mb = 25
+
+[caching.redis]
+# url should be a redis URL
+; url = "redis://localhost:6379"
+# prefix redis keys with this string. Example: 'grafana:<key>'. This value can be left empty and no prefix will be set.
+; prefix = "grafana"
+# a comma-separated list of Redis cluster members in host:port format
+# if cluster is specified, the value for url is ignored
+; cluster =
+
+[caching.memcached]
+# A space-separated list of memcached servers
+; servers = "localhost:11211"
+
+[feature_highlights]
+# Setting 'enabled' to true enables highlighting Enterprise features in UI.
+enabled = false
\ No newline at end of file
diff --git a/monitoring/grafana/grafana_dashboards/Docker-monitoring.json b/monitoring/grafana/grafana_dashboards/Docker-monitoring.json
new file mode 100644
index 0000000..10da0b2
--- /dev/null
+++ b/monitoring/grafana/grafana_dashboards/Docker-monitoring.json
@@ -0,0 +1,690 @@
+{
+  "annotations": {
+    "list": [
+      {
+        "builtIn": 1,
+        "datasource": {
+          "type": "grafana",
+          "uid": "-- Grafana --"
+        },
+        "enable": true,
+        "hide": true,
+        "iconColor": "rgba(0, 211, 255, 1)",
+        "name": "Annotations & Alerts",
+        "type": "dashboard"
+      }
+    ]
+  },
+  "description": "Docker monitoring with Prometheus and cAdvisor",
+  "editable": true,
+  "fiscalYearStartMonth": 0,
+  "gnetId": 193,
+  "graphTooltip": 1,
+  "id": 1,
+  "links": [],
+  "liveNow": false,
+  "panels": [
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "none"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 3,
+        "w": 8,
+        "x": 0,
+        "y": 0
+      },
+      "id": 7,
+      "links": [],
+      "maxDataPoints": 100,
+      "options": {
+        "colorMode": "none",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "mean"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.5.2",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "count(container_last_seen{image!=\"\"})",
+          "intervalFactor": 2,
+          "legendFormat": "",
+          "metric": "container_last_seen",
+          "refId": "A",
+          "step": 240
+        }
+      ],
+      "title": "Running containers",
+      "transparent": true,
+      "type": "stat"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "mbytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 3,
+        "w": 8,
+        "x": 8,
+        "y": 0
+      },
+      "id": 5,
+      "links": [],
+      "maxDataPoints": 100,
+      "options": {
+        "colorMode": "none",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.5.2",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "sum(container_memory_usage_bytes{image!=\"\"})/1024/1024",
+          "intervalFactor": 2,
+          "legendFormat": "",
+          "metric": "container_memory_usage_bytes",
+          "refId": "A",
+          "step": 240
+        }
+      ],
+      "title": "Total Memory Usage",
+      "transparent": true,
+      "type": "stat"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "percent"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 3,
+        "w": 8,
+        "x": 16,
+        "y": 0
+      },
+      "id": 6,
+      "links": [],
+      "maxDataPoints": 100,
+      "options": {
+        "colorMode": "none",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.5.2",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "sum(rate(container_cpu_user_seconds_total{image!=\"\"}[5m]) * 100)",
+          "intervalFactor": 2,
+          "legendFormat": "",
+          "metric": "container_memory_usage_bytes",
+          "refId": "A",
+          "step": 240
+        }
+      ],
+      "title": "Total CPU Usage",
+      "transparent": true,
+      "type": "stat"
+    },
+    {
+      "aliasColors": {},
+      "bars": false,
+      "dashLength": 10,
+      "dashes": false,
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "decimals": 2,
+      "editable": true,
+      "error": false,
+      "fill": 1,
+      "fillGradient": 0,
+      "grid": {},
+      "gridPos": {
+        "h": 7,
+        "w": 24,
+        "x": 0,
+        "y": 3
+      },
+      "hiddenSeries": false,
+      "id": 2,
+      "isNew": true,
+      "legend": {
+        "alignAsTable": true,
+        "avg": true,
+        "current": true,
+        "max": false,
+        "min": false,
+        "rightSide": true,
+        "show": true,
+        "total": false,
+        "values": true
+      },
+      "lines": true,
+      "linewidth": 2,
+      "links": [],
+      "nullPointMode": "connected",
+      "options": {
+        "alertThreshold": true
+      },
+      "percentage": false,
+      "pluginVersion": "9.5.2",
+      "pointradius": 5,
+      "points": false,
+      "renderer": "flot",
+      "seriesOverrides": [],
+      "spaceLength": 10,
+      "stack": false,
+      "steppedLine": false,
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "rate(container_cpu_user_seconds_total{image!=\"\"}[5m]) * 100",
+          "intervalFactor": 2,
+          "legendFormat": "{{name}}",
+          "metric": "cpu",
+          "refId": "A",
+          "step": 10
+        }
+      ],
+      "thresholds": [],
+      "timeRegions": [],
+      "title": "CPU Usage",
+      "tooltip": {
+        "msResolution": false,
+        "shared": true,
+        "sort": 0,
+        "value_type": "cumulative"
+      },
+      "type": "graph",
+      "xaxis": {
+        "mode": "time",
+        "show": true,
+        "values": []
+      },
+      "yaxes": [
+        {
+          "format": "percent",
+          "logBase": 1,
+          "show": true
+        },
+        {
+          "format": "short",
+          "logBase": 1,
+          "show": true
+        }
+      ],
+      "yaxis": {
+        "align": false
+      }
+    },
+    {
+      "aliasColors": {},
+      "bars": false,
+      "dashLength": 10,
+      "dashes": false,
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "decimals": 2,
+      "editable": true,
+      "error": false,
+      "fill": 1,
+      "fillGradient": 0,
+      "grid": {},
+      "gridPos": {
+        "h": 7,
+        "w": 24,
+        "x": 0,
+        "y": 10
+      },
+      "hiddenSeries": false,
+      "id": 1,
+      "isNew": true,
+      "legend": {
+        "alignAsTable": true,
+        "avg": true,
+        "current": true,
+        "max": false,
+        "min": false,
+        "rightSide": true,
+        "show": true,
+        "total": false,
+        "values": true
+      },
+      "lines": true,
+      "linewidth": 2,
+      "links": [],
+      "nullPointMode": "connected",
+      "options": {
+        "alertThreshold": true
+      },
+      "percentage": false,
+      "pluginVersion": "9.5.2",
+      "pointradius": 5,
+      "points": false,
+      "renderer": "flot",
+      "seriesOverrides": [],
+      "spaceLength": 10,
+      "stack": false,
+      "steppedLine": false,
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "container_memory_usage_bytes{image!=\"\"}",
+          "hide": false,
+          "intervalFactor": 2,
+          "legendFormat": "{{name}}",
+          "metric": "container_memory_usage_bytes",
+          "refId": "A",
+          "step": 10
+        }
+      ],
+      "thresholds": [],
+      "timeRegions": [],
+      "title": "Memory Usage",
+      "tooltip": {
+        "msResolution": false,
+        "shared": true,
+        "sort": 0,
+        "value_type": "cumulative"
+      },
+      "type": "graph",
+      "xaxis": {
+        "mode": "time",
+        "show": true,
+        "values": []
+      },
+      "yaxes": [
+        {
+          "format": "bytes",
+          "label": "",
+          "logBase": 1,
+          "show": true
+        },
+        {
+          "format": "short",
+          "logBase": 1,
+          "show": false
+        }
+      ],
+      "yaxis": {
+        "align": false
+      }
+    },
+    {
+      "aliasColors": {},
+      "bars": false,
+      "dashLength": 10,
+      "dashes": false,
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "editable": true,
+      "error": false,
+      "fill": 1,
+      "fillGradient": 0,
+      "grid": {},
+      "gridPos": {
+        "h": 7,
+        "w": 12,
+        "x": 0,
+        "y": 17
+      },
+      "hiddenSeries": false,
+      "id": 3,
+      "isNew": true,
+      "legend": {
+        "avg": false,
+        "current": false,
+        "max": false,
+        "min": false,
+        "show": true,
+        "total": false,
+        "values": false
+      },
+      "lines": true,
+      "linewidth": 2,
+      "links": [],
+      "nullPointMode": "connected",
+      "options": {
+        "alertThreshold": true
+      },
+      "percentage": false,
+      "pluginVersion": "9.5.2",
+      "pointradius": 5,
+      "points": false,
+      "renderer": "flot",
+      "seriesOverrides": [],
+      "spaceLength": 10,
+      "stack": false,
+      "steppedLine": false,
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "irate(container_network_receive_bytes_total{image!=\"\"}[5m])",
+          "intervalFactor": 2,
+          "legendFormat": "{{name}}",
+          "metric": "container_network_receive_bytes_total",
+          "refId": "A",
+          "step": 20
+        }
+      ],
+      "thresholds": [],
+      "timeRegions": [],
+      "title": "Network Rx",
+      "tooltip": {
+        "msResolution": false,
+        "shared": true,
+        "sort": 0,
+        "value_type": "cumulative"
+      },
+      "type": "graph",
+      "xaxis": {
+        "mode": "time",
+        "show": true,
+        "values": []
+      },
+      "yaxes": [
+        {
+          "format": "Bps",
+          "logBase": 1,
+          "show": true
+        },
+        {
+          "format": "short",
+          "logBase": 1,
+          "show": true
+        }
+      ],
+      "yaxis": {
+        "align": false
+      }
+    },
+    {
+      "aliasColors": {},
+      "bars": false,
+      "dashLength": 10,
+      "dashes": false,
+      "datasource": {
+        "type": "prometheus",
+        "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+      },
+      "editable": true,
+      "error": false,
+      "fill": 1,
+      "fillGradient": 0,
+      "grid": {},
+      "gridPos": {
+        "h": 7,
+        "w": 12,
+        "x": 12,
+        "y": 17
+      },
+      "hiddenSeries": false,
+      "id": 4,
+      "isNew": true,
+      "legend": {
+        "avg": false,
+        "current": false,
+        "max": false,
+        "min": false,
+        "show": true,
+        "total": false,
+        "values": false
+      },
+      "lines": true,
+      "linewidth": 2,
+      "links": [],
+      "nullPointMode": "connected",
+      "options": {
+        "alertThreshold": true
+      },
+      "percentage": false,
+      "pluginVersion": "9.5.2",
+      "pointradius": 5,
+      "points": false,
+      "renderer": "flot",
+      "seriesOverrides": [],
+      "spaceLength": 10,
+      "stack": false,
+      "steppedLine": false,
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "af6b44aa-0703-4979-825c-c1afba946534"
+          },
+          "expr": "irate(container_network_transmit_bytes_total{image!=\"\"}[5m])",
+          "intervalFactor": 2,
+          "legendFormat": "{{name}}",
+          "refId": "A",
+          "step": 20
+        }
+      ],
+      "thresholds": [],
+      "timeRegions": [],
+      "title": "Network Tx",
+      "tooltip": {
+        "msResolution": false,
+        "shared": true,
+        "sort": 0,
+        "value_type": "cumulative"
+      },
+      "type": "graph",
+      "xaxis": {
+        "mode": "time",
+        "show": true,
+        "values": []
+      },
+      "yaxes": [
+        {
+          "format": "Bps",
+          "logBase": 1,
+          "show": true
+        },
+        {
+          "format": "short",
+          "logBase": 1,
+          "show": true
+        }
+      ],
+      "yaxis": {
+        "align": false
+      }
+    }
+  ],
+  "refresh": "10s",
+  "schemaVersion": 38,
+  "style": "dark",
+  "tags": [
+    "docker"
+  ],
+  "templating": {
+    "list": []
+  },
+  "time": {
+    "from": "now-3h",
+    "to": "now"
+  },
+  "timepicker": {
+    "refresh_intervals": [
+      "5s",
+      "10s",
+      "30s",
+      "1m",
+      "5m",
+      "15m",
+      "30m",
+      "1h",
+      "2h",
+      "1d"
+    ],
+    "time_options": [
+      "5m",
+      "15m",
+      "1h",
+      "6h",
+      "12h",
+      "24h",
+      "2d",
+      "7d",
+      "30d"
+    ]
+  },
+  "timezone": "browser",
+  "title": "Docker monitoring",
+  "uid": "f66dea48-ca2f-46fb-a6f0-50bf50502d74",
+  "version": 2,
+  "weekStart": ""
+}
\ No newline at end of file
diff --git a/monitoring/grafana/grafana_dashboards/Loki-Logs.json b/monitoring/grafana/grafana_dashboards/Loki-Logs.json
new file mode 100644
index 0000000..0a71994
--- /dev/null
+++ b/monitoring/grafana/grafana_dashboards/Loki-Logs.json
@@ -0,0 +1,281 @@
+{
+  "annotations": {
+    "list": [
+      {
+        "builtIn": 1,
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
+        "enable": true,
+        "hide": true,
+        "iconColor": "rgba(0, 211, 255, 1)",
+        "name": "Annotations & Alerts",
+        "type": "dashboard"
+      }
+    ]
+  },
+  "description": "Simple Loki dashboard",
+  "editable": true,
+  "fiscalYearStartMonth": 0,
+  "gnetId": 13198,
+  "graphTooltip": 0,
+  "id": 9,
+  "links": [],
+  "liveNow": false,
+  "panels": [
+    {
+      "aliasColors": {},
+      "bars": false,
+      "dashLength": 10,
+      "dashes": false,
+      "datasource": {
+        "type": "loki",
+        "uid": "$datasource"
+      },
+      "fill": 0,
+      "fillGradient": 0,
+      "gridPos": {
+        "h": 8,
+        "w": 24,
+        "x": 0,
+        "y": 0
+      },
+      "hiddenSeries": false,
+      "id": 4,
+      "legend": {
+        "alignAsTable": true,
+        "avg": false,
+        "current": false,
+        "hideEmpty": true,
+        "hideZero": true,
+        "max": false,
+        "min": false,
+        "rightSide": true,
+        "show": true,
+        "total": false,
+        "values": false
+      },
+      "lines": true,
+      "linewidth": 1,
+      "nullPointMode": "null",
+      "options": {
+        "alertThreshold": true
+      },
+      "percentage": false,
+      "pluginVersion": "9.5.2",
+      "pointradius": 2,
+      "points": false,
+      "renderer": "flot",
+      "seriesOverrides": [],
+      "spaceLength": 10,
+      "stack": true,
+      "steppedLine": false,
+      "targets": [
+        {
+          "datasource": {
+            "uid": "$datasource"
+          },
+          "editorMode": "code",
+          "expr": "count_over_time({container_name=~\"$app-$job\"} |~ \"$string\"[1m])",
+          "legendFormat": "{{ container_name }}",
+          "queryType": "range",
+          "refId": "A"
+        }
+      ],
+      "thresholds": [],
+      "timeRegions": [],
+      "title": "Metric Rate",
+      "tooltip": {
+        "shared": true,
+        "sort": 2,
+        "value_type": "individual"
+      },
+      "type": "graph",
+      "xaxis": {
+        "mode": "time",
+        "show": true,
+        "values": []
+      },
+      "yaxes": [
+        {
+          "format": "short",
+          "logBase": 1,
+          "show": true
+        },
+        {
+          "format": "short",
+          "logBase": 1,
+          "show": true
+        }
+      ],
+      "yaxis": {
+        "align": false
+      }
+    },
+    {
+      "datasource": {
+        "type": "loki",
+        "uid": "e4f43364-7019-45a7-aa7a-14ce2d4ddb0b"
+      },
+      "gridPos": {
+        "h": 14,
+        "w": 24,
+        "x": 0,
+        "y": 8
+      },
+      "id": 2,
+      "options": {
+        "dedupStrategy": "none",
+        "enableLogDetails": true,
+        "prettifyLogMessage": false,
+        "showCommonLabels": false,
+        "showLabels": false,
+        "showTime": true,
+        "sortOrder": "Descending",
+        "wrapLogMessage": true
+      },
+      "pluginVersion": "7.1.3",
+      "targets": [
+        {
+          "datasource": {
+            "type": "loki",
+            "uid": "e4f43364-7019-45a7-aa7a-14ce2d4ddb0b"
+          },
+          "editorMode": "code",
+          "expr": "{job=~\"fluent-bit\"} |~ \"$string\"",
+          "legendFormat": "",
+          "queryType": "range",
+          "refId": "A"
+        }
+      ],
+      "title": "Loki Search",
+      "type": "logs"
+    }
+  ],
+  "refresh": "1m",
+  "schemaVersion": 38,
+  "style": "dark",
+  "tags": [],
+  "templating": {
+    "list": [
+      {
+        "current": {
+          "selected": false,
+          "text": "Loki",
+          "value": "Loki"
+        },
+        "hide": 0,
+        "includeAll": false,
+        "multi": false,
+        "name": "datasource",
+        "options": [],
+        "query": "loki",
+        "queryValue": "",
+        "refresh": 1,
+        "regex": "",
+        "skipUrlSync": false,
+        "type": "datasource"
+      },
+      {
+        "allValue": ".*",
+        "current": {
+          "selected": false,
+          "text": "All",
+          "value": "$__all"
+        },
+        "datasource": {
+          "type": "loki",
+          "uid": "$datasource"
+        },
+        "definition": "label_values(container_name)",
+        "hide": 0,
+        "includeAll": true,
+        "label": "app",
+        "multi": false,
+        "name": "app",
+        "options": [],
+        "query": "label_values(container_name)",
+        "refresh": 2,
+        "regex": "(.*)-.*-.*-.*-.*-.*",
+        "skipUrlSync": false,
+        "sort": 0,
+        "tagValuesQuery": "",
+        "tagsQuery": "",
+        "type": "query",
+        "useTags": false
+      },
+      {
+        "allValue": ".*",
+        "current": {
+          "selected": false,
+          "text": "All",
+          "value": "$__all"
+        },
+        "datasource": {
+          "type": "loki",
+          "uid": "$datasource"
+        },
+        "definition": "label_values(container_name)",
+        "hide": 0,
+        "includeAll": true,
+        "label": "job",
+        "multi": false,
+        "name": "job",
+        "options": [],
+        "query": "label_values(container_name)",
+        "refresh": 2,
+        "regex": "$app-(.*)",
+        "skipUrlSync": false,
+        "sort": 0,
+        "tagValuesQuery": "",
+        "tagsQuery": "",
+        "type": "query",
+        "useTags": false
+      },
+      {
+        "current": {
+          "selected": false,
+          "text": "",
+          "value": ""
+        },
+        "hide": 0,
+        "label": "string",
+        "name": "string",
+        "options": [
+          {
+            "selected": true,
+            "text": "",
+            "value": ""
+          }
+        ],
+        "query": "",
+        "skipUrlSync": false,
+        "type": "textbox"
+      }
+    ]
+  },
+  "time": {
+    "from": "now-1h",
+    "to": "now"
+  },
+  "timepicker": {
+    "refresh_intervals": [
+      "5s",
+      "10s",
+      "30s",
+      "1m",
+      "5m",
+      "15m",
+      "30m",
+      "1h",
+      "2h",
+      "1d"
+    ]
+  },
+  "timezone": "",
+  "title": "Loki Logs",
+  "uid": "ffxEJdvGz",
+  "version": 6,
+  "weekStart": ""
+}
\ No newline at end of file
diff --git a/monitoring/grafana/grafana_provisioning/grafana-datasources.yaml b/monitoring/grafana/grafana_provisioning/grafana-datasources.yaml
new file mode 100644
index 0000000..8a1c62a
--- /dev/null
+++ b/monitoring/grafana/grafana_provisioning/grafana-datasources.yaml
@@ -0,0 +1,54 @@
+apiVersion: 1
+
+datasources:
+  - name: Loki
+    type: loki
+    uid: e4f43364-7019-45a7-aa7a-14ce2d4ddb0b
+    typeName: Loki
+    typeLogoUrl: public/app/plugins/datasource/loki/img/loki_icon.svg
+    access: proxy
+    url: http://loki:3100
+    user: ''
+    database: ''
+    basicAuth: false
+    isDefault: false
+    jsonData:
+      derivedFields:
+      - datasourceUid: fee7e008-f836-424a-b701-88cad583c715
+        matcherRegex: '"traceID":\s*"([a-fA-F0-9]+)"'
+        name: traceID
+        url: "$${__value.raw}"
+    readOnly: false
+
+  - name: Prometheus
+    type: prometheus
+    typeName: Prometheus
+    typeLogoUrl: public/app/plugins/datasource/prometheus/img/prometheus_logo.svg
+    access: proxy
+    url: http://prometheus:9090
+    uid: af6b44aa-0703-4979-825c-c1afba946534
+    user: ''
+    database: ''
+    basicAuth: false
+    isDefault: false
+    jsonData:
+      httpMethod: POST
+      prometheusType: Prometheus
+      prometheusVersion: 2.40.1
+    readOnly: false
+
+  - name: Tempo
+    type: tempo
+    typeName: Tempo
+    typeLogoUrl: public/app/plugins/datasource/tempo/img/tempo_logo.svg
+    uid: fee7e008-f836-424a-b701-88cad583c715
+    access: proxy
+    url: http://tempo:3200
+    user: ''
+    database: ''
+    basicAuth: false
+    isDefault: false
+    jsonData:
+      lokiSearch:
+        datasourceUid: e4f43364-7019-45a7-aa7a-14ce2d4ddb0b
+    readOnly: false
\ No newline at end of file
diff --git a/monitoring/grafana/grafana_provisioning/grafana-default-provisioning.yaml b/monitoring/grafana/grafana_provisioning/grafana-default-provisioning.yaml
new file mode 100644
index 0000000..1a0f83a
--- /dev/null
+++ b/monitoring/grafana/grafana_provisioning/grafana-default-provisioning.yaml
@@ -0,0 +1,14 @@
+apiVersion: 1
+
+providers:
+
+  - name: Default # A uniquely identifiable name for the provider
+    orgId: 1
+    folder: "" # The folder where to place the dashboards
+    folderUid: ""
+    type: file
+    disableDeletion: false
+    allowUiUpdates: true
+    options:
+      path: /var/lib/grafana/dashboards
+
diff --git a/monitoring/grafana_config/provisioning/dashboards/default.yaml b/monitoring/grafana_config/provisioning/dashboards/default.yaml
new file mode 100755
index 0000000..e69de29
diff --git a/monitoring/grafana_config/provisioning/datasources/datasources.yaml b/monitoring/grafana_config/provisioning/datasources/datasources.yaml
new file mode 100755
index 0000000..e69de29
diff --git a/monitoring/otlp_collector/otel-config.yaml b/monitoring/otlp_collector/otel-config.yaml
new file mode 100644
index 0000000..ad15aa4
--- /dev/null
+++ b/monitoring/otlp_collector/otel-config.yaml
@@ -0,0 +1,26 @@
+receivers:
+  otlp:
+    protocols:
+      grpc:
+        endpoint: 0.0.0.0:55680
+
+
+processors:
+  batch:
+
+
+exporters:
+  otlp:
+    #timeout: 60s
+    endpoint: tempo:4317
+    tls:
+      insecure: true
+
+
+service:
+  pipelines:
+    traces:
+      receivers: [otlp]
+      processors: [batch]
+      # exporters: [otlp]
+      exporters: [otlp]
\ No newline at end of file
diff --git a/monitoring/prometheus/prometheus.yml b/monitoring/prometheus/prometheus.yml
new file mode 100644
index 0000000..f5f9df7
--- /dev/null
+++ b/monitoring/prometheus/prometheus.yml
@@ -0,0 +1,19 @@
+global:
+  scrape_interval: 15s
+  evaluation_interval: 15s
+alerting:
+  alertmanagers:
+  - static_configs:
+    - targets:
+    # whatever you want
+scrape_configs:
+  - job_name: 'prometheus'
+    static_configs:
+    - targets: ['prometheus:9090']
+      labels:
+        alias: 'prometheus'
+  - job_name: 'cadvisor'
+    static_configs:
+    - targets: ['cadvisor:8080']
+      labels:
+        alias: 'cadvisor'
\ No newline at end of file
diff --git a/monitoring/tempo/tempo.yaml b/monitoring/tempo/tempo.yaml
new file mode 100644
index 0000000..7d7bb4c
--- /dev/null
+++ b/monitoring/tempo/tempo.yaml
@@ -0,0 +1,46 @@
+server:
+  http_listen_port: 3200
+
+distributor:
+  receivers:                           # this configuration will listen on all ports and protocols that tempo is capable of.
+    jaeger:                            # the receives all come from the OpenTelemetry collector.  more configuration information can
+      protocols:                       # be found there: https://github.com/open-telemetry/opentelemetry-collector/tree/main/receiver
+        thrift_http:                   #
+        grpc:                          # for a production deployment you should only enable the receivers you need!
+        thrift_binary:
+        thrift_compact:
+    zipkin:
+    otlp:
+      protocols:
+        http:
+        grpc:
+    opencensus:
+
+ingester:
+  max_block_duration: 20m               # cut the headblock when this much time passes. this is being set for demo purposes and should probably be left alone normally
+
+compactor:
+  compaction:
+    block_retention: 1h                # overall Tempo trace retention. set for demo purposes
+
+metrics_generator:
+  registry:
+    external_labels:
+      source: tempo
+      cluster: docker-compose
+  storage:
+    path: /tmp/tempo/generator/wal
+    remote_write:
+      - url: http://prometheus:9090/api/v1/write
+        send_exemplars: true
+
+storage:
+  trace:
+    backend: local                     # backend configuration to use
+    wal:
+      path: /tmp/tempo/wal             # where to store the the wal locally
+    local:
+      path: /tmp/tempo/blocks
+
+overrides:
+  metrics_generator_processors: [service-graphs, span-metrics] # enables metrics generator
\ No newline at end of file
diff --git a/prometheus/kustomization.yaml b/prometheus/kustomization.yaml
new file mode 100644
index 0000000..bebcddc
--- /dev/null
+++ b/prometheus/kustomization.yaml
@@ -0,0 +1,11 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: evol5-capif-mon
+resources:
+    - prometheus-claim1-persistentvolumeclaim.yaml
+    - prometheus-claim2-persistentvolumeclaim.yaml
+    - prometheus-claim3-persistentvolumeclaim.yaml
+    - prometheus-claim4-persistentvolumeclaim.yaml
+    - prometheus-configmap.yaml
+    - prometheus-deployment.yaml
+    - prometheus-service.yaml
\ No newline at end of file
diff --git a/prometheus/prometheus-claim1-persistentvolumeclaim.yaml b/prometheus/prometheus-claim1-persistentvolumeclaim.yaml
new file mode 100644
index 0000000..99ca0f1
--- /dev/null
+++ b/prometheus/prometheus-claim1-persistentvolumeclaim.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  creationTimestamp: null
+  labels:
+    io.kompose.service: prometheus-claim1
+  name: prometheus-claim1
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 100Mi
+status: {}
diff --git a/prometheus/prometheus-claim2-persistentvolumeclaim.yaml b/prometheus/prometheus-claim2-persistentvolumeclaim.yaml
new file mode 100644
index 0000000..3a1a586
--- /dev/null
+++ b/prometheus/prometheus-claim2-persistentvolumeclaim.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  creationTimestamp: null
+  labels:
+    io.kompose.service: prometheus-claim2
+  name: prometheus-claim2
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 100Mi
+status: {}
diff --git a/prometheus/prometheus-claim3-persistentvolumeclaim.yaml b/prometheus/prometheus-claim3-persistentvolumeclaim.yaml
new file mode 100644
index 0000000..755a66b
--- /dev/null
+++ b/prometheus/prometheus-claim3-persistentvolumeclaim.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  creationTimestamp: null
+  labels:
+    io.kompose.service: prometheus-claim3
+  name: prometheus-claim3
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 100Mi
+status: {}
diff --git a/prometheus/prometheus-claim4-persistentvolumeclaim.yaml b/prometheus/prometheus-claim4-persistentvolumeclaim.yaml
new file mode 100644
index 0000000..9a6cb2d
--- /dev/null
+++ b/prometheus/prometheus-claim4-persistentvolumeclaim.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  creationTimestamp: null
+  labels:
+    io.kompose.service: prometheus-claim4
+  name: prometheus-claim4
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 100Mi
+status: {}
diff --git a/prometheus/prometheus-configmap.yaml b/prometheus/prometheus-configmap.yaml
new file mode 100644
index 0000000..ccfb013
--- /dev/null
+++ b/prometheus/prometheus-configmap.yaml
@@ -0,0 +1,38 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: prometheus-configmap
+data:
+  prometheus.yml: |
+    # global:
+    #   scrape_interval: 5s
+    #   external_labels:
+    #     monitor: 'prakash-monitor'
+    # scrape_configs:
+    #   - job_name: 'prometheus'
+    #     static_configs:
+    #       - targets: ['0.0.0.0:9090'] ## IP Address of the localhost
+    #   - job_name: 'cAdvisor' 
+    #     static_configs:
+    #       - targets: ['0.0.0.0:8090']
+    #       #- cadvisor:8090
+
+    global:
+      scrape_interval: 15s
+      evaluation_interval: 15s
+    alerting:
+      alertmanagers:
+      - static_configs:
+        - targets:
+        # whatever you want
+    scrape_configs:
+      - job_name: 'prometheus'
+        static_configs:
+        - targets: ['prometheus:9090']
+          labels:
+            alias: 'prometheus'
+      - job_name: 'cadvisor'
+        static_configs:
+        - targets: ['cadvisor:8080']
+          labels:
+            alias: 'cadvisor'
\ No newline at end of file
diff --git a/prometheus/prometheus-deployment.yaml b/prometheus/prometheus-deployment.yaml
new file mode 100644
index 0000000..7ae939f
--- /dev/null
+++ b/prometheus/prometheus-deployment.yaml
@@ -0,0 +1,71 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  creationTimestamp: null
+  labels:
+    io.kompose.service: prometheus
+  name: prometheus
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      io.kompose.service: prometheus
+  strategy:
+    type: Recreate
+  template:
+    metadata:
+      annotations:
+        kompose.cmd: kompose -f docker-compose.yml convert
+        kompose.version: 1.28.0 (c4137012e)
+      creationTimestamp: null
+      labels:
+        io.kompose.network/monitoring-default: "true"
+        io.kompose.service: prometheus
+    spec:
+      containers:
+        - args:
+            - --config.file=/tmp/prometheus.yml
+            - --web.route-prefix=/
+            - --storage.tsdb.retention.time=200h
+            - --web.enable-lifecycle
+          image: prom/prometheus:latest
+          name: prometheus
+          ports:
+            - containerPort: 9090
+          resources: {}
+          volumeMounts:
+            - name: prometheus-config
+              mountPath: /tmp/prometheus.yml
+              subPath: prometheus.yml
+            - mountPath: /var/lib/prometheus
+              name: prometheus-claim1
+            - mountPath: /prometheus
+              name: prometheus-claim2
+            - mountPath: /etc/prometheus
+              name: prometheus-claim3
+            - mountPath: /etc/prometheus/alert.rules
+              name: prometheus-claim4
+      restartPolicy: Always
+      volumes:
+        - name: prometheus-config
+          configMap:
+            name: prometheus-configmap
+            items:
+            - key: "prometheus.yml"
+              path: "prometheus.yml"
+        - name: prometheus-claim1
+          persistentVolumeClaim:
+            claimName: prometheus-claim1
+        - name: prometheus-claim2
+          persistentVolumeClaim:
+            claimName: prometheus-claim2
+        - name: prometheus-claim3
+          persistentVolumeClaim:
+            claimName: prometheus-claim3
+        - name: prometheus-claim4
+          persistentVolumeClaim:
+            claimName: prometheus-claim4
+status: {}
diff --git a/prometheus/prometheus-service.yaml b/prometheus/prometheus-service.yaml
new file mode 100644
index 0000000..d7fa32d
--- /dev/null
+++ b/prometheus/prometheus-service.yaml
@@ -0,0 +1,19 @@
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kompose.cmd: kompose -f docker-compose.yml convert
+    kompose.version: 1.28.0 (c4137012e)
+  creationTimestamp: null
+  labels:
+    io.kompose.service: prometheus
+  name: prometheus
+spec:
+  ports:
+    - name: "9090"
+      port: 9090
+      targetPort: 9090
+  selector:
+    io.kompose.service: prometheus
+status:
+  loadBalancer: {}
diff --git a/services/.env b/services/.env
new file mode 100644
index 0000000..6d557f6
--- /dev/null
+++ b/services/.env
@@ -0,0 +1,24 @@
+ELASTIC_VERSION=8.4.3
+
+## Passwords for stack users
+#
+
+# User 'elastic' (built-in)
+#
+# Superuser role, full access to cluster management and data indices.
+# https://www.elastic.co/guide/en/elasticsearch/reference/current/built-in-users.html
+ELASTIC_PASSWORD='changeme'
+
+# User 'logstash_internal' (custom)
+#
+# The user Logstash uses to connect and send data to Elasticsearch.
+# https://www.elastic.co/guide/en/logstash/current/ls-security.html
+LOGSTASH_INTERNAL_PASSWORD='changeme'
+
+# User 'kibana_system' (built-in)
+#
+# The user Kibana uses to connect and communicate with Elasticsearch.
+# https://www.elastic.co/guide/en/elasticsearch/reference/current/built-in-users.html
+KIBANA_SYSTEM_PASSWORD='changeme'
+
+CAPIF_HOSTNAME="capif.apps.ocp-epg.hi.inet"
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/.dockerignore b/services/TS29222_CAPIF_API_Invoker_Management_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/.gitignore b/services/TS29222_CAPIF_API_Invoker_Management_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator-ignore b/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/FILES b/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/FILES
new file mode 100644
index 0000000..e0046a7
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/FILES
@@ -0,0 +1,46 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+api_invoker_management/__init__.py
+api_invoker_management/__main__.py
+api_invoker_management/controllers/__init__.py
+api_invoker_management/controllers/default_controller.py
+api_invoker_management/controllers/security_controller_.py
+api_invoker_management/encoder.py
+api_invoker_management/models/__init__.py
+api_invoker_management/models/aef_profile.py
+api_invoker_management/models/api_invoker_enrolment_details.py
+api_invoker_management/models/base_model_.py
+api_invoker_management/models/communication_type.py
+api_invoker_management/models/communication_type_any_of.py
+api_invoker_management/models/custom_operation.py
+api_invoker_management/models/data_format.py
+api_invoker_management/models/data_format_any_of.py
+api_invoker_management/models/interface_description.py
+api_invoker_management/models/invalid_param.py
+api_invoker_management/models/onboarding_information.py
+api_invoker_management/models/onboarding_notification.py
+api_invoker_management/models/operation.py
+api_invoker_management/models/operation_any_of.py
+api_invoker_management/models/problem_details.py
+api_invoker_management/models/protocol.py
+api_invoker_management/models/protocol_any_of.py
+api_invoker_management/models/published_api_path.py
+api_invoker_management/models/resource.py
+api_invoker_management/models/security_method.py
+api_invoker_management/models/security_method_any_of.py
+api_invoker_management/models/service_api_description.py
+api_invoker_management/models/shareable_information.py
+api_invoker_management/models/version.py
+api_invoker_management/models/websock_notif_config.py
+api_invoker_management/openapi/openapi.yaml
+api_invoker_management/test/__init__.py
+api_invoker_management/typing_utils.py
+api_invoker_management/util.py
+git_push.sh
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/.travis.yml b/services/TS29222_CAPIF_API_Invoker_Management_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/Dockerfile b/services/TS29222_CAPIF_API_Invoker_Management_API/Dockerfile
new file mode 100644
index 0000000..ac8732b
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/Dockerfile
@@ -0,0 +1,18 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+RUN apk add redis
+RUN apk add jq
+RUN apk add curl
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+CMD ["sh", "prepare_invoker.sh"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/README.md b/services/TS29222_CAPIF_API_Invoker_Management_API/README.md
new file mode 100644
index 0000000..0112c60
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m api_invoker_management
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/api-invoker-management/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/api-invoker-management/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t api_invoker_management .
+
+# starting up a container
+docker run -p 8080:8080 api_invoker_management
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__init__.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__main__.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__main__.py
new file mode 100644
index 0000000..32ccc2e
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/__main__.py
@@ -0,0 +1,152 @@
+#!/usr/bin/env python3
+
+import connexion
+import logging
+from api_invoker_management import encoder
+
+from flask import Flask, jsonify, request
+from flask_jwt_extended import JWTManager, jwt_required, create_access_token
+from pymongo import MongoClient
+from .config import Config
+from .core.consumer_messager import Subscriber
+from logging.handlers import RotatingFileHandler
+import os
+from fluent import sender
+from flask_executor import Executor
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+
+
+import sys
+import uuid
+
+
+
+NAME = "Invoker-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Invoker-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Invoker_Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="invoker_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+with open("/usr/src/app/api_invoker_management/pubkey.pem", "rb") as pub_file:
+            pub_data = pub_file.read()
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_API_Invoker_Management_API'},
+            pythonic_params=True)
+
+app.app.config['JWT_ALGORITHM'] = 'RS256'
+app.app.config['JWT_PUBLIC_KEY'] = pub_data
+
+
+config = Config()
+
+jwt = JWTManager(app.app)
+configure_logging(app.app)
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+executor = Executor(app.app)
+subscriber = Subscriber()
+
+@app.app.before_first_request
+def create_listener_message():
+    executor.submit(subscriber.listen)
+
+if __name__ == '__main__':
+    import logging
+    app.run(debug=True, port=8080)
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/config.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/config.py
new file mode 100644
index 0000000..11e1c4f
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/config.py
@@ -0,0 +1,21 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/__init__.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/default_controller.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/default_controller.py
new file mode 100644
index 0000000..456b4ec
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/default_controller.py
@@ -0,0 +1,123 @@
+import connexion
+
+from api_invoker_management.models.api_invoker_enrolment_details import APIInvokerEnrolmentDetails  # noqa: E501
+from ..core.apiinvokerenrolmentdetails import InvokerManagementOperations
+from ..core.validate_user import ControlAccess
+
+import json
+from flask import Response, request, current_app
+from flask_jwt_extended import jwt_required, get_jwt_identity
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from ..core.publisher import Publisher
+from functools import wraps
+
+invoker_operations = InvokerManagementOperations()
+publisher_ops = Publisher()
+valid_user = ControlAccess()
+
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+            cn = cert.subject.get_attributes_for_oid(x509.OID_COMMON_NAME)[0].value.strip()
+
+            if cn != "superadmin":
+                cert_signature = cert.signature.hex()
+                result = valid_user.validate_user_cert(args["onboardingId"], cert_signature)
+
+                if result is not None:
+                    return result
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+@cert_validation()
+def onboarded_invokers_onboarding_id_delete(onboarding_id):  # noqa: E501
+    """onboarded_invokers_onboarding_id_delete
+
+    Deletes an individual API Invoker. # noqa: E501
+
+    :param onboarding_id: String identifying an individual on-boarded API invoker resource
+    :type onboarding_id: str
+
+    :rtype: None
+    """
+
+    current_app.logger.info("Removing invoker")
+    res = invoker_operations.remove_apiinvokerenrolmentdetail(onboarding_id)
+
+    if res.status_code == 204:
+        current_app.logger.info("Invoker Removed")
+        publisher_ops.publish_message("events", "API_INVOKER_OFFBOARDED")
+        publisher_ops.publish_message("internal-messages", f"invoker-removed:{onboarding_id}")
+
+    return res
+
+@cert_validation()
+def onboarded_invokers_onboarding_id_put(onboarding_id, body):  # noqa: E501
+    """onboarded_invokers_onboarding_id_put
+
+    Updates an individual API invoker details. # noqa: E501
+
+    :param onboarding_id: String identifying an individual on-boarded API invoker resource
+    :type onboarding_id: str
+    :param api_invoker_enrolment_details: representation of the API invoker details to be updated in CAPIF core function
+    :type api_invoker_enrolment_details: dict | bytes
+
+    :rtype: APIInvokerEnrolmentDetails
+    """
+    current_app.logger.info("Updating invoker")
+    if connexion.request.is_json:
+        body = APIInvokerEnrolmentDetails.from_dict(connexion.request.get_json())  # noqa: E501
+    res = invoker_operations.update_apiinvokerenrolmentdetail(onboarding_id,body)
+
+    if res.status_code == 200:
+        current_app.logger.info("Invoker Updated")
+        publisher_ops.publish_message("events", "API_INVOKER_UPDATED")
+
+    return res
+
+
+@jwt_required()
+def onboarded_invokers_post(body):  # noqa: E501
+    """onboarded_invokers_post
+
+    Creates a new individual API Invoker profile. # noqa: E501
+
+    :param api_invoker_enrolment_details:
+    :type api_invoker_enrolment_details: dict | bytes
+
+    :rtype: APIInvokerEnrolmentDetails
+    """
+
+    identity = get_jwt_identity()
+    username, role = identity.split()
+
+    if role != "invoker":
+        prob = ProblemDetails(title="Unauthorized", status=401, detail="Role not authorized for this API route",
+                              cause="User role must be invoker")
+        return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype='application/json')
+
+    if connexion.request.is_json:
+        body = APIInvokerEnrolmentDetails.from_dict(connexion.request.get_json())  # noqa: E501
+
+    current_app.logger.info("Creating Invoker")
+    res = invoker_operations.add_apiinvokerenrolmentdetail(body, username)
+    if res.status_code == 201:
+        current_app.logger.info("Invoker Created")
+        publisher_ops.publish_message("events", "API_INVOKER_ONBOARDED")
+
+    return res
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/security_controller_.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/apiinvokerenrolmentdetails.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/apiinvokerenrolmentdetails.py
new file mode 100644
index 0000000..8969ec1
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/apiinvokerenrolmentdetails.py
@@ -0,0 +1,159 @@
+import rfc3987
+from pymongo import ReturnDocument
+import secrets
+import requests
+from .responses import bad_request_error, not_found_error, forbidden_error, internal_server_error, make_response
+from flask import current_app, Flask, Response
+import json
+from ..util import dict_to_camel_case
+from .auth_manager import AuthManager
+from .resources import Resource
+from ..config import Config
+
+
+
+class InvokerManagementOperations(Resource):
+
+    def __check_api_invoker_id(self, api_invoker_id):
+
+        current_app.logger.debug("Cheking api invoker id")
+        mycol = self.db.get_col_by_name(self.db.invoker_enrolment_details)
+        my_query = {'api_invoker_id':api_invoker_id}
+        old_values = mycol.find_one(my_query)
+
+        if old_values is None:
+            current_app.logger.error("Not found api invoker id")
+            return not_found_error(detail="Please provide an existing Netapp ID", cause= "Not exist NetappID" )
+
+        return old_values
+
+    def __sign_cert(self, publick_key, invoker_id):
+
+        url = f"http://{self.config['ca_factory']['url']}:{self.config['ca_factory']['port']}/v1/pki_int/sign/my-ca"
+        headers = {'X-Vault-Token': self.config['ca_factory']['token']}
+        data = {
+            'format':'pem_bundle',
+            'ttl': '43000h',
+            'csr': publick_key,
+            'common_name': invoker_id
+        }
+
+        response = requests.request("POST", url, headers=headers, data=data, verify = False)
+        print(response)
+        response_payload = json.loads(response.text)
+
+        return response_payload
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.auth_manager = AuthManager()
+        self.config = Config().get_config()
+
+
+    def add_apiinvokerenrolmentdetail(self, apiinvokerenrolmentdetail, username):
+
+        mycol = self.db.get_col_by_name(self.db.invoker_enrolment_details)
+        register = self.db.get_col_by_name_register(self.db.capif_users)
+
+        #try:
+
+        current_app.logger.debug("Creating invoker resource")
+        res = mycol.find_one({'onboarding_information.api_invoker_public_key': apiinvokerenrolmentdetail.onboarding_information.api_invoker_public_key})
+
+        if res is not None:
+            current_app.logger.error("Generating forbbiden error, invoker registered")
+            return forbidden_error(detail= "Invoker already registered", cause = "Identical invoker public key")
+
+        if rfc3987.match(apiinvokerenrolmentdetail.notification_destination, rule="URI") is None:
+            current_app.logger.error("Bad url format")
+            return bad_request_error(detail="Bad Param", cause = "Detected Bad formar of param", invalid_params=[{"param": "notificationDestination", "reason": "Not valid URL format"}])
+
+        current_app.logger.debug("Signing Certificate")
+
+        api_invoker_id = 'INV'+str(secrets.token_hex(15))
+        cert = self.__sign_cert(apiinvokerenrolmentdetail.onboarding_information.api_invoker_public_key, api_invoker_id)
+
+        
+        apiinvokerenrolmentdetail.api_invoker_id = api_invoker_id
+        current_app.logger.debug(cert)
+        apiinvokerenrolmentdetail.onboarding_information.api_invoker_certificate = cert['data']['certificate']
+        mycol.insert_one(apiinvokerenrolmentdetail.to_dict())
+        register.update_one({'username':username}, {"$push":{'list_invokers':api_invoker_id}})
+
+
+        current_app.logger.debug("Invoker inserted in database")
+        current_app.logger.debug("Netapp onboarded sucessfuly")
+
+        self.auth_manager.add_auth_invoker(cert['data']['certificate'], api_invoker_id)
+
+        res = make_response(object=apiinvokerenrolmentdetail, status=201)
+        res.headers['Location'] = "/api-invoker-management/v1/onboardedInvokers/" + str(api_invoker_id)
+        return res
+
+        # except Exception as e:
+        #     exception = "An exception occurred in create invoker"
+        #     current_app.logger.error(exception + "::" + str(e))
+        #     return internal_server_error(detail=exception, cause=str(e))
+
+    def update_apiinvokerenrolmentdetail(self, onboard_id, apiinvokerenrolmentdetail):
+
+        mycol = self.db.get_col_by_name(self.db.invoker_enrolment_details)
+
+        try:
+            current_app.logger.debug("Updating invoker resource")
+            result = self.__check_api_invoker_id(onboard_id)
+
+            if isinstance(result, Response):
+                return result
+
+            if apiinvokerenrolmentdetail.onboarding_information.api_invoker_public_key != result["onboarding_information"]["api_invoker_public_key"]:
+                cert = self.__sign_cert(apiinvokerenrolmentdetail.onboarding_information.api_invoker_public_key, result["api_invoker_id"])
+                apiinvokerenrolmentdetail.onboarding_information.api_invoker_certificate = cert['data']['certificate']
+                self.auth_manager.update_auth_invoker(cert['data']["certificate"], onboard_id)
+
+            apiinvokerenrolmentdetail_update = apiinvokerenrolmentdetail.to_dict()
+            apiinvokerenrolmentdetail_update = {
+                key: value for key, value in apiinvokerenrolmentdetail_update.items() if value is not None
+            }
+
+            result = mycol.find_one_and_update(result, {"$set":apiinvokerenrolmentdetail_update}, projection={'_id': 0},return_document=ReturnDocument.AFTER ,upsert=False)
+
+            result = {
+                key: value for key, value in result.items() if value is not None
+            }
+
+            current_app.logger.debug("Invoker Resource inserted in database")
+            res = make_response(object=dict_to_camel_case(result), status=200)
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in update invoker"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def remove_apiinvokerenrolmentdetail(self, onboard_id):
+
+        mycol = self.db.get_col_by_name(self.db.invoker_enrolment_details)
+        register = self.db.get_col_by_name_register(self.db.capif_users)
+        try:
+            current_app.logger.debug("Removing invoker resource")
+            result = self.__check_api_invoker_id(onboard_id)
+
+            if isinstance(result, Response):
+                return result
+
+            mycol.delete_one({'api_invoker_id':onboard_id})
+            register.update_one({'list_invokers':onboard_id}, {"$pull":{'list_invokers':onboard_id}})
+            self.auth_manager.remove_auth_invoker(onboard_id)
+
+            current_app.logger.debug("Invoker resource removed from database")
+            current_app.logger.debug("Netapp offboarded sucessfuly")
+            out =  "The Netapp matching onboardingId  " + onboard_id + " was offboarded."
+            return make_response(out, status=204)
+
+        except Exception as e:
+            exception = "An exception occurred in remove invoker"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/auth_manager.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/auth_manager.py
new file mode 100644
index 0000000..cfab01e
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/auth_manager.py
@@ -0,0 +1,25 @@
+
+from flask import current_app
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from .resources import Resource
+
+
+class AuthManager(Resource):
+
+    def add_auth_invoker(self, cert, invoker_id):
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        cert_encode = x509.load_pem_x509_certificate(str.encode(cert), default_backend())
+        cert_col.insert_one({"cert_signature":cert_encode.signature.hex(), "role":"invoker", "id": invoker_id, "resources": {}})
+
+    def update_auth_invoker(self, cert, invoker_id):
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        cert_encode = x509.load_pem_x509_certificate(str.encode(cert), default_backend())
+        cert_col.find_one_and_update({"id":invoker_id}, {"$set":{"cert_signature":cert_encode.signature.hex()}})
+
+    def remove_auth_invoker(self, invoker_id):
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        cert_col.delete_one({"id":invoker_id})
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/consumer_messager.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/consumer_messager.py
new file mode 100644
index 0000000..26f8d6b
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/consumer_messager.py
@@ -0,0 +1,26 @@
+# subscriber.py
+import redis
+from .invoker_internal_ops import InvokerInternalOperations
+from flask import current_app
+
+class Subscriber():
+
+    def __init__(self):
+        self.r = redis.Redis(host='redis', port=6379, db=0)
+        self.invoker_ops = InvokerInternalOperations()
+        self.p = self.r.pubsub()
+        self.p.subscribe("internal-messages")
+
+    def listen(self):
+        for raw_message in self.p.listen():
+            if raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "internal-messages":
+                message, invoker_id, api_id = raw_message["data"].decode('utf-8').split(":")
+                if message == "security-context-created":
+                    current_app.logger.debug("Internal message received, updating Api list on invoker")
+                    self.invoker_ops.update_services_list(invoker_id, api_id)
+                if message == "security-context-removed":
+                    current_app.logger.debug("Internal message received, removing service in  Api list of invoker")
+                    self.invoker_ops.remove_services_list(invoker_id, api_id)
+
+
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/invoker_internal_ops.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/invoker_internal_ops.py
new file mode 100644
index 0000000..a0aa138
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/invoker_internal_ops.py
@@ -0,0 +1,40 @@
+
+from .resources import Resource
+from flask import current_app
+
+
+class InvokerInternalOperations(Resource):
+
+    def update_services_list(self, invoker_id, api_id):
+
+        service_col = self.db.get_col_by_name(self.db.service_col)
+        invoker_col = self.db.get_col_by_name(self.db.invoker_enrolment_details)
+
+        invoker = invoker_col.find_one({'api_invoker_id':invoker_id})
+        service = service_col.find_one({'api_id': api_id}, {"_id":0})
+
+        invoker_api_list = invoker["api_list"]
+        if invoker_api_list is None:
+            invoker_api_list = []
+
+        invoker_api_list.append(service)
+        invoker["api_list"] = invoker_api_list
+
+        invoker_col.update_one({'api_invoker_id':invoker_id}, {"$set":invoker})
+
+    def remove_services_list(self, invoker_id, api_id):
+        service_col = self.db.get_col_by_name(self.db.service_col)
+        invoker_col = self.db.get_col_by_name(self.db.invoker_enrolment_details)
+
+        invoker = invoker_col.find_one({'api_invoker_id':invoker_id})
+        service = service_col.find_one({'api_id': api_id})
+
+        invoker_api_list = invoker["api_list"]
+
+        if service in invoker_api_list:
+            invoker_api_list.remove(service)
+
+        invoker["api_list"] = invoker_api_list
+
+        invoker_col.update_one({'api_invoker_id':invoker_id}, {"$set":invoker})
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/publisher.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/publisher.py
new file mode 100644
index 0000000..3898c4b
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/publisher.py
@@ -0,0 +1,11 @@
+import redis
+import sys
+from flask import current_app
+
+class Publisher():
+
+    def __init__(self):
+        self. r = redis.Redis(host='redis', port=6379, db=0)
+
+    def publish_message(self, channel, message):
+        self.r.publish(channel, message)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/resources.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/resources.py
new file mode 100644
index 0000000..94e29ec
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/resources.py
@@ -0,0 +1,7 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/responses.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/responses.py
new file mode 100644
index 0000000..962c4b6
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/responses.py
@@ -0,0 +1,31 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/validate_user.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/validate_user.py
new file mode 100644
index 0000000..5a2a5dc
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/core/validate_user.py
@@ -0,0 +1,26 @@
+from flask import current_app, Response
+import json
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from .resources import Resource
+from .responses import internal_server_error
+
+class ControlAccess(Resource):
+
+    def validate_user_cert(self, api_invoker_id, cert_signature):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        try:
+            my_query = {'invoker_id':api_invoker_id}
+            cert_entry = cert_col.find_one(my_query)
+
+            if cert_entry is not None:
+                if cert_entry["cert_signature"] != cert_signature:
+                    prob = ProblemDetails(title="Unauthorized", detail="User not authorized", cause="You are not the owner of this resource")
+                    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype="application/json")
+
+        except Exception as e:
+            exception = "An exception occurred in validate invoker"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/db/db.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/db/db.py
new file mode 100644
index 0000000..32a34b8
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/db/db.py
@@ -0,0 +1,76 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.register = self.__connect_register()
+        self.invoker_enrolment_details = self.config['mongo']['col']
+        self.capif_users = self.config['mongo']['capif_users_col']
+        self.service_col = self.config['mongo']["service_col"]
+        self.certs_col = self.config['mongo']['certs_col']
+
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+    
+    def get_col_by_name_register(self, name):
+        return self.register[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+
+    def __connect(self, max_retries=3, retry_delay=1):
+
+        retries = 0
+
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+
+                
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+    
+    def __connect_register(self, max_retries=3, retry_delay=1):
+
+        retries = 0
+
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo_register']['user']}:{self.config['mongo_register']['password']}@" \
+                      f"{self.config['mongo_register']['host']}:{self.config['mongo_register']['port']}"
+
+                
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo_register']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
+        if self.register.client:
+            self.register.client.close()
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/encoder.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/encoder.py
new file mode 100644
index 0000000..04b06eb
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from api_invoker_management.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/__init__.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/__init__.py
new file mode 100644
index 0000000..1aa7151
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/__init__.py
@@ -0,0 +1,29 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from api_invoker_management.models.api_invoker_enrolment_details import APIInvokerEnrolmentDetails
+from api_invoker_management.models.aef_profile import AefProfile
+from api_invoker_management.models.communication_type import CommunicationType
+from api_invoker_management.models.communication_type_any_of import CommunicationTypeAnyOf
+from api_invoker_management.models.custom_operation import CustomOperation
+from api_invoker_management.models.data_format import DataFormat
+from api_invoker_management.models.data_format_any_of import DataFormatAnyOf
+from api_invoker_management.models.interface_description import InterfaceDescription
+from api_invoker_management.models.invalid_param import InvalidParam
+from api_invoker_management.models.onboarding_information import OnboardingInformation
+from api_invoker_management.models.onboarding_notification import OnboardingNotification
+from api_invoker_management.models.operation import Operation
+from api_invoker_management.models.operation_any_of import OperationAnyOf
+from api_invoker_management.models.problem_details import ProblemDetails
+from api_invoker_management.models.protocol import Protocol
+from api_invoker_management.models.protocol_any_of import ProtocolAnyOf
+from api_invoker_management.models.published_api_path import PublishedApiPath
+from api_invoker_management.models.resource import Resource
+from api_invoker_management.models.security_method import SecurityMethod
+from api_invoker_management.models.security_method_any_of import SecurityMethodAnyOf
+from api_invoker_management.models.service_api_description import ServiceAPIDescription
+from api_invoker_management.models.shareable_information import ShareableInformation
+from api_invoker_management.models.version import Version
+from api_invoker_management.models.websock_notif_config import WebsockNotifConfig
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/aef_profile.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/aef_profile.py
new file mode 100644
index 0000000..23a84c9
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/aef_profile.py
@@ -0,0 +1,250 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.data_format import DataFormat
+from api_invoker_management.models.interface_description import InterfaceDescription
+from api_invoker_management.models.protocol import Protocol
+from api_invoker_management.models.security_method import SecurityMethod
+from api_invoker_management.models.version import Version
+from api_invoker_management import util
+
+from api_invoker_management.models.data_format import DataFormat  # noqa: E501
+from api_invoker_management.models.interface_description import InterfaceDescription  # noqa: E501
+from api_invoker_management.models.protocol import Protocol  # noqa: E501
+from api_invoker_management.models.security_method import SecurityMethod  # noqa: E501
+from api_invoker_management.models.version import Version  # noqa: E501
+
+class AefProfile(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, versions=None, protocol=None, data_format=None, security_methods=None, domain_name=None, interface_descriptions=None):  # noqa: E501
+        """AefProfile - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this AefProfile.  # noqa: E501
+        :type aef_id: str
+        :param versions: The versions of this AefProfile.  # noqa: E501
+        :type versions: List[Version]
+        :param protocol: The protocol of this AefProfile.  # noqa: E501
+        :type protocol: Protocol
+        :param data_format: The data_format of this AefProfile.  # noqa: E501
+        :type data_format: DataFormat
+        :param security_methods: The security_methods of this AefProfile.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        :param domain_name: The domain_name of this AefProfile.  # noqa: E501
+        :type domain_name: str
+        :param interface_descriptions: The interface_descriptions of this AefProfile.  # noqa: E501
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'versions': List[Version],
+            'protocol': Protocol,
+            'data_format': DataFormat,
+            'security_methods': List[SecurityMethod],
+            'domain_name': str,
+            'interface_descriptions': List[InterfaceDescription]
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'versions': 'versions',
+            'protocol': 'protocol',
+            'data_format': 'dataFormat',
+            'security_methods': 'securityMethods',
+            'domain_name': 'domainName',
+            'interface_descriptions': 'interfaceDescriptions'
+        }
+
+        self._aef_id = aef_id
+        self._versions = versions
+        self._protocol = protocol
+        self._data_format = data_format
+        self._security_methods = security_methods
+        self._domain_name = domain_name
+        self._interface_descriptions = interface_descriptions
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AefProfile':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AefProfile of this AefProfile.  # noqa: E501
+        :rtype: AefProfile
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_id of this AefProfile.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_id: The aef_id of this AefProfile.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def versions(self):
+        """Gets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :return: The versions of this AefProfile.
+        :rtype: List[Version]
+        """
+        return self._versions
+
+    @versions.setter
+    def versions(self, versions):
+        """Sets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :param versions: The versions of this AefProfile.
+        :type versions: List[Version]
+        """
+        if versions is None:
+            raise ValueError("Invalid value for `versions`, must not be `None`")  # noqa: E501
+        if versions is not None and len(versions) < 1:
+            raise ValueError("Invalid value for `versions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._versions = versions
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this AefProfile.
+
+
+        :return: The protocol of this AefProfile.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this AefProfile.
+
+
+        :param protocol: The protocol of this AefProfile.
+        :type protocol: Protocol
+        """
+
+        self._protocol = protocol
+
+    @property
+    def data_format(self):
+        """Gets the data_format of this AefProfile.
+
+
+        :return: The data_format of this AefProfile.
+        :rtype: DataFormat
+        """
+        return self._data_format
+
+    @data_format.setter
+    def data_format(self, data_format):
+        """Sets the data_format of this AefProfile.
+
+
+        :param data_format: The data_format of this AefProfile.
+        :type data_format: DataFormat
+        """
+
+        self._data_format = data_format
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :return: The security_methods of this AefProfile.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :param security_methods: The security_methods of this AefProfile.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
+
+    @property
+    def domain_name(self):
+        """Gets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :return: The domain_name of this AefProfile.
+        :rtype: str
+        """
+        return self._domain_name
+
+    @domain_name.setter
+    def domain_name(self, domain_name):
+        """Sets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :param domain_name: The domain_name of this AefProfile.
+        :type domain_name: str
+        """
+
+        self._domain_name = domain_name
+
+    @property
+    def interface_descriptions(self):
+        """Gets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :return: The interface_descriptions of this AefProfile.
+        :rtype: List[InterfaceDescription]
+        """
+        return self._interface_descriptions
+
+    @interface_descriptions.setter
+    def interface_descriptions(self, interface_descriptions):
+        """Sets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :param interface_descriptions: The interface_descriptions of this AefProfile.
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        if interface_descriptions is not None and len(interface_descriptions) < 1:
+            raise ValueError("Invalid value for `interface_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._interface_descriptions = interface_descriptions
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/api_invoker_enrolment_details.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/api_invoker_enrolment_details.py
new file mode 100644
index 0000000..b7667b5
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/api_invoker_enrolment_details.py
@@ -0,0 +1,271 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+from api_invoker_management.models.onboarding_information import OnboardingInformation  # noqa: E501
+from api_invoker_management.models.service_api_description import ServiceAPIDescription  # noqa: E501
+from api_invoker_management.models.websock_notif_config import WebsockNotifConfig  # noqa: E501
+import re  # noqa: E501
+
+
+class APIInvokerEnrolmentDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_id=None, onboarding_information=None, notification_destination=None, request_test_notification=None, websock_notif_config=None, api_list=None, api_invoker_information=None, supported_features=None):  # noqa: E501
+        """APIInvokerEnrolmentDetails - a model defined in OpenAPI
+
+        :param api_invoker_id: The api_invoker_id of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type api_invoker_id: str
+        :param onboarding_information: The onboarding_information of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type onboarding_information: OnboardingInformation
+        :param notification_destination: The notification_destination of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type notification_destination: str
+        :param request_test_notification: The request_test_notification of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type request_test_notification: bool
+        :param websock_notif_config: The websock_notif_config of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type websock_notif_config: WebsockNotifConfig
+        :param api_list: The api_list of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type api_list: List[ServiceAPIDescription]
+        :param api_invoker_information: The api_invoker_information of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type api_invoker_information: str
+        :param supported_features: The supported_features of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'api_invoker_id': str,
+            'onboarding_information': OnboardingInformation,
+            'notification_destination': str,
+            'request_test_notification': bool,
+            'websock_notif_config': WebsockNotifConfig,
+            'api_list': List[ServiceAPIDescription],
+            'api_invoker_information': str,
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'api_invoker_id': 'apiInvokerId',
+            'onboarding_information': 'onboardingInformation',
+            'notification_destination': 'notificationDestination',
+            'request_test_notification': 'requestTestNotification',
+            'websock_notif_config': 'websockNotifConfig',
+            'api_list': 'apiList',
+            'api_invoker_information': 'apiInvokerInformation',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._api_invoker_id = api_invoker_id
+        self._onboarding_information = onboarding_information
+        self._notification_destination = notification_destination
+        self._request_test_notification = request_test_notification
+        self._websock_notif_config = websock_notif_config
+        self._api_list = api_list
+        self._api_invoker_information = api_invoker_information
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'APIInvokerEnrolmentDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The APIInvokerEnrolmentDetails of this APIInvokerEnrolmentDetails.  # noqa: E501
+        :rtype: APIInvokerEnrolmentDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this APIInvokerEnrolmentDetails.
+
+        API invoker ID assigned by the CAPIF core function to the API invoker while on-boarding the API invoker. Shall not be present in the HTTP POST request from the API invoker to the CAPIF core function, to on-board itself. Shall be present in all other HTTP requests and responses.  # noqa: E501
+
+        :return: The api_invoker_id of this APIInvokerEnrolmentDetails.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this APIInvokerEnrolmentDetails.
+
+        API invoker ID assigned by the CAPIF core function to the API invoker while on-boarding the API invoker. Shall not be present in the HTTP POST request from the API invoker to the CAPIF core function, to on-board itself. Shall be present in all other HTTP requests and responses.  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this APIInvokerEnrolmentDetails.
+        :type api_invoker_id: str
+        """
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def onboarding_information(self):
+        """Gets the onboarding_information of this APIInvokerEnrolmentDetails.
+
+
+        :return: The onboarding_information of this APIInvokerEnrolmentDetails.
+        :rtype: OnboardingInformation
+        """
+        return self._onboarding_information
+
+    @onboarding_information.setter
+    def onboarding_information(self, onboarding_information):
+        """Sets the onboarding_information of this APIInvokerEnrolmentDetails.
+
+
+        :param onboarding_information: The onboarding_information of this APIInvokerEnrolmentDetails.
+        :type onboarding_information: OnboardingInformation
+        """
+        if onboarding_information is None:
+            raise ValueError("Invalid value for `onboarding_information`, must not be `None`")  # noqa: E501
+
+        self._onboarding_information = onboarding_information
+
+    @property
+    def notification_destination(self):
+        """Gets the notification_destination of this APIInvokerEnrolmentDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The notification_destination of this APIInvokerEnrolmentDetails.
+        :rtype: str
+        """
+        return self._notification_destination
+
+    @notification_destination.setter
+    def notification_destination(self, notification_destination):
+        """Sets the notification_destination of this APIInvokerEnrolmentDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param notification_destination: The notification_destination of this APIInvokerEnrolmentDetails.
+        :type notification_destination: str
+        """
+        if notification_destination is None:
+            raise ValueError("Invalid value for `notification_destination`, must not be `None`")  # noqa: E501
+
+        self._notification_destination = notification_destination
+
+    @property
+    def request_test_notification(self):
+        """Gets the request_test_notification of this APIInvokerEnrolmentDetails.
+
+        Set to true by Subscriber to request the CAPIF core function to send a test notification as defined in in subclause 7.6. Set to false or omitted otherwise.  # noqa: E501
+
+        :return: The request_test_notification of this APIInvokerEnrolmentDetails.
+        :rtype: bool
+        """
+        return self._request_test_notification
+
+    @request_test_notification.setter
+    def request_test_notification(self, request_test_notification):
+        """Sets the request_test_notification of this APIInvokerEnrolmentDetails.
+
+        Set to true by Subscriber to request the CAPIF core function to send a test notification as defined in in subclause 7.6. Set to false or omitted otherwise.  # noqa: E501
+
+        :param request_test_notification: The request_test_notification of this APIInvokerEnrolmentDetails.
+        :type request_test_notification: bool
+        """
+
+        self._request_test_notification = request_test_notification
+
+    @property
+    def websock_notif_config(self):
+        """Gets the websock_notif_config of this APIInvokerEnrolmentDetails.
+
+
+        :return: The websock_notif_config of this APIInvokerEnrolmentDetails.
+        :rtype: WebsockNotifConfig
+        """
+        return self._websock_notif_config
+
+    @websock_notif_config.setter
+    def websock_notif_config(self, websock_notif_config):
+        """Sets the websock_notif_config of this APIInvokerEnrolmentDetails.
+
+
+        :param websock_notif_config: The websock_notif_config of this APIInvokerEnrolmentDetails.
+        :type websock_notif_config: WebsockNotifConfig
+        """
+
+        self._websock_notif_config = websock_notif_config
+
+    @property
+    def api_list(self):
+        """Gets the api_list of this APIInvokerEnrolmentDetails.
+
+        The list of service APIs that the API Invoker is allowed to invoke  # noqa: E501
+
+        :return: The api_list of this APIInvokerEnrolmentDetails.
+        :rtype: List[ServiceAPIDescription]
+        """
+        return self._api_list
+
+    @api_list.setter
+    def api_list(self, api_list):
+        """Sets the api_list of this APIInvokerEnrolmentDetails.
+
+        The list of service APIs that the API Invoker is allowed to invoke  # noqa: E501
+
+        :param api_list: The api_list of this APIInvokerEnrolmentDetails.
+        :type api_list: List[ServiceAPIDescription]
+        """
+        if api_list is not None and len(api_list) < 1:
+            raise ValueError("Invalid value for `api_list`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_list = api_list
+
+    @property
+    def api_invoker_information(self):
+        """Gets the api_invoker_information of this APIInvokerEnrolmentDetails.
+
+        Generic information related to the API invoker such as details of the device or the application.  # noqa: E501
+
+        :return: The api_invoker_information of this APIInvokerEnrolmentDetails.
+        :rtype: str
+        """
+        return self._api_invoker_information
+
+    @api_invoker_information.setter
+    def api_invoker_information(self, api_invoker_information):
+        """Sets the api_invoker_information of this APIInvokerEnrolmentDetails.
+
+        Generic information related to the API invoker such as details of the device or the application.  # noqa: E501
+
+        :param api_invoker_information: The api_invoker_information of this APIInvokerEnrolmentDetails.
+        :type api_invoker_information: str
+        """
+
+        self._api_invoker_information = api_invoker_information
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this APIInvokerEnrolmentDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this APIInvokerEnrolmentDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this APIInvokerEnrolmentDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this APIInvokerEnrolmentDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/base_model_.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/base_model_.py
new file mode 100644
index 0000000..5b0ea2f
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from api_invoker_management import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type.py
new file mode 100644
index 0000000..48e559c
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.communication_type_any_of import CommunicationTypeAnyOf
+from api_invoker_management import util
+
+from api_invoker_management.models.communication_type_any_of import CommunicationTypeAnyOf  # noqa: E501
+
+class CommunicationType(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """CommunicationType - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationType':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType of this CommunicationType.  # noqa: E501
+        :rtype: CommunicationType
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type_any_of.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type_any_of.py
new file mode 100644
index 0000000..461a002
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/communication_type_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class CommunicationTypeAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    REQUEST_RESPONSE = "REQUEST_RESPONSE"
+    SUBSCRIBE_NOTIFY = "SUBSCRIBE_NOTIFY"
+    def __init__(self):  # noqa: E501
+        """CommunicationTypeAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationTypeAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType_anyOf of this CommunicationTypeAnyOf.  # noqa: E501
+        :rtype: CommunicationTypeAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/custom_operation.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/custom_operation.py
new file mode 100644
index 0000000..5663c98
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/custom_operation.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.communication_type import CommunicationType
+from api_invoker_management.models.operation import Operation
+from api_invoker_management import util
+
+from api_invoker_management.models.communication_type import CommunicationType  # noqa: E501
+from api_invoker_management.models.operation import Operation  # noqa: E501
+
+class CustomOperation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, comm_type=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """CustomOperation - a model defined in OpenAPI
+
+        :param comm_type: The comm_type of this CustomOperation.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param cust_op_name: The cust_op_name of this CustomOperation.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this CustomOperation.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this CustomOperation.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'comm_type': CommunicationType,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'comm_type': 'commType',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._comm_type = comm_type
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CustomOperation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CustomOperation of this CustomOperation.  # noqa: E501
+        :rtype: CustomOperation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this CustomOperation.
+
+
+        :return: The comm_type of this CustomOperation.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this CustomOperation.
+
+
+        :param comm_type: The comm_type of this CustomOperation.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this CustomOperation.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this CustomOperation.
+        :type cust_op_name: str
+        """
+        if cust_op_name is None:
+            raise ValueError("Invalid value for `cust_op_name`, must not be `None`")  # noqa: E501
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this CustomOperation.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this CustomOperation.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :return: The description of this CustomOperation.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :param description: The description of this CustomOperation.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format.py
new file mode 100644
index 0000000..c8ed3be
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.data_format_any_of import DataFormatAnyOf
+from api_invoker_management import util
+
+from api_invoker_management.models.data_format_any_of import DataFormatAnyOf  # noqa: E501
+
+class DataFormat(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """DataFormat - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormat':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat of this DataFormat.  # noqa: E501
+        :rtype: DataFormat
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format_any_of.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format_any_of.py
new file mode 100644
index 0000000..a022aab
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/data_format_any_of.py
@@ -0,0 +1,41 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class DataFormatAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    JSON = "JSON"
+    def __init__(self):  # noqa: E501
+        """DataFormatAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormatAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat_anyOf of this DataFormatAnyOf.  # noqa: E501
+        :rtype: DataFormatAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/interface_description.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/interface_description.py
new file mode 100644
index 0000000..1e0050b
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.security_method import SecurityMethod
+from api_invoker_management import util
+
+from api_invoker_management.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/invalid_param.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/invalid_param.py
new file mode 100644
index 0000000..1fa0f4c
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_information.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_information.py
new file mode 100644
index 0000000..17b8de0
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_information.py
@@ -0,0 +1,124 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class OnboardingInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_public_key=None, api_invoker_certificate=None, onboarding_secret=None):  # noqa: E501
+        """OnboardingInformation - a model defined in OpenAPI
+
+        :param api_invoker_public_key: The api_invoker_public_key of this OnboardingInformation.  # noqa: E501
+        :type api_invoker_public_key: str
+        :param api_invoker_certificate: The api_invoker_certificate of this OnboardingInformation.  # noqa: E501
+        :type api_invoker_certificate: str
+        :param onboarding_secret: The onboarding_secret of this OnboardingInformation.  # noqa: E501
+        :type onboarding_secret: str
+        """
+        self.openapi_types = {
+            'api_invoker_public_key': str,
+            'api_invoker_certificate': str,
+            'onboarding_secret': str
+        }
+
+        self.attribute_map = {
+            'api_invoker_public_key': 'apiInvokerPublicKey',
+            'api_invoker_certificate': 'apiInvokerCertificate',
+            'onboarding_secret': 'onboardingSecret'
+        }
+
+        self._api_invoker_public_key = api_invoker_public_key
+        self._api_invoker_certificate = api_invoker_certificate
+        self._onboarding_secret = onboarding_secret
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OnboardingInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The OnboardingInformation of this OnboardingInformation.  # noqa: E501
+        :rtype: OnboardingInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_public_key(self):
+        """Gets the api_invoker_public_key of this OnboardingInformation.
+
+        The API Invoker’s public key  # noqa: E501
+
+        :return: The api_invoker_public_key of this OnboardingInformation.
+        :rtype: str
+        """
+        return self._api_invoker_public_key
+
+    @api_invoker_public_key.setter
+    def api_invoker_public_key(self, api_invoker_public_key):
+        """Sets the api_invoker_public_key of this OnboardingInformation.
+
+        The API Invoker’s public key  # noqa: E501
+
+        :param api_invoker_public_key: The api_invoker_public_key of this OnboardingInformation.
+        :type api_invoker_public_key: str
+        """
+        if api_invoker_public_key is None:
+            raise ValueError("Invalid value for `api_invoker_public_key`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_public_key = api_invoker_public_key
+
+    @property
+    def api_invoker_certificate(self):
+        """Gets the api_invoker_certificate of this OnboardingInformation.
+
+        The API Invoker’s generic client certificate, provided by the CAPIF core function.  # noqa: E501
+
+        :return: The api_invoker_certificate of this OnboardingInformation.
+        :rtype: str
+        """
+        return self._api_invoker_certificate
+
+    @api_invoker_certificate.setter
+    def api_invoker_certificate(self, api_invoker_certificate):
+        """Sets the api_invoker_certificate of this OnboardingInformation.
+
+        The API Invoker’s generic client certificate, provided by the CAPIF core function.  # noqa: E501
+
+        :param api_invoker_certificate: The api_invoker_certificate of this OnboardingInformation.
+        :type api_invoker_certificate: str
+        """
+
+        self._api_invoker_certificate = api_invoker_certificate
+
+    @property
+    def onboarding_secret(self):
+        """Gets the onboarding_secret of this OnboardingInformation.
+
+        The API Invoker’s onboarding secret, provided by the CAPIF core function.  # noqa: E501
+
+        :return: The onboarding_secret of this OnboardingInformation.
+        :rtype: str
+        """
+        return self._onboarding_secret
+
+    @onboarding_secret.setter
+    def onboarding_secret(self, onboarding_secret):
+        """Sets the onboarding_secret of this OnboardingInformation.
+
+        The API Invoker’s onboarding secret, provided by the CAPIF core function.  # noqa: E501
+
+        :param onboarding_secret: The onboarding_secret of this OnboardingInformation.
+        :type onboarding_secret: str
+        """
+
+        self._onboarding_secret = onboarding_secret
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_notification.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_notification.py
new file mode 100644
index 0000000..09a99cf
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/onboarding_notification.py
@@ -0,0 +1,156 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.api_invoker_enrolment_details import APIInvokerEnrolmentDetails
+from api_invoker_management.models.service_api_description import ServiceAPIDescription
+from api_invoker_management import util
+
+from api_invoker_management.models.api_invoker_enrolment_details import APIInvokerEnrolmentDetails  # noqa: E501
+from api_invoker_management.models.service_api_description import ServiceAPIDescription  # noqa: E501
+
+class OnboardingNotification(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, result=None, resource_location=None, api_invoker_enrolment_details=None, api_list=None):  # noqa: E501
+        """OnboardingNotification - a model defined in OpenAPI
+
+        :param result: The result of this OnboardingNotification.  # noqa: E501
+        :type result: bool
+        :param resource_location: The resource_location of this OnboardingNotification.  # noqa: E501
+        :type resource_location: str
+        :param api_invoker_enrolment_details: The api_invoker_enrolment_details of this OnboardingNotification.  # noqa: E501
+        :type api_invoker_enrolment_details: APIInvokerEnrolmentDetails
+        :param api_list: The api_list of this OnboardingNotification.  # noqa: E501
+        :type api_list: List[ServiceAPIDescription]
+        """
+        self.openapi_types = {
+            'result': bool,
+            'resource_location': str,
+            'api_invoker_enrolment_details': APIInvokerEnrolmentDetails,
+            'api_list': List[ServiceAPIDescription]
+        }
+
+        self.attribute_map = {
+            'result': 'result',
+            'resource_location': 'resourceLocation',
+            'api_invoker_enrolment_details': 'apiInvokerEnrolmentDetails',
+            'api_list': 'apiList'
+        }
+
+        self._result = result
+        self._resource_location = resource_location
+        self._api_invoker_enrolment_details = api_invoker_enrolment_details
+        self._api_list = api_list
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OnboardingNotification':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The OnboardingNotification of this OnboardingNotification.  # noqa: E501
+        :rtype: OnboardingNotification
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def result(self):
+        """Gets the result of this OnboardingNotification.
+
+        Set to \"true\" indicate successful on-boarding. Otherwise set to \"false\"  # noqa: E501
+
+        :return: The result of this OnboardingNotification.
+        :rtype: bool
+        """
+        return self._result
+
+    @result.setter
+    def result(self, result):
+        """Sets the result of this OnboardingNotification.
+
+        Set to \"true\" indicate successful on-boarding. Otherwise set to \"false\"  # noqa: E501
+
+        :param result: The result of this OnboardingNotification.
+        :type result: bool
+        """
+        if result is None:
+            raise ValueError("Invalid value for `result`, must not be `None`")  # noqa: E501
+
+        self._result = result
+
+    @property
+    def resource_location(self):
+        """Gets the resource_location of this OnboardingNotification.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The resource_location of this OnboardingNotification.
+        :rtype: str
+        """
+        return self._resource_location
+
+    @resource_location.setter
+    def resource_location(self, resource_location):
+        """Sets the resource_location of this OnboardingNotification.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param resource_location: The resource_location of this OnboardingNotification.
+        :type resource_location: str
+        """
+
+        self._resource_location = resource_location
+
+    @property
+    def api_invoker_enrolment_details(self):
+        """Gets the api_invoker_enrolment_details of this OnboardingNotification.
+
+
+        :return: The api_invoker_enrolment_details of this OnboardingNotification.
+        :rtype: APIInvokerEnrolmentDetails
+        """
+        return self._api_invoker_enrolment_details
+
+    @api_invoker_enrolment_details.setter
+    def api_invoker_enrolment_details(self, api_invoker_enrolment_details):
+        """Sets the api_invoker_enrolment_details of this OnboardingNotification.
+
+
+        :param api_invoker_enrolment_details: The api_invoker_enrolment_details of this OnboardingNotification.
+        :type api_invoker_enrolment_details: APIInvokerEnrolmentDetails
+        """
+
+        self._api_invoker_enrolment_details = api_invoker_enrolment_details
+
+    @property
+    def api_list(self):
+        """Gets the api_list of this OnboardingNotification.
+
+        The list of service APIs that the API Invoker is allowed to invoke  # noqa: E501
+
+        :return: The api_list of this OnboardingNotification.
+        :rtype: List[ServiceAPIDescription]
+        """
+        return self._api_list
+
+    @api_list.setter
+    def api_list(self, api_list):
+        """Sets the api_list of this OnboardingNotification.
+
+        The list of service APIs that the API Invoker is allowed to invoke  # noqa: E501
+
+        :param api_list: The api_list of this OnboardingNotification.
+        :type api_list: List[ServiceAPIDescription]
+        """
+        if api_list is not None and len(api_list) < 1:
+            raise ValueError("Invalid value for `api_list`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_list = api_list
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation.py
new file mode 100644
index 0000000..620d6a8
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.operation_any_of import OperationAnyOf
+from api_invoker_management import util
+
+from api_invoker_management.models.operation_any_of import OperationAnyOf  # noqa: E501
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation_any_of.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation_any_of.py
new file mode 100644
index 0000000..f3fff37
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/problem_details.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/problem_details.py
new file mode 100644
index 0000000..c28a360
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.invalid_param import InvalidParam
+import re
+from api_invoker_management import util
+
+from api_invoker_management.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol.py
new file mode 100644
index 0000000..f68a15d
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.protocol_any_of import ProtocolAnyOf
+from api_invoker_management import util
+
+from api_invoker_management.models.protocol_any_of import ProtocolAnyOf  # noqa: E501
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol_any_of.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol_any_of.py
new file mode 100644
index 0000000..eafceb4
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/published_api_path.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/published_api_path.py
new file mode 100644
index 0000000..01b94e6
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/published_api_path.py
@@ -0,0 +1,68 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class PublishedApiPath(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ccf_ids=None):  # noqa: E501
+        """PublishedApiPath - a model defined in OpenAPI
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.  # noqa: E501
+        :type ccf_ids: List[str]
+        """
+        self.openapi_types = {
+            'ccf_ids': List[str]
+        }
+
+        self.attribute_map = {
+            'ccf_ids': 'ccfIds'
+        }
+
+        self._ccf_ids = ccf_ids
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PublishedApiPath':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PublishedApiPath of this PublishedApiPath.  # noqa: E501
+        :rtype: PublishedApiPath
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ccf_ids(self):
+        """Gets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :return: The ccf_ids of this PublishedApiPath.
+        :rtype: List[str]
+        """
+        return self._ccf_ids
+
+    @ccf_ids.setter
+    def ccf_ids(self, ccf_ids):
+        """Sets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.
+        :type ccf_ids: List[str]
+        """
+        if ccf_ids is not None and len(ccf_ids) < 1:
+            raise ValueError("Invalid value for `ccf_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ccf_ids = ccf_ids
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/resource.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/resource.py
new file mode 100644
index 0000000..e2cea42
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/resource.py
@@ -0,0 +1,216 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.communication_type import CommunicationType
+from api_invoker_management.models.operation import Operation
+from api_invoker_management import util
+
+from api_invoker_management.models.communication_type import CommunicationType  # noqa: E501
+from api_invoker_management.models.operation import Operation  # noqa: E501
+
+class Resource(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, resource_name=None, comm_type=None, uri=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """Resource - a model defined in OpenAPI
+
+        :param resource_name: The resource_name of this Resource.  # noqa: E501
+        :type resource_name: str
+        :param comm_type: The comm_type of this Resource.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param uri: The uri of this Resource.  # noqa: E501
+        :type uri: str
+        :param cust_op_name: The cust_op_name of this Resource.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this Resource.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this Resource.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'resource_name': str,
+            'comm_type': CommunicationType,
+            'uri': str,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'resource_name': 'resourceName',
+            'comm_type': 'commType',
+            'uri': 'uri',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._resource_name = resource_name
+        self._comm_type = comm_type
+        self._uri = uri
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Resource':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Resource of this Resource.  # noqa: E501
+        :rtype: Resource
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :return: The resource_name of this Resource.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :param resource_name: The resource_name of this Resource.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this Resource.
+
+
+        :return: The comm_type of this Resource.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this Resource.
+
+
+        :param comm_type: The comm_type of this Resource.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def uri(self):
+        """Gets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The uri of this Resource.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param uri: The uri of this Resource.
+        :type uri: str
+        """
+        if uri is None:
+            raise ValueError("Invalid value for `uri`, must not be `None`")  # noqa: E501
+
+        self._uri = uri
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this Resource.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this Resource.
+        :type cust_op_name: str
+        """
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this Resource.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this Resource.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :return: The description of this Resource.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :param description: The description of this Resource.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method.py
new file mode 100644
index 0000000..e66fa65
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.security_method_any_of import SecurityMethodAnyOf
+from api_invoker_management import util
+
+from api_invoker_management.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method_any_of.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method_any_of.py
new file mode 100644
index 0000000..e446cf3
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/service_api_description.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/service_api_description.py
new file mode 100644
index 0000000..e194fdb
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/service_api_description.py
@@ -0,0 +1,328 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.aef_profile import AefProfile
+from api_invoker_management.models.published_api_path import PublishedApiPath
+from api_invoker_management.models.shareable_information import ShareableInformation
+import re
+from api_invoker_management import util
+
+from api_invoker_management.models.aef_profile import AefProfile  # noqa: E501
+from api_invoker_management.models.published_api_path import PublishedApiPath  # noqa: E501
+from api_invoker_management.models.shareable_information import ShareableInformation  # noqa: E501
+import re  # noqa: E501
+
+class ServiceAPIDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_name=None, api_id=None, aef_profiles=None, description=None, supported_features=None, shareable_info=None, service_api_category=None, api_supp_feats=None, pub_api_path=None, ccf_id=None):  # noqa: E501
+        """ServiceAPIDescription - a model defined in OpenAPI
+
+        :param api_name: The api_name of this ServiceAPIDescription.  # noqa: E501
+        :type api_name: str
+        :param api_id: The api_id of this ServiceAPIDescription.  # noqa: E501
+        :type api_id: str
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.  # noqa: E501
+        :type aef_profiles: List[AefProfile]
+        :param description: The description of this ServiceAPIDescription.  # noqa: E501
+        :type description: str
+        :param supported_features: The supported_features of this ServiceAPIDescription.  # noqa: E501
+        :type supported_features: str
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.  # noqa: E501
+        :type shareable_info: ShareableInformation
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.  # noqa: E501
+        :type service_api_category: str
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.  # noqa: E501
+        :type api_supp_feats: str
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.  # noqa: E501
+        :type pub_api_path: PublishedApiPath
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.  # noqa: E501
+        :type ccf_id: str
+        """
+        self.openapi_types = {
+            'api_name': str,
+            'api_id': str,
+            'aef_profiles': List[AefProfile],
+            'description': str,
+            'supported_features': str,
+            'shareable_info': ShareableInformation,
+            'service_api_category': str,
+            'api_supp_feats': str,
+            'pub_api_path': PublishedApiPath,
+            'ccf_id': str
+        }
+
+        self.attribute_map = {
+            'api_name': 'apiName',
+            'api_id': 'apiId',
+            'aef_profiles': 'aefProfiles',
+            'description': 'description',
+            'supported_features': 'supportedFeatures',
+            'shareable_info': 'shareableInfo',
+            'service_api_category': 'serviceAPICategory',
+            'api_supp_feats': 'apiSuppFeats',
+            'pub_api_path': 'pubApiPath',
+            'ccf_id': 'ccfId'
+        }
+
+        self._api_name = api_name
+        self._api_id = api_id
+        self._aef_profiles = aef_profiles
+        self._description = description
+        self._supported_features = supported_features
+        self._shareable_info = shareable_info
+        self._service_api_category = service_api_category
+        self._api_supp_feats = api_supp_feats
+        self._pub_api_path = pub_api_path
+        self._ccf_id = ccf_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ServiceAPIDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ServiceAPIDescription of this ServiceAPIDescription.  # noqa: E501
+        :rtype: ServiceAPIDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this ServiceAPIDescription.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :return: The api_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :param api_id: The api_id of this ServiceAPIDescription.
+        :type api_id: str
+        """
+
+        self._api_id = api_id
+
+    @property
+    def aef_profiles(self):
+        """Gets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :return: The aef_profiles of this ServiceAPIDescription.
+        :rtype: List[AefProfile]
+        """
+        return self._aef_profiles
+
+    @aef_profiles.setter
+    def aef_profiles(self, aef_profiles):
+        """Sets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.
+        :type aef_profiles: List[AefProfile]
+        """
+        if aef_profiles is not None and len(aef_profiles) < 1:
+            raise ValueError("Invalid value for `aef_profiles`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._aef_profiles = aef_profiles
+
+    @property
+    def description(self):
+        """Gets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :return: The description of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :param description: The description of this ServiceAPIDescription.
+        :type description: str
+        """
+
+        self._description = description
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ServiceAPIDescription.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
+
+    @property
+    def shareable_info(self):
+        """Gets the shareable_info of this ServiceAPIDescription.
+
+
+        :return: The shareable_info of this ServiceAPIDescription.
+        :rtype: ShareableInformation
+        """
+        return self._shareable_info
+
+    @shareable_info.setter
+    def shareable_info(self, shareable_info):
+        """Sets the shareable_info of this ServiceAPIDescription.
+
+
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.
+        :type shareable_info: ShareableInformation
+        """
+
+        self._shareable_info = shareable_info
+
+    @property
+    def service_api_category(self):
+        """Gets the service_api_category of this ServiceAPIDescription.
+
+
+        :return: The service_api_category of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._service_api_category
+
+    @service_api_category.setter
+    def service_api_category(self, service_api_category):
+        """Sets the service_api_category of this ServiceAPIDescription.
+
+
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.
+        :type service_api_category: str
+        """
+
+        self._service_api_category = service_api_category
+
+    @property
+    def api_supp_feats(self):
+        """Gets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The api_supp_feats of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_supp_feats
+
+    @api_supp_feats.setter
+    def api_supp_feats(self, api_supp_feats):
+        """Sets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.
+        :type api_supp_feats: str
+        """
+        if api_supp_feats is not None and not re.search(r'^[A-Fa-f0-9]*$', api_supp_feats):  # noqa: E501
+            raise ValueError("Invalid value for `api_supp_feats`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._api_supp_feats = api_supp_feats
+
+    @property
+    def pub_api_path(self):
+        """Gets the pub_api_path of this ServiceAPIDescription.
+
+
+        :return: The pub_api_path of this ServiceAPIDescription.
+        :rtype: PublishedApiPath
+        """
+        return self._pub_api_path
+
+    @pub_api_path.setter
+    def pub_api_path(self, pub_api_path):
+        """Sets the pub_api_path of this ServiceAPIDescription.
+
+
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.
+        :type pub_api_path: PublishedApiPath
+        """
+
+        self._pub_api_path = pub_api_path
+
+    @property
+    def ccf_id(self):
+        """Gets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :return: The ccf_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._ccf_id
+
+    @ccf_id.setter
+    def ccf_id(self, ccf_id):
+        """Sets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.
+        :type ccf_id: str
+        """
+
+        self._ccf_id = ccf_id
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/shareable_information.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/shareable_information.py
new file mode 100644
index 0000000..4a369d9
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/shareable_information.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class ShareableInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, is_shareable=None, capif_prov_doms=None):  # noqa: E501
+        """ShareableInformation - a model defined in OpenAPI
+
+        :param is_shareable: The is_shareable of this ShareableInformation.  # noqa: E501
+        :type is_shareable: bool
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.  # noqa: E501
+        :type capif_prov_doms: List[str]
+        """
+        self.openapi_types = {
+            'is_shareable': bool,
+            'capif_prov_doms': List[str]
+        }
+
+        self.attribute_map = {
+            'is_shareable': 'isShareable',
+            'capif_prov_doms': 'capifProvDoms'
+        }
+
+        self._is_shareable = is_shareable
+        self._capif_prov_doms = capif_prov_doms
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ShareableInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ShareableInformation of this ShareableInformation.  # noqa: E501
+        :rtype: ShareableInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def is_shareable(self):
+        """Gets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :return: The is_shareable of this ShareableInformation.
+        :rtype: bool
+        """
+        return self._is_shareable
+
+    @is_shareable.setter
+    def is_shareable(self, is_shareable):
+        """Sets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :param is_shareable: The is_shareable of this ShareableInformation.
+        :type is_shareable: bool
+        """
+        if is_shareable is None:
+            raise ValueError("Invalid value for `is_shareable`, must not be `None`")  # noqa: E501
+
+        self._is_shareable = is_shareable
+
+    @property
+    def capif_prov_doms(self):
+        """Gets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :return: The capif_prov_doms of this ShareableInformation.
+        :rtype: List[str]
+        """
+        return self._capif_prov_doms
+
+    @capif_prov_doms.setter
+    def capif_prov_doms(self, capif_prov_doms):
+        """Sets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.
+        :type capif_prov_doms: List[str]
+        """
+        if capif_prov_doms is not None and len(capif_prov_doms) < 1:
+            raise ValueError("Invalid value for `capif_prov_doms`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._capif_prov_doms = capif_prov_doms
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/version.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/version.py
new file mode 100644
index 0000000..6f0521b
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/version.py
@@ -0,0 +1,160 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management.models.custom_operation import CustomOperation
+from api_invoker_management.models.resource import Resource
+from api_invoker_management import util
+
+from api_invoker_management.models.custom_operation import CustomOperation  # noqa: E501
+from api_invoker_management.models.resource import Resource  # noqa: E501
+
+class Version(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_version=None, expiry=None, resources=None, cust_operations=None):  # noqa: E501
+        """Version - a model defined in OpenAPI
+
+        :param api_version: The api_version of this Version.  # noqa: E501
+        :type api_version: str
+        :param expiry: The expiry of this Version.  # noqa: E501
+        :type expiry: datetime
+        :param resources: The resources of this Version.  # noqa: E501
+        :type resources: List[Resource]
+        :param cust_operations: The cust_operations of this Version.  # noqa: E501
+        :type cust_operations: List[CustomOperation]
+        """
+        self.openapi_types = {
+            'api_version': str,
+            'expiry': datetime,
+            'resources': List[Resource],
+            'cust_operations': List[CustomOperation]
+        }
+
+        self.attribute_map = {
+            'api_version': 'apiVersion',
+            'expiry': 'expiry',
+            'resources': 'resources',
+            'cust_operations': 'custOperations'
+        }
+
+        self._api_version = api_version
+        self._expiry = expiry
+        self._resources = resources
+        self._cust_operations = cust_operations
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Version':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Version of this Version.  # noqa: E501
+        :rtype: Version
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :return: The api_version of this Version.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :param api_version: The api_version of this Version.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def expiry(self):
+        """Gets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The expiry of this Version.
+        :rtype: datetime
+        """
+        return self._expiry
+
+    @expiry.setter
+    def expiry(self, expiry):
+        """Sets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param expiry: The expiry of this Version.
+        :type expiry: datetime
+        """
+
+        self._expiry = expiry
+
+    @property
+    def resources(self):
+        """Gets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :return: The resources of this Version.
+        :rtype: List[Resource]
+        """
+        return self._resources
+
+    @resources.setter
+    def resources(self, resources):
+        """Sets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :param resources: The resources of this Version.
+        :type resources: List[Resource]
+        """
+        if resources is not None and len(resources) < 1:
+            raise ValueError("Invalid value for `resources`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._resources = resources
+
+    @property
+    def cust_operations(self):
+        """Gets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :return: The cust_operations of this Version.
+        :rtype: List[CustomOperation]
+        """
+        return self._cust_operations
+
+    @cust_operations.setter
+    def cust_operations(self, cust_operations):
+        """Sets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :param cust_operations: The cust_operations of this Version.
+        :type cust_operations: List[CustomOperation]
+        """
+        if cust_operations is not None and len(cust_operations) < 1:
+            raise ValueError("Invalid value for `cust_operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._cust_operations = cust_operations
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/websock_notif_config.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/websock_notif_config.py
new file mode 100644
index 0000000..4bf3f92
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/models/websock_notif_config.py
@@ -0,0 +1,94 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invoker_management.models.base_model_ import Model
+from api_invoker_management import util
+
+
+class WebsockNotifConfig(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, websocket_uri=None, request_websocket_uri=None):  # noqa: E501
+        """WebsockNotifConfig - a model defined in OpenAPI
+
+        :param websocket_uri: The websocket_uri of this WebsockNotifConfig.  # noqa: E501
+        :type websocket_uri: str
+        :param request_websocket_uri: The request_websocket_uri of this WebsockNotifConfig.  # noqa: E501
+        :type request_websocket_uri: bool
+        """
+        self.openapi_types = {
+            'websocket_uri': str,
+            'request_websocket_uri': bool
+        }
+
+        self.attribute_map = {
+            'websocket_uri': 'websocketUri',
+            'request_websocket_uri': 'requestWebsocketUri'
+        }
+
+        self._websocket_uri = websocket_uri
+        self._request_websocket_uri = request_websocket_uri
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'WebsockNotifConfig':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The WebsockNotifConfig of this WebsockNotifConfig.  # noqa: E501
+        :rtype: WebsockNotifConfig
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def websocket_uri(self):
+        """Gets the websocket_uri of this WebsockNotifConfig.
+
+        string formatted according to IETF RFC 3986 identifying a referenced resource.  # noqa: E501
+
+        :return: The websocket_uri of this WebsockNotifConfig.
+        :rtype: str
+        """
+        return self._websocket_uri
+
+    @websocket_uri.setter
+    def websocket_uri(self, websocket_uri):
+        """Sets the websocket_uri of this WebsockNotifConfig.
+
+        string formatted according to IETF RFC 3986 identifying a referenced resource.  # noqa: E501
+
+        :param websocket_uri: The websocket_uri of this WebsockNotifConfig.
+        :type websocket_uri: str
+        """
+
+        self._websocket_uri = websocket_uri
+
+    @property
+    def request_websocket_uri(self):
+        """Gets the request_websocket_uri of this WebsockNotifConfig.
+
+        Set by the SCS/AS to indicate that the Websocket delivery is requested.  # noqa: E501
+
+        :return: The request_websocket_uri of this WebsockNotifConfig.
+        :rtype: bool
+        """
+        return self._request_websocket_uri
+
+    @request_websocket_uri.setter
+    def request_websocket_uri(self, request_websocket_uri):
+        """Sets the request_websocket_uri of this WebsockNotifConfig.
+
+        Set by the SCS/AS to indicate that the Websocket delivery is requested.  # noqa: E501
+
+        :param request_websocket_uri: The request_websocket_uri of this WebsockNotifConfig.
+        :type request_websocket_uri: bool
+        """
+
+        self._request_websocket_uri = request_websocket_uri
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/openapi/openapi.yaml b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/openapi/openapi.yaml
new file mode 100644
index 0000000..d574fb1
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/openapi/openapi.yaml
@@ -0,0 +1,2448 @@
+openapi: 3.0.0
+info:
+  description: |
+    API for API invoker management.
+    © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
+    All rights reserved.
+  title: CAPIF_API_Invoker_Management_API
+  version: 1.2.0-alpha.2
+externalDocs:
+  description: 3GPP TS 29.222 V17.2.0 Common API Framework for 3GPP Northbound APIs
+  url: http://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/api-invoker-management/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in subclause 7.5 of 3GPP TS 29.222
+paths:
+  /onboardedInvokers:
+    post:
+      callbacks:
+        notificationDestination:
+          '{request.body#/notificationDestination}':
+            post:
+              description: Notify the API Invoker about the onboarding completion
+              operationId: notificationDestination_request_bodyNotificationDestinationPost
+              requestBody:
+                content:
+                  application/json:
+                    schema:
+                      $ref: '#/components/schemas/OnboardingNotification'
+                required: true
+              responses:
+                "204":
+                  description: No Content (successful onboarding notification)
+                "307":
+                  description: Temporary Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "308":
+                  description: Permanent Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "400":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Bad request
+                "401":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unauthorized
+                "403":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Forbidden
+                "404":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Not Found
+                "411":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Length Required
+                "413":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Payload Too Large
+                "415":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unsupported Media Type
+                "429":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Too Many Requests
+                "500":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Internal Server Error
+                "503":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Service Unavailable
+                default:
+                  description: Generic Error
+              x-callback-request: true
+      description: Creates a new individual API Invoker profile.
+      operationId: onboarded_invokers_post
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/APIInvokerEnrolmentDetails'
+        required: true
+      responses:
+        "201":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/APIInvokerEnrolmentDetails'
+          description: API invoker on-boarded successfully.
+          headers:
+            Location:
+              description: 'Contains the URI of the newly created resource, according
+                to the structure: {apiRoot}/api-invoker-management/v1/onboardedInvokers/{onboardingId}'
+              explode: false
+              required: true
+              schema:
+                type: string
+              style: simple
+        "202":
+          description: The CAPIF core has accepted the Onboarding request and is processing
+            it.
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_invoker_management.controllers.default_controller
+  /onboardedInvokers/{onboardingId}:
+    delete:
+      description: Deletes an individual API Invoker.
+      operationId: onboarded_invokers_onboarding_id_delete
+      parameters:
+      - description: String identifying an individual on-boarded API invoker resource
+        explode: false
+        in: path
+        name: onboardingId
+        required: true
+        schema:
+          type: string
+        style: simple
+      responses:
+        "204":
+          description: The individual API Invoker matching onboardingId was offboarded.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_invoker_management.controllers.default_controller
+    put:
+      callbacks:
+        notificationDestination:
+          '{request.body#/notificationDestination}':
+            post:
+              description: Notify the API Invoker about the API invoker update completion
+              operationId: notificationDestination_request_bodyNotificationDestinationPost
+              requestBody:
+                content:
+                  application/json:
+                    schema:
+                      $ref: '#/components/schemas/OnboardingNotification'
+                required: true
+              responses:
+                "204":
+                  description: No Content (successful API invoker update notification)
+                "307":
+                  description: Temporary Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "308":
+                  description: Permanent Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "400":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Bad request
+                "401":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unauthorized
+                "403":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Forbidden
+                "404":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Not Found
+                "411":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Length Required
+                "413":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Payload Too Large
+                "415":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unsupported Media Type
+                "429":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Too Many Requests
+                "500":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Internal Server Error
+                "503":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Service Unavailable
+                default:
+                  description: Generic Error
+              x-callback-request: true
+      description: Updates an individual API invoker details.
+      operationId: onboarded_invokers_onboarding_id_put
+      parameters:
+      - description: String identifying an individual on-boarded API invoker resource
+        explode: false
+        in: path
+        name: onboardingId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/APIInvokerEnrolmentDetails'
+        description: representation of the API invoker details to be updated in CAPIF
+          core function
+        required: true
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/APIInvokerEnrolmentDetails'
+          description: API invoker details updated successfully.
+        "202":
+          description: The CAPIF core has accepted the API invoker update details
+            request and is processing it.
+        "204":
+          description: API invoker’s information updated successfully, with no content
+            to be sent in the response body.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_invoker_management.controllers.default_controller
+components:
+  schemas:
+    OnboardingInformation:
+      description: Represents on-boarding information of the API invoker.
+      example:
+        apiInvokerPublicKey: apiInvokerPublicKey
+        onboardingSecret: onboardingSecret
+        apiInvokerCertificate: apiInvokerCertificate
+      properties:
+        apiInvokerPublicKey:
+          description: The API Invoker’s public key
+          title: apiInvokerPublicKey
+          type: string
+        apiInvokerCertificate:
+          description: The API Invoker’s generic client certificate, provided by the
+            CAPIF core function.
+          title: apiInvokerCertificate
+          type: string
+        onboardingSecret:
+          description: The API Invoker’s onboarding secret, provided by the CAPIF
+            core function.
+          title: onboardingSecret
+          type: string
+      required:
+      - apiInvokerPublicKey
+      title: OnboardingInformation
+      type: object
+    APIList:
+      description: The list of service APIs that the API Invoker is allowed to invoke
+      items:
+        $ref: '#/components/schemas/ServiceAPIDescription'
+      minItems: 1
+      title: apiList
+      type: array
+    APIInvokerEnrolmentDetails:
+      description: Information about the API Invoker that requested to onboard
+      example:
+        notificationDestination: notificationDestination
+        supportedFeatures: supportedFeatures
+        apiInvokerId: apiInvokerId
+        apiInvokerInformation: apiInvokerInformation
+        websockNotifConfig:
+          requestWebsocketUri: true
+          websocketUri: websocketUri
+        onboardingInformation:
+          apiInvokerPublicKey: apiInvokerPublicKey
+          onboardingSecret: onboardingSecret
+          apiInvokerCertificate: apiInvokerCertificate
+        requestTestNotification: true
+        apiList:
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+      properties:
+        apiInvokerId:
+          description: API invoker ID assigned by the CAPIF core function to the API
+            invoker while on-boarding the API invoker. Shall not be present in the
+            HTTP POST request from the API invoker to the CAPIF core function, to
+            on-board itself. Shall be present in all other HTTP requests and responses.
+          readOnly: true
+          title: apiInvokerId
+          type: string
+        onboardingInformation:
+          $ref: '#/components/schemas/OnboardingInformation'
+        notificationDestination:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: notificationDestination
+          type: string
+        requestTestNotification:
+          description: Set to true by Subscriber to request the CAPIF core function
+            to send a test notification as defined in in subclause 7.6. Set to false
+            or omitted otherwise.
+          title: requestTestNotification
+          type: boolean
+        websockNotifConfig:
+          $ref: '#/components/schemas/WebsockNotifConfig'
+        apiList:
+          description: The list of service APIs that the API Invoker is allowed to
+            invoke
+          items:
+            $ref: '#/components/schemas/ServiceAPIDescription'
+          minItems: 1
+          title: apiList
+          type: array
+        apiInvokerInformation:
+          description: Generic information related to the API invoker such as details
+            of the device or the application.
+          title: apiInvokerInformation
+          type: string
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+      required:
+      - notificationDestination
+      - onboardingInformation
+      title: APIInvokerEnrolmentDetails
+      type: object
+    OnboardingNotification:
+      description: Represents a notification of on-boarding or update result.
+      example:
+        result: true
+        apiInvokerEnrolmentDetails:
+          notificationDestination: notificationDestination
+          supportedFeatures: supportedFeatures
+          apiInvokerId: apiInvokerId
+          apiInvokerInformation: apiInvokerInformation
+          websockNotifConfig:
+            requestWebsocketUri: true
+            websocketUri: websocketUri
+          onboardingInformation:
+            apiInvokerPublicKey: apiInvokerPublicKey
+            onboardingSecret: onboardingSecret
+            apiInvokerCertificate: apiInvokerCertificate
+          requestTestNotification: true
+          apiList:
+          - serviceAPICategory: serviceAPICategory
+            ccfId: ccfId
+            apiName: apiName
+            shareableInfo:
+              capifProvDoms:
+              - capifProvDoms
+              - capifProvDoms
+              isShareable: true
+            supportedFeatures: supportedFeatures
+            description: description
+            apiSuppFeats: apiSuppFeats
+            apiId: apiId
+            aefProfiles:
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            pubApiPath:
+              ccfIds:
+              - ccfIds
+              - ccfIds
+          - serviceAPICategory: serviceAPICategory
+            ccfId: ccfId
+            apiName: apiName
+            shareableInfo:
+              capifProvDoms:
+              - capifProvDoms
+              - capifProvDoms
+              isShareable: true
+            supportedFeatures: supportedFeatures
+            description: description
+            apiSuppFeats: apiSuppFeats
+            apiId: apiId
+            aefProfiles:
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            pubApiPath:
+              ccfIds:
+              - ccfIds
+              - ccfIds
+        resourceLocation: resourceLocation
+        apiList:
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+      properties:
+        result:
+          description: Set to "true" indicate successful on-boarding. Otherwise set
+            to "false"
+          type: boolean
+        resourceLocation:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: notificationDestination
+          type: string
+        apiInvokerEnrolmentDetails:
+          $ref: '#/components/schemas/APIInvokerEnrolmentDetails'
+        apiList:
+          description: The list of service APIs that the API Invoker is allowed to
+            invoke
+          items:
+            $ref: '#/components/schemas/ServiceAPIDescription'
+          minItems: 1
+          title: apiList
+          type: array
+      required:
+      - result
+      type: object
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: notificationDestination
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: notificationDestination
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: notificationDestination
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    ServiceAPIDescription:
+      description: Represents the description of a service API as published by the
+        APF.
+      example:
+        serviceAPICategory: serviceAPICategory
+        ccfId: ccfId
+        apiName: apiName
+        shareableInfo:
+          capifProvDoms:
+          - capifProvDoms
+          - capifProvDoms
+          isShareable: true
+        supportedFeatures: supportedFeatures
+        description: description
+        apiSuppFeats: apiSuppFeats
+        apiId: apiId
+        aefProfiles:
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        pubApiPath:
+          ccfIds:
+          - ccfIds
+          - ccfIds
+      properties:
+        apiName:
+          description: API name, it is set as {apiName} part of the URI structure
+            as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: apiName
+          type: string
+        apiId:
+          description: API identifier assigned by the CAPIF core function to the published
+            service API. Shall not be present in the HTTP POST request from the API
+            publishing function to the CAPIF core function. Shall be present in the
+            HTTP POST response from the CAPIF core function to the API publishing
+            function and in the HTTP GET response from the CAPIF core function to
+            the API invoker (discovery API).
+          title: apiId
+          type: string
+        aefProfiles:
+          description: AEF profile information, which includes the exposed API details
+            (e.g. protocol).
+          items:
+            $ref: '#/components/schemas/AefProfile'
+          minItems: 1
+          title: aefProfiles
+          type: array
+        description:
+          description: Text description of the API
+          title: description
+          type: string
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+        shareableInfo:
+          $ref: '#/components/schemas/ShareableInformation'
+        serviceAPICategory:
+          title: serviceAPICategory
+          type: string
+        apiSuppFeats:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+        pubApiPath:
+          $ref: '#/components/schemas/PublishedApiPath'
+        ccfId:
+          description: CAPIF core function identifier.
+          title: ccfId
+          type: string
+      required:
+      - apiName
+      title: ServiceAPIDescription
+      type: object
+    AefProfile:
+      description: Represents the AEF profile data.
+      example:
+        securityMethods:
+        - null
+        - null
+        versions:
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        domainName: domainName
+        aefId: aefId
+        interfaceDescriptions:
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - domainName
+      - required:
+        - interfaceDescriptions
+      properties:
+        aefId:
+          description: Identifier of the API exposing function
+          title: aefId
+          type: string
+        versions:
+          description: API version
+          items:
+            $ref: '#/components/schemas/Version'
+          minItems: 1
+          title: versions
+          type: array
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        dataFormat:
+          $ref: '#/components/schemas/DataFormat'
+        securityMethods:
+          description: Security methods supported by the AEF
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+        domainName:
+          description: Domain to which API belongs to
+          title: domainName
+          type: string
+        interfaceDescriptions:
+          description: Interface details
+          items:
+            $ref: '#/components/schemas/InterfaceDescription'
+          minItems: 1
+          title: interfaceDescriptions
+          type: array
+      required:
+      - aefId
+      - versions
+      title: AefProfile
+      type: object
+    Version:
+      description: Represents the API version information.
+      example:
+        apiVersion: apiVersion
+        resources:
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        custOperations:
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        expiry: 2000-01-23T04:56:07.000+00:00
+      properties:
+        apiVersion:
+          description: API major version in URI (e.g. v1)
+          title: apiVersion
+          type: string
+        expiry:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        resources:
+          description: Resources supported by the API.
+          items:
+            $ref: '#/components/schemas/Resource'
+          minItems: 1
+          title: resources
+          type: array
+        custOperations:
+          description: Custom operations without resource association.
+          items:
+            $ref: '#/components/schemas/CustomOperation'
+          minItems: 1
+          title: custOperations
+          type: array
+      required:
+      - apiVersion
+      title: Version
+      type: object
+    Resource:
+      description: Represents the API resource data.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        resourceName: resourceName
+        custOpName: custOpName
+        uri: uri
+      properties:
+        resourceName:
+          description: Resource name
+          title: resourceName
+          type: string
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        uri:
+          description: Relative URI of the API resource, it is set as {apiSpecificResourceUriPart}
+            part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: uri
+          type: string
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation associated with a resource as defined in subclause 4.4 of 3GPP
+            TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the API resource
+          title: description
+          type: string
+      required:
+      - commType
+      - resourceName
+      - uri
+      title: Resource
+      type: object
+    CommunicationType:
+      anyOf:
+      - $ref: '#/components/schemas/CommunicationType_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - REQUEST_RESPONSE: The communication is of the type request-response - SUBSCRIBE_NOTIFY: The communication is of the type subscribe-notify
+      title: CommunicationType
+    Operation:
+      anyOf:
+      - $ref: '#/components/schemas/Operation_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - GET: HTTP GET method - POST: HTTP POST method - PUT: HTTP PUT method - PATCH: HTTP PATCH method - DELETE: HTTP DELETE method
+      title: Operation
+    CustomOperation:
+      description: Represents the description of a custom operation.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        custOpName: custOpName
+      properties:
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation without resource association as defined in subclause 4.4 of
+            3GPP TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the custom operation
+          title: description
+          type: string
+      required:
+      - commType
+      - custOpName
+      title: CustomOperation
+      type: object
+    Protocol:
+      anyOf:
+      - $ref: '#/components/schemas/Protocol_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - HTTP_1_1: HTTP version 1.1 - HTTP_2: HTTP version 2
+      title: Protocol
+    DataFormat:
+      anyOf:
+      - $ref: '#/components/schemas/DataFormat_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - JSON: JavaScript Object Notation
+      title: DataFormat
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122 - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122 - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      title: SecurityMethod
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 5248
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: Security methods supported by the interface, it take precedence
+            over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    ShareableInformation:
+      description: Indicates whether the service API and/or the service API category
+        can be shared to the list of CAPIF provider domains.
+      example:
+        capifProvDoms:
+        - capifProvDoms
+        - capifProvDoms
+        isShareable: true
+      properties:
+        isShareable:
+          description: Set to "true" indicates that the service API and/or the service
+            API category can be shared to the list of CAPIF provider domain information.
+            Otherwise set to "false".
+          title: isShareable
+          type: boolean
+        capifProvDoms:
+          description: List of CAPIF provider domains to which the service API information
+            to be shared.
+          items:
+            type: string
+          minItems: 1
+          title: capifProvDoms
+          type: array
+      required:
+      - isShareable
+      title: ShareableInformation
+      type: object
+    PublishedApiPath:
+      description: Represents the published API path within the same CAPIF provider
+        domain.
+      example:
+        ccfIds:
+        - ccfIds
+        - ccfIds
+      properties:
+        ccfIds:
+          description: A list of CCF identifiers where the service API is already
+            published.
+          items:
+            type: string
+          minItems: 1
+          title: ccfIds
+          type: array
+      title: PublishedApiPath
+      type: object
+    WebsockNotifConfig:
+      description: Represents the configuration information for the delivery of notifications
+        over Websockets.
+      example:
+        requestWebsocketUri: true
+        websocketUri: websocketUri
+      properties:
+        websocketUri:
+          description: string formatted according to IETF RFC 3986 identifying a referenced
+            resource.
+          title: Link
+          type: string
+        requestWebsocketUri:
+          description: Set by the SCS/AS to indicate that the Websocket delivery is
+            requested.
+          title: requestWebsocketUri
+          type: boolean
+      title: WebsockNotifConfig
+      type: object
+    Link:
+      description: string formatted according to IETF RFC 3986 identifying a referenced
+        resource.
+      title: Link
+      type: string
+    SupportedFeatures:
+      description: A string used to indicate the features supported by an API that
+        is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain
+        a bitmask indicating supported features in hexadecimal representation Each
+        character in the string shall take a value of "0" to "9", "a" to "f" or "A"
+        to "F" and shall represent the support of 4 features as described in table 5.2.2-3.
+        The most significant character representing the highest-numbered features
+        shall appear first in the string, and the character representing features
+        1 to 4 shall appear last in the string. The list of features and their numbering
+        (starting with 1) are defined separately for each API. If the string contains
+        a lower number of characters than there are defined features for an API, all
+        features that would be represented by characters that are not present in the
+        string are not supported
+      pattern: ^[A-Fa-f0-9]*$
+      title: SupportedFeatures
+      type: string
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    CommunicationType_anyOf:
+      enum:
+      - REQUEST_RESPONSE
+      - SUBSCRIBE_NOTIFY
+      title: CommunicationType_anyOf
+      type: string
+    Operation_anyOf:
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation_anyOf
+      type: string
+    Protocol_anyOf:
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol_anyOf
+      type: string
+    DataFormat_anyOf:
+      enum:
+      - JSON
+      title: DataFormat_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/typing_utils.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/util.py b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/util.py
new file mode 100644
index 0000000..6ce55d8
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/api_invoker_management/util.py
@@ -0,0 +1,172 @@
+import datetime
+
+import six
+import typing
+from api_invoker_management import typing_utils
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/config.yaml b/services/TS29222_CAPIF_API_Invoker_Management_API/config.yaml
new file mode 100644
index 0000000..e208a78
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/config.yaml
@@ -0,0 +1,35 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'invokerdetails',
+  'capif_users_col': "user",
+  'certs_col': "certs",
+  'service_col': 'serviceapidescriptions',
+  'host': 'mongo',
+  'port': "27017"
+}
+mongo_register: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif_users',
+  'col': 'user',
+  'host': 'mongo_register',
+  'port': '27017'
+}
+ca_factory: {
+  "url": "vault",
+  "port": "8200",
+  "token": "dev-only-token"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/git_push.sh b/services/TS29222_CAPIF_API_Invoker_Management_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/prepare_invoker.sh b/services/TS29222_CAPIF_API_Invoker_Management_API/prepare_invoker.sh
new file mode 100644
index 0000000..90ce2be
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/prepare_invoker.sh
@@ -0,0 +1,18 @@
+#!/bin/bash
+
+
+VAULT_ADDR="http://$VAULT_HOSTNAME:$VAULT_PORT"
+VAULT_TOKEN=$VAULT_ACCESS_TOKEN
+
+curl  -vv -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/server_cert/pub" 2>/dev/null | jq -r '.data.data.pub_key' -j > /usr/src/app/api_invoker_management/pubkey.pem
+
+
+cd /usr/src/app/
+python3 -m api_invoker_management
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/requirements.txt b/services/TS29222_CAPIF_API_Invoker_Management_API/requirements.txt
new file mode 100644
index 0000000..ce843e6
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/requirements.txt
@@ -0,0 +1,21 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.3.3
+flask_jwt_extended == 4.4.4
+pyopenssl == 23.0.0
+rfc3987 == 1.3.8
+redis ==  4.5.4
+opentelemetry-instrumentation == 0.40b0
+opentelemetry-instrumentation-flask == 0.40b0
+opentelemetry-instrumentation-redis == 0.40b0
+opentelemetry-instrumentation-pymongo == 0.40b0
+opentelemetry-exporter-otlp == 1.19.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.19.0
+opentelemetry-sdk == 1.19.0
+flask_executor == 1.0.0
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/setup.py b/services/TS29222_CAPIF_API_Invoker_Management_API/setup.py
new file mode 100644
index 0000000..8bd54a4
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "api_invoker_management"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_API_Invoker_Management_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_API_Invoker_Management_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['api_invoker_management=api_invoker_management.__main__:main']},
+    long_description="""\
+    API for API invoker management. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/test-requirements.txt b/services/TS29222_CAPIF_API_Invoker_Management_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_API_Invoker_Management_API/tox.ini b/services/TS29222_CAPIF_API_Invoker_Management_API/tox.ini
new file mode 100644
index 0000000..80a64e2
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Invoker_Management_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=api_invoker_management
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/.dockerignore b/services/TS29222_CAPIF_API_Provider_Management_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/.gitignore b/services/TS29222_CAPIF_API_Provider_Management_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator-ignore b/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/FILES b/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/FILES
new file mode 100644
index 0000000..4baa18d
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/FILES
@@ -0,0 +1,29 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+api_provider_management/__init__.py
+api_provider_management/__main__.py
+api_provider_management/controllers/__init__.py
+api_provider_management/controllers/default_controller.py
+api_provider_management/controllers/security_controller_.py
+api_provider_management/encoder.py
+api_provider_management/models/__init__.py
+api_provider_management/models/api_provider_enrolment_details.py
+api_provider_management/models/api_provider_func_role.py
+api_provider_management/models/api_provider_func_role_any_of.py
+api_provider_management/models/api_provider_function_details.py
+api_provider_management/models/base_model_.py
+api_provider_management/models/invalid_param.py
+api_provider_management/models/problem_details.py
+api_provider_management/models/registration_information.py
+api_provider_management/openapi/openapi.yaml
+api_provider_management/test/__init__.py
+api_provider_management/typing_utils.py
+api_provider_management/util.py
+git_push.sh
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/.travis.yml b/services/TS29222_CAPIF_API_Provider_Management_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/Dockerfile b/services/TS29222_CAPIF_API_Provider_Management_API/Dockerfile
new file mode 100644
index 0000000..5f2713c
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/Dockerfile
@@ -0,0 +1,18 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+RUN apk add redis
+RUN apk add jq
+RUN apk add curl
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+CMD ["sh", "prepare_provider.sh"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/README.md b/services/TS29222_CAPIF_API_Provider_Management_API/README.md
new file mode 100644
index 0000000..c9acf91
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m api_provider_management
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/api-provider-management/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/api-provider-management/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t api_provider_management .
+
+# starting up a container
+docker run -p 8080:8080 api_provider_management
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__init__.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__main__.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__main__.py
new file mode 100644
index 0000000..f52d69c
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/__main__.py
@@ -0,0 +1,136 @@
+#!/usr/bin/env python3
+
+import connexion
+import logging
+
+from api_provider_management import encoder
+from flask_jwt_extended import JWTManager
+from logging.handlers import RotatingFileHandler
+from .config import Config
+import os
+import sys
+from fluent import sender
+from flask_executor import Executor
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+
+
+NAME = "Provider-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Provider-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Provider_Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="provider_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+def main():
+
+    with open("/usr/src/app/api_provider_management/pubkey.pem", "rb") as pub_file:
+            pub_data = pub_file.read()
+
+    app = connexion.App(__name__, specification_dir='./openapi/')
+    app.app.json_encoder = encoder.JSONEncoder
+    app.add_api('openapi.yaml',
+                arguments={'title': 'CAPIF_API_Provider_Management_API'},
+                pythonic_params=True)
+
+    config = Config()
+    configure_logging(app.app)
+
+    if eval(os.environ.get("MONITORING").lower().capitalize()):
+        configure_monitoring(app.app, config.get_config())
+
+    app.app.config['JWT_ALGORITHM'] = 'RS256'
+    app.app.config['JWT_PUBLIC_KEY'] = pub_data
+
+    JWTManager(app.app)
+
+
+    app.run(port=8080, debug=True)
+
+
+if __name__ == '__main__':
+    main()
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/config.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/config.py
new file mode 100644
index 0000000..377b14f
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/config.py
@@ -0,0 +1,18 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/__init__.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/default_controller.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/default_controller.py
new file mode 100644
index 0000000..70e5373
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/default_controller.py
@@ -0,0 +1,115 @@
+import connexion
+import six
+import json
+
+from flask import Response, request, current_app
+from ..core.provider_enrolment_details_api import ProviderManagementOperations
+from ..encoder import JSONEncoder
+from api_provider_management.models.api_provider_enrolment_details import APIProviderEnrolmentDetails  # noqa: E501
+from api_provider_management.models.problem_details import ProblemDetails  # noqa: E501
+from api_provider_management import util
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from flask_jwt_extended import jwt_required, get_jwt_identity
+from cryptography import x509
+from functools import wraps
+from ..core.validate_user import ControlAccess
+
+import sys
+
+
+provider_management_ops = ProviderManagementOperations()
+valid_user = ControlAccess()
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+            cn = cert.subject.get_attributes_for_oid(x509.OID_COMMON_NAME)[0].value.strip()
+
+            if cn != "superadmin":
+                cert_signature = cert.signature.hex()
+                result = valid_user.validate_user_cert(args["registrationId"], cert_signature)
+
+                if result is not None:
+                    return result
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+@jwt_required()
+def registrations_post(body):  # noqa: E501
+    """registrations_post
+
+    Registers a new API Provider domain with API provider domain functions profiles. # noqa: E501
+
+    :param api_provider_enrolment_details: 
+    :type api_provider_enrolment_details: dict | bytes
+
+    :rtype: APIProviderEnrolmentDetails
+    """
+
+    identity = get_jwt_identity()
+    username, role = identity.split()
+
+    current_app.logger.info("Registering Provider Domain")
+    if role != "provider":
+        prob = ProblemDetails(title="Unauthorized", status=401, detail="Role not authorized for this API route",
+                              cause="User role must be provider")
+        return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype='application/json')
+
+
+    if connexion.request.is_json:
+        body = APIProviderEnrolmentDetails.from_dict(connexion.request.get_json())  # noqa: E501
+
+
+    res = provider_management_ops.register_api_provider_enrolment_details(body, username)
+
+    return res
+
+@cert_validation()
+def registrations_registration_id_delete(registration_id):  # noqa: E501
+    """registrations_registration_id_delete
+
+    Deregisters API provider domain by deleting API provider domain and functions. # noqa: E501
+
+    :param registration_id: String identifying an registered API provider domain resource.
+    :type registration_id: str
+
+    :rtype: None
+    """
+    current_app.logger.info("Removing Provider Domain")
+    res = provider_management_ops.delete_api_provider_enrolment_details(registration_id)
+
+    return res
+
+
+@cert_validation()
+def registrations_registration_id_put(registration_id, body):  # noqa: E501
+    """registrations_registration_id_put
+
+    Updates an API provider domain&#39;s registration details. # noqa: E501
+
+    :param registration_id: String identifying an registered API provider domain resource.
+    :type registration_id: str
+    :param api_provider_enrolment_details: Representation of the API provider domain registration details to be updated in CAPIF core function.
+    :type api_provider_enrolment_details: dict | bytes
+
+    :rtype: APIProviderEnrolmentDetails
+    """
+    current_app.logger.info("Updating Provider Domain")
+    if connexion.request.is_json:
+        body = APIProviderEnrolmentDetails.from_dict(connexion.request.get_json())  # noqa: E501
+
+    res = provider_management_ops.update_api_provider_enrolment_details(registration_id,body)
+
+    return res
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/individual_api_provider_enrolment_details_controller.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/individual_api_provider_enrolment_details_controller.py
new file mode 100644
index 0000000..dde822b
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/individual_api_provider_enrolment_details_controller.py
@@ -0,0 +1,38 @@
+from email.quoprimime import body_decode
+import connexion
+import six
+import json
+
+from flask import Response, request, current_app
+from ..core.provider_enrolment_details_api import ProviderManagementOperations
+from ..encoder import JSONEncoder
+from api_provider_management.models.api_provider_enrolment_details import APIProviderEnrolmentDetails  # noqa: E501
+from api_provider_management.models.api_provider_enrolment_details_patch import APIProviderEnrolmentDetailsPatch  # noqa: E501
+from api_provider_management.models.problem_details import ProblemDetails  # noqa: E501
+from api_provider_management import util
+from cryptography.hazmat.backends import default_backend
+from cryptography import x509
+
+provider_management_ops = ProviderManagementOperations()
+
+
+def modify_ind_api_provider_enrolment(registration_id, body):  # noqa: E501
+    """modify_ind_api_provider_enrolment
+
+    Modify an individual API provider details. # noqa: E501
+
+    :param registration_id: 
+    :type registration_id: str
+    :param api_provider_enrolment_details_patch: 
+    :type api_provider_enrolment_details_patch: dict | bytes
+
+    :rtype: APIProviderEnrolmentDetails
+    """
+
+    current_app.logger.info("Patch Provider Domain")
+    if connexion.request.is_json:
+        body = APIProviderEnrolmentDetailsPatch.from_dict(connexion.request.get_json())  # noqa: E501
+
+    res = provider_management_ops.update_api_provider_enrolment_details(registration_id, body)
+
+    return res
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/security_controller_.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/auth_manager.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/auth_manager.py
new file mode 100644
index 0000000..a4a2d24
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/auth_manager.py
@@ -0,0 +1,27 @@
+
+from flask import current_app
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from .resources import Resource
+
+
+class AuthManager(Resource):
+
+    def add_auth_provider(self, cert, func_id, role, provider_id):
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        cert_encode = x509.load_pem_x509_certificate(str.encode(cert), default_backend())
+
+        cert_col.insert_one({"cert_signature":cert_encode.signature.hex(), "provider_id": provider_id, "role":role,"id": func_id, "resources": {}})
+
+    def update_auth_provider(self, cert, func_id, provider_id, role):
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        cert_encode = x509.load_pem_x509_certificate(str.encode(cert), default_backend())
+        cert_col.find_one_and_update({"provider_id":provider_id, "role":role}, {"$set":{"cert_signature":cert_encode.signature.hex(), "id":func_id}})
+
+    def remove_auth_provider(self, func_ids):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+        for func_id in func_ids:
+            cert_col.delete_one({"id":func_id})
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/provider_enrolment_details_api.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/provider_enrolment_details_api.py
new file mode 100644
index 0000000..2077003
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/provider_enrolment_details_api.py
@@ -0,0 +1,169 @@
+
+from pymongo import ReturnDocument
+import secrets
+from flask import current_app, Flask, Response
+from ..core.sign_certificate import sign_certificate
+from .responses import internal_server_error, not_found_error, forbidden_error, make_response, bad_request_error
+
+from ..util import dict_to_camel_case, clean_empty
+from .resources import Resource
+from .auth_manager import AuthManager
+
+
+class ProviderManagementOperations(Resource):
+
+    def __check_api_provider_domain(self, api_prov_dom_id):
+        mycol = self.db.get_col_by_name(self.db.provider_enrolment_details)
+
+        current_app.logger.debug("Checking api provider domain id")
+        search_filter = {'api_prov_dom_id': api_prov_dom_id}
+        provider_enrolment_details = mycol.find_one(search_filter)
+
+        if provider_enrolment_details is None:
+            current_app.logger.error("Not found api provider domain")
+            return not_found_error(detail="Not Exist Provider Enrolment Details", cause="Not found registrations to send this api provider details")
+
+        return provider_enrolment_details
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.auth_manager = AuthManager()
+
+    def register_api_provider_enrolment_details(self, api_provider_enrolment_details, username):
+        try:
+            mycol = self.db.get_col_by_name(self.db.provider_enrolment_details)
+            register = self.db.get_col_by_name_register(self.db.capif_users)
+
+            current_app.logger.debug("Creating api provider domain")
+            search_filter = {'reg_sec': api_provider_enrolment_details.reg_sec}
+            my_provider_enrolment_details = mycol.find_one(search_filter)
+
+            if my_provider_enrolment_details is not None:
+                current_app.logger.error("Found provider registered with same id")
+                return forbidden_error(detail="Provider already registered", cause="Identical provider reg sec")
+
+            api_provider_enrolment_details.api_prov_dom_id = secrets.token_hex(15)
+
+            current_app.logger.debug("Geretaing certs to api prov funcs")
+
+            for api_provider_func in api_provider_enrolment_details.api_prov_funcs:
+                api_provider_func.api_prov_func_id = api_provider_func.api_prov_func_role + str(secrets.token_hex(15))
+                certificate = sign_certificate(api_provider_func.reg_info.api_prov_pub_key, api_provider_func.api_prov_func_id)
+                api_provider_func.reg_info.api_prov_cert = certificate
+
+                self.auth_manager.add_auth_provider(certificate, api_provider_func.api_prov_func_id, api_provider_func.api_prov_func_role, api_provider_enrolment_details.api_prov_dom_id)
+
+
+            mycol.insert_one(api_provider_enrolment_details.to_dict())
+            register.update_one({'username':username}, {"$push":{'list_providers':api_provider_enrolment_details.api_prov_dom_id}})
+
+            current_app.logger.debug("Provider inserted in database")
+
+            res = make_response(object=api_provider_enrolment_details, status=201)
+            res.headers['Location'] = "/api-provider-management/v1/registrations/" + str(api_provider_enrolment_details.api_prov_dom_id)
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in register provider"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def delete_api_provider_enrolment_details(self, api_prov_dom_id):
+        try:
+            mycol = self.db.get_col_by_name(self.db.provider_enrolment_details)
+            register = self.db.get_col_by_name_register(self.db.capif_users)
+
+            current_app.logger.debug("Deleting provider domain")
+            result = self.__check_api_provider_domain(api_prov_dom_id)
+
+            if isinstance(result, Response):
+                return result
+
+            apf_id = [ provider_func['api_prov_func_id'] for provider_func in result["api_prov_funcs"] if provider_func['api_prov_func_role'] == 'APF' ]
+            aef_id = [ provider_func['api_prov_func_id'] for provider_func in result["api_prov_funcs"] if provider_func['api_prov_func_role'] == 'AEF' ]
+            amf_id = [ provider_func['api_prov_func_id'] for provider_func in result["api_prov_funcs"] if provider_func['api_prov_func_role'] == 'AMF' ]
+
+            mycol.delete_one({'api_prov_dom_id': api_prov_dom_id})
+            register.update_one({'list_providers':api_prov_dom_id}, {"$pull":{'list_providers':api_prov_dom_id}})
+            out =  "The provider matching apiProvDomainId  " + api_prov_dom_id + " was offboarded."
+            current_app.logger.debug("Removed provider domain from database")
+
+            self.auth_manager.remove_auth_provider([apf_id[0], aef_id[0], amf_id[0]])
+
+            self.publish_ops.publish_message("internal-messages", f"provider-removed:{aef_id[0]}:{apf_id[0]}")
+            return make_response(object=out, status=204)
+
+        except Exception as e:
+            exception = "An exception occurred in delete provider"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def update_api_provider_enrolment_details(self, api_prov_dom_id, api_provider_enrolment_details):
+        try:
+            mycol = self.db.get_col_by_name(self.db.provider_enrolment_details)
+
+            current_app.logger.debug("Updating api provider domain")
+            result = self.__check_api_provider_domain(api_prov_dom_id)
+
+            if isinstance(result, Response):
+                return result
+
+            for func in api_provider_enrolment_details.api_prov_funcs:
+                if func.api_prov_func_id is None:
+                    func.api_prov_func_id = func.api_prov_func_role + str(secrets.token_hex(15))
+                    certificate = sign_certificate(func.reg_info.api_prov_pub_key, func.api_prov_func_id)
+                    func.reg_info.api_prov_cert = certificate
+
+                    self.auth_manager.update_auth_provider(certificate, func.api_prov_func_id, api_prov_dom_id, func.api_prov_func_role)
+                else:
+                    api_prov_funcs = result["api_prov_funcs"]
+                    for api_func in api_prov_funcs:
+                        if func.api_prov_func_id == api_func["api_prov_func_id"]:
+                            if func.api_prov_func_role != api_func["api_prov_func_role"]:
+                                return bad_request_error(detail="Bad Role in provider", cause="Different role in update reqeuest", invalid_params=[{"param":"api_prov_func_role","reason":"differente role with same id"}])
+                            if func.reg_info.api_prov_pub_key != api_func["reg_info"]["api_prov_pub_key"]:
+                                certificate = sign_certificate(func.reg_info.api_prov_pub_key, api_func["api_prov_func_id"])
+                                func.reg_info.api_prov_cert = certificate
+                                self.auth_manager.update_auth_provider(certificate, func.api_prov_func_id, api_prov_dom_id, func.api_prov_func_role)
+
+
+            api_provider_enrolment_details = api_provider_enrolment_details.to_dict()
+            api_provider_enrolment_details = clean_empty(api_provider_enrolment_details)
+
+            result = mycol.find_one_and_update(result, {"$set":api_provider_enrolment_details}, projection={'_id': 0},return_document=ReturnDocument.AFTER ,upsert=False)
+
+            result = clean_empty(result)
+
+            current_app.logger.debug("Provider domain updated in database")
+            return make_response(object=dict_to_camel_case(result), status=200)
+
+        except Exception as e:
+            exception = "An exception occurred in update provider"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def patch_api_provider_enrolment_details(self, api_prov_dom_id, api_provider_enrolment_details_patch):
+        try:
+            mycol = self.db.get_col_by_name(self.db.provider_enrolment_details)
+
+            current_app.logger.debug("Updating api provider domain")
+            result = self.__check_api_provider_domain(api_prov_dom_id)
+
+            if isinstance(result, Response):
+                return result
+
+            api_provider_enrolment_details_patch = api_provider_enrolment_details_patch.to_dict()
+            api_provider_enrolment_details_patch = clean_empty(api_provider_enrolment_details_patch)
+
+            result = mycol.find_one_and_update(result, {"$set":api_provider_enrolment_details_patch}, projection={'_id': 0},return_document=ReturnDocument.AFTER ,upsert=False)
+
+            result = clean_empty(result)
+
+            current_app.logger.debug("Provider domain updated in database")
+
+            return make_response(object=dict_to_camel_case(result), status=200)
+
+        except Exception as e:
+            exception = "An exception occurred in patch provider"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/publisher.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/publisher.py
new file mode 100644
index 0000000..38d7259
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/publisher.py
@@ -0,0 +1,10 @@
+import redis
+import sys
+
+class Publisher():
+
+    def __init__(self):
+        self. r = redis.Redis(host='redis', port=6379, db=0)
+
+    def publish_message(self, channel, message):
+        self.r.publish(channel, message)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/resources.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/resources.py
new file mode 100644
index 0000000..86e99d4
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/resources.py
@@ -0,0 +1,9 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+from .publisher import Publisher
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
+        self.publish_ops = Publisher()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/responses.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/responses.py
new file mode 100644
index 0000000..962c4b6
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/responses.py
@@ -0,0 +1,31 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/sign_certificate.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/sign_certificate.py
new file mode 100644
index 0000000..6ec96cf
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/sign_certificate.py
@@ -0,0 +1,22 @@
+import requests
+import json
+import sys
+from ..config import Config
+
+def sign_certificate(publick_key, provider_id):
+
+    config =  Config().get_config()
+    url = f"http://{config['ca_factory']['url']}:{config['ca_factory']['port']}/v1/pki_int/sign/my-ca"
+
+    headers = {'X-Vault-Token': config['ca_factory']['token']}
+    data = {
+        'format':'pem_bundle',
+        'ttl': '43000h',
+        'csr': publick_key,
+        'common_name': provider_id
+    }
+
+    response = requests.request("POST", url, headers=headers, data=json.dumps(data), verify = False)
+    response_payload = json.loads(response.text)
+
+    return response_payload["data"]["certificate"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/validate_user.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/validate_user.py
new file mode 100644
index 0000000..4d101ae
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/core/validate_user.py
@@ -0,0 +1,26 @@
+from flask import current_app, Response
+import json
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from .resources import Resource
+from .responses import internal_server_error
+
+class ControlAccess(Resource):
+
+    def validate_user_cert(self, api_provider_id, cert_signature):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        try:
+            my_query = {'provider_id':api_provider_id, "role": "AMF"}
+            cert_entry = cert_col.find_one(my_query)
+
+            if cert_entry is not None:
+                if cert_entry["cert_signature"] != cert_signature:
+                    prob = ProblemDetails(title="Unauthorized", detail="User not authorized", cause="You are not the owner of this resource")
+                    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype="application/json")
+
+        except Exception as e:
+            exception = "An exception occurred in validate amf"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/db/db.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/db/db.py
new file mode 100644
index 0000000..a5d843a
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/db/db.py
@@ -0,0 +1,73 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.register = self.__connect_register()
+        self.provider_enrolment_details = self.config['mongo']['col']
+        self.capif_users = self.config['mongo']['capif_users']
+        self.certs_col = self.config['mongo']['certs_col']
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+    def get_col_by_name_register(self, name):
+        return self.register[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+    
+    def __connect_register(self, max_retries=3, retry_delay=1):
+
+        retries = 0
+
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo_register']['user']}:{self.config['mongo_register']['password']}@" \
+                      f"{self.config['mongo_register']['host']}:{self.config['mongo_register']['port']}"
+
+                
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo_register']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
+        if self.register.client:
+            self.register.client.close()
+
+
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/encoder.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/encoder.py
new file mode 100644
index 0000000..01531f2
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from api_provider_management.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/__init__.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/__init__.py
new file mode 100644
index 0000000..785be45
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/__init__.py
@@ -0,0 +1,13 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from api_provider_management.models.api_provider_enrolment_details import APIProviderEnrolmentDetails
+from api_provider_management.models.api_provider_enrolment_details_patch import APIProviderEnrolmentDetailsPatch
+from api_provider_management.models.api_provider_function_details import APIProviderFunctionDetails
+from api_provider_management.models.api_provider_func_role import ApiProviderFuncRole
+from api_provider_management.models.api_provider_func_role_any_of import ApiProviderFuncRoleAnyOf
+from api_provider_management.models.invalid_param import InvalidParam
+from api_provider_management.models.problem_details import ProblemDetails
+from api_provider_management.models.registration_information import RegistrationInformation
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details.py
new file mode 100644
index 0000000..b4d4f38
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details.py
@@ -0,0 +1,216 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management.models.api_provider_function_details import APIProviderFunctionDetails
+import re
+from api_provider_management import util
+
+from api_provider_management.models.api_provider_function_details import APIProviderFunctionDetails  # noqa: E501
+import re  # noqa: E501
+
+class APIProviderEnrolmentDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_prov_dom_id=None, reg_sec=None, api_prov_funcs=None, api_prov_dom_info=None, supp_feat=None, fail_reason=None):  # noqa: E501
+        """APIProviderEnrolmentDetails - a model defined in OpenAPI
+
+        :param api_prov_dom_id: The api_prov_dom_id of this APIProviderEnrolmentDetails.  # noqa: E501
+        :type api_prov_dom_id: str
+        :param reg_sec: The reg_sec of this APIProviderEnrolmentDetails.  # noqa: E501
+        :type reg_sec: str
+        :param api_prov_funcs: The api_prov_funcs of this APIProviderEnrolmentDetails.  # noqa: E501
+        :type api_prov_funcs: List[APIProviderFunctionDetails]
+        :param api_prov_dom_info: The api_prov_dom_info of this APIProviderEnrolmentDetails.  # noqa: E501
+        :type api_prov_dom_info: str
+        :param supp_feat: The supp_feat of this APIProviderEnrolmentDetails.  # noqa: E501
+        :type supp_feat: str
+        :param fail_reason: The fail_reason of this APIProviderEnrolmentDetails.  # noqa: E501
+        :type fail_reason: str
+        """
+        self.openapi_types = {
+            'api_prov_dom_id': str,
+            'reg_sec': str,
+            'api_prov_funcs': List[APIProviderFunctionDetails],
+            'api_prov_dom_info': str,
+            'supp_feat': str,
+            'fail_reason': str
+        }
+
+        self.attribute_map = {
+            'api_prov_dom_id': 'apiProvDomId',
+            'reg_sec': 'regSec',
+            'api_prov_funcs': 'apiProvFuncs',
+            'api_prov_dom_info': 'apiProvDomInfo',
+            'supp_feat': 'suppFeat',
+            'fail_reason': 'failReason'
+        }
+
+        self._api_prov_dom_id = api_prov_dom_id
+        self._reg_sec = reg_sec
+        self._api_prov_funcs = api_prov_funcs
+        self._api_prov_dom_info = api_prov_dom_info
+        self._supp_feat = supp_feat
+        self._fail_reason = fail_reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'APIProviderEnrolmentDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The APIProviderEnrolmentDetails of this APIProviderEnrolmentDetails.  # noqa: E501
+        :rtype: APIProviderEnrolmentDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_prov_dom_id(self):
+        """Gets the api_prov_dom_id of this APIProviderEnrolmentDetails.
+
+        API provider domain ID assigned by the CAPIF core function to the API management function while registering the API provider domain. Shall not be present in the HTTP POST request from the API Management function to the CAPIF core function, to on-board itself. Shall be present in all other HTTP requests and responses.   # noqa: E501
+
+        :return: The api_prov_dom_id of this APIProviderEnrolmentDetails.
+        :rtype: str
+        """
+        return self._api_prov_dom_id
+
+    @api_prov_dom_id.setter
+    def api_prov_dom_id(self, api_prov_dom_id):
+        """Sets the api_prov_dom_id of this APIProviderEnrolmentDetails.
+
+        API provider domain ID assigned by the CAPIF core function to the API management function while registering the API provider domain. Shall not be present in the HTTP POST request from the API Management function to the CAPIF core function, to on-board itself. Shall be present in all other HTTP requests and responses.   # noqa: E501
+
+        :param api_prov_dom_id: The api_prov_dom_id of this APIProviderEnrolmentDetails.
+        :type api_prov_dom_id: str
+        """
+
+        self._api_prov_dom_id = api_prov_dom_id
+
+    @property
+    def reg_sec(self):
+        """Gets the reg_sec of this APIProviderEnrolmentDetails.
+
+        Security information necessary for the CAPIF core function to validate the registration of the API provider domain. Shall be present in HTTP POST request from API management function to CAPIF core function for API provider domain registration.   # noqa: E501
+
+        :return: The reg_sec of this APIProviderEnrolmentDetails.
+        :rtype: str
+        """
+        return self._reg_sec
+
+    @reg_sec.setter
+    def reg_sec(self, reg_sec):
+        """Sets the reg_sec of this APIProviderEnrolmentDetails.
+
+        Security information necessary for the CAPIF core function to validate the registration of the API provider domain. Shall be present in HTTP POST request from API management function to CAPIF core function for API provider domain registration.   # noqa: E501
+
+        :param reg_sec: The reg_sec of this APIProviderEnrolmentDetails.
+        :type reg_sec: str
+        """
+        if reg_sec is None:
+            raise ValueError("Invalid value for `reg_sec`, must not be `None`")  # noqa: E501
+
+        self._reg_sec = reg_sec
+
+    @property
+    def api_prov_funcs(self):
+        """Gets the api_prov_funcs of this APIProviderEnrolmentDetails.
+
+        A list of individual API provider domain functions details. When included by the API management function in the HTTP request message, it lists the API provider domain functions that the API management function intends to register/update in registration or update registration procedure. When included by the CAPIF core function in the HTTP response message, it lists the API domain functions details that are registered or updated successfully.   # noqa: E501
+
+        :return: The api_prov_funcs of this APIProviderEnrolmentDetails.
+        :rtype: List[APIProviderFunctionDetails]
+        """
+        return self._api_prov_funcs
+
+    @api_prov_funcs.setter
+    def api_prov_funcs(self, api_prov_funcs):
+        """Sets the api_prov_funcs of this APIProviderEnrolmentDetails.
+
+        A list of individual API provider domain functions details. When included by the API management function in the HTTP request message, it lists the API provider domain functions that the API management function intends to register/update in registration or update registration procedure. When included by the CAPIF core function in the HTTP response message, it lists the API domain functions details that are registered or updated successfully.   # noqa: E501
+
+        :param api_prov_funcs: The api_prov_funcs of this APIProviderEnrolmentDetails.
+        :type api_prov_funcs: List[APIProviderFunctionDetails]
+        """
+        if api_prov_funcs is not None and len(api_prov_funcs) < 1:
+            raise ValueError("Invalid value for `api_prov_funcs`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_prov_funcs = api_prov_funcs
+
+    @property
+    def api_prov_dom_info(self):
+        """Gets the api_prov_dom_info of this APIProviderEnrolmentDetails.
+
+        Generic information related to the API provider domain such as details of the API provider applications.   # noqa: E501
+
+        :return: The api_prov_dom_info of this APIProviderEnrolmentDetails.
+        :rtype: str
+        """
+        return self._api_prov_dom_info
+
+    @api_prov_dom_info.setter
+    def api_prov_dom_info(self, api_prov_dom_info):
+        """Sets the api_prov_dom_info of this APIProviderEnrolmentDetails.
+
+        Generic information related to the API provider domain such as details of the API provider applications.   # noqa: E501
+
+        :param api_prov_dom_info: The api_prov_dom_info of this APIProviderEnrolmentDetails.
+        :type api_prov_dom_info: str
+        """
+
+        self._api_prov_dom_info = api_prov_dom_info
+
+    @property
+    def supp_feat(self):
+        """Gets the supp_feat of this APIProviderEnrolmentDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :return: The supp_feat of this APIProviderEnrolmentDetails.
+        :rtype: str
+        """
+        return self._supp_feat
+
+    @supp_feat.setter
+    def supp_feat(self, supp_feat):
+        """Sets the supp_feat of this APIProviderEnrolmentDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :param supp_feat: The supp_feat of this APIProviderEnrolmentDetails.
+        :type supp_feat: str
+        """
+        if supp_feat is not None and not re.search(r'^[A-Fa-f0-9]*$', supp_feat):  # noqa: E501
+            raise ValueError("Invalid value for `supp_feat`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supp_feat = supp_feat
+
+    @property
+    def fail_reason(self):
+        """Gets the fail_reason of this APIProviderEnrolmentDetails.
+
+        Registration or update specific failure information of failed API provider domain function registrations.Shall be present in the HTTP response body if atleast one of the API provider domain function registration or update registration fails.   # noqa: E501
+
+        :return: The fail_reason of this APIProviderEnrolmentDetails.
+        :rtype: str
+        """
+        return self._fail_reason
+
+    @fail_reason.setter
+    def fail_reason(self, fail_reason):
+        """Sets the fail_reason of this APIProviderEnrolmentDetails.
+
+        Registration or update specific failure information of failed API provider domain function registrations.Shall be present in the HTTP response body if atleast one of the API provider domain function registration or update registration fails.   # noqa: E501
+
+        :param fail_reason: The fail_reason of this APIProviderEnrolmentDetails.
+        :type fail_reason: str
+        """
+
+        self._fail_reason = fail_reason
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details_patch.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details_patch.py
new file mode 100644
index 0000000..acd2728
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_enrolment_details_patch.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management.models.api_provider_function_details import APIProviderFunctionDetails
+from api_provider_management import util
+
+from api_provider_management.models.api_provider_function_details import APIProviderFunctionDetails  # noqa: E501
+
+class APIProviderEnrolmentDetailsPatch(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_prov_funcs=None, api_prov_dom_info=None):  # noqa: E501
+        """APIProviderEnrolmentDetailsPatch - a model defined in OpenAPI
+
+        :param api_prov_funcs: The api_prov_funcs of this APIProviderEnrolmentDetailsPatch.  # noqa: E501
+        :type api_prov_funcs: List[APIProviderFunctionDetails]
+        :param api_prov_dom_info: The api_prov_dom_info of this APIProviderEnrolmentDetailsPatch.  # noqa: E501
+        :type api_prov_dom_info: str
+        """
+        self.openapi_types = {
+            'api_prov_funcs': List[APIProviderFunctionDetails],
+            'api_prov_dom_info': str
+        }
+
+        self.attribute_map = {
+            'api_prov_funcs': 'apiProvFuncs',
+            'api_prov_dom_info': 'apiProvDomInfo'
+        }
+
+        self._api_prov_funcs = api_prov_funcs
+        self._api_prov_dom_info = api_prov_dom_info
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'APIProviderEnrolmentDetailsPatch':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The APIProviderEnrolmentDetailsPatch of this APIProviderEnrolmentDetailsPatch.  # noqa: E501
+        :rtype: APIProviderEnrolmentDetailsPatch
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_prov_funcs(self):
+        """Gets the api_prov_funcs of this APIProviderEnrolmentDetailsPatch.
+
+        A list of individual API provider domain functions details. When included by the API management function in the HTTP request message, it lists the API provider domain functions that the API management function intends to register/update in registration or update registration procedure.    # noqa: E501
+
+        :return: The api_prov_funcs of this APIProviderEnrolmentDetailsPatch.
+        :rtype: List[APIProviderFunctionDetails]
+        """
+        return self._api_prov_funcs
+
+    @api_prov_funcs.setter
+    def api_prov_funcs(self, api_prov_funcs):
+        """Sets the api_prov_funcs of this APIProviderEnrolmentDetailsPatch.
+
+        A list of individual API provider domain functions details. When included by the API management function in the HTTP request message, it lists the API provider domain functions that the API management function intends to register/update in registration or update registration procedure.    # noqa: E501
+
+        :param api_prov_funcs: The api_prov_funcs of this APIProviderEnrolmentDetailsPatch.
+        :type api_prov_funcs: List[APIProviderFunctionDetails]
+        """
+        if api_prov_funcs is not None and len(api_prov_funcs) < 1:
+            raise ValueError("Invalid value for `api_prov_funcs`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_prov_funcs = api_prov_funcs
+
+    @property
+    def api_prov_dom_info(self):
+        """Gets the api_prov_dom_info of this APIProviderEnrolmentDetailsPatch.
+
+        Generic information related to the API provider domain such as details of the API provider applications.   # noqa: E501
+
+        :return: The api_prov_dom_info of this APIProviderEnrolmentDetailsPatch.
+        :rtype: str
+        """
+        return self._api_prov_dom_info
+
+    @api_prov_dom_info.setter
+    def api_prov_dom_info(self, api_prov_dom_info):
+        """Sets the api_prov_dom_info of this APIProviderEnrolmentDetailsPatch.
+
+        Generic information related to the API provider domain such as details of the API provider applications.   # noqa: E501
+
+        :param api_prov_dom_info: The api_prov_dom_info of this APIProviderEnrolmentDetailsPatch.
+        :type api_prov_dom_info: str
+        """
+
+        self._api_prov_dom_info = api_prov_dom_info
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role.py
new file mode 100644
index 0000000..9c2b1da
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management.models.api_provider_func_role_any_of import ApiProviderFuncRoleAnyOf
+from api_provider_management import util
+
+from api_provider_management.models.api_provider_func_role_any_of import ApiProviderFuncRoleAnyOf  # noqa: E501
+
+class ApiProviderFuncRole(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """ApiProviderFuncRole - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ApiProviderFuncRole':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ApiProviderFuncRole of this ApiProviderFuncRole.  # noqa: E501
+        :rtype: ApiProviderFuncRole
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role_any_of.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role_any_of.py
new file mode 100644
index 0000000..8d4b9b0
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_func_role_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management import util
+
+
+class ApiProviderFuncRoleAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    AEF = "AEF"
+    APF = "APF"
+    AMF = "AMF"
+    def __init__(self):  # noqa: E501
+        """ApiProviderFuncRoleAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ApiProviderFuncRoleAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ApiProviderFuncRole_anyOf of this ApiProviderFuncRoleAnyOf.  # noqa: E501
+        :rtype: ApiProviderFuncRoleAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_function_details.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_function_details.py
new file mode 100644
index 0000000..eb21ba7
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/api_provider_function_details.py
@@ -0,0 +1,154 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management.models.api_provider_func_role import ApiProviderFuncRole
+from api_provider_management.models.registration_information import RegistrationInformation
+from api_provider_management import util
+
+from api_provider_management.models.api_provider_func_role import ApiProviderFuncRole  # noqa: E501
+from api_provider_management.models.registration_information import RegistrationInformation  # noqa: E501
+
+class APIProviderFunctionDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_prov_func_id=None, reg_info=None, api_prov_func_role=None, api_prov_func_info=None):  # noqa: E501
+        """APIProviderFunctionDetails - a model defined in OpenAPI
+
+        :param api_prov_func_id: The api_prov_func_id of this APIProviderFunctionDetails.  # noqa: E501
+        :type api_prov_func_id: str
+        :param reg_info: The reg_info of this APIProviderFunctionDetails.  # noqa: E501
+        :type reg_info: RegistrationInformation
+        :param api_prov_func_role: The api_prov_func_role of this APIProviderFunctionDetails.  # noqa: E501
+        :type api_prov_func_role: ApiProviderFuncRole
+        :param api_prov_func_info: The api_prov_func_info of this APIProviderFunctionDetails.  # noqa: E501
+        :type api_prov_func_info: str
+        """
+        self.openapi_types = {
+            'api_prov_func_id': str,
+            'reg_info': RegistrationInformation,
+            'api_prov_func_role': ApiProviderFuncRole,
+            'api_prov_func_info': str
+        }
+
+        self.attribute_map = {
+            'api_prov_func_id': 'apiProvFuncId',
+            'reg_info': 'regInfo',
+            'api_prov_func_role': 'apiProvFuncRole',
+            'api_prov_func_info': 'apiProvFuncInfo'
+        }
+
+        self._api_prov_func_id = api_prov_func_id
+        self._reg_info = reg_info
+        self._api_prov_func_role = api_prov_func_role
+        self._api_prov_func_info = api_prov_func_info
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'APIProviderFunctionDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The APIProviderFunctionDetails of this APIProviderFunctionDetails.  # noqa: E501
+        :rtype: APIProviderFunctionDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_prov_func_id(self):
+        """Gets the api_prov_func_id of this APIProviderFunctionDetails.
+
+        API provider domain functionID assigned by the CAPIF core function to the API provider domain function while registering/updating the API provider domain. Shall not be present in the HTTP POST request from the API management function to the CAPIF core function, to register itself. Shall be present in all other HTTP requests and responses.   # noqa: E501
+
+        :return: The api_prov_func_id of this APIProviderFunctionDetails.
+        :rtype: str
+        """
+        return self._api_prov_func_id
+
+    @api_prov_func_id.setter
+    def api_prov_func_id(self, api_prov_func_id):
+        """Sets the api_prov_func_id of this APIProviderFunctionDetails.
+
+        API provider domain functionID assigned by the CAPIF core function to the API provider domain function while registering/updating the API provider domain. Shall not be present in the HTTP POST request from the API management function to the CAPIF core function, to register itself. Shall be present in all other HTTP requests and responses.   # noqa: E501
+
+        :param api_prov_func_id: The api_prov_func_id of this APIProviderFunctionDetails.
+        :type api_prov_func_id: str
+        """
+
+        self._api_prov_func_id = api_prov_func_id
+
+    @property
+    def reg_info(self):
+        """Gets the reg_info of this APIProviderFunctionDetails.
+
+
+        :return: The reg_info of this APIProviderFunctionDetails.
+        :rtype: RegistrationInformation
+        """
+        return self._reg_info
+
+    @reg_info.setter
+    def reg_info(self, reg_info):
+        """Sets the reg_info of this APIProviderFunctionDetails.
+
+
+        :param reg_info: The reg_info of this APIProviderFunctionDetails.
+        :type reg_info: RegistrationInformation
+        """
+        if reg_info is None:
+            raise ValueError("Invalid value for `reg_info`, must not be `None`")  # noqa: E501
+
+        self._reg_info = reg_info
+
+    @property
+    def api_prov_func_role(self):
+        """Gets the api_prov_func_role of this APIProviderFunctionDetails.
+
+
+        :return: The api_prov_func_role of this APIProviderFunctionDetails.
+        :rtype: ApiProviderFuncRole
+        """
+        return self._api_prov_func_role
+
+    @api_prov_func_role.setter
+    def api_prov_func_role(self, api_prov_func_role):
+        """Sets the api_prov_func_role of this APIProviderFunctionDetails.
+
+
+        :param api_prov_func_role: The api_prov_func_role of this APIProviderFunctionDetails.
+        :type api_prov_func_role: ApiProviderFuncRole
+        """
+        if api_prov_func_role is None:
+            raise ValueError("Invalid value for `api_prov_func_role`, must not be `None`")  # noqa: E501
+
+        self._api_prov_func_role = api_prov_func_role
+
+    @property
+    def api_prov_func_info(self):
+        """Gets the api_prov_func_info of this APIProviderFunctionDetails.
+
+        Generic information related to the API provider domain function such as details of the API provider applications.   # noqa: E501
+
+        :return: The api_prov_func_info of this APIProviderFunctionDetails.
+        :rtype: str
+        """
+        return self._api_prov_func_info
+
+    @api_prov_func_info.setter
+    def api_prov_func_info(self, api_prov_func_info):
+        """Sets the api_prov_func_info of this APIProviderFunctionDetails.
+
+        Generic information related to the API provider domain function such as details of the API provider applications.   # noqa: E501
+
+        :param api_prov_func_info: The api_prov_func_info of this APIProviderFunctionDetails.
+        :type api_prov_func_info: str
+        """
+
+        self._api_prov_func_info = api_prov_func_info
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/base_model_.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/base_model_.py
new file mode 100644
index 0000000..bd3a034
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from api_provider_management import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/invalid_param.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/invalid_param.py
new file mode 100644
index 0000000..58aae71
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/problem_details.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/problem_details.py
new file mode 100644
index 0000000..44fe344
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management.models.invalid_param import InvalidParam
+import re
+from api_provider_management import util
+
+from api_provider_management.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/registration_information.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/registration_information.py
new file mode 100644
index 0000000..7e1b08a
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/models/registration_information.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_provider_management.models.base_model_ import Model
+from api_provider_management import util
+
+
+class RegistrationInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_prov_pub_key=None, api_prov_cert=None):  # noqa: E501
+        """RegistrationInformation - a model defined in OpenAPI
+
+        :param api_prov_pub_key: The api_prov_pub_key of this RegistrationInformation.  # noqa: E501
+        :type api_prov_pub_key: str
+        :param api_prov_cert: The api_prov_cert of this RegistrationInformation.  # noqa: E501
+        :type api_prov_cert: str
+        """
+        self.openapi_types = {
+            'api_prov_pub_key': str,
+            'api_prov_cert': str
+        }
+
+        self.attribute_map = {
+            'api_prov_pub_key': 'apiProvPubKey',
+            'api_prov_cert': 'apiProvCert'
+        }
+
+        self._api_prov_pub_key = api_prov_pub_key
+        self._api_prov_cert = api_prov_cert
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'RegistrationInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The RegistrationInformation of this RegistrationInformation.  # noqa: E501
+        :rtype: RegistrationInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_prov_pub_key(self):
+        """Gets the api_prov_pub_key of this RegistrationInformation.
+
+        Public Key of API Provider domain function.  # noqa: E501
+
+        :return: The api_prov_pub_key of this RegistrationInformation.
+        :rtype: str
+        """
+        return self._api_prov_pub_key
+
+    @api_prov_pub_key.setter
+    def api_prov_pub_key(self, api_prov_pub_key):
+        """Sets the api_prov_pub_key of this RegistrationInformation.
+
+        Public Key of API Provider domain function.  # noqa: E501
+
+        :param api_prov_pub_key: The api_prov_pub_key of this RegistrationInformation.
+        :type api_prov_pub_key: str
+        """
+        if api_prov_pub_key is None:
+            raise ValueError("Invalid value for `api_prov_pub_key`, must not be `None`")  # noqa: E501
+
+        self._api_prov_pub_key = api_prov_pub_key
+
+    @property
+    def api_prov_cert(self):
+        """Gets the api_prov_cert of this RegistrationInformation.
+
+        API provider domain function's client certificate  # noqa: E501
+
+        :return: The api_prov_cert of this RegistrationInformation.
+        :rtype: str
+        """
+        return self._api_prov_cert
+
+    @api_prov_cert.setter
+    def api_prov_cert(self, api_prov_cert):
+        """Sets the api_prov_cert of this RegistrationInformation.
+
+        API provider domain function's client certificate  # noqa: E501
+
+        :param api_prov_cert: The api_prov_cert of this RegistrationInformation.
+        :type api_prov_cert: str
+        """
+
+        self._api_prov_cert = api_prov_cert
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/openapi/openapi.yaml b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/openapi/openapi.yaml
new file mode 100644
index 0000000..59ea36c
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/openapi/openapi.yaml
@@ -0,0 +1,619 @@
+openapi: 3.0.0
+info:
+  description: "API for API provider domain functions management.  \n© 2022, 3GPP\
+    \ Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).  \nAll rights\
+    \ reserved.\n"
+  title: CAPIF_API_Provider_Management_API
+  version: 1.1.0
+externalDocs:
+  description: 3GPP TS 29.222 V17.5.0 Common API Framework for 3GPP Northbound APIs
+  url: https://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/api-provider-management/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in clause 7.5 of 3GPP TS 29.222
+paths:
+  /registrations:
+    post:
+      description: Registers a new API Provider domain with API provider domain functions
+        profiles.
+      operationId: registrations_post
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/APIProviderEnrolmentDetails'
+        required: true
+      responses:
+        "201":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/APIProviderEnrolmentDetails'
+          description: API provider domain registered successfully
+          headers:
+            Location:
+              description: |
+                Contains the URI of the newly created resource, according to the structure {apiRoot}/api-provider-management/v1/registrations/{registrationId}
+              explode: false
+              required: true
+              schema:
+                type: string
+              style: simple
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_provider_management.controllers.default_controller
+  /registrations/{registrationId}:
+    delete:
+      description: Deregisters API provider domain by deleting API provider domain
+        and functions.
+      operationId: registrations_registration_id_delete
+      parameters:
+      - description: String identifying an registered API provider domain resource.
+        explode: false
+        in: path
+        name: registrationId
+        required: true
+        schema:
+          type: string
+        style: simple
+      responses:
+        "204":
+          description: The API provider domain matching registrationId is deleted.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_provider_management.controllers.default_controller
+    patch:
+      description: Modify an individual API provider details.
+      operationId: modify_ind_api_provider_enrolment
+      parameters:
+      - explode: false
+        in: path
+        name: registrationId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/merge-patch+json:
+            schema:
+              $ref: '#/components/schemas/APIProviderEnrolmentDetailsPatch'
+        required: true
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/APIProviderEnrolmentDetails'
+          description: |
+            The definition of the service API is modified successfully and a representation of the updated service API is returned in the request body.
+        "204":
+          description: No Content. The definition of the service API is modified successfully.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      tags:
+      - Individual API Provider enrolment details
+      x-openapi-router-controller: api_provider_management.controllers.individual_api_provider_enrolment_details_controller
+    put:
+      description: Updates an API provider domain's registration details.
+      operationId: registrations_registration_id_put
+      parameters:
+      - description: String identifying an registered API provider domain resource.
+        explode: false
+        in: path
+        name: registrationId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/APIProviderEnrolmentDetails'
+        description: |
+          Representation of the API provider domain registration details to be updated in CAPIF core function.
+        required: true
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/APIProviderEnrolmentDetails'
+          description: API provider domain registration details updated successfully.
+        "204":
+          description: No Content
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_provider_management.controllers.default_controller
+components:
+  schemas:
+    APIProviderEnrolmentDetails:
+      description: Represents an API provider domain's enrolment details.
+      example:
+        regSec: regSec
+        apiProvFuncs:
+        - apiProvFuncId: apiProvFuncId
+          apiProvFuncInfo: apiProvFuncInfo
+          regInfo:
+            apiProvCert: apiProvCert
+            apiProvPubKey: apiProvPubKey
+        - apiProvFuncId: apiProvFuncId
+          apiProvFuncInfo: apiProvFuncInfo
+          regInfo:
+            apiProvCert: apiProvCert
+            apiProvPubKey: apiProvPubKey
+        failReason: failReason
+        apiProvDomId: apiProvDomId
+        apiProvDomInfo: apiProvDomInfo
+        suppFeat: suppFeat
+      properties:
+        apiProvDomId:
+          description: |
+            API provider domain ID assigned by the CAPIF core function to the API management function while registering the API provider domain. Shall not be present in the HTTP POST request from the API Management function to the CAPIF core function, to on-board itself. Shall be present in all other HTTP requests and responses.
+          readOnly: true
+          title: apiProvDomId
+          type: string
+        regSec:
+          description: |
+            Security information necessary for the CAPIF core function to validate the registration of the API provider domain. Shall be present in HTTP POST request from API management function to CAPIF core function for API provider domain registration.
+          title: regSec
+          type: string
+        apiProvFuncs:
+          description: |
+            A list of individual API provider domain functions details. When included by the API management function in the HTTP request message, it lists the API provider domain functions that the API management function intends to register/update in registration or update registration procedure. When included by the CAPIF core function in the HTTP response message, it lists the API domain functions details that are registered or updated successfully.
+          items:
+            $ref: '#/components/schemas/APIProviderFunctionDetails'
+          minItems: 1
+          title: apiProvFuncs
+          type: array
+        apiProvDomInfo:
+          description: |
+            Generic information related to the API provider domain such as details of the API provider applications.
+          title: apiProvDomInfo
+          type: string
+        suppFeat:
+          description: |
+            A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+          pattern: ^[A-Fa-f0-9]*$
+          title: suppFeat
+          type: string
+        failReason:
+          description: |
+            Registration or update specific failure information of failed API provider domain function registrations.Shall be present in the HTTP response body if atleast one of the API provider domain function registration or update registration fails.
+          title: failReason
+          type: string
+      required:
+      - regSec
+      title: APIProviderEnrolmentDetails
+      type: object
+    APIProviderFunctionDetails:
+      description: Represents API provider domain function's details.
+      example:
+        apiProvFuncId: apiProvFuncId
+        apiProvFuncInfo: apiProvFuncInfo
+        regInfo:
+          apiProvCert: apiProvCert
+          apiProvPubKey: apiProvPubKey
+      properties:
+        apiProvFuncId:
+          description: |
+            API provider domain functionID assigned by the CAPIF core function to the API provider domain function while registering/updating the API provider domain. Shall not be present in the HTTP POST request from the API management function to the CAPIF core function, to register itself. Shall be present in all other HTTP requests and responses.
+          title: apiProvFuncId
+          type: string
+        regInfo:
+          $ref: '#/components/schemas/RegistrationInformation'
+        apiProvFuncRole:
+          $ref: '#/components/schemas/ApiProviderFuncRole'
+        apiProvFuncInfo:
+          description: |
+            Generic information related to the API provider domain function such as details of the API provider applications.
+          title: apiProvFuncInfo
+          type: string
+      required:
+      - apiProvFuncRole
+      - regInfo
+      title: APIProviderFunctionDetails
+      type: object
+    RegistrationInformation:
+      description: |
+        Represents registration information of an individual API provider domain function.
+      example:
+        apiProvCert: apiProvCert
+        apiProvPubKey: apiProvPubKey
+      properties:
+        apiProvPubKey:
+          description: Public Key of API Provider domain function.
+          title: apiProvPubKey
+          type: string
+        apiProvCert:
+          description: API provider domain function's client certificate
+          title: apiProvCert
+          type: string
+      required:
+      - apiProvPubKey
+      title: RegistrationInformation
+      type: object
+    ApiProviderFuncRole:
+      anyOf:
+      - $ref: '#/components/schemas/ApiProviderFuncRole_anyOf'
+      - description: |
+          This string provides forward-compatiblity with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are:
+        - AEF: API provider function is API Exposing Function.
+        - APF: API provider function is API Publishing Function.
+        - AMF: API Provider function is API Management Function.
+      title: ApiProviderFuncRole
+    APIProviderEnrolmentDetailsPatch:
+      description: Represents an API provider domain's enrolment details.
+      properties:
+        apiProvFuncs:
+          description: "A list of individual API provider domain functions details.\
+            \ When included by the API management function in the HTTP request message,\
+            \ it lists the API provider domain functions that the API management function\
+            \ intends to register/update in registration or update registration procedure.\
+            \ \n"
+          items:
+            $ref: '#/components/schemas/APIProviderFunctionDetails'
+          minItems: 1
+          type: array
+        apiProvDomInfo:
+          description: |
+            Generic information related to the API provider domain such as details of the API provider applications.
+          type: string
+      type: object
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: |
+            A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+          pattern: ^[A-Fa-f0-9]*$
+          title: suppFeat
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: type
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    SupportedFeatures:
+      description: |
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+      pattern: ^[A-Fa-f0-9]*$
+      title: suppFeat
+      type: string
+    ApiProviderFuncRole_anyOf:
+      enum:
+      - AEF
+      - APF
+      - AMF
+      title: ApiProviderFuncRole_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/typing_utils.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/util.py b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/util.py
new file mode 100644
index 0000000..e769d28
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/api_provider_management/util.py
@@ -0,0 +1,183 @@
+import datetime
+
+import six
+import typing
+from api_provider_management import typing_utils
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/config.yaml b/services/TS29222_CAPIF_API_Provider_Management_API/config.yaml
new file mode 100644
index 0000000..8de29a4
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/config.yaml
@@ -0,0 +1,37 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'providerenrolmentdetails',
+  'certs_col': "certs",
+  'capif_users': 'user',
+  'host': 'mongo',
+  'port': "27017"
+}
+
+mongo_register: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif_users',
+  'col': 'user',
+  'host': 'mongo_register',
+  'port': '27017'
+}
+
+ca_factory: {
+  "url": "vault",
+  "port": "8200",
+  "token": "dev-only-token"
+}
+
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/git_push.sh b/services/TS29222_CAPIF_API_Provider_Management_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/prepare_provider.sh b/services/TS29222_CAPIF_API_Provider_Management_API/prepare_provider.sh
new file mode 100644
index 0000000..93bf420
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/prepare_provider.sh
@@ -0,0 +1,19 @@
+#!/bin/bash
+
+VAULT_ADDR="http://$VAULT_HOSTNAME:$VAULT_PORT"
+VAULT_TOKEN=$VAULT_ACCESS_TOKEN
+
+curl  -vv -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/server_cert/pub" 2>/dev/null | jq -r '.data.data.pub_key' -j > /usr/src/app/api_provider_management/pubkey.pem
+
+
+
+cd /usr/src/app/
+python3 -m api_provider_management
+
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/requirements.txt b/services/TS29222_CAPIF_API_Provider_Management_API/requirements.txt
new file mode 100644
index 0000000..d45d1e5
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/requirements.txt
@@ -0,0 +1,21 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+redis ==  4.5.4
+flask_jwt_extended == 4.4.4
+pyopenssl == 23.0.0
+rfc3987 == 1.3.8
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/setup.py b/services/TS29222_CAPIF_API_Provider_Management_API/setup.py
new file mode 100644
index 0000000..ac408ac
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "api_provider_management"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_API_Provider_Management_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_API_Provider_Management_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['api_provider_management=api_provider_management.__main__:main']},
+    long_description="""\
+    API for API provider domain functions management. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/test-requirements.txt b/services/TS29222_CAPIF_API_Provider_Management_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_API_Provider_Management_API/tox.ini b/services/TS29222_CAPIF_API_Provider_Management_API/tox.ini
new file mode 100644
index 0000000..5dbd962
--- /dev/null
+++ b/services/TS29222_CAPIF_API_Provider_Management_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=api_provider_management
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/.dockerignore b/services/TS29222_CAPIF_Access_Control_Policy_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/.gitignore b/services/TS29222_CAPIF_Access_Control_Policy_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/FILES
new file mode 100644
index 0000000..9024036
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/FILES
@@ -0,0 +1,28 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+git_push.sh
+openapi_server/__init__.py
+openapi_server/__main__.py
+openapi_server/controllers/__init__.py
+openapi_server/controllers/default_controller.py
+openapi_server/controllers/security_controller_.py
+openapi_server/encoder.py
+openapi_server/models/__init__.py
+openapi_server/models/access_control_policy_list.py
+openapi_server/models/api_invoker_policy.py
+openapi_server/models/base_model_.py
+openapi_server/models/invalid_param.py
+openapi_server/models/problem_details.py
+openapi_server/models/time_range_list.py
+openapi_server/openapi/openapi.yaml
+openapi_server/test/__init__.py
+openapi_server/test/test_default_controller.py
+openapi_server/typing_utils.py
+openapi_server/util.py
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4be2c72
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+6.5.0
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/.travis.yml b/services/TS29222_CAPIF_Access_Control_Policy_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/Dockerfile b/services/TS29222_CAPIF_Access_Control_Policy_API/Dockerfile
new file mode 100644
index 0000000..92dcb33
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/Dockerfile
@@ -0,0 +1,16 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/
+
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "openapi_server"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/README.md b/services/TS29222_CAPIF_Access_Control_Policy_API/README.md
new file mode 100644
index 0000000..40feae4
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m openapi_server
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/access-control-policy/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/access-control-policy/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t openapi_server .
+
+# starting up a container
+docker run -p 8080:8080 openapi_server
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/config.yaml b/services/TS29222_CAPIF_Access_Control_Policy_API/config.yaml
new file mode 100644
index 0000000..148cbfe
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/config.yaml
@@ -0,0 +1,30 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'acls',
+  'host': 'mongo',
+  'port': "27017"
+}
+
+redis: {
+  'host': 'redis',
+  'port': 6379,
+  'db': 0
+}
+
+invocations: {
+  'total': 5,
+  'perSecond': 10
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/git_push.sh b/services/TS29222_CAPIF_Access_Control_Policy_API/git_push.sh
new file mode 100644
index 0000000..f53a75d
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-petstore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=$(git remote)
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:"${GIT_TOKEN}"@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__init__.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__main__.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__main__.py
new file mode 100644
index 0000000..215e85e
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/__main__.py
@@ -0,0 +1,149 @@
+#!/usr/bin/env python3
+
+import connexion
+
+from openapi_server import encoder
+
+import logging
+
+from flask import Flask, jsonify, request
+from flask_jwt_extended import JWTManager, jwt_required, create_access_token
+from pymongo import MongoClient
+from logging.handlers import RotatingFileHandler
+from .config import Config
+from datetime import datetime
+import os
+from fluent import sender
+from .core.consumer_messager import Subscriber
+from flask_executor import Executor
+from flask_apscheduler import APScheduler
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+NAME = "Acl-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Acl-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Acl-Service', log_data)
+    
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="acl_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_Access_Control_policy_API'},
+            pythonic_params=True)
+
+
+config = Config()
+
+
+
+jwt = JWTManager(app.app)
+configure_logging(app.app)
+
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+app.app.config["invocations"]=config.get_config()["invocations"]
+
+executor = Executor(app.app)
+subscriber = Subscriber()
+
+
+scheduler = APScheduler()
+scheduler.api_enabled = True
+scheduler.init_app(app.app)
+
+@scheduler.task('date', id='listener', next_run_time=datetime.now())
+def up_listener():
+    with scheduler.app.app_context():
+        executor.submit(subscriber.listen())
+
+if __name__ == '__main__':
+    scheduler.start()
+    app.run(debug=True,port=8080, use_reloader=False)
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/config.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/config.py
new file mode 100644
index 0000000..11e1c4f
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/config.py
@@ -0,0 +1,21 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
+
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/__init__.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/default_controller.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/default_controller.py
new file mode 100644
index 0000000..c17e195
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/default_controller.py
@@ -0,0 +1,46 @@
+from typing import Dict
+from functools import wraps
+from flask import request, current_app
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+
+from ..core.accesscontrolpolicyapi import accessControlPolicyApi
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+
+@cert_validation()
+def access_control_policy_list_service_api_id_get(service_api_id, aef_id, api_invoker_id=None, supported_features=None):  # noqa: E501
+    """access_control_policy_list_service_api_id_get
+
+    Retrieves the access control policy list. # noqa: E501
+
+    :param service_api_id: Identifier of a published service API
+    :type service_api_id: str
+    :param aef_id: Identifier of the AEF
+    :type aef_id: str
+    :param api_invoker_id: Identifier of the API invoker
+    :type api_invoker_id: str
+    :param supported_features: To filter irrelevant responses related to unsupported features
+    :type supported_features: str
+
+    :rtype: Union[AccessControlPolicyList, Tuple[AccessControlPolicyList, int], Tuple[AccessControlPolicyList, int, Dict[str, str]]
+    """
+    current_app.logger.debug("Obtaining service ACLs")
+    #current_app.logger.debug(f"AEF-id: {service_api_id}")
+    return accessControlPolicyApi().get_acl(service_api_id, aef_id, api_invoker_id, supported_features)
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/security_controller_.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/accesscontrolpolicyapi.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/accesscontrolpolicyapi.py
new file mode 100644
index 0000000..fd14e80
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/accesscontrolpolicyapi.py
@@ -0,0 +1,54 @@
+from ..core.resources import Resource
+from flask import current_app
+from .responses import make_response, not_found_error, internal_server_error
+from ..models.access_control_policy_list import AccessControlPolicyList
+from ..util import dict_to_camel_case, clean_empty
+
+class accessControlPolicyApi(Resource):
+    def get_acl(self, service_api_id, aef_id, api_invoker_id, supported_features):
+
+        mycol = self.db.get_col_by_name(self.db.acls)
+
+        try:
+            # api-invoker-id and supported-features are optional.
+            # service-api-id and aef-id are mandatory parameters
+            query={
+                "service_id": service_api_id,
+                "aef_id": aef_id
+
+            }
+            projection = {"_id":0}
+
+            if api_invoker_id is not None:
+                query['apiInvokerPolicies.api_invoker_id'] = api_invoker_id
+                projection['apiInvokerPolicies.$'] = 1
+            if supported_features is not None:
+                current_app.logger.debug(f"SupportedFeatures present on query with value {supported_features}, but currently not used")
+            
+            current_app.logger.info(f"Looking for ACLs of service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}")
+            policies_cursor = mycol.find(query,projection)
+            policies = list(policies_cursor)
+            if not policies:
+                current_app.logger.info(f"No ACLs found for the requested service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}")
+                #Not found error
+                return not_found_error(f"No ACLs found for the requested service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}", "Wrong id")
+            
+            current_app.logger.debug(f"Returning ACL for service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}")
+
+            current_app.logger.debug(policies)
+
+            api_invoker_policies = policies[0]['apiInvokerPolicies']
+            current_app.logger.debug(f"apiinvokerPolicies: {api_invoker_policies}")
+            if not api_invoker_policies:
+                current_app.logger.info(f"ACLs list is present but empty, then no ACLs found for the requested service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}")
+                #Not found error
+                return not_found_error(f"No ACLs found for the requested service: {service_api_id}, aef_id: {aef_id}, invoker: {api_invoker_id} and supportedFeatures: {supported_features}", "Wrong id")
+            acl = AccessControlPolicyList(api_invoker_policies)
+
+            response = acl.to_dict()
+            return make_response(object=dict_to_camel_case(response), status=200)
+        
+        except Exception as e:
+            exception = "An exception occurred in get acl"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/consumer_messager.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/consumer_messager.py
new file mode 100644
index 0000000..72c51ee
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/consumer_messager.py
@@ -0,0 +1,37 @@
+# subscriber.py
+import redis
+from ..config import Config
+from .internal_service_ops import InternalServiceOps
+from flask import current_app
+
+class Subscriber():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        #set this params using config params
+        self.r = redis.Redis(host=self.config["redis"]["host"], port=self.config["redis"]["port"], db=self.config["redis"]["db"])
+        self.acls_ops = InternalServiceOps()
+        self.p = self.r.pubsub()
+        self.p.subscribe("acls-messages", "internal-messages")
+
+    def listen(self):
+        for raw_message in self.p.listen():
+            if raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "acls-messages":
+                current_app.logger.info("acls-messages recived")
+                message, *ids = raw_message["data"].decode('utf-8').split(":")
+                if message == "create-acl" and len(ids)==3:
+                    self.acls_ops.create_acl(ids[0], ids[1], ids[2])
+                if message == "remove-acl" and len(ids)==3:
+                    self.acls_ops.remove_acl(ids[0], ids[1], ids[2])
+                if message == "remove-acl" and len(ids)==1:
+                    self.acls_ops.remove_invoker_acl(ids[0])
+            if raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "internal-messages":
+                message, *ids = raw_message["data"].decode('utf-8').split(":")
+                if message == "invoker-removed" and len(ids)>0:
+                    self.acls_ops.remove_invoker_acl(ids[0])
+                if message == "provider-removed" or message == "service-removed" and len(ids) > 0:
+                    self.acls_ops.remove_provider_acls(ids[0])
+            
+
+
+
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/internal_service_ops.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/internal_service_ops.py
new file mode 100644
index 0000000..e10986a
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/internal_service_ops.py
@@ -0,0 +1,85 @@
+
+from flask import current_app
+from .resources import Resource
+from ..models.api_invoker_policy import ApiInvokerPolicy
+from ..models.time_range_list import TimeRangeList
+from datetime import datetime, timedelta
+from ..core.publisher import Publisher
+
+publisher_ops = Publisher()
+class InternalServiceOps(Resource):
+        
+    def create_acl(self, invoker_id, service_id, aef_id):
+
+        current_app.logger.info(f"Creating ACL for invoker: {invoker_id}")
+
+        if "acls" not in self.db.db.list_collection_names():
+            self.db.db.create_collection("acls")
+        
+        mycol = self.db.get_col_by_name(self.db.acls)
+
+        res = mycol.find_one({"service_id": service_id, "aef_id":aef_id}, {"_id":0})
+        
+        if res:
+            current_app.logger.info(f"Adding invoker ACL for invoker {invoker_id}")
+            range_list = [TimeRangeList(datetime.utcnow(), datetime.utcnow()+timedelta(days=365))]
+            invoker_acl = ApiInvokerPolicy(invoker_id, current_app.config["invocations"]["total"], current_app.config["invocations"]["perSecond"], range_list)
+            r = mycol.find_one({"service_id": service_id, "aef_id":aef_id, "apiInvokerPolicies.api_invoker_id": invoker_id}, {"_id":0})
+            if r is None:
+                mycol.update_one({"service_id": service_id, "aef_id":aef_id }, {"$push":{"apiInvokerPolicies":invoker_acl.to_dict()}})
+        else:
+            current_app.logger.info(f"Creating service ACLs for service: {service_id}")
+            range_list = [TimeRangeList(datetime.utcnow(), datetime.utcnow()+timedelta(days=365))]
+            invoker_acl = ApiInvokerPolicy(invoker_id, current_app.config["invocations"]["total"], current_app.config["invocations"]["perSecond"], range_list)
+            
+            
+
+            service_acls = {
+                "service_id": service_id,
+                "aef_id": aef_id,
+                "apiInvokerPolicies": [invoker_acl.to_dict()]
+            }
+            mycol.insert_one(service_acls)
+            publisher_ops.publish_message("events", "ACCESS_CONTROL_POLICY_UPDATE")
+        
+        current_app.logger.info(f"Invoker ACL added for invoker: {invoker_id} for service: {service_id}")
+    
+    def remove_acl(self, invoker_id, service_id, aef_id):
+
+        current_app.logger.info(f"Removing ACL for invoker: {invoker_id}")
+        
+        mycol = self.db.get_col_by_name(self.db.acls)
+
+        res = mycol.find_one({"service_id": service_id, "aef_id":aef_id}, {"_id":0})
+        
+        if res:
+           mycol.update_many({"service_id": service_id, "aef_id":aef_id},
+                           {"$pull":{ "apiInvokerPolicies": { "api_invoker_id": invoker_id }}}
+                           )
+        else:
+            current_app.logger.info(f"Not found: {service_id} for api : {service_id}")
+        
+        publisher_ops.publish_message("events", "ACCESS_CONTROL_POLICY_UNAVAILABLE")
+            
+        current_app.logger.info(f"Invoker ACL removed for invoker: {invoker_id} for service: {service_id}")
+    
+    def remove_invoker_acl(self, invoker_id):
+
+        current_app.logger.info(f"Removing ACLs for invoker: {invoker_id}")
+        mycol = self.db.get_col_by_name(self.db.acls)
+        
+        mycol.update_many({"apiInvokerPolicies.api_invoker_id": invoker_id},
+                           {"$pull":{ "apiInvokerPolicies": { "api_invoker_id": invoker_id }}}
+                           )
+        publisher_ops.publish_message("events", "ACCESS_CONTROL_POLICY_UNAVAILABLE")
+        current_app.logger.info(f"ACLs for invoker: {invoker_id} removed")
+    
+    def remove_provider_acls(self, id):
+
+        current_app.logger.info(f"Removing ACLs for provider/service: {id}")
+        mycol = self.db.get_col_by_name(self.db.acls)
+        
+        mycol.delete_many({"$or":[{"service_id":id}, {"aef_id":id}]}
+                           )
+        publisher_ops.publish_message("events", "ACCESS_CONTROL_POLICY_UNAVAILABLE")
+        current_app.logger.info(f"ACLs for provider/service: {id} removed")
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/publisher.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/publisher.py
new file mode 100644
index 0000000..3898c4b
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/publisher.py
@@ -0,0 +1,11 @@
+import redis
+import sys
+from flask import current_app
+
+class Publisher():
+
+    def __init__(self):
+        self. r = redis.Redis(host='redis', port=6379, db=0)
+
+    def publish_message(self, channel, message):
+        self.r.publish(channel, message)
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/resources.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/resources.py
new file mode 100644
index 0000000..94e29ec
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/resources.py
@@ -0,0 +1,7 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/responses.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/responses.py
new file mode 100644
index 0000000..962c4b6
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/core/responses.py
@@ -0,0 +1,31 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/db/db.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/db/db.py
new file mode 100644
index 0000000..b25c794
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/db/db.py
@@ -0,0 +1,46 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.acls = self.config['mongo']['col']
+
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+    def __connect(self, max_retries=3, retry_delay=1):
+
+        retries = 0
+
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+
+                
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/encoder.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/encoder.py
new file mode 100644
index 0000000..3bbef85
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from openapi_server.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/__init__.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/__init__.py
new file mode 100644
index 0000000..a4269de
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/__init__.py
@@ -0,0 +1,10 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from openapi_server.models.access_control_policy_list import AccessControlPolicyList
+from openapi_server.models.api_invoker_policy import ApiInvokerPolicy
+from openapi_server.models.invalid_param import InvalidParam
+from openapi_server.models.problem_details import ProblemDetails
+from openapi_server.models.time_range_list import TimeRangeList
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/access_control_policy_list.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/access_control_policy_list.py
new file mode 100644
index 0000000..98f3fc1
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/access_control_policy_list.py
@@ -0,0 +1,70 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from openapi_server.models.base_model_ import Model
+from openapi_server.models.api_invoker_policy import ApiInvokerPolicy
+from openapi_server import util
+
+from openapi_server.models.api_invoker_policy import ApiInvokerPolicy  # noqa: E501
+
+class AccessControlPolicyList(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_policies=None):  # noqa: E501
+        """AccessControlPolicyList - a model defined in OpenAPI
+
+        :param api_invoker_policies: The api_invoker_policies of this AccessControlPolicyList.  # noqa: E501
+        :type api_invoker_policies: List[ApiInvokerPolicy]
+        """
+        self.openapi_types = {
+            'api_invoker_policies': List[ApiInvokerPolicy]
+        }
+
+        self.attribute_map = {
+            'api_invoker_policies': 'apiInvokerPolicies'
+        }
+
+        self._api_invoker_policies = api_invoker_policies
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessControlPolicyList':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessControlPolicyList of this AccessControlPolicyList.  # noqa: E501
+        :rtype: AccessControlPolicyList
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_policies(self):
+        """Gets the api_invoker_policies of this AccessControlPolicyList.
+
+        Policy of each API invoker.  # noqa: E501
+
+        :return: The api_invoker_policies of this AccessControlPolicyList.
+        :rtype: List[ApiInvokerPolicy]
+        """
+        return self._api_invoker_policies
+
+    @api_invoker_policies.setter
+    def api_invoker_policies(self, api_invoker_policies):
+        """Sets the api_invoker_policies of this AccessControlPolicyList.
+
+        Policy of each API invoker.  # noqa: E501
+
+        :param api_invoker_policies: The api_invoker_policies of this AccessControlPolicyList.
+        :type api_invoker_policies: List[ApiInvokerPolicy]
+        """
+        if api_invoker_policies is not None and len(api_invoker_policies) < 0:
+            raise ValueError("Invalid value for `api_invoker_policies`, number of items must be greater than or equal to `0`")  # noqa: E501
+
+        self._api_invoker_policies = api_invoker_policies
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/api_invoker_policy.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/api_invoker_policy.py
new file mode 100644
index 0000000..a5f1b47
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/api_invoker_policy.py
@@ -0,0 +1,156 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from openapi_server.models.base_model_ import Model
+from openapi_server.models.time_range_list import TimeRangeList
+from openapi_server import util
+
+from openapi_server.models.time_range_list import TimeRangeList  # noqa: E501
+
+class ApiInvokerPolicy(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_id=None, allowed_total_invocations=None, allowed_invocations_per_second=None, allowed_invocation_time_range_list=None):  # noqa: E501
+        """ApiInvokerPolicy - a model defined in OpenAPI
+
+        :param api_invoker_id: The api_invoker_id of this ApiInvokerPolicy.  # noqa: E501
+        :type api_invoker_id: str
+        :param allowed_total_invocations: The allowed_total_invocations of this ApiInvokerPolicy.  # noqa: E501
+        :type allowed_total_invocations: int
+        :param allowed_invocations_per_second: The allowed_invocations_per_second of this ApiInvokerPolicy.  # noqa: E501
+        :type allowed_invocations_per_second: int
+        :param allowed_invocation_time_range_list: The allowed_invocation_time_range_list of this ApiInvokerPolicy.  # noqa: E501
+        :type allowed_invocation_time_range_list: List[TimeRangeList]
+        """
+        self.openapi_types = {
+            'api_invoker_id': str,
+            'allowed_total_invocations': int,
+            'allowed_invocations_per_second': int,
+            'allowed_invocation_time_range_list': List[TimeRangeList]
+        }
+
+        self.attribute_map = {
+            'api_invoker_id': 'apiInvokerId',
+            'allowed_total_invocations': 'allowedTotalInvocations',
+            'allowed_invocations_per_second': 'allowedInvocationsPerSecond',
+            'allowed_invocation_time_range_list': 'allowedInvocationTimeRangeList'
+        }
+
+        self._api_invoker_id = api_invoker_id
+        self._allowed_total_invocations = allowed_total_invocations
+        self._allowed_invocations_per_second = allowed_invocations_per_second
+        self._allowed_invocation_time_range_list = allowed_invocation_time_range_list
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ApiInvokerPolicy':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ApiInvokerPolicy of this ApiInvokerPolicy.  # noqa: E501
+        :rtype: ApiInvokerPolicy
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this ApiInvokerPolicy.
+
+        API invoker ID assigned by the CAPIF core function  # noqa: E501
+
+        :return: The api_invoker_id of this ApiInvokerPolicy.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this ApiInvokerPolicy.
+
+        API invoker ID assigned by the CAPIF core function  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this ApiInvokerPolicy.
+        :type api_invoker_id: str
+        """
+        if api_invoker_id is None:
+            raise ValueError("Invalid value for `api_invoker_id`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def allowed_total_invocations(self):
+        """Gets the allowed_total_invocations of this ApiInvokerPolicy.
+
+        Total number of invocations allowed on the service API by the API invoker.  # noqa: E501
+
+        :return: The allowed_total_invocations of this ApiInvokerPolicy.
+        :rtype: int
+        """
+        return self._allowed_total_invocations
+
+    @allowed_total_invocations.setter
+    def allowed_total_invocations(self, allowed_total_invocations):
+        """Sets the allowed_total_invocations of this ApiInvokerPolicy.
+
+        Total number of invocations allowed on the service API by the API invoker.  # noqa: E501
+
+        :param allowed_total_invocations: The allowed_total_invocations of this ApiInvokerPolicy.
+        :type allowed_total_invocations: int
+        """
+
+        self._allowed_total_invocations = allowed_total_invocations
+
+    @property
+    def allowed_invocations_per_second(self):
+        """Gets the allowed_invocations_per_second of this ApiInvokerPolicy.
+
+        Invocations per second allowed on the service API by the API invoker.  # noqa: E501
+
+        :return: The allowed_invocations_per_second of this ApiInvokerPolicy.
+        :rtype: int
+        """
+        return self._allowed_invocations_per_second
+
+    @allowed_invocations_per_second.setter
+    def allowed_invocations_per_second(self, allowed_invocations_per_second):
+        """Sets the allowed_invocations_per_second of this ApiInvokerPolicy.
+
+        Invocations per second allowed on the service API by the API invoker.  # noqa: E501
+
+        :param allowed_invocations_per_second: The allowed_invocations_per_second of this ApiInvokerPolicy.
+        :type allowed_invocations_per_second: int
+        """
+
+        self._allowed_invocations_per_second = allowed_invocations_per_second
+
+    @property
+    def allowed_invocation_time_range_list(self):
+        """Gets the allowed_invocation_time_range_list of this ApiInvokerPolicy.
+
+        The time ranges during which the invocations are allowed on the service API by the API invoker.   # noqa: E501
+
+        :return: The allowed_invocation_time_range_list of this ApiInvokerPolicy.
+        :rtype: List[TimeRangeList]
+        """
+        return self._allowed_invocation_time_range_list
+
+    @allowed_invocation_time_range_list.setter
+    def allowed_invocation_time_range_list(self, allowed_invocation_time_range_list):
+        """Sets the allowed_invocation_time_range_list of this ApiInvokerPolicy.
+
+        The time ranges during which the invocations are allowed on the service API by the API invoker.   # noqa: E501
+
+        :param allowed_invocation_time_range_list: The allowed_invocation_time_range_list of this ApiInvokerPolicy.
+        :type allowed_invocation_time_range_list: List[TimeRangeList]
+        """
+        if allowed_invocation_time_range_list is not None and len(allowed_invocation_time_range_list) < 0:
+            raise ValueError("Invalid value for `allowed_invocation_time_range_list`, number of items must be greater than or equal to `0`")  # noqa: E501
+
+        self._allowed_invocation_time_range_list = allowed_invocation_time_range_list
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/base_model_.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/base_model_.py
new file mode 100644
index 0000000..916e582
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from openapi_server import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types: typing.Dict[str, type] = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map: typing.Dict[str, str] = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/invalid_param.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/invalid_param.py
new file mode 100644
index 0000000..8d91e6c
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from openapi_server.models.base_model_ import Model
+from openapi_server import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/problem_details.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/problem_details.py
new file mode 100644
index 0000000..08f2908
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from openapi_server.models.base_model_ import Model
+from openapi_server.models.invalid_param import InvalidParam
+import re
+from openapi_server import util
+
+from openapi_server.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/time_range_list.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/time_range_list.py
new file mode 100644
index 0000000..eb18a7e
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/models/time_range_list.py
@@ -0,0 +1,94 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from openapi_server.models.base_model_ import Model
+from openapi_server import util
+
+
+class TimeRangeList(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, start_time=None, stop_time=None):  # noqa: E501
+        """TimeRangeList - a model defined in OpenAPI
+
+        :param start_time: The start_time of this TimeRangeList.  # noqa: E501
+        :type start_time: datetime
+        :param stop_time: The stop_time of this TimeRangeList.  # noqa: E501
+        :type stop_time: datetime
+        """
+        self.openapi_types = {
+            'start_time': datetime,
+            'stop_time': datetime
+        }
+
+        self.attribute_map = {
+            'start_time': 'startTime',
+            'stop_time': 'stopTime'
+        }
+
+        self._start_time = start_time
+        self._stop_time = stop_time
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'TimeRangeList':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The TimeRangeList of this TimeRangeList.  # noqa: E501
+        :rtype: TimeRangeList
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def start_time(self):
+        """Gets the start_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The start_time of this TimeRangeList.
+        :rtype: datetime
+        """
+        return self._start_time
+
+    @start_time.setter
+    def start_time(self, start_time):
+        """Sets the start_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param start_time: The start_time of this TimeRangeList.
+        :type start_time: datetime
+        """
+
+        self._start_time = start_time
+
+    @property
+    def stop_time(self):
+        """Gets the stop_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The stop_time of this TimeRangeList.
+        :rtype: datetime
+        """
+        return self._stop_time
+
+    @stop_time.setter
+    def stop_time(self, stop_time):
+        """Sets the stop_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param stop_time: The stop_time of this TimeRangeList.
+        :type stop_time: datetime
+        """
+
+        self._stop_time = stop_time
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/openapi/openapi.yaml b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/openapi/openapi.yaml
new file mode 100644
index 0000000..6f8c99d
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/openapi/openapi.yaml
@@ -0,0 +1,375 @@
+openapi: 3.0.0
+info:
+  description: "API for access control policy.  \n© 2022, 3GPP Organizational Partners\
+    \ (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).  \nAll rights reserved.\n"
+  title: CAPIF_Access_Control_Policy_API
+  version: 1.3.0-alpha.1
+externalDocs:
+  description: 3GPP TS 29.222 V18.0.0 Common API Framework for 3GPP Northbound APIs
+  url: https://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: "{apiRoot}/access-control-policy/v1"
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in clause 7.5 of 3GPP TS 29.222
+paths:
+  /accessControlPolicyList/{serviceApiId}:
+    get:
+      description: Retrieves the access control policy list.
+      operationId: access_control_policy_list_service_api_id_get
+      parameters:
+      - description: Identifier of a published service API
+        explode: false
+        in: path
+        name: serviceApiId
+        required: true
+        schema:
+          type: string
+        style: simple
+      - description: Identifier of the AEF
+        explode: true
+        in: query
+        name: aef-id
+        required: true
+        schema:
+          type: string
+        style: form
+      - description: Identifier of the API invoker
+        explode: true
+        in: query
+        name: api-invoker-id
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: To filter irrelevant responses related to unsupported features
+        explode: true
+        in: query
+        name: supported-features
+        required: false
+        schema:
+          $ref: '#/components/schemas/SupportedFeatures'
+        style: form
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/AccessControlPolicyList'
+          description: OK.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "414":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: URI Too Long
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: openapi_server.controllers.default_controller
+components:
+  responses:
+    "307":
+      description: Temporary Redirect
+      headers:
+        Location:
+          description: An alternative URI of the resource.
+          required: true
+          schema:
+            type: string
+    "308":
+      description: Permanent Redirect
+      headers:
+        Location:
+          description: An alternative URI of the resource.
+          required: true
+          schema:
+            type: string
+    "400":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Bad request
+    "401":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Unauthorized
+    "403":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Forbidden
+    "404":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Not Found
+    "406":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Not Acceptable
+    "414":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: URI Too Long
+    "429":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Too Many Requests
+    "500":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Internal Server Error
+    "503":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Service Unavailable
+    default:
+      description: Generic Error
+  schemas:
+    AccessControlPolicyList:
+      description: Represents the access control policy list for a published service
+        API.
+      example:
+        apiInvokerPolicies:
+        - apiInvokerId: apiInvokerId
+          allowedTotalInvocations: 0
+          allowedInvocationTimeRangeList:
+          - startTime: 2000-01-23T04:56:07.000+00:00
+            stopTime: 2000-01-23T04:56:07.000+00:00
+          - startTime: 2000-01-23T04:56:07.000+00:00
+            stopTime: 2000-01-23T04:56:07.000+00:00
+          allowedInvocationsPerSecond: 6
+        - apiInvokerId: apiInvokerId
+          allowedTotalInvocations: 0
+          allowedInvocationTimeRangeList:
+          - startTime: 2000-01-23T04:56:07.000+00:00
+            stopTime: 2000-01-23T04:56:07.000+00:00
+          - startTime: 2000-01-23T04:56:07.000+00:00
+            stopTime: 2000-01-23T04:56:07.000+00:00
+          allowedInvocationsPerSecond: 6
+      properties:
+        apiInvokerPolicies:
+          description: Policy of each API invoker.
+          items:
+            $ref: '#/components/schemas/ApiInvokerPolicy'
+          minItems: 0
+          title: apiInvokerPolicies
+          type: array
+      title: AccessControlPolicyList
+      type: object
+    ApiInvokerPolicy:
+      description: Represents the policy of an API Invoker.
+      example:
+        apiInvokerId: apiInvokerId
+        allowedTotalInvocations: 0
+        allowedInvocationTimeRangeList:
+        - startTime: 2000-01-23T04:56:07.000+00:00
+          stopTime: 2000-01-23T04:56:07.000+00:00
+        - startTime: 2000-01-23T04:56:07.000+00:00
+          stopTime: 2000-01-23T04:56:07.000+00:00
+        allowedInvocationsPerSecond: 6
+      properties:
+        apiInvokerId:
+          description: API invoker ID assigned by the CAPIF core function
+          title: apiInvokerId
+          type: string
+        allowedTotalInvocations:
+          description: Total number of invocations allowed on the service API by the
+            API invoker.
+          title: allowedTotalInvocations
+          type: integer
+        allowedInvocationsPerSecond:
+          description: Invocations per second allowed on the service API by the API
+            invoker.
+          title: allowedInvocationsPerSecond
+          type: integer
+        allowedInvocationTimeRangeList:
+          description: |
+            The time ranges during which the invocations are allowed on the service API by the API invoker.
+          items:
+            $ref: '#/components/schemas/TimeRangeList'
+          minItems: 0
+          title: allowedInvocationTimeRangeList
+          type: array
+      required:
+      - apiInvokerId
+      title: ApiInvokerPolicy
+      type: object
+    TimeRangeList:
+      description: |
+        Represents the time range during which the invocation of a service API is allowed by the API invoker.
+      example:
+        startTime: 2000-01-23T04:56:07.000+00:00
+        stopTime: 2000-01-23T04:56:07.000+00:00
+      properties:
+        startTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        stopTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+      title: TimeRangeList
+      type: object
+    SupportedFeatures:
+      description: |
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+      pattern: "^[A-Fa-f0-9]*$"
+      title: supportedFeatures
+      type: string
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        title:
+          description: "A short, human-readable summary of the problem type. It should\
+            \ not change from occurrence to occurrence of the problem."
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        cause:
+          description: "A machine-readable application error cause specific to this\
+            \ occurrence of the problem. This IE should be present and provide application-related\
+            \ error information, if available."
+          title: cause
+          type: string
+        invalidParams:
+          description: "Description of invalid parameters, for a request rejected\
+            \ due to invalid parameters."
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: |
+            A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+          pattern: "^[A-Fa-f0-9]*$"
+          title: supportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: type
+      type: string
+    InvalidParam:
+      description: "Represents the description of invalid parameters, for a request\
+        \ rejected due to invalid parameters."
+      properties:
+        param:
+          description: "Attribute's name encoded as a JSON Pointer, or header's name."
+          title: param
+          type: string
+        reason:
+          description: "A human-readable reason, e.g. \"must be a positive integer\"\
+            ."
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/__init__.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/__init__.py
new file mode 100644
index 0000000..364aba9
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/__init__.py
@@ -0,0 +1,16 @@
+import logging
+
+import connexion
+from flask_testing import TestCase
+
+from openapi_server.encoder import JSONEncoder
+
+
+class BaseTestCase(TestCase):
+
+    def create_app(self):
+        logging.getLogger('connexion.operation').setLevel('ERROR')
+        app = connexion.App(__name__, specification_dir='../openapi/')
+        app.app.json_encoder = JSONEncoder
+        app.add_api('openapi.yaml', pythonic_params=True)
+        return app.app
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/test_default_controller.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/test_default_controller.py
new file mode 100644
index 0000000..c850757
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/test/test_default_controller.py
@@ -0,0 +1,38 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+import unittest
+
+from flask import json
+from six import BytesIO
+
+from openapi_server.models.access_control_policy_list import AccessControlPolicyList  # noqa: E501
+from openapi_server.models.problem_details import ProblemDetails  # noqa: E501
+from openapi_server.test import BaseTestCase
+
+
+class TestDefaultController(BaseTestCase):
+    """DefaultController integration test stubs"""
+
+    def test_access_control_policy_list_service_api_id_get(self):
+        """Test case for access_control_policy_list_service_api_id_get
+
+        
+        """
+        query_string = [('aef-id', 'aef_id_example'),
+                        ('api-invoker-id', 'api_invoker_id_example'),
+                        ('supported-features', 'supported_features_example')]
+        headers = { 
+            'Accept': 'application/json',
+        }
+        response = self.client.open(
+            '/access-control-policy/v1/accessControlPolicyList/{service_api_id}'.format(service_api_id='service_api_id_example'),
+            method='GET',
+            headers=headers,
+            query_string=query_string)
+        self.assert200(response,
+                       'Response body is : ' + response.data.decode('utf-8'))
+
+
+if __name__ == '__main__':
+    unittest.main()
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/typing_utils.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/util.py b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/util.py
new file mode 100644
index 0000000..672406d
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/openapi_server/util.py
@@ -0,0 +1,186 @@
+import datetime
+
+import six
+import typing
+from openapi_server import typing_utils
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/requirements.txt b/services/TS29222_CAPIF_Access_Control_Policy_API/requirements.txt
new file mode 100644
index 0000000..03d8aaf
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/requirements.txt
@@ -0,0 +1,29 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+# 2.3 is the last version that supports python 3.4-3.5
+connexion[swagger-ui] <= 2.3.0; python_version=="3.5" or python_version=="3.4"
+# connexion requires werkzeug but connexion < 2.4.0 does not install werkzeug
+# we must peg werkzeug versions below to fix connexion
+# https://github.com/zalando/connexion/pull/1044
+werkzeug == 0.16.1; python_version=="3.5" or python_version=="3.4"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.1.1
+pymongo == 4.3.3
+flask_jwt_extended == 4.4.4
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+pyopenssl == 23.0.0
+redis ==  4.5.4
+flask_executor == 1.0.0
+Flask-APScheduler == 1.12.4
+Flask-Script == 2.0.6
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/setup.py b/services/TS29222_CAPIF_Access_Control_Policy_API/setup.py
new file mode 100644
index 0000000..275b7b6
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "openapi_server"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Access_Control_Policy_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Access_Control_Policy_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['openapi_server=openapi_server.__main__:main']},
+    long_description="""\
+    API for access control policy.   © 2022, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).   All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/test-requirements.txt b/services/TS29222_CAPIF_Access_Control_Policy_API/test-requirements.txt
new file mode 100644
index 0000000..58f51d6
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=7.1.0
+pytest-cov>=2.8.1
+pytest-randomly>=1.2.3
+Flask-Testing==0.8.1
diff --git a/services/TS29222_CAPIF_Access_Control_Policy_API/tox.ini b/services/TS29222_CAPIF_Access_Control_Policy_API/tox.ini
new file mode 100644
index 0000000..f66b2d8
--- /dev/null
+++ b/services/TS29222_CAPIF_Access_Control_Policy_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=openapi_server
diff --git a/services/TS29222_CAPIF_Auditing_API/.dockerignore b/services/TS29222_CAPIF_Auditing_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Auditing_API/.gitignore b/services/TS29222_CAPIF_Auditing_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Auditing_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Auditing_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Auditing_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Auditing_API/.openapi-generator/FILES
new file mode 100644
index 0000000..f5bc02f
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/.openapi-generator/FILES
@@ -0,0 +1,33 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+git_push.sh
+logs/__init__.py
+logs/__main__.py
+logs/controllers/__init__.py
+logs/controllers/default_controller.py
+logs/controllers/security_controller_.py
+logs/encoder.py
+logs/models/__init__.py
+logs/models/base_model_.py
+logs/models/interface_description.py
+logs/models/invalid_param.py
+logs/models/invocation_log.py
+logs/models/log.py
+logs/models/operation.py
+logs/models/operation_any_of.py
+logs/models/problem_details.py
+logs/models/protocol.py
+logs/models/protocol_any_of.py
+logs/models/security_method.py
+logs/models/security_method_any_of.py
+logs/openapi/openapi.yaml
+logs/test/__init__.py
+logs/typing_utils.py
+logs/util.py
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Auditing_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Auditing_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Auditing_API/.travis.yml b/services/TS29222_CAPIF_Auditing_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Auditing_API/Dockerfile b/services/TS29222_CAPIF_Auditing_API/Dockerfile
new file mode 100644
index 0000000..d7030b6
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/Dockerfile
@@ -0,0 +1,17 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "logs"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Auditing_API/README.md b/services/TS29222_CAPIF_Auditing_API/README.md
new file mode 100644
index 0000000..17eb857
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m logs
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/logs/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/logs/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t logs .
+
+# starting up a container
+docker run -p 8080:8080 logs
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Auditing_API/config.yaml b/services/TS29222_CAPIF_Auditing_API/config.yaml
new file mode 100644
index 0000000..6943b30
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/config.yaml
@@ -0,0 +1,20 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'logs_col': 'invocationlogs',
+  'capif_users_col': "user",
+  'host': 'mongo',
+  'port': "27017"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
diff --git a/services/TS29222_CAPIF_Auditing_API/git_push.sh b/services/TS29222_CAPIF_Auditing_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/__init__.py b/services/TS29222_CAPIF_Auditing_API/logs/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/__main__.py b/services/TS29222_CAPIF_Auditing_API/logs/__main__.py
new file mode 100644
index 0000000..385f0b5
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/__main__.py
@@ -0,0 +1,116 @@
+#!/usr/bin/env python3
+
+import connexion
+import logging
+from logging.handlers import RotatingFileHandler
+from logs import encoder
+from .config import Config
+import os
+from fluent import sender
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+
+
+NAME = "Logs-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Logs-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Logs-Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="service_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+   
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_Auditing_API'},
+            pythonic_params=True)
+
+configure_logging(app.app)
+
+config = Config()
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+if __name__ == '__main__':
+    app.run(port=8080)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/config.py b/services/TS29222_CAPIF_Auditing_API/logs/config.py
new file mode 100644
index 0000000..d04bd1a
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/config.py
@@ -0,0 +1,20 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/controllers/__init__.py b/services/TS29222_CAPIF_Auditing_API/logs/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/controllers/default_controller.py b/services/TS29222_CAPIF_Auditing_API/logs/controllers/default_controller.py
new file mode 100644
index 0000000..c330f47
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/controllers/default_controller.py
@@ -0,0 +1,88 @@
+import connexion
+import six
+import sys
+
+from logs.models.interface_description import InterfaceDescription  # noqa: E501
+from logs.models.invocation_log import InvocationLog  # noqa: E501
+from logs.models.operation import Operation  # noqa: E501
+from logs.models.problem_details import ProblemDetails  # noqa: E501
+from logs.models.protocol import Protocol  # noqa: E501
+from logs import util
+
+from ..core.auditoperations import AuditOperations
+import json
+from flask import Response, request, current_app
+from ..encoder import JSONEncoder
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+import pymongo
+from ..core.responses import bad_request_error
+
+audit_operations = AuditOperations()
+
+
+def api_invocation_logs_get(aef_id=None, api_invoker_id=None, time_range_start=None, time_range_end=None, api_id=None, api_name=None, api_version=None, protocol=None, operation=None, result=None, resource_name=None, src_interface=None, dest_interface=None, supported_features=None):  # noqa: E501
+    """api_invocation_logs_get
+
+    Query and retrieve service API invocation logs stored on the CAPIF core function. # noqa: E501
+
+    :param aef_id: String identifying the API exposing function.
+    :type aef_id: str
+    :param api_invoker_id: String identifying the API invoker which invoked the service API.
+    :type api_invoker_id: str
+    :param time_range_start: Start time of the invocation time range.
+    :type time_range_start: str
+    :param time_range_end: End time of the invocation time range.
+    :type time_range_end: str
+    :param api_id: String identifying the API invoked.
+    :type api_id: str
+    :param api_name: API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+    :type api_name: str
+    :param api_version: Version of the API which was invoked.
+    :type api_version: str
+    :param protocol: Protocol invoked.
+    :type protocol: dict | bytes
+    :param operation: Operation that was invoked on the API.
+    :type operation: dict | bytes
+    :param result: Result or output of the invocation.
+    :type result: str
+    :param resource_name: Name of the specific resource invoked.
+    :type resource_name: str
+    :param src_interface: Interface description of the API invoker.
+    :type src_interface: str
+    :param dest_interface: Interface description of the API invoked.
+    :type dest_interface: str
+    :param supported_features: To filter irrelevant responses related to unsupported features
+    :type supported_features: str
+
+    :rtype: InvocationLog
+    """
+
+    current_app.logger.info("Audit logs")
+
+    if aef_id is None or api_invoker_id is None:
+        return bad_request_error(detail="aef_id and api_invoker_id parameters are mandatory",
+                                 cause="Mandatory parameters missing", invalid_params=[
+                {"param": "aef_id or api_invoker_id", "reason": "missing"}])
+
+    time_range_start = util.deserialize_datetime(time_range_start)
+    time_range_end = util.deserialize_datetime(time_range_end)
+
+    query_params = {"aef_id": aef_id,
+                    "api_invoker_id": api_invoker_id,
+                    "time_range_start": time_range_start,
+                    "time_range_end": time_range_end,
+                    "api_id": api_id,
+                    "api_name": api_name,
+                    "api_version": api_version,
+                    "protocol": protocol,
+                    "operation": operation,
+                    "result": result,
+                    "resource_name": resource_name,
+                    "src_interface": src_interface,
+                    "dest_interface": dest_interface,
+                    "supported_features": supported_features
+                    }
+
+    response = audit_operations.get_logs(query_params)
+    return response
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/controllers/security_controller_.py b/services/TS29222_CAPIF_Auditing_API/logs/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/core/auditoperations.py b/services/TS29222_CAPIF_Auditing_API/logs/core/auditoperations.py
new file mode 100644
index 0000000..ac83701
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/core/auditoperations.py
@@ -0,0 +1,71 @@
+import sys
+
+from flask import current_app, Flask, Response
+import json
+import sys
+from datetime import datetime
+from .resources import Resource
+from bson import json_util
+from ..util import dict_to_camel_case, clean_empty
+from .responses import bad_request_error, not_found_error, forbidden_error, internal_server_error, make_response
+from ..models.invocation_log import InvocationLog
+
+
+class AuditOperations (Resource):
+
+    def get_logs(self, query_parameters):
+
+        mycol = self.db.get_col_by_name(self.db.invocation_logs)
+
+        current_app.logger.debug("Find invocation logs")
+
+        try:
+            result = mycol.find_one({'aef_id': query_parameters['aef_id'], 'api_invoker_id': query_parameters['api_invoker_id']}, {"_id": 0})
+
+            if result is None:
+                return not_found_error(detail="aefId or/and apiInvokerId do not match any InvocationLogs", cause="No log invocations found")
+
+            logs = result['logs'].copy()
+
+            query_params = dict((k,v) for k,v in query_parameters.items() if v is not None and k != 'aef_id' and k != 'api_invoker_id')
+
+            for log in logs:
+
+                for param in query_params:
+                    if param == 'time_range_start':
+                        if query_params[param] > log['invocation_time'].astimezone(query_params[param].tzinfo):
+                            result['logs'].remove(log)
+                            break
+                    elif param == 'time_range_end':
+                        if query_params[param] < log['invocation_time'].astimezone(query_params[param].tzinfo):
+                            result['logs'].remove(log)
+                            break
+                    elif param == 'src_interface' or param == 'dest_interface':
+                        interface = json.loads(query_params[param])
+                        if 'security_methods' not in interface:
+                            return bad_request_error(detail="security_methods is mandatory",
+                                                     cause="security_methods parameter missing", invalid_params=[
+                                    {"param": "security_methods", "reason": "missing"}])
+                        for key in interface:
+                            if log[param][key] != interface[key]:
+                                result['logs'].remove(log)
+                                break
+                    elif log[param] != query_params[param]:
+                        result['logs'].remove(log)
+                        break
+
+            if not result['logs']:
+                return not_found_error(detail="Parameters do not match any log entry", cause="No logs found")
+
+
+            result = dict_to_camel_case(clean_empty(result))
+            invocation_log = InvocationLog(result['aefId'], result['apiInvokerId'], result['logs'],
+                                           result['supportedFeatures'])
+            res = make_response(object=invocation_log, status=200)
+            current_app.logger.debug("Found invocation logs")
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in audit"
+            return internal_server_error(detail=exception, cause=str(e))
+
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/core/resources.py b/services/TS29222_CAPIF_Auditing_API/logs/core/resources.py
new file mode 100644
index 0000000..d55b30c
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/core/resources.py
@@ -0,0 +1,8 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/core/responses.py b/services/TS29222_CAPIF_Auditing_API/logs/core/responses.py
new file mode 100644
index 0000000..5986c50
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/core/responses.py
@@ -0,0 +1,36 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+
+mimetype = "application/json"
+
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/db/db.py b/services/TS29222_CAPIF_Auditing_API/logs/db/db.py
new file mode 100644
index 0000000..f3286d2
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/db/db.py
@@ -0,0 +1,43 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.invocation_logs = self.config['mongo']['logs_col']
+        self.capif_users = self.config['mongo']['capif_users_col']
+
+    def get_col_by_name(self, name):
+        return self.db[name]
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/encoder.py b/services/TS29222_CAPIF_Auditing_API/logs/encoder.py
new file mode 100644
index 0000000..55259f5
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from logs.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/__init__.py b/services/TS29222_CAPIF_Auditing_API/logs/models/__init__.py
new file mode 100644
index 0000000..d8b2550
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/__init__.py
@@ -0,0 +1,16 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from logs.models.interface_description import InterfaceDescription
+from logs.models.invalid_param import InvalidParam
+from logs.models.invocation_log import InvocationLog
+from logs.models.log import Log
+from logs.models.operation import Operation
+from logs.models.operation_any_of import OperationAnyOf
+from logs.models.problem_details import ProblemDetails
+from logs.models.protocol import Protocol
+from logs.models.protocol_any_of import ProtocolAnyOf
+from logs.models.security_method import SecurityMethod
+from logs.models.security_method_any_of import SecurityMethodAnyOf
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/base_model_.py b/services/TS29222_CAPIF_Auditing_API/logs/models/base_model_.py
new file mode 100644
index 0000000..160eaa0
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from logs import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/interface_description.py b/services/TS29222_CAPIF_Auditing_API/logs/models/interface_description.py
new file mode 100644
index 0000000..7a8878e
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs.models.security_method import SecurityMethod
+from logs import util
+
+from logs.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/invalid_param.py b/services/TS29222_CAPIF_Auditing_API/logs/models/invalid_param.py
new file mode 100644
index 0000000..17b30eb
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/invocation_log.py b/services/TS29222_CAPIF_Auditing_API/logs/models/invocation_log.py
new file mode 100644
index 0000000..4a0bc01
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/invocation_log.py
@@ -0,0 +1,164 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs.models.log import Log
+import re
+from logs import util
+
+from logs.models.log import Log  # noqa: E501
+import re  # noqa: E501
+
+class InvocationLog(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, api_invoker_id=None, logs=None, supported_features=None):  # noqa: E501
+        """InvocationLog - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this InvocationLog.  # noqa: E501
+        :type aef_id: str
+        :param api_invoker_id: The api_invoker_id of this InvocationLog.  # noqa: E501
+        :type api_invoker_id: str
+        :param logs: The logs of this InvocationLog.  # noqa: E501
+        :type logs: List[Log]
+        :param supported_features: The supported_features of this InvocationLog.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'api_invoker_id': str,
+            'logs': List[Log],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'api_invoker_id': 'apiInvokerId',
+            'logs': 'logs',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._aef_id = aef_id
+        self._api_invoker_id = api_invoker_id
+        self._logs = logs
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvocationLog':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvocationLog of this InvocationLog.  # noqa: E501
+        :rtype: InvocationLog
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this InvocationLog.
+
+        Identity information of the API exposing function requesting logging of service API invocations  # noqa: E501
+
+        :return: The aef_id of this InvocationLog.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this InvocationLog.
+
+        Identity information of the API exposing function requesting logging of service API invocations  # noqa: E501
+
+        :param aef_id: The aef_id of this InvocationLog.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this InvocationLog.
+
+        Identity of the API invoker which invoked the service API  # noqa: E501
+
+        :return: The api_invoker_id of this InvocationLog.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this InvocationLog.
+
+        Identity of the API invoker which invoked the service API  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this InvocationLog.
+        :type api_invoker_id: str
+        """
+        if api_invoker_id is None:
+            raise ValueError("Invalid value for `api_invoker_id`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def logs(self):
+        """Gets the logs of this InvocationLog.
+
+        Service API invocation log  # noqa: E501
+
+        :return: The logs of this InvocationLog.
+        :rtype: List[Log]
+        """
+        return self._logs
+
+    @logs.setter
+    def logs(self, logs):
+        """Sets the logs of this InvocationLog.
+
+        Service API invocation log  # noqa: E501
+
+        :param logs: The logs of this InvocationLog.
+        :type logs: List[Log]
+        """
+        if logs is None:
+            raise ValueError("Invalid value for `logs`, must not be `None`")  # noqa: E501
+        if logs is not None and len(logs) < 1:
+            raise ValueError("Invalid value for `logs`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._logs = logs
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this InvocationLog.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this InvocationLog.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this InvocationLog.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this InvocationLog.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/log.py b/services/TS29222_CAPIF_Auditing_API/logs/models/log.py
new file mode 100644
index 0000000..44c50ef
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/log.py
@@ -0,0 +1,470 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs.models.interface_description import InterfaceDescription
+from logs.models.operation import Operation
+from logs.models.protocol import Protocol
+from logs import util
+
+from logs.models.interface_description import InterfaceDescription  # noqa: E501
+from logs.models.operation import Operation  # noqa: E501
+from logs.models.protocol import Protocol  # noqa: E501
+
+class Log(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_id=None, api_name=None, api_version=None, resource_name=None, uri=None, protocol=None, operation=None, result=None, invocation_time=None, invocation_latency=None, input_parameters=None, output_parameters=None, src_interface=None, dest_interface=None, fwd_interface=None):  # noqa: E501
+        """Log - a model defined in OpenAPI
+
+        :param api_id: The api_id of this Log.  # noqa: E501
+        :type api_id: str
+        :param api_name: The api_name of this Log.  # noqa: E501
+        :type api_name: str
+        :param api_version: The api_version of this Log.  # noqa: E501
+        :type api_version: str
+        :param resource_name: The resource_name of this Log.  # noqa: E501
+        :type resource_name: str
+        :param uri: The uri of this Log.  # noqa: E501
+        :type uri: str
+        :param protocol: The protocol of this Log.  # noqa: E501
+        :type protocol: Protocol
+        :param operation: The operation of this Log.  # noqa: E501
+        :type operation: Operation
+        :param result: The result of this Log.  # noqa: E501
+        :type result: str
+        :param invocation_time: The invocation_time of this Log.  # noqa: E501
+        :type invocation_time: datetime
+        :param invocation_latency: The invocation_latency of this Log.  # noqa: E501
+        :type invocation_latency: int
+        :param input_parameters: The input_parameters of this Log.  # noqa: E501
+        :type input_parameters: object
+        :param output_parameters: The output_parameters of this Log.  # noqa: E501
+        :type output_parameters: object
+        :param src_interface: The src_interface of this Log.  # noqa: E501
+        :type src_interface: InterfaceDescription
+        :param dest_interface: The dest_interface of this Log.  # noqa: E501
+        :type dest_interface: InterfaceDescription
+        :param fwd_interface: The fwd_interface of this Log.  # noqa: E501
+        :type fwd_interface: str
+        """
+        self.openapi_types = {
+            'api_id': str,
+            'api_name': str,
+            'api_version': str,
+            'resource_name': str,
+            'uri': str,
+            'protocol': Protocol,
+            'operation': Operation,
+            'result': str,
+            'invocation_time': datetime,
+            'invocation_latency': int,
+            'input_parameters': object,
+            'output_parameters': object,
+            'src_interface': InterfaceDescription,
+            'dest_interface': InterfaceDescription,
+            'fwd_interface': str
+        }
+
+        self.attribute_map = {
+            'api_id': 'apiId',
+            'api_name': 'apiName',
+            'api_version': 'apiVersion',
+            'resource_name': 'resourceName',
+            'uri': 'uri',
+            'protocol': 'protocol',
+            'operation': 'operation',
+            'result': 'result',
+            'invocation_time': 'invocationTime',
+            'invocation_latency': 'invocationLatency',
+            'input_parameters': 'inputParameters',
+            'output_parameters': 'outputParameters',
+            'src_interface': 'srcInterface',
+            'dest_interface': 'destInterface',
+            'fwd_interface': 'fwdInterface'
+        }
+
+        self._api_id = api_id
+        self._api_name = api_name
+        self._api_version = api_version
+        self._resource_name = resource_name
+        self._uri = uri
+        self._protocol = protocol
+        self._operation = operation
+        self._result = result
+        self._invocation_time = invocation_time
+        self._invocation_latency = invocation_latency
+        self._input_parameters = input_parameters
+        self._output_parameters = output_parameters
+        self._src_interface = src_interface
+        self._dest_interface = dest_interface
+        self._fwd_interface = fwd_interface
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Log':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Log of this Log.  # noqa: E501
+        :rtype: Log
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this Log.
+
+        String identifying the API invoked.  # noqa: E501
+
+        :return: The api_id of this Log.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this Log.
+
+        String identifying the API invoked.  # noqa: E501
+
+        :param api_id: The api_id of this Log.
+        :type api_id: str
+        """
+        if api_id is None:
+            raise ValueError("Invalid value for `api_id`, must not be `None`")  # noqa: E501
+
+        self._api_id = api_id
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this Log.
+
+        Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this Log.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this Log.
+
+        Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this Log.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Log.
+
+        Version of the API which was invoked  # noqa: E501
+
+        :return: The api_version of this Log.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Log.
+
+        Version of the API which was invoked  # noqa: E501
+
+        :param api_version: The api_version of this Log.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Log.
+
+        Name of the specific resource invoked  # noqa: E501
+
+        :return: The resource_name of this Log.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Log.
+
+        Name of the specific resource invoked  # noqa: E501
+
+        :param resource_name: The resource_name of this Log.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def uri(self):
+        """Gets the uri of this Log.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The uri of this Log.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Log.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param uri: The uri of this Log.
+        :type uri: str
+        """
+
+        self._uri = uri
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this Log.
+
+
+        :return: The protocol of this Log.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this Log.
+
+
+        :param protocol: The protocol of this Log.
+        :type protocol: Protocol
+        """
+        if protocol is None:
+            raise ValueError("Invalid value for `protocol`, must not be `None`")  # noqa: E501
+
+        self._protocol = protocol
+
+    @property
+    def operation(self):
+        """Gets the operation of this Log.
+
+
+        :return: The operation of this Log.
+        :rtype: Operation
+        """
+        return self._operation
+
+    @operation.setter
+    def operation(self, operation):
+        """Sets the operation of this Log.
+
+
+        :param operation: The operation of this Log.
+        :type operation: Operation
+        """
+
+        self._operation = operation
+
+    @property
+    def result(self):
+        """Gets the result of this Log.
+
+        For HTTP protocol, it contains HTTP status code of the invocation  # noqa: E501
+
+        :return: The result of this Log.
+        :rtype: str
+        """
+        return self._result
+
+    @result.setter
+    def result(self, result):
+        """Sets the result of this Log.
+
+        For HTTP protocol, it contains HTTP status code of the invocation  # noqa: E501
+
+        :param result: The result of this Log.
+        :type result: str
+        """
+        if result is None:
+            raise ValueError("Invalid value for `result`, must not be `None`")  # noqa: E501
+
+        self._result = result
+
+    @property
+    def invocation_time(self):
+        """Gets the invocation_time of this Log.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The invocation_time of this Log.
+        :rtype: datetime
+        """
+        return self._invocation_time
+
+    @invocation_time.setter
+    def invocation_time(self, invocation_time):
+        """Sets the invocation_time of this Log.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param invocation_time: The invocation_time of this Log.
+        :type invocation_time: datetime
+        """
+
+        self._invocation_time = invocation_time
+
+    @property
+    def invocation_latency(self):
+        """Gets the invocation_latency of this Log.
+
+        Unsigned integer identifying a period of time in units of milliseconds.  # noqa: E501
+
+        :return: The invocation_latency of this Log.
+        :rtype: int
+        """
+        return self._invocation_latency
+
+    @invocation_latency.setter
+    def invocation_latency(self, invocation_latency):
+        """Sets the invocation_latency of this Log.
+
+        Unsigned integer identifying a period of time in units of milliseconds.  # noqa: E501
+
+        :param invocation_latency: The invocation_latency of this Log.
+        :type invocation_latency: int
+        """
+        if invocation_latency is not None and invocation_latency < 0:  # noqa: E501
+            raise ValueError("Invalid value for `invocation_latency`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._invocation_latency = invocation_latency
+
+    @property
+    def input_parameters(self):
+        """Gets the input_parameters of this Log.
+
+        List of input parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :return: The input_parameters of this Log.
+        :rtype: object
+        """
+        return self._input_parameters
+
+    @input_parameters.setter
+    def input_parameters(self, input_parameters):
+        """Sets the input_parameters of this Log.
+
+        List of input parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :param input_parameters: The input_parameters of this Log.
+        :type input_parameters: object
+        """
+
+        self._input_parameters = input_parameters
+
+    @property
+    def output_parameters(self):
+        """Gets the output_parameters of this Log.
+
+        List of output parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :return: The output_parameters of this Log.
+        :rtype: object
+        """
+        return self._output_parameters
+
+    @output_parameters.setter
+    def output_parameters(self, output_parameters):
+        """Sets the output_parameters of this Log.
+
+        List of output parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :param output_parameters: The output_parameters of this Log.
+        :type output_parameters: object
+        """
+
+        self._output_parameters = output_parameters
+
+    @property
+    def src_interface(self):
+        """Gets the src_interface of this Log.
+
+
+        :return: The src_interface of this Log.
+        :rtype: InterfaceDescription
+        """
+        return self._src_interface
+
+    @src_interface.setter
+    def src_interface(self, src_interface):
+        """Sets the src_interface of this Log.
+
+
+        :param src_interface: The src_interface of this Log.
+        :type src_interface: InterfaceDescription
+        """
+
+        self._src_interface = src_interface
+
+    @property
+    def dest_interface(self):
+        """Gets the dest_interface of this Log.
+
+
+        :return: The dest_interface of this Log.
+        :rtype: InterfaceDescription
+        """
+        return self._dest_interface
+
+    @dest_interface.setter
+    def dest_interface(self, dest_interface):
+        """Sets the dest_interface of this Log.
+
+
+        :param dest_interface: The dest_interface of this Log.
+        :type dest_interface: InterfaceDescription
+        """
+
+        self._dest_interface = dest_interface
+
+    @property
+    def fwd_interface(self):
+        """Gets the fwd_interface of this Log.
+
+        It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60  # noqa: E501
+
+        :return: The fwd_interface of this Log.
+        :rtype: str
+        """
+        return self._fwd_interface
+
+    @fwd_interface.setter
+    def fwd_interface(self, fwd_interface):
+        """Sets the fwd_interface of this Log.
+
+        It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60  # noqa: E501
+
+        :param fwd_interface: The fwd_interface of this Log.
+        :type fwd_interface: str
+        """
+
+        self._fwd_interface = fwd_interface
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/operation.py b/services/TS29222_CAPIF_Auditing_API/logs/models/operation.py
new file mode 100644
index 0000000..6e9c939
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/operation.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/operation_any_of.py b/services/TS29222_CAPIF_Auditing_API/logs/models/operation_any_of.py
new file mode 100644
index 0000000..7d6eb40
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/problem_details.py b/services/TS29222_CAPIF_Auditing_API/logs/models/problem_details.py
new file mode 100644
index 0000000..28d4510
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs.models.invalid_param import InvalidParam
+import re
+from logs import util
+
+from logs.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/protocol.py b/services/TS29222_CAPIF_Auditing_API/logs/models/protocol.py
new file mode 100644
index 0000000..8016cba
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/protocol.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/protocol_any_of.py b/services/TS29222_CAPIF_Auditing_API/logs/models/protocol_any_of.py
new file mode 100644
index 0000000..c6de47f
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/security_method.py b/services/TS29222_CAPIF_Auditing_API/logs/models/security_method.py
new file mode 100644
index 0000000..ef1ce82
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/security_method.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/models/security_method_any_of.py b/services/TS29222_CAPIF_Auditing_API/logs/models/security_method_any_of.py
new file mode 100644
index 0000000..cebc877
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from logs.models.base_model_ import Model
+from logs import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/openapi/openapi.yaml b/services/TS29222_CAPIF_Auditing_API/logs/openapi/openapi.yaml
new file mode 100644
index 0000000..e619908
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/openapi/openapi.yaml
@@ -0,0 +1,664 @@
+openapi: 3.0.0
+info:
+  description: "API for auditing.  \n© 2022, 3GPP Organizational Partners (ARIB, ATIS,\
+    \ CCSA, ETSI, TSDSI, TTA, TTC).  \nAll rights reserved.\n"
+  title: CAPIF_Auditing_API
+  version: 1.2.1
+externalDocs:
+  description: 3GPP TS 29.222 V17.6.0 Common API Framework for 3GPP Northbound APIs
+  url: https://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: "{apiRoot}/logs/v1"
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in clause 7.5 of 3GPP TS 29.222.
+paths:
+  /apiInvocationLogs:
+    get:
+      description: Query and retrieve service API invocation logs stored on the CAPIF
+        core function.
+      operationId: api_invocation_logs_get
+      parameters:
+      - description: String identifying the API exposing function.
+        explode: true
+        in: query
+        name: aef-id
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: String identifying the API invoker which invoked the service
+          API.
+        explode: true
+        in: query
+        name: api-invoker-id
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Start time of the invocation time range.
+        explode: true
+        in: query
+        name: time-range-start
+        required: false
+        schema:
+          $ref: '#/components/schemas/DateTime'
+        style: form
+      - description: End time of the invocation time range.
+        explode: true
+        in: query
+        name: time-range-end
+        required: false
+        schema:
+          $ref: '#/components/schemas/DateTime'
+        style: form
+      - description: String identifying the API invoked.
+        explode: true
+        in: query
+        name: api-id
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: |
+          API name, it is set as {apiName} part of the URI structure as defined in clause 5.2.4 of 3GPP TS 29.122.
+        explode: true
+        in: query
+        name: api-name
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Version of the API which was invoked.
+        explode: true
+        in: query
+        name: api-version
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Protocol invoked.
+        explode: true
+        in: query
+        name: protocol
+        required: false
+        schema:
+          $ref: '#/components/schemas/Protocol'
+        style: form
+      - description: Operation that was invoked on the API.
+        explode: true
+        in: query
+        name: operation
+        required: false
+        schema:
+          $ref: '#/components/schemas/Operation'
+        style: form
+      - description: Result or output of the invocation.
+        explode: true
+        in: query
+        name: result
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Name of the specific resource invoked.
+        explode: true
+        in: query
+        name: resource-name
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Interface description of the API invoker.
+        example: "{\"ipv4Addr\": \"192.168.1.7\",\"port\": 8888,\"securityMethods\"\
+          : [\"OAuth\"]}"
+        explode: true
+        in: query
+        name: src-interface
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Interface description of the API invoked.
+        example: "{\"ipv4Addr\": \"192.168.1.7\",\"port\": 8888,\"securityMethods\"\
+          : [\"OAuth\"]}"
+        explode: true
+        in: query
+        name: dest-interface
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: To filter irrelevant responses related to unsupported features
+        explode: true
+        in: query
+        name: supported-features
+        required: false
+        schema:
+          $ref: '#/components/schemas/SupportedFeatures'
+        style: form
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/InvocationLog'
+          description: |
+            Result of the query operation along with fetched service API invocation log data.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "414":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: URI Too Long
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: logs.controllers.default_controller
+components:
+  responses:
+    "307":
+      description: Temporary Redirect
+      headers:
+        Location:
+          description: An alternative URI of the resource.
+          required: true
+          schema:
+            type: string
+    "308":
+      description: Permanent Redirect
+      headers:
+        Location:
+          description: An alternative URI of the resource.
+          required: true
+          schema:
+            type: string
+    "400":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Bad request
+    "401":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Unauthorized
+    "403":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Forbidden
+    "404":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Not Found
+    "406":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Not Acceptable
+    "414":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: URI Too Long
+    "429":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Too Many Requests
+    "500":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Internal Server Error
+    "503":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Service Unavailable
+    default:
+      description: Generic Error
+  schemas:
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    Protocol:
+      description: |
+        Possible values are:
+        - HTTP_1_1: HTTP version 1.1
+        - HTTP_2: HTTP version 2
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol
+      type: string
+    Operation:
+      description: |
+        Possible values are:
+        - GET: HTTP GET method
+        - POST: HTTP POST method
+        - PUT: HTTP PUT method
+        - PATCH: HTTP PATCH method
+        - DELETE: HTTP DELETE method
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation
+      type: string
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 39500
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: port
+          type: integer
+        securityMethods:
+          description: |
+            Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    SecurityMethod:
+      description: |
+        Possible values are:
+        - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122
+        - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122
+        - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod
+      type: string
+    SupportedFeatures:
+      description: |
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+      pattern: "^[A-Fa-f0-9]*$"
+      title: supportedFeatures
+      type: string
+    InvocationLog:
+      description: |
+        Represents a set of Service API invocation logs to be stored in a CAPIF core function.
+      example:
+        supportedFeatures: supportedFeatures
+        apiInvokerId: apiInvokerId
+        aefId: aefId
+        logs:
+        - apiName: apiName
+          invocationTime: 2000-01-23T04:56:07.000+00:00
+          srcInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          fwdInterface: fwdInterface
+          resourceName: resourceName
+          uri: uri
+          inputParameters: ""
+          invocationLatency: 0
+          result: result
+          protocol: null
+          apiVersion: apiVersion
+          destInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          operation: null
+          apiId: apiId
+          outputParameters: ""
+        - apiName: apiName
+          invocationTime: 2000-01-23T04:56:07.000+00:00
+          srcInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          fwdInterface: fwdInterface
+          resourceName: resourceName
+          uri: uri
+          inputParameters: ""
+          invocationLatency: 0
+          result: result
+          protocol: null
+          apiVersion: apiVersion
+          destInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          operation: null
+          apiId: apiId
+          outputParameters: ""
+      properties:
+        aefId:
+          description: |
+            Identity information of the API exposing function requesting logging of service API invocations
+          title: aefId
+          type: string
+        apiInvokerId:
+          description: Identity of the API invoker which invoked the service API
+          title: apiInvokerId
+          type: string
+        logs:
+          description: Service API invocation log
+          items:
+            $ref: '#/components/schemas/Log'
+          minItems: 1
+          title: logs
+          type: array
+        supportedFeatures:
+          description: |
+            A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+          pattern: "^[A-Fa-f0-9]*$"
+          title: supportedFeatures
+          type: string
+      required:
+      - aefId
+      - apiInvokerId
+      - logs
+      title: InvocationLog
+      type: object
+    Log:
+      description: Represents an individual service API invocation log entry.
+      example:
+        apiName: apiName
+        invocationTime: 2000-01-23T04:56:07.000+00:00
+        srcInterface:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 39500
+          ipv4Addr: ipv4Addr
+        fwdInterface: fwdInterface
+        resourceName: resourceName
+        uri: uri
+        inputParameters: ""
+        invocationLatency: 0
+        result: result
+        protocol: null
+        apiVersion: apiVersion
+        destInterface:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 39500
+          ipv4Addr: ipv4Addr
+        operation: null
+        apiId: apiId
+        outputParameters: ""
+      properties:
+        apiId:
+          description: String identifying the API invoked.
+          title: apiId
+          type: string
+        apiName:
+          description: |
+            Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in clause 5.2.4 of 3GPP TS 29.122.
+          title: apiName
+          type: string
+        apiVersion:
+          description: Version of the API which was invoked
+          title: apiVersion
+          type: string
+        resourceName:
+          description: Name of the specific resource invoked
+          title: resourceName
+          type: string
+        uri:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        operation:
+          $ref: '#/components/schemas/Operation'
+        result:
+          description: "For HTTP protocol, it contains HTTP status code of the invocation"
+          title: result
+          type: string
+        invocationTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        invocationLatency:
+          description: Unsigned integer identifying a period of time in units of milliseconds.
+          minimum: 0
+          title: DurationMs
+          type: integer
+        inputParameters:
+          description: |
+            List of input parameters. Can be any value - string, number, boolean, array or object.
+          title: inputParameters
+        outputParameters:
+          description: |
+            List of output parameters. Can be any value - string, number, boolean, array or object.
+          title: outputParameters
+        srcInterface:
+          $ref: '#/components/schemas/InterfaceDescription'
+        destInterface:
+          $ref: '#/components/schemas/InterfaceDescription'
+        fwdInterface:
+          description: |
+            It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60
+          title: fwdInterface
+          type: string
+      required:
+      - apiId
+      - apiName
+      - apiVersion
+      - protocol
+      - resourceName
+      - result
+      title: Log
+      type: object
+    DurationMs:
+      description: Unsigned integer identifying a period of time in units of milliseconds.
+      minimum: 0
+      title: DurationMs
+      type: integer
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        title:
+          description: "A short, human-readable summary of the problem type. It should\
+            \ not change from occurrence to occurrence of the problem."
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        cause:
+          description: "A machine-readable application error cause specific to this\
+            \ occurrence of the problem. This IE should be present and provide application-related\
+            \ error information, if available."
+          title: cause
+          type: string
+        invalidParams:
+          description: "Description of invalid parameters, for a request rejected\
+            \ due to invalid parameters."
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: |
+            A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of "0" to "9",  "a" to "f" or "A" to "F" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.
+          pattern: "^[A-Fa-f0-9]*$"
+          title: supportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: Uri
+      type: string
+    InvalidParam:
+      description: "Represents the description of invalid parameters, for a request\
+        \ rejected due to invalid parameters."
+      properties:
+        param:
+          description: "Attribute's name encoded as a JSON Pointer, or header's name."
+          title: param
+          type: string
+        reason:
+          description: "A human-readable reason, e.g. \"must be a positive integer\"\
+            ."
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: port
+      type: integer
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/typing_utils.py b/services/TS29222_CAPIF_Auditing_API/logs/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Auditing_API/logs/util.py b/services/TS29222_CAPIF_Auditing_API/logs/util.py
new file mode 100644
index 0000000..ff81257
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/logs/util.py
@@ -0,0 +1,186 @@
+import datetime
+
+import six
+import typing
+from logs import typing_utils
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+            if my_key == "serviceApiCategory":
+                my_key = "serviceAPICategory"
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Auditing_API/requirements.txt b/services/TS29222_CAPIF_Auditing_API/requirements.txt
new file mode 100644
index 0000000..197399f
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/requirements.txt
@@ -0,0 +1,20 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+elasticsearch == 8.4.3
+flask_jwt_extended == 4.4.4
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+pyopenssl == 23.0.0
diff --git a/services/TS29222_CAPIF_Auditing_API/setup.py b/services/TS29222_CAPIF_Auditing_API/setup.py
new file mode 100644
index 0000000..6577878
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "logs"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Auditing_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Auditing_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['logs=logs.__main__:main']},
+    long_description="""\
+    API for auditing. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Auditing_API/test-requirements.txt b/services/TS29222_CAPIF_Auditing_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Auditing_API/tox.ini b/services/TS29222_CAPIF_Auditing_API/tox.ini
new file mode 100644
index 0000000..865c849
--- /dev/null
+++ b/services/TS29222_CAPIF_Auditing_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=logs
diff --git a/services/TS29222_CAPIF_Discover_Service_API/.dockerignore b/services/TS29222_CAPIF_Discover_Service_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Discover_Service_API/.gitignore b/services/TS29222_CAPIF_Discover_Service_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/FILES
new file mode 100644
index 0000000..e51407a
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/FILES
@@ -0,0 +1,43 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+git_push.sh
+requirements.txt
+service_apis/__init__.py
+service_apis/__main__.py
+service_apis/controllers/__init__.py
+service_apis/controllers/default_controller.py
+service_apis/controllers/security_controller_.py
+service_apis/encoder.py
+service_apis/models/__init__.py
+service_apis/models/aef_profile.py
+service_apis/models/base_model_.py
+service_apis/models/communication_type.py
+service_apis/models/communication_type_any_of.py
+service_apis/models/custom_operation.py
+service_apis/models/data_format.py
+service_apis/models/data_format_any_of.py
+service_apis/models/discovered_apis.py
+service_apis/models/interface_description.py
+service_apis/models/invalid_param.py
+service_apis/models/operation.py
+service_apis/models/operation_any_of.py
+service_apis/models/problem_details.py
+service_apis/models/protocol.py
+service_apis/models/protocol_any_of.py
+service_apis/models/published_api_path.py
+service_apis/models/resource.py
+service_apis/models/security_method.py
+service_apis/models/security_method_any_of.py
+service_apis/models/service_api_description.py
+service_apis/models/shareable_information.py
+service_apis/models/version.py
+service_apis/openapi/openapi.yaml
+service_apis/test/__init__.py
+service_apis/typing_utils.py
+service_apis/util.py
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/.travis.yml b/services/TS29222_CAPIF_Discover_Service_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Discover_Service_API/Dockerfile b/services/TS29222_CAPIF_Discover_Service_API/Dockerfile
new file mode 100644
index 0000000..efa70c9
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/Dockerfile
@@ -0,0 +1,17 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "service_apis"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/README.md b/services/TS29222_CAPIF_Discover_Service_API/README.md
new file mode 100644
index 0000000..f522a7d
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m service_apis
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/service-apis/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/service-apis/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t service_apis .
+
+# starting up a container
+docker run -p 8080:8080 service_apis
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/config.yaml b/services/TS29222_CAPIF_Discover_Service_API/config.yaml
new file mode 100644
index 0000000..6257115
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/config.yaml
@@ -0,0 +1,21 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'serviceapidescriptions',
+  'invokers_col': 'invokerdetails',
+  'capif_users_col': "user",
+  'host': 'mongo',
+  'port': "27017"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/git_push.sh b/services/TS29222_CAPIF_Discover_Service_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Discover_Service_API/requirements.txt b/services/TS29222_CAPIF_Discover_Service_API/requirements.txt
new file mode 100644
index 0000000..33a22f4
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/requirements.txt
@@ -0,0 +1,22 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+flask_jwt_extended == 4.4.4
+pyopenssl == 23.0.0
+rfc3987 == 1.3.8
+redis ==  4.5.4
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+flask_executor == 1.0.0
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/__init__.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/__main__.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/__main__.py
new file mode 100644
index 0000000..57326e9
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/__main__.py
@@ -0,0 +1,131 @@
+#!/usr/bin/env python3
+
+import connexion
+
+from service_apis import encoder
+
+import pymongo
+import logging
+from flask import Flask, jsonify, request
+from flask_jwt_extended import JWTManager, jwt_required, create_access_token
+from pymongo import MongoClient
+from logging.handlers import RotatingFileHandler
+from .config import Config
+import os
+from fluent import sender
+from flask_executor import Executor
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+
+
+NAME = "Discover-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Discover-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Discover-Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="discover_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_Discover_Service_API'},
+            pythonic_params=True)
+
+app.app.config["JWT_SECRET_KEY"] = "this-is-secret-key"
+configure_logging(app.app)
+
+config = Config()
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+jwt = JWTManager(app.app)
+
+
+if __name__ == '__main__':
+    app.run(debug=True, port=8080)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/config.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/config.py
new file mode 100644
index 0000000..d04bd1a
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/config.py
@@ -0,0 +1,20 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/__init__.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/default_controller.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/default_controller.py
new file mode 100644
index 0000000..aef2022
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/default_controller.py
@@ -0,0 +1,48 @@
+import sys
+
+from service_apis.core.discoveredapis import DiscoverApisOperations
+import json
+from flask import Response, request, current_app
+from service_apis.encoder import JSONEncoder
+from service_apis.models.problem_details import ProblemDetails
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+import pymongo
+
+discover_apis = DiscoverApisOperations()
+
+def all_service_apis_get(api_invoker_id, api_name=None, api_version=None, comm_type=None, protocol=None, aef_id=None, data_format=None, api_cat=None, supported_features=None, api_supported_features=None):  # noqa: E501
+    """all_service_apis_get
+
+    Discover published service APIs and retrieve a collection of APIs according to certain filter criteria. # noqa: E501
+
+    :param api_invoker_id: String identifying the API invoker assigned by the CAPIF core function. It also represents the CCF identifier in the CAPIF-6/6e interface.
+    :type api_invoker_id: str
+    :param api_name: API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+    :type api_name: str
+    :param api_version: API major version the URI (e.g. v1).
+    :type api_version: str
+    :param comm_type: Communication type used by the API (e.g. REQUEST_RESPONSE).
+    :type comm_type: dict | bytes
+    :param protocol: Protocol used by the API.
+    :type protocol: dict | bytes
+    :param aef_id: AEF identifer.
+    :type aef_id: str
+    :param data_format: Data formats used by the API (e.g. serialization protocol JSON used).
+    :type data_format: dict | bytes
+    :param api_cat: The service API category to which the service API belongs to.
+    :type api_cat: str
+    :param supported_features: Features supported by the NF consumer for the CAPIF Discover Service API.
+    :type supported_features: str
+    :param api_supported_features: Features supported by the discovered service API indicated by api-name parameter. This may only be present if api-name query parameter is present.
+    :type api_supported_features: str
+
+    :rtype: DiscoveredAPIs
+    """
+
+    current_app.logger.info("Discovering service apis")
+    query_params = {"api_name":api_name, "api_version":api_version, "comm_type":comm_type, 
+    "protocol":protocol, "aef_id":aef_id, "data_format":data_format, 
+    "api_cat":api_cat, "supported_features":supported_features, "api_supported_features":api_supported_features}
+    response = discover_apis.get_discoveredapis(api_invoker_id, query_params)
+    return response
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/security_controller_.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/discoveredapis.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/discoveredapis.py
new file mode 100644
index 0000000..5114c30
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/discoveredapis.py
@@ -0,0 +1,65 @@
+import sys
+
+import pymongo
+from flask import current_app, Flask, Response
+import json
+from service_apis.core.responses import internal_server_error, forbidden_error ,make_response, not_found_error
+from service_apis.db.db import MongoDatabse
+from service_apis.encoder import JSONEncoder
+from service_apis.models.problem_details import ProblemDetails
+from service_apis.models.service_api_description import ServiceAPIDescription
+from service_apis.models.discovered_apis import DiscoveredAPIs
+from service_apis.util import dict_to_camel_case, clean_empty
+from service_apis.core.resources import Resource
+from bson import json_util
+
+
+
+class DiscoverApisOperations(Resource):
+
+    def get_discoveredapis(self, api_invoker_id, query_params):
+
+        services = self.db.get_col_by_name(self.db.service_api_descriptions)
+        invokers = self.db.get_col_by_name(self.db.invoker_col)
+
+        current_app.logger.debug("Discovering services apis by: " + api_invoker_id)
+
+        try:
+            invoker = invokers.find_one({"api_invoker_id": api_invoker_id})
+            if invoker is None:
+                current_app.logger.error("Api invoker not found in database")
+                return not_found_error(detail="API Invoker does not exist", cause="API Invoker id not found")
+
+            my_params = []
+            my_query = {}
+            quey_params_name = {"api_name":"api_name", "api_version":"aef_profiles.0.versions.0.api_version", "comm_type":"aef_profiles.0.versions.0.resources.0.comm_type", 
+            "protocol":"aef_profiles.0.protocol", "aef_id":"aef_profiles.0.aef_id", "data_format":"aef_profiles.0.data_format", 
+            "api_cat":"service_api_category", "supported_features":"supported_features", "api_supported_features":"api_supp_feats"}
+
+            for param in query_params:
+                if query_params[param] is not None:
+                    my_params.append({quey_params_name[param]: query_params[param]})
+
+            if my_params:
+                my_query = {"$and": my_params}
+
+            discoved_apis = services.find(my_query, {"_id":0, "apf_id":0})
+            json_docs = []
+            for discoved_api in discoved_apis:
+                my_api = dict_to_camel_case(discoved_api)
+                my_api = clean_empty(my_api)
+                json_docs.append(my_api)
+
+            if len(json_docs) == 0:
+                return not_found_error(detail="API Invoker " + api_invoker_id + " has no API Published that accomplish filter conditions", cause="No API Published accomplish filter conditions")
+
+            apis_discoveres = DiscoveredAPIs(service_api_descriptions=json_docs)
+            res = make_response(object=apis_discoveres, status=200)
+            current_app.logger.debug("Discovered APIs by: " + api_invoker_id)
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in discover services"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/resources.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/resources.py
new file mode 100644
index 0000000..94e29ec
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/resources.py
@@ -0,0 +1,7 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/responses.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/responses.py
new file mode 100644
index 0000000..4f03578
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/core/responses.py
@@ -0,0 +1,32 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+from bson import json_util
+import json
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object,  cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/db/db.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/db/db.py
new file mode 100644
index 0000000..5445455
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/db/db.py
@@ -0,0 +1,44 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.invoker_col = self.config['mongo']['invokers_col']
+        self.service_api_descriptions = self.config['mongo']['col']
+        self.capif_users = self.config['mongo']['capif_users_col']
+
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/encoder.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/encoder.py
new file mode 100644
index 0000000..c026759
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from service_apis.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/__init__.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/__init__.py
new file mode 100644
index 0000000..f340ca4
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/__init__.py
@@ -0,0 +1,26 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from service_apis.models.aef_profile import AefProfile
+from service_apis.models.communication_type import CommunicationType
+from service_apis.models.communication_type_any_of import CommunicationTypeAnyOf
+from service_apis.models.custom_operation import CustomOperation
+from service_apis.models.data_format import DataFormat
+from service_apis.models.data_format_any_of import DataFormatAnyOf
+from service_apis.models.discovered_apis import DiscoveredAPIs
+from service_apis.models.interface_description import InterfaceDescription
+from service_apis.models.invalid_param import InvalidParam
+from service_apis.models.operation import Operation
+from service_apis.models.operation_any_of import OperationAnyOf
+from service_apis.models.problem_details import ProblemDetails
+from service_apis.models.protocol import Protocol
+from service_apis.models.protocol_any_of import ProtocolAnyOf
+from service_apis.models.published_api_path import PublishedApiPath
+from service_apis.models.resource import Resource
+from service_apis.models.security_method import SecurityMethod
+from service_apis.models.security_method_any_of import SecurityMethodAnyOf
+from service_apis.models.service_api_description import ServiceAPIDescription
+from service_apis.models.shareable_information import ShareableInformation
+from service_apis.models.version import Version
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/aef_profile.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/aef_profile.py
new file mode 100644
index 0000000..03ed0fd
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/aef_profile.py
@@ -0,0 +1,250 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.data_format import DataFormat
+from service_apis.models.interface_description import InterfaceDescription
+from service_apis.models.protocol import Protocol
+from service_apis.models.security_method import SecurityMethod
+from service_apis.models.version import Version
+from service_apis import util
+
+from service_apis.models.data_format import DataFormat  # noqa: E501
+from service_apis.models.interface_description import InterfaceDescription  # noqa: E501
+from service_apis.models.protocol import Protocol  # noqa: E501
+from service_apis.models.security_method import SecurityMethod  # noqa: E501
+from service_apis.models.version import Version  # noqa: E501
+
+class AefProfile(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, versions=None, protocol=None, data_format=None, security_methods=None, domain_name=None, interface_descriptions=None):  # noqa: E501
+        """AefProfile - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this AefProfile.  # noqa: E501
+        :type aef_id: str
+        :param versions: The versions of this AefProfile.  # noqa: E501
+        :type versions: List[Version]
+        :param protocol: The protocol of this AefProfile.  # noqa: E501
+        :type protocol: Protocol
+        :param data_format: The data_format of this AefProfile.  # noqa: E501
+        :type data_format: DataFormat
+        :param security_methods: The security_methods of this AefProfile.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        :param domain_name: The domain_name of this AefProfile.  # noqa: E501
+        :type domain_name: str
+        :param interface_descriptions: The interface_descriptions of this AefProfile.  # noqa: E501
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'versions': List[Version],
+            'protocol': Protocol,
+            'data_format': DataFormat,
+            'security_methods': List[SecurityMethod],
+            'domain_name': str,
+            'interface_descriptions': List[InterfaceDescription]
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'versions': 'versions',
+            'protocol': 'protocol',
+            'data_format': 'dataFormat',
+            'security_methods': 'securityMethods',
+            'domain_name': 'domainName',
+            'interface_descriptions': 'interfaceDescriptions'
+        }
+
+        self._aef_id = aef_id
+        self._versions = versions
+        self._protocol = protocol
+        self._data_format = data_format
+        self._security_methods = security_methods
+        self._domain_name = domain_name
+        self._interface_descriptions = interface_descriptions
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AefProfile':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AefProfile of this AefProfile.  # noqa: E501
+        :rtype: AefProfile
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_id of this AefProfile.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_id: The aef_id of this AefProfile.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def versions(self):
+        """Gets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :return: The versions of this AefProfile.
+        :rtype: List[Version]
+        """
+        return self._versions
+
+    @versions.setter
+    def versions(self, versions):
+        """Sets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :param versions: The versions of this AefProfile.
+        :type versions: List[Version]
+        """
+        if versions is None:
+            raise ValueError("Invalid value for `versions`, must not be `None`")  # noqa: E501
+        if versions is not None and len(versions) < 1:
+            raise ValueError("Invalid value for `versions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._versions = versions
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this AefProfile.
+
+
+        :return: The protocol of this AefProfile.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this AefProfile.
+
+
+        :param protocol: The protocol of this AefProfile.
+        :type protocol: Protocol
+        """
+
+        self._protocol = protocol
+
+    @property
+    def data_format(self):
+        """Gets the data_format of this AefProfile.
+
+
+        :return: The data_format of this AefProfile.
+        :rtype: DataFormat
+        """
+        return self._data_format
+
+    @data_format.setter
+    def data_format(self, data_format):
+        """Sets the data_format of this AefProfile.
+
+
+        :param data_format: The data_format of this AefProfile.
+        :type data_format: DataFormat
+        """
+
+        self._data_format = data_format
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :return: The security_methods of this AefProfile.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :param security_methods: The security_methods of this AefProfile.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
+
+    @property
+    def domain_name(self):
+        """Gets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :return: The domain_name of this AefProfile.
+        :rtype: str
+        """
+        return self._domain_name
+
+    @domain_name.setter
+    def domain_name(self, domain_name):
+        """Sets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :param domain_name: The domain_name of this AefProfile.
+        :type domain_name: str
+        """
+
+        self._domain_name = domain_name
+
+    @property
+    def interface_descriptions(self):
+        """Gets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :return: The interface_descriptions of this AefProfile.
+        :rtype: List[InterfaceDescription]
+        """
+        return self._interface_descriptions
+
+    @interface_descriptions.setter
+    def interface_descriptions(self, interface_descriptions):
+        """Sets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :param interface_descriptions: The interface_descriptions of this AefProfile.
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        if interface_descriptions is not None and len(interface_descriptions) < 1:
+            raise ValueError("Invalid value for `interface_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._interface_descriptions = interface_descriptions
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/base_model_.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/base_model_.py
new file mode 100644
index 0000000..c9cf2ae
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from service_apis import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type.py
new file mode 100644
index 0000000..793701c
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.communication_type_any_of import CommunicationTypeAnyOf
+from service_apis import util
+
+from service_apis.models.communication_type_any_of import CommunicationTypeAnyOf  # noqa: E501
+
+class CommunicationType(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """CommunicationType - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationType':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType of this CommunicationType.  # noqa: E501
+        :rtype: CommunicationType
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type_any_of.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type_any_of.py
new file mode 100644
index 0000000..72b1a53
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/communication_type_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class CommunicationTypeAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    REQUEST_RESPONSE = "REQUEST_RESPONSE"
+    SUBSCRIBE_NOTIFY = "SUBSCRIBE_NOTIFY"
+    def __init__(self):  # noqa: E501
+        """CommunicationTypeAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationTypeAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType_anyOf of this CommunicationTypeAnyOf.  # noqa: E501
+        :rtype: CommunicationTypeAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/custom_operation.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/custom_operation.py
new file mode 100644
index 0000000..fdbb2cb
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/custom_operation.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.communication_type import CommunicationType
+from service_apis.models.operation import Operation
+from service_apis import util
+
+from service_apis.models.communication_type import CommunicationType  # noqa: E501
+from service_apis.models.operation import Operation  # noqa: E501
+
+class CustomOperation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, comm_type=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """CustomOperation - a model defined in OpenAPI
+
+        :param comm_type: The comm_type of this CustomOperation.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param cust_op_name: The cust_op_name of this CustomOperation.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this CustomOperation.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this CustomOperation.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'comm_type': CommunicationType,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'comm_type': 'commType',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._comm_type = comm_type
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CustomOperation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CustomOperation of this CustomOperation.  # noqa: E501
+        :rtype: CustomOperation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this CustomOperation.
+
+
+        :return: The comm_type of this CustomOperation.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this CustomOperation.
+
+
+        :param comm_type: The comm_type of this CustomOperation.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this CustomOperation.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this CustomOperation.
+        :type cust_op_name: str
+        """
+        if cust_op_name is None:
+            raise ValueError("Invalid value for `cust_op_name`, must not be `None`")  # noqa: E501
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this CustomOperation.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this CustomOperation.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :return: The description of this CustomOperation.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :param description: The description of this CustomOperation.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format.py
new file mode 100644
index 0000000..7fcf161
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.data_format_any_of import DataFormatAnyOf
+from service_apis import util
+
+from service_apis.models.data_format_any_of import DataFormatAnyOf  # noqa: E501
+
+class DataFormat(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """DataFormat - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormat':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat of this DataFormat.  # noqa: E501
+        :rtype: DataFormat
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format_any_of.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format_any_of.py
new file mode 100644
index 0000000..1c78b7c
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/data_format_any_of.py
@@ -0,0 +1,41 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class DataFormatAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    JSON = "JSON"
+    def __init__(self):  # noqa: E501
+        """DataFormatAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormatAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat_anyOf of this DataFormatAnyOf.  # noqa: E501
+        :rtype: DataFormatAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/discovered_apis.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/discovered_apis.py
new file mode 100644
index 0000000..10eca49
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/discovered_apis.py
@@ -0,0 +1,70 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.service_api_description import ServiceAPIDescription
+from service_apis import util
+
+from service_apis.models.service_api_description import ServiceAPIDescription  # noqa: E501
+
+class DiscoveredAPIs(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, service_api_descriptions=None):  # noqa: E501
+        """DiscoveredAPIs - a model defined in OpenAPI
+
+        :param service_api_descriptions: The service_api_descriptions of this DiscoveredAPIs.  # noqa: E501
+        :type service_api_descriptions: List[ServiceAPIDescription]
+        """
+        self.openapi_types = {
+            'service_api_descriptions': List[ServiceAPIDescription]
+        }
+
+        self.attribute_map = {
+            'service_api_descriptions': 'serviceAPIDescriptions'
+        }
+
+        self._service_api_descriptions = service_api_descriptions
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DiscoveredAPIs':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DiscoveredAPIs of this DiscoveredAPIs.  # noqa: E501
+        :rtype: DiscoveredAPIs
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def service_api_descriptions(self):
+        """Gets the service_api_descriptions of this DiscoveredAPIs.
+
+        Description of the service API as published by the service. Each service API description shall include AEF profiles matching the filter criteria.  # noqa: E501
+
+        :return: The service_api_descriptions of this DiscoveredAPIs.
+        :rtype: List[ServiceAPIDescription]
+        """
+        return self._service_api_descriptions
+
+    @service_api_descriptions.setter
+    def service_api_descriptions(self, service_api_descriptions):
+        """Sets the service_api_descriptions of this DiscoveredAPIs.
+
+        Description of the service API as published by the service. Each service API description shall include AEF profiles matching the filter criteria.  # noqa: E501
+
+        :param service_api_descriptions: The service_api_descriptions of this DiscoveredAPIs.
+        :type service_api_descriptions: List[ServiceAPIDescription]
+        """
+        if service_api_descriptions is not None and len(service_api_descriptions) < 1:
+            raise ValueError("Invalid value for `service_api_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._service_api_descriptions = service_api_descriptions
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/interface_description.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/interface_description.py
new file mode 100644
index 0000000..a51d990
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.security_method import SecurityMethod
+from service_apis import util
+
+from service_apis.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/invalid_param.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/invalid_param.py
new file mode 100644
index 0000000..7e3d8d7
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation.py
new file mode 100644
index 0000000..96d3ead
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.operation_any_of import OperationAnyOf
+from service_apis import util
+
+from service_apis.models.operation_any_of import OperationAnyOf  # noqa: E501
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation_any_of.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation_any_of.py
new file mode 100644
index 0000000..d69836b
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/problem_details.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/problem_details.py
new file mode 100644
index 0000000..c9e028d
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.invalid_param import InvalidParam
+import re
+from service_apis import util
+
+from service_apis.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol.py
new file mode 100644
index 0000000..311b8e8
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.protocol_any_of import ProtocolAnyOf
+from service_apis import util
+
+from service_apis.models.protocol_any_of import ProtocolAnyOf  # noqa: E501
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol_any_of.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol_any_of.py
new file mode 100644
index 0000000..a75ee92
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/published_api_path.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/published_api_path.py
new file mode 100644
index 0000000..959ae6e
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/published_api_path.py
@@ -0,0 +1,68 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class PublishedApiPath(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ccf_ids=None):  # noqa: E501
+        """PublishedApiPath - a model defined in OpenAPI
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.  # noqa: E501
+        :type ccf_ids: List[str]
+        """
+        self.openapi_types = {
+            'ccf_ids': List[str]
+        }
+
+        self.attribute_map = {
+            'ccf_ids': 'ccfIds'
+        }
+
+        self._ccf_ids = ccf_ids
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PublishedApiPath':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PublishedApiPath of this PublishedApiPath.  # noqa: E501
+        :rtype: PublishedApiPath
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ccf_ids(self):
+        """Gets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :return: The ccf_ids of this PublishedApiPath.
+        :rtype: List[str]
+        """
+        return self._ccf_ids
+
+    @ccf_ids.setter
+    def ccf_ids(self, ccf_ids):
+        """Sets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.
+        :type ccf_ids: List[str]
+        """
+        if ccf_ids is not None and len(ccf_ids) < 1:
+            raise ValueError("Invalid value for `ccf_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ccf_ids = ccf_ids
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/resource.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/resource.py
new file mode 100644
index 0000000..c78abb0
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/resource.py
@@ -0,0 +1,216 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.communication_type import CommunicationType
+from service_apis.models.operation import Operation
+from service_apis import util
+
+from service_apis.models.communication_type import CommunicationType  # noqa: E501
+from service_apis.models.operation import Operation  # noqa: E501
+
+class Resource(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, resource_name=None, comm_type=None, uri=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """Resource - a model defined in OpenAPI
+
+        :param resource_name: The resource_name of this Resource.  # noqa: E501
+        :type resource_name: str
+        :param comm_type: The comm_type of this Resource.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param uri: The uri of this Resource.  # noqa: E501
+        :type uri: str
+        :param cust_op_name: The cust_op_name of this Resource.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this Resource.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this Resource.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'resource_name': str,
+            'comm_type': CommunicationType,
+            'uri': str,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'resource_name': 'resourceName',
+            'comm_type': 'commType',
+            'uri': 'uri',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._resource_name = resource_name
+        self._comm_type = comm_type
+        self._uri = uri
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Resource':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Resource of this Resource.  # noqa: E501
+        :rtype: Resource
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :return: The resource_name of this Resource.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :param resource_name: The resource_name of this Resource.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this Resource.
+
+
+        :return: The comm_type of this Resource.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this Resource.
+
+
+        :param comm_type: The comm_type of this Resource.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def uri(self):
+        """Gets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The uri of this Resource.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param uri: The uri of this Resource.
+        :type uri: str
+        """
+        if uri is None:
+            raise ValueError("Invalid value for `uri`, must not be `None`")  # noqa: E501
+
+        self._uri = uri
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this Resource.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this Resource.
+        :type cust_op_name: str
+        """
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this Resource.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this Resource.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :return: The description of this Resource.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :param description: The description of this Resource.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method.py
new file mode 100644
index 0000000..aa5a6a8
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.security_method_any_of import SecurityMethodAnyOf
+from service_apis import util
+
+from service_apis.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method_any_of.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method_any_of.py
new file mode 100644
index 0000000..15ad9ef
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/service_api_description.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/service_api_description.py
new file mode 100644
index 0000000..2941555
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/service_api_description.py
@@ -0,0 +1,328 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.aef_profile import AefProfile
+from service_apis.models.published_api_path import PublishedApiPath
+from service_apis.models.shareable_information import ShareableInformation
+import re
+from service_apis import util
+
+from service_apis.models.aef_profile import AefProfile  # noqa: E501
+from service_apis.models.published_api_path import PublishedApiPath  # noqa: E501
+from service_apis.models.shareable_information import ShareableInformation  # noqa: E501
+import re  # noqa: E501
+
+class ServiceAPIDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_name=None, api_id=None, aef_profiles=None, description=None, supported_features=None, shareable_info=None, service_api_category=None, api_supp_feats=None, pub_api_path=None, ccf_id=None):  # noqa: E501
+        """ServiceAPIDescription - a model defined in OpenAPI
+
+        :param api_name: The api_name of this ServiceAPIDescription.  # noqa: E501
+        :type api_name: str
+        :param api_id: The api_id of this ServiceAPIDescription.  # noqa: E501
+        :type api_id: str
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.  # noqa: E501
+        :type aef_profiles: List[AefProfile]
+        :param description: The description of this ServiceAPIDescription.  # noqa: E501
+        :type description: str
+        :param supported_features: The supported_features of this ServiceAPIDescription.  # noqa: E501
+        :type supported_features: str
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.  # noqa: E501
+        :type shareable_info: ShareableInformation
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.  # noqa: E501
+        :type service_api_category: str
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.  # noqa: E501
+        :type api_supp_feats: str
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.  # noqa: E501
+        :type pub_api_path: PublishedApiPath
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.  # noqa: E501
+        :type ccf_id: str
+        """
+        self.openapi_types = {
+            'api_name': str,
+            'api_id': str,
+            'aef_profiles': List[AefProfile],
+            'description': str,
+            'supported_features': str,
+            'shareable_info': ShareableInformation,
+            'service_api_category': str,
+            'api_supp_feats': str,
+            'pub_api_path': PublishedApiPath,
+            'ccf_id': str
+        }
+
+        self.attribute_map = {
+            'api_name': 'apiName',
+            'api_id': 'apiId',
+            'aef_profiles': 'aefProfiles',
+            'description': 'description',
+            'supported_features': 'supportedFeatures',
+            'shareable_info': 'shareableInfo',
+            'service_api_category': 'serviceAPICategory',
+            'api_supp_feats': 'apiSuppFeats',
+            'pub_api_path': 'pubApiPath',
+            'ccf_id': 'ccfId'
+        }
+
+        self._api_name = api_name
+        self._api_id = api_id
+        self._aef_profiles = aef_profiles
+        self._description = description
+        self._supported_features = supported_features
+        self._shareable_info = shareable_info
+        self._service_api_category = service_api_category
+        self._api_supp_feats = api_supp_feats
+        self._pub_api_path = pub_api_path
+        self._ccf_id = ccf_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ServiceAPIDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ServiceAPIDescription of this ServiceAPIDescription.  # noqa: E501
+        :rtype: ServiceAPIDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this ServiceAPIDescription.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :return: The api_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :param api_id: The api_id of this ServiceAPIDescription.
+        :type api_id: str
+        """
+
+        self._api_id = api_id
+
+    @property
+    def aef_profiles(self):
+        """Gets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :return: The aef_profiles of this ServiceAPIDescription.
+        :rtype: List[AefProfile]
+        """
+        return self._aef_profiles
+
+    @aef_profiles.setter
+    def aef_profiles(self, aef_profiles):
+        """Sets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.
+        :type aef_profiles: List[AefProfile]
+        """
+        if aef_profiles is not None and len(aef_profiles) < 1:
+            raise ValueError("Invalid value for `aef_profiles`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._aef_profiles = aef_profiles
+
+    @property
+    def description(self):
+        """Gets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :return: The description of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :param description: The description of this ServiceAPIDescription.
+        :type description: str
+        """
+
+        self._description = description
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ServiceAPIDescription.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
+
+    @property
+    def shareable_info(self):
+        """Gets the shareable_info of this ServiceAPIDescription.
+
+
+        :return: The shareable_info of this ServiceAPIDescription.
+        :rtype: ShareableInformation
+        """
+        return self._shareable_info
+
+    @shareable_info.setter
+    def shareable_info(self, shareable_info):
+        """Sets the shareable_info of this ServiceAPIDescription.
+
+
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.
+        :type shareable_info: ShareableInformation
+        """
+
+        self._shareable_info = shareable_info
+
+    @property
+    def service_api_category(self):
+        """Gets the service_api_category of this ServiceAPIDescription.
+
+
+        :return: The service_api_category of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._service_api_category
+
+    @service_api_category.setter
+    def service_api_category(self, service_api_category):
+        """Sets the service_api_category of this ServiceAPIDescription.
+
+
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.
+        :type service_api_category: str
+        """
+
+        self._service_api_category = service_api_category
+
+    @property
+    def api_supp_feats(self):
+        """Gets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The api_supp_feats of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_supp_feats
+
+    @api_supp_feats.setter
+    def api_supp_feats(self, api_supp_feats):
+        """Sets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.
+        :type api_supp_feats: str
+        """
+        if api_supp_feats is not None and not re.search(r'^[A-Fa-f0-9]*$', api_supp_feats):  # noqa: E501
+            raise ValueError("Invalid value for `api_supp_feats`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._api_supp_feats = api_supp_feats
+
+    @property
+    def pub_api_path(self):
+        """Gets the pub_api_path of this ServiceAPIDescription.
+
+
+        :return: The pub_api_path of this ServiceAPIDescription.
+        :rtype: PublishedApiPath
+        """
+        return self._pub_api_path
+
+    @pub_api_path.setter
+    def pub_api_path(self, pub_api_path):
+        """Sets the pub_api_path of this ServiceAPIDescription.
+
+
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.
+        :type pub_api_path: PublishedApiPath
+        """
+
+        self._pub_api_path = pub_api_path
+
+    @property
+    def ccf_id(self):
+        """Gets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :return: The ccf_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._ccf_id
+
+    @ccf_id.setter
+    def ccf_id(self, ccf_id):
+        """Sets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.
+        :type ccf_id: str
+        """
+
+        self._ccf_id = ccf_id
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/shareable_information.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/shareable_information.py
new file mode 100644
index 0000000..ed04a4b
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/shareable_information.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis import util
+
+
+class ShareableInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, is_shareable=None, capif_prov_doms=None):  # noqa: E501
+        """ShareableInformation - a model defined in OpenAPI
+
+        :param is_shareable: The is_shareable of this ShareableInformation.  # noqa: E501
+        :type is_shareable: bool
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.  # noqa: E501
+        :type capif_prov_doms: List[str]
+        """
+        self.openapi_types = {
+            'is_shareable': bool,
+            'capif_prov_doms': List[str]
+        }
+
+        self.attribute_map = {
+            'is_shareable': 'isShareable',
+            'capif_prov_doms': 'capifProvDoms'
+        }
+
+        self._is_shareable = is_shareable
+        self._capif_prov_doms = capif_prov_doms
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ShareableInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ShareableInformation of this ShareableInformation.  # noqa: E501
+        :rtype: ShareableInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def is_shareable(self):
+        """Gets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :return: The is_shareable of this ShareableInformation.
+        :rtype: bool
+        """
+        return self._is_shareable
+
+    @is_shareable.setter
+    def is_shareable(self, is_shareable):
+        """Sets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :param is_shareable: The is_shareable of this ShareableInformation.
+        :type is_shareable: bool
+        """
+        if is_shareable is None:
+            raise ValueError("Invalid value for `is_shareable`, must not be `None`")  # noqa: E501
+
+        self._is_shareable = is_shareable
+
+    @property
+    def capif_prov_doms(self):
+        """Gets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :return: The capif_prov_doms of this ShareableInformation.
+        :rtype: List[str]
+        """
+        return self._capif_prov_doms
+
+    @capif_prov_doms.setter
+    def capif_prov_doms(self, capif_prov_doms):
+        """Sets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.
+        :type capif_prov_doms: List[str]
+        """
+        if capif_prov_doms is not None and len(capif_prov_doms) < 1:
+            raise ValueError("Invalid value for `capif_prov_doms`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._capif_prov_doms = capif_prov_doms
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/version.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/version.py
new file mode 100644
index 0000000..8f395e7
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/models/version.py
@@ -0,0 +1,160 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from service_apis.models.base_model_ import Model
+from service_apis.models.custom_operation import CustomOperation
+from service_apis.models.resource import Resource
+from service_apis import util
+
+from service_apis.models.custom_operation import CustomOperation  # noqa: E501
+from service_apis.models.resource import Resource  # noqa: E501
+
+class Version(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_version=None, expiry=None, resources=None, cust_operations=None):  # noqa: E501
+        """Version - a model defined in OpenAPI
+
+        :param api_version: The api_version of this Version.  # noqa: E501
+        :type api_version: str
+        :param expiry: The expiry of this Version.  # noqa: E501
+        :type expiry: datetime
+        :param resources: The resources of this Version.  # noqa: E501
+        :type resources: List[Resource]
+        :param cust_operations: The cust_operations of this Version.  # noqa: E501
+        :type cust_operations: List[CustomOperation]
+        """
+        self.openapi_types = {
+            'api_version': str,
+            'expiry': datetime,
+            'resources': List[Resource],
+            'cust_operations': List[CustomOperation]
+        }
+
+        self.attribute_map = {
+            'api_version': 'apiVersion',
+            'expiry': 'expiry',
+            'resources': 'resources',
+            'cust_operations': 'custOperations'
+        }
+
+        self._api_version = api_version
+        self._expiry = expiry
+        self._resources = resources
+        self._cust_operations = cust_operations
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Version':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Version of this Version.  # noqa: E501
+        :rtype: Version
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :return: The api_version of this Version.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :param api_version: The api_version of this Version.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def expiry(self):
+        """Gets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The expiry of this Version.
+        :rtype: datetime
+        """
+        return self._expiry
+
+    @expiry.setter
+    def expiry(self, expiry):
+        """Sets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param expiry: The expiry of this Version.
+        :type expiry: datetime
+        """
+
+        self._expiry = expiry
+
+    @property
+    def resources(self):
+        """Gets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :return: The resources of this Version.
+        :rtype: List[Resource]
+        """
+        return self._resources
+
+    @resources.setter
+    def resources(self, resources):
+        """Sets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :param resources: The resources of this Version.
+        :type resources: List[Resource]
+        """
+        if resources is not None and len(resources) < 1:
+            raise ValueError("Invalid value for `resources`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._resources = resources
+
+    @property
+    def cust_operations(self):
+        """Gets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :return: The cust_operations of this Version.
+        :rtype: List[CustomOperation]
+        """
+        return self._cust_operations
+
+    @cust_operations.setter
+    def cust_operations(self, cust_operations):
+        """Sets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :param cust_operations: The cust_operations of this Version.
+        :type cust_operations: List[CustomOperation]
+        """
+        if cust_operations is not None and len(cust_operations) < 1:
+            raise ValueError("Invalid value for `cust_operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._cust_operations = cust_operations
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/openapi/openapi.yaml b/services/TS29222_CAPIF_Discover_Service_API/service_apis/openapi/openapi.yaml
new file mode 100644
index 0000000..748f74a
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/openapi/openapi.yaml
@@ -0,0 +1,1330 @@
+openapi: 3.0.0
+info:
+  description: |
+    API for discovering service APIs.
+    © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
+    All rights reserved.
+  title: CAPIF_Discover_Service_API
+  version: 1.2.0-alpha.1
+externalDocs:
+  description: 3GPP TS 29.222 V17.1.0 Common API Framework for 3GPP Northbound APIs
+  url: http://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/service-apis/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in subclause 7.5 of 3GPP TS 29.222.
+paths:
+  /allServiceAPIs:
+    get:
+      description: Discover published service APIs and retrieve a collection of APIs
+        according to certain filter criteria.
+      operationId: all_service_apis_get
+      parameters:
+      - description: String identifying the API invoker assigned by the CAPIF core
+          function. It also represents the CCF identifier in the CAPIF-6/6e interface.
+        explode: true
+        in: query
+        name: api-invoker-id
+        required: true
+        schema:
+          type: string
+        style: form
+      - description: API name, it is set as {apiName} part of the URI structure as
+          defined in subclause 4.4 of 3GPP TS 29.501.
+        explode: true
+        in: query
+        name: api-name
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: API major version the URI (e.g. v1).
+        explode: true
+        in: query
+        name: api-version
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Communication type used by the API (e.g. REQUEST_RESPONSE).
+        explode: true
+        in: query
+        name: comm-type
+        required: false
+        schema:
+          $ref: '#/components/schemas/CommunicationType'
+        style: form
+      - description: Protocol used by the API.
+        explode: true
+        in: query
+        name: protocol
+        required: false
+        schema:
+          $ref: '#/components/schemas/Protocol'
+        style: form
+      - description: AEF identifer.
+        explode: true
+        in: query
+        name: aef-id
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Data formats used by the API (e.g. serialization protocol JSON
+          used).
+        explode: true
+        in: query
+        name: data-format
+        required: false
+        schema:
+          $ref: '#/components/schemas/DataFormat'
+        style: form
+      - description: The service API category to which the service API belongs to.
+        explode: true
+        in: query
+        name: api-cat
+        required: false
+        schema:
+          type: string
+        style: form
+      - description: Features supported by the NF consumer for the CAPIF Discover
+          Service API.
+        explode: true
+        in: query
+        name: supported-features
+        required: false
+        schema:
+          $ref: '#/components/schemas/SupportedFeatures'
+        style: form
+      - description: Features supported by the discovered service API indicated by
+          api-name parameter. This may only be present if api-name query parameter
+          is present.
+        explode: true
+        in: query
+        name: api-supported-features
+        required: false
+        schema:
+          $ref: '#/components/schemas/SupportedFeatures'
+        style: form
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/DiscoveredAPIs'
+          description: The response body contains the result of the search over the
+            list of registered APIs.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "414":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: URI Too Long
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: service_apis.controllers.default_controller
+components:
+  schemas:
+    DiscoveredAPIs:
+      description: Represents a list of APIs currently registered in the CAPIF core
+        function and satisfying a number of filter criteria provided by the API consumer.
+      example:
+        serviceAPIDescriptions:
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+      properties:
+        serviceAPIDescriptions:
+          description: Description of the service API as published by the service.
+            Each service API description shall include AEF profiles matching the filter
+            criteria.
+          items:
+            $ref: '#/components/schemas/ServiceAPIDescription'
+          minItems: 1
+          title: serviceAPIDescriptions
+          type: array
+      title: DiscoveredAPIs
+      type: object
+    CommunicationType:
+      anyOf:
+      - $ref: '#/components/schemas/CommunicationType_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - REQUEST_RESPONSE: The communication is of the type request-response - SUBSCRIBE_NOTIFY: The communication is of the type subscribe-notify
+      title: CommunicationType
+    Protocol:
+      anyOf:
+      - $ref: '#/components/schemas/Protocol_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - HTTP_1_1: HTTP version 1.1 - HTTP_2: HTTP version 2
+      title: Protocol
+    DataFormat:
+      anyOf:
+      - $ref: '#/components/schemas/DataFormat_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - JSON: JavaScript Object Notation
+      title: DataFormat
+    SupportedFeatures:
+      description: A string used to indicate the features supported by an API that
+        is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain
+        a bitmask indicating supported features in hexadecimal representation Each
+        character in the string shall take a value of "0" to "9", "a" to "f" or "A"
+        to "F" and shall represent the support of 4 features as described in table 5.2.2-3.
+        The most significant character representing the highest-numbered features
+        shall appear first in the string, and the character representing features
+        1 to 4 shall appear last in the string. The list of features and their numbering
+        (starting with 1) are defined separately for each API. If the string contains
+        a lower number of characters than there are defined features for an API, all
+        features that would be represented by characters that are not present in the
+        string are not supported
+      pattern: ^[A-Fa-f0-9]*$
+      title: SupportedFeatures
+      type: string
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: type
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    ServiceAPIDescription:
+      description: Represents the description of a service API as published by the
+        APF.
+      example:
+        serviceAPICategory: serviceAPICategory
+        ccfId: ccfId
+        apiName: apiName
+        shareableInfo:
+          capifProvDoms:
+          - capifProvDoms
+          - capifProvDoms
+          isShareable: true
+        supportedFeatures: supportedFeatures
+        description: description
+        apiSuppFeats: apiSuppFeats
+        apiId: apiId
+        aefProfiles:
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        pubApiPath:
+          ccfIds:
+          - ccfIds
+          - ccfIds
+      properties:
+        apiName:
+          description: API name, it is set as {apiName} part of the URI structure
+            as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: apiName
+          type: string
+        apiId:
+          description: API identifier assigned by the CAPIF core function to the published
+            service API. Shall not be present in the HTTP POST request from the API
+            publishing function to the CAPIF core function. Shall be present in the
+            HTTP POST response from the CAPIF core function to the API publishing
+            function and in the HTTP GET response from the CAPIF core function to
+            the API invoker (discovery API).
+          title: apiId
+          type: string
+        aefProfiles:
+          description: AEF profile information, which includes the exposed API details
+            (e.g. protocol).
+          items:
+            $ref: '#/components/schemas/AefProfile'
+          minItems: 1
+          title: aefProfiles
+          type: array
+        description:
+          description: Text description of the API
+          title: description
+          type: string
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+        shareableInfo:
+          $ref: '#/components/schemas/ShareableInformation'
+        serviceAPICategory:
+          title: serviceAPICategory
+          type: string
+        apiSuppFeats:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+        pubApiPath:
+          $ref: '#/components/schemas/PublishedApiPath'
+        ccfId:
+          description: CAPIF core function identifier.
+          title: ccfId
+          type: string
+      required:
+      - apiName
+      title: ServiceAPIDescription
+      type: object
+    AefProfile:
+      description: Represents the AEF profile data.
+      example:
+        securityMethods:
+        - null
+        - null
+        versions:
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        domainName: domainName
+        aefId: aefId
+        interfaceDescriptions:
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - domainName
+      - required:
+        - interfaceDescriptions
+      properties:
+        aefId:
+          description: Identifier of the API exposing function
+          title: aefId
+          type: string
+        versions:
+          description: API version
+          items:
+            $ref: '#/components/schemas/Version'
+          minItems: 1
+          title: versions
+          type: array
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        dataFormat:
+          $ref: '#/components/schemas/DataFormat'
+        securityMethods:
+          description: Security methods supported by the AEF
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+        domainName:
+          description: Domain to which API belongs to
+          title: domainName
+          type: string
+        interfaceDescriptions:
+          description: Interface details
+          items:
+            $ref: '#/components/schemas/InterfaceDescription'
+          minItems: 1
+          title: interfaceDescriptions
+          type: array
+      required:
+      - aefId
+      - versions
+      title: AefProfile
+      type: object
+    Version:
+      description: Represents the API version information.
+      example:
+        apiVersion: apiVersion
+        resources:
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        custOperations:
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        expiry: 2000-01-23T04:56:07.000+00:00
+      properties:
+        apiVersion:
+          description: API major version in URI (e.g. v1)
+          title: apiVersion
+          type: string
+        expiry:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        resources:
+          description: Resources supported by the API.
+          items:
+            $ref: '#/components/schemas/Resource'
+          minItems: 1
+          title: resources
+          type: array
+        custOperations:
+          description: Custom operations without resource association.
+          items:
+            $ref: '#/components/schemas/CustomOperation'
+          minItems: 1
+          title: custOperations
+          type: array
+      required:
+      - apiVersion
+      title: Version
+      type: object
+    Resource:
+      description: Represents the API resource data.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        resourceName: resourceName
+        custOpName: custOpName
+        uri: uri
+      properties:
+        resourceName:
+          description: Resource name
+          title: resourceName
+          type: string
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        uri:
+          description: Relative URI of the API resource, it is set as {apiSpecificResourceUriPart}
+            part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: uri
+          type: string
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation associated with a resource as defined in subclause 4.4 of 3GPP
+            TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the API resource
+          title: description
+          type: string
+      required:
+      - commType
+      - resourceName
+      - uri
+      title: Resource
+      type: object
+    Operation:
+      anyOf:
+      - $ref: '#/components/schemas/Operation_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - GET: HTTP GET method - POST: HTTP POST method - PUT: HTTP PUT method - PATCH: HTTP PATCH method - DELETE: HTTP DELETE method
+      title: Operation
+    CustomOperation:
+      description: Represents the description of a custom operation.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        custOpName: custOpName
+      properties:
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation without resource association as defined in subclause 4.4 of
+            3GPP TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the custom operation
+          title: description
+          type: string
+      required:
+      - commType
+      - custOpName
+      title: CustomOperation
+      type: object
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122 - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122 - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      title: SecurityMethod
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 5248
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: Security methods supported by the interface, it take precedence
+            over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    ShareableInformation:
+      description: Indicates whether the service API and/or the service API category
+        can be shared to the list of CAPIF provider domains.
+      example:
+        capifProvDoms:
+        - capifProvDoms
+        - capifProvDoms
+        isShareable: true
+      properties:
+        isShareable:
+          description: Set to "true" indicates that the service API and/or the service
+            API category can be shared to the list of CAPIF provider domain information.
+            Otherwise set to "false".
+          title: isShareable
+          type: boolean
+        capifProvDoms:
+          description: List of CAPIF provider domains to which the service API information
+            to be shared.
+          items:
+            type: string
+          minItems: 1
+          title: capifProvDoms
+          type: array
+      required:
+      - isShareable
+      title: ShareableInformation
+      type: object
+    PublishedApiPath:
+      description: Represents the published API path within the same CAPIF provider
+        domain.
+      example:
+        ccfIds:
+        - ccfIds
+        - ccfIds
+      properties:
+        ccfIds:
+          description: A list of CCF identifiers where the service API is already
+            published.
+          items:
+            type: string
+          minItems: 1
+          title: ccfIds
+          type: array
+      title: PublishedApiPath
+      type: object
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    CommunicationType_anyOf:
+      enum:
+      - REQUEST_RESPONSE
+      - SUBSCRIBE_NOTIFY
+      title: CommunicationType_anyOf
+      type: string
+    Protocol_anyOf:
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol_anyOf
+      type: string
+    DataFormat_anyOf:
+      enum:
+      - JSON
+      title: DataFormat_anyOf
+      type: string
+    Operation_anyOf:
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/typing_utils.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Discover_Service_API/service_apis/util.py b/services/TS29222_CAPIF_Discover_Service_API/service_apis/util.py
new file mode 100644
index 0000000..b3f89d7
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/service_apis/util.py
@@ -0,0 +1,190 @@
+import datetime
+
+import sys
+import six
+import typing
+from service_apis import typing_utils
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+            if my_key == "serviceApiCategory":
+                my_key = "serviceAPICategory"
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+
+    if string is None:
+      return None
+
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+
+    if string is None:
+      return None
+
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Discover_Service_API/setup.py b/services/TS29222_CAPIF_Discover_Service_API/setup.py
new file mode 100644
index 0000000..53dcb25
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "service_apis"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Discover_Service_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Discover_Service_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['service_apis=service_apis.__main__:main']},
+    long_description="""\
+    API for discovering service APIs. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Discover_Service_API/test-requirements.txt b/services/TS29222_CAPIF_Discover_Service_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Discover_Service_API/tox.ini b/services/TS29222_CAPIF_Discover_Service_API/tox.ini
new file mode 100644
index 0000000..bfe39a4
--- /dev/null
+++ b/services/TS29222_CAPIF_Discover_Service_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=service_apis
diff --git a/services/TS29222_CAPIF_Events_API/.dockerignore b/services/TS29222_CAPIF_Events_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Events_API/.gitignore b/services/TS29222_CAPIF_Events_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Events_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Events_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Events_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Events_API/.openapi-generator/FILES
new file mode 100644
index 0000000..edfb886
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/.openapi-generator/FILES
@@ -0,0 +1,67 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+capif_events/__init__.py
+capif_events/__main__.py
+capif_events/controllers/__init__.py
+capif_events/controllers/default_controller.py
+capif_events/controllers/security_controller_.py
+capif_events/encoder.py
+capif_events/models/__init__.py
+capif_events/models/access_control_policy_list.py
+capif_events/models/access_control_policy_list_ext.py
+capif_events/models/access_control_policy_list_ext_all_of.py
+capif_events/models/aef_profile.py
+capif_events/models/api_invoker_policy.py
+capif_events/models/base_model_.py
+capif_events/models/capif_event.py
+capif_events/models/capif_event_any_of.py
+capif_events/models/capif_event_detail.py
+capif_events/models/capif_event_filter.py
+capif_events/models/communication_type.py
+capif_events/models/communication_type_any_of.py
+capif_events/models/custom_operation.py
+capif_events/models/data_format.py
+capif_events/models/data_format_any_of.py
+capif_events/models/event_notification.py
+capif_events/models/event_subscription.py
+capif_events/models/interface_description.py
+capif_events/models/invalid_param.py
+capif_events/models/invocation_log.py
+capif_events/models/ipv4_address_range.py
+capif_events/models/ipv6_address_range.py
+capif_events/models/log.py
+capif_events/models/notification_flag.py
+capif_events/models/notification_flag_any_of.py
+capif_events/models/notification_method.py
+capif_events/models/notification_method_any_of.py
+capif_events/models/operation.py
+capif_events/models/operation_any_of.py
+capif_events/models/partitioning_criteria.py
+capif_events/models/partitioning_criteria_any_of.py
+capif_events/models/problem_details.py
+capif_events/models/protocol.py
+capif_events/models/protocol_any_of.py
+capif_events/models/published_api_path.py
+capif_events/models/reporting_information.py
+capif_events/models/resource.py
+capif_events/models/routing_rule.py
+capif_events/models/security_method.py
+capif_events/models/security_method_any_of.py
+capif_events/models/service_api_description.py
+capif_events/models/shareable_information.py
+capif_events/models/time_range_list.py
+capif_events/models/topology_hiding.py
+capif_events/models/version.py
+capif_events/models/websock_notif_config.py
+capif_events/openapi/openapi.yaml
+capif_events/test/__init__.py
+capif_events/typing_utils.py
+capif_events/util.py
+git_push.sh
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Events_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Events_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/.travis.yml b/services/TS29222_CAPIF_Events_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Events_API/Dockerfile b/services/TS29222_CAPIF_Events_API/Dockerfile
new file mode 100644
index 0000000..ddcf2da
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/Dockerfile
@@ -0,0 +1,18 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+COPY config.yaml /usr/src/app/config.yaml
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "capif_events"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/README.md b/services/TS29222_CAPIF_Events_API/README.md
new file mode 100644
index 0000000..9f89fec
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m capif_events
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/capif-events/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/capif-events/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t capif_events .
+
+# starting up a container
+docker run -p 8080:8080 capif_events
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/__init__.py b/services/TS29222_CAPIF_Events_API/capif_events/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/__main__.py b/services/TS29222_CAPIF_Events_API/capif_events/__main__.py
new file mode 100644
index 0000000..1e602ef
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/__main__.py
@@ -0,0 +1,151 @@
+#!/usr/bin/env python3
+
+import connexion
+import sys
+import logging
+
+from capif_events import encoder
+
+
+from flask import Flask, jsonify, request
+from flask_jwt_extended import JWTManager, jwt_required, create_access_token
+from pymongo import MongoClient
+from .config import Config
+from .core.notifications import Notifications
+from .core.consumer_messager import Subscriber
+from multiprocessing import Process
+from threading import Thread
+from flask_executor import Executor
+from flask_apscheduler import APScheduler
+from logging.handlers import RotatingFileHandler
+from .config import Config
+import os
+from fluent import sender
+from flask_executor import Executor
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+
+
+NAME = "Events-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Events-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Events-Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="events_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_Events_API'},
+            pythonic_params=True)
+
+
+
+config = Config()
+
+notifications = Notifications()
+jwt = JWTManager(app.app)
+configure_logging(app.app)
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+config = Config()
+executor = Executor(app.app)
+subscriber = Subscriber()
+# scheduler = APScheduler()
+# scheduler.init_app(app.app)
+
+@app.app.before_first_request
+def create_listener_message():
+    executor.submit(subscriber.listen)
+
+if __name__ == '__main__':
+    app.run(debug=True, port=8080)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/config.py b/services/TS29222_CAPIF_Events_API/capif_events/config.py
new file mode 100644
index 0000000..377b14f
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/config.py
@@ -0,0 +1,18 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/controllers/__init__.py b/services/TS29222_CAPIF_Events_API/capif_events/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/controllers/default_controller.py b/services/TS29222_CAPIF_Events_API/capif_events/controllers/default_controller.py
new file mode 100644
index 0000000..839f0b0
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/controllers/default_controller.py
@@ -0,0 +1,82 @@
+import connexion
+from capif_events.models.event_subscription import EventSubscription  # noqa: E501
+from ..core.events_apis import EventSubscriptionsOperations
+import json
+from flask import Response, request, current_app
+from flask_jwt_extended import jwt_required, get_jwt_identity
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from ..core.validate_user import ControlAccess
+from functools import wraps
+import pymongo
+
+events_ops = EventSubscriptionsOperations()
+valid_user = ControlAccess()
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+            cn = cert.subject.get_attributes_for_oid(x509.OID_COMMON_NAME)[0].value.strip()
+
+            if cn != "superadmin":
+                cert_signature = cert.signature.hex()
+                result = valid_user.validate_user_cert(args["subscriptionId"], args["subscriberId"], cert_signature)
+
+                if result is not None:
+                    return result
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+def subscriber_id_subscriptions_post(subscriber_id, body):  # noqa: E501
+    """subscriber_id_subscriptions_post
+
+    Creates a new individual CAPIF Event Subscription. # noqa: E501
+
+    :param subscriber_id: Identifier of the Subscriber
+    :type subscriber_id: str
+    :param event_subscription: 
+    :type event_subscription: dict | bytes
+
+    :rtype: EventSubscription
+    """
+
+    current_app.logger.info("Creating event subscription")
+    if connexion.request.is_json:
+        body = EventSubscription.from_dict(connexion.request.get_json())  # noqa: E501
+
+    res = events_ops.create_event(subscriber_id, body)
+
+    return res
+
+@cert_validation()
+def subscriber_id_subscriptions_subscription_id_delete(subscriber_id, subscription_id):  # noqa: E501
+    """subscriber_id_subscriptions_subscription_id_delete
+
+    Deletes an individual CAPIF Event Subscription. # noqa: E501
+
+    :param subscriber_id: Identifier of the Subscriber
+    :type subscriber_id: str
+    :param subscription_id: Identifier of an individual Events Subscription
+    :type subscription_id: str
+
+    :rtype: None
+    """
+
+    current_app.logger.info("Removing event subscription")
+
+    res = events_ops.delete_event(subscriber_id, subscription_id)
+
+    return res
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/controllers/security_controller_.py b/services/TS29222_CAPIF_Events_API/capif_events/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/auth_manager.py b/services/TS29222_CAPIF_Events_API/capif_events/core/auth_manager.py
new file mode 100644
index 0000000..7a5fb82
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/auth_manager.py
@@ -0,0 +1,63 @@
+
+from flask import current_app
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from .resources import Resource
+
+
+class AuthManager(Resource):
+
+    def add_auth_event(self, event_id, subscriber_id):
+
+        try:
+
+            cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+            auth_context = cert_col.find_one({"id":subscriber_id})
+
+            if "event_subscriptions" in auth_context["resources"]:
+                if event_id not in auth_context["resources"]["event_subscriptions"]:
+                    auth_context["resources"]["event_subscriptions"].append(event_id)
+            else:
+                auth_context["resources"]["event_subscriptions"] = [event_id]
+
+            cert_col.find_one_and_update({"id":subscriber_id}, {"$set":auth_context})
+
+        except Exception as e:
+            current_app.logger.error(f"Something wrong in add auth resources: {e}")
+
+
+    def remove_auth_event(self, event_id, subscriber_id):
+
+        try:
+
+            cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+            auth_context = cert_col.find_one({"id":subscriber_id})
+
+            if auth_context != None and cert_col != None:
+                if "event_subscriptions" in auth_context["resources"]:
+                    if event_id in auth_context["resources"]["event_subscriptions"]:
+                        auth_context["resources"]["event_subscriptions"].remove(event_id)
+
+                cert_col.find_one_and_update({"id":subscriber_id}, {"$set":auth_context})
+
+        except Exception as e:
+            current_app.logger.info(f"Something wrong in remove auth resources: {e}")
+
+    def remove_auth_all_event(self, subscriber_id):
+
+        try:
+            cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+            auth_context = cert_col.find_one({"id":subscriber_id})
+
+            if auth_context != None and cert_col != None:
+                if "event_subscriptions" in auth_context["resources"]:
+                    auth_context["resources"]["event_subscriptions"] = []
+
+                cert_col.find_one_and_update({"id":subscriber_id}, {"$set":auth_context})
+
+        except Exception as e:
+            current_app.logger.error(f"Something wrong in remove all auth resources: {e}")
+
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/consumer_messager.py b/services/TS29222_CAPIF_Events_API/capif_events/core/consumer_messager.py
new file mode 100644
index 0000000..0f9fa6a
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/consumer_messager.py
@@ -0,0 +1,33 @@
+# subscriber.py
+import redis
+import time
+import sys
+import json
+import asyncio
+from threading import Thread
+from .notifications import Notifications
+from .internal_event_ops import InternalEventOperations
+from flask import current_app
+
+class Subscriber():
+
+    def __init__(self):
+        self.r = redis.Redis(host='redis', port=6379, db=0)
+        self.notification = Notifications()
+        self.event_ops = InternalEventOperations()
+        self.p = self.r.pubsub()
+        self.p.subscribe("events", "internal-messages")
+
+    def listen(self):
+        for raw_message in self.p.listen():
+            if raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "events":
+                current_app.logger.info("Event received")
+                self.notification.send_notifications(raw_message["data"].decode('utf-8'))
+
+            elif raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "internal-messages":
+                message, *invoker_id = raw_message["data"].decode('utf-8').split(":")
+                if message == "invoker-removed" and len(invoker_id)>0:
+                    self.event_ops.delete_all_events(invoker_id[0])
+
+
+
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/events_apis.py b/services/TS29222_CAPIF_Events_API/capif_events/core/events_apis.py
new file mode 100644
index 0000000..1ece644
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/events_apis.py
@@ -0,0 +1,121 @@
+import sys
+
+import rfc3987
+import pymongo
+import secrets
+import re
+from flask import current_app, Flask, Response
+import json
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from .resources import Resource
+from bson import json_util
+from .responses import internal_server_error, not_found_error, make_response, bad_request_error
+from ..db.db import MongoDatabse
+from ..util import dict_to_camel_case
+from .auth_manager import AuthManager
+
+class EventSubscriptionsOperations(Resource):
+
+    def __check_subscriber_id(self, subscriber_id):
+        mycol_invoker= self.db.get_col_by_name(self.db.invoker_collection)
+        mycol_provider= self.db.get_col_by_name(self.db.provider_collection)
+
+        current_app.logger.debug("Cheking subscriber id")
+
+        invoker_query = {"api_invoker_id":subscriber_id}
+
+        invoker = mycol_invoker.find_one(invoker_query)
+
+        provider_query = {"api_prov_funcs.api_prov_func_id":subscriber_id}
+
+        provider = mycol_provider.find_one(provider_query)
+
+        if invoker is None and provider is None:
+            current_app.logger.error("Not found invoker or provider with this subscriber id")
+            return not_found_error(detail="Invoker or APF or AEF or AMF Not found", cause="Subscriber Not Found")
+
+        return None
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.auth_manager = AuthManager()
+
+    def create_event(self, subscriber_id, event_subscription):
+
+        try:
+            mycol = self.db.get_col_by_name(self.db.event_collection)
+
+            current_app.logger.debug("Creating event")
+
+            if rfc3987.match(event_subscription.notification_destination, rule="URI") is None:
+                current_app.logger.error("Bad url format")
+                return bad_request_error(detail="Bad Param", cause = "Detected Bad formar of param", invalid_params=[{"param": "notificationDestination", "reason": "Not valid URL format"}])
+
+            ## Verify that this subscriberID exist in publishers or invokers
+
+            result = self.__check_subscriber_id(subscriber_id)
+
+
+            if  isinstance(result, Response):
+
+                return result
+
+            # Generate subscriptionID
+            subscription_id = secrets.token_hex(15)
+            evnt = dict()
+            evnt["subscriber_id"] = subscriber_id
+            evnt["subscription_id"] = subscription_id
+            evnt.update(event_subscription.to_dict())
+            mycol.insert_one(evnt)
+
+            current_app.logger.debug("Event Subscription inserted in database")
+
+            self.auth_manager.add_auth_event(subscription_id, subscriber_id)
+
+            res = make_response(object=event_subscription, status=201)
+            res.headers['Location'] = "http://localhost:8080/capif-events/v1/" + \
+                str(subscriber_id) + "/subscriptions/" + str(subscription_id)
+
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in create event"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def delete_event(self, subscriber_id, subscription_id):
+
+        try:
+            mycol = self.db.get_col_by_name(self.db.event_collection)
+
+            current_app.logger.debug("Removing event subscription")
+
+            result = self.__check_subscriber_id(subscriber_id)
+
+
+            if  isinstance(result, Response):
+                return result
+
+            my_query = {'subscriber_id': subscriber_id,
+                    'subscription_id': subscription_id}
+            eventdescription = mycol.find_one(my_query)
+
+            if eventdescription is None:
+                current_app.logger.error("Event subscription not found")
+                return not_found_error(detail="Event subscription not exist", cause="Event API subscription id not found")
+
+            mycol.delete_one(my_query)
+            current_app.logger.debug("Event subscription removed from database")
+
+            self.auth_manager.remove_auth_event(subscription_id, subscriber_id)
+
+            out =  "The event matching subscriptionId  " + subscription_id + " was deleted."
+            return make_response(out, status=204)
+
+        except Exception as e:
+            exception= "An exception occurred in delete event"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/internal_event_ops.py b/services/TS29222_CAPIF_Events_API/capif_events/core/internal_event_ops.py
new file mode 100644
index 0000000..3f4fc6a
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/internal_event_ops.py
@@ -0,0 +1,59 @@
+from flask import current_app
+from .resources import Resource
+from .auth_manager import AuthManager
+
+class InternalEventOperations(Resource):
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.auth_manager = AuthManager()
+
+    def delete_all_events(self, subscriber_id):
+
+        mycol = self.db.get_col_by_name(self.db.event_collection)
+        my_query = {'subscriber_id': subscriber_id}
+        mycol.delete_many(my_query)
+
+        current_app.logger.info(f"Removed events for this subscriber: {subscriber_id}")
+
+        #We dont need remove all auth events, becase when invoker is removed, remove auth entry
+        #self.auth_manager.remove_auth_all_event(subscriber_id)
+
+    def get_event_subscriptions(self, event):
+        try:
+            mycol = self.db.get_col_by_name(self.db.event_collection)
+
+            query= {'events':event}
+            subscriptions = mycol.find(query)
+
+            if  subscriptions is None:
+                current_app.logger.error("Not found event subscriptions")
+
+            else:
+                json_docs=[]
+                for subscription in subscriptions:
+                    json_docs.append(subscription)
+
+                return json_docs
+
+        except Exception as e:
+            current_app.logger.error("An exception occurred ::" + str(e))
+            return False
+    
+    # def get_acls(self, service_id):
+    #     try:
+    #         mycol = self.db.get_col_by_name(self.db.acls_col)
+
+    #         query= {'api_id': service_id}
+    #         acls = mycol.find(query)
+
+    #         if  acls is None:
+    #             current_app.logger.error("Not found event subscriptions")
+
+    #         else:
+
+    #             return acls
+
+    #     except Exception as e:
+    #         current_app.logger.error("An exception occurred ::" + str(e))
+    #         return False
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/notifications.py b/services/TS29222_CAPIF_Events_API/capif_events/core/notifications.py
new file mode 100644
index 0000000..a02f0ab
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/notifications.py
@@ -0,0 +1,43 @@
+#import concurrent
+import requests
+from .internal_event_ops import InternalEventOperations
+from ..models.event_notification import EventNotification
+from ..models.access_control_policy_list_ext import AccessControlPolicyListExt
+from ..models.capif_event_detail import CAPIFEventDetail
+from ..encoder import JSONEncoder
+import sys
+import json
+from flask import current_app
+
+class Notifications():
+
+    def __init__(self):
+        self.events_ops = InternalEventOperations()
+
+    def send_notifications(self, event):
+        current_app.logger.info("Received event, sending notifications")
+        subscriptions = self.events_ops.get_event_subscriptions(event)
+        # message, *ids = event.split(":")
+
+        try:
+            for sub in subscriptions:
+                url = sub["notification_destination"]
+                data = EventNotification(sub["subscription_id"], events=event)
+                # details = CAPIFEventDetail()
+                # if message == "ACCESS_CONTROL_POLICY_UPDATE":
+                #     current_app.logger.info("event: ACCESS_CONTROL_POLICY_UPDATE")
+                #     acls = self.events_ops.get_acls(ids[0])
+                #     details.acc_ctrl_pol_list = AccessControlPolicyListExt(api_id=acls['service_id'], api_invoker_policies=acls['apiInvokerPolicies'])
+
+                # data.event_detail=details
+                self.request_post(url, data)
+                #current_app.logger.info("notification sended")
+
+        except Exception as e:
+            current_app.logger.error("An exception occurred ::" + str(e))
+            return False
+
+    def request_post(self, url, data):
+        headers = {'content-type': 'application/json'}
+        return requests.post(url, json={'text': str(data.to_str())}, headers=headers)
+
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/resources.py b/services/TS29222_CAPIF_Events_API/capif_events/core/resources.py
new file mode 100644
index 0000000..94e29ec
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/resources.py
@@ -0,0 +1,7 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/responses.py b/services/TS29222_CAPIF_Events_API/capif_events/core/responses.py
new file mode 100644
index 0000000..962c4b6
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/responses.py
@@ -0,0 +1,31 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/core/validate_user.py b/services/TS29222_CAPIF_Events_API/capif_events/core/validate_user.py
new file mode 100644
index 0000000..18d54a2
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/core/validate_user.py
@@ -0,0 +1,26 @@
+from flask import current_app, Response
+import json
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from .resources import Resource
+from .responses import internal_server_error
+
+class ControlAccess(Resource):
+
+    def validate_user_cert(self, event_id, subscriber_id, cert_signature):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        try:
+            my_query = {'id':subscriber_id}
+            cert_entry = cert_col.find_one(my_query)
+
+            if cert_entry is not None:
+                if cert_entry["cert_signature"] != cert_signature or "event_subscriptions" not in cert_entry["resources"] or event_id not in cert_entry["resources"]["event_subscriptions"]:
+                    prob = ProblemDetails(title="Unauthorized", detail="User not authorized", cause="You are not the owner of this resource")
+                    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype="application/json")
+
+        except Exception as e:
+            exception = "An exception occurred in validate subscriber"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/db/db.py b/services/TS29222_CAPIF_Events_API/capif_events/db/db.py
new file mode 100644
index 0000000..2f4d119
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/db/db.py
@@ -0,0 +1,48 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.event_collection = self.config['mongo']['col']
+        self.invoker_collection = self.config['mongo']['capif_invokers_col']
+        self.provider_collection = self.config['mongo']['capif_providers_col']
+        self.certs_col = self.config['mongo']['certs_col']
+        # self.acls_col = self.config['mongo']['capif_acls_col']
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
+
+
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/encoder.py b/services/TS29222_CAPIF_Events_API/capif_events/encoder.py
new file mode 100644
index 0000000..f6b018f
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from capif_events.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/__init__.py b/services/TS29222_CAPIF_Events_API/capif_events/models/__init__.py
new file mode 100644
index 0000000..5628bb7
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/__init__.py
@@ -0,0 +1,50 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from capif_events.models.access_control_policy_list import AccessControlPolicyList
+from capif_events.models.access_control_policy_list_ext import AccessControlPolicyListExt
+from capif_events.models.access_control_policy_list_ext_all_of import AccessControlPolicyListExtAllOf
+from capif_events.models.aef_profile import AefProfile
+from capif_events.models.api_invoker_policy import ApiInvokerPolicy
+from capif_events.models.capif_event import CAPIFEvent
+from capif_events.models.capif_event_any_of import CAPIFEventAnyOf
+from capif_events.models.capif_event_detail import CAPIFEventDetail
+from capif_events.models.capif_event_filter import CAPIFEventFilter
+from capif_events.models.communication_type import CommunicationType
+from capif_events.models.communication_type_any_of import CommunicationTypeAnyOf
+from capif_events.models.custom_operation import CustomOperation
+from capif_events.models.data_format import DataFormat
+from capif_events.models.data_format_any_of import DataFormatAnyOf
+from capif_events.models.event_notification import EventNotification
+from capif_events.models.event_subscription import EventSubscription
+from capif_events.models.interface_description import InterfaceDescription
+from capif_events.models.invalid_param import InvalidParam
+from capif_events.models.invocation_log import InvocationLog
+from capif_events.models.ipv4_address_range import Ipv4AddressRange
+from capif_events.models.ipv6_address_range import Ipv6AddressRange
+from capif_events.models.log import Log
+from capif_events.models.notification_flag import NotificationFlag
+from capif_events.models.notification_flag_any_of import NotificationFlagAnyOf
+from capif_events.models.notification_method import NotificationMethod
+from capif_events.models.notification_method_any_of import NotificationMethodAnyOf
+from capif_events.models.operation import Operation
+from capif_events.models.operation_any_of import OperationAnyOf
+from capif_events.models.partitioning_criteria import PartitioningCriteria
+from capif_events.models.partitioning_criteria_any_of import PartitioningCriteriaAnyOf
+from capif_events.models.problem_details import ProblemDetails
+from capif_events.models.protocol import Protocol
+from capif_events.models.protocol_any_of import ProtocolAnyOf
+from capif_events.models.published_api_path import PublishedApiPath
+from capif_events.models.reporting_information import ReportingInformation
+from capif_events.models.resource import Resource
+from capif_events.models.routing_rule import RoutingRule
+from capif_events.models.security_method import SecurityMethod
+from capif_events.models.security_method_any_of import SecurityMethodAnyOf
+from capif_events.models.service_api_description import ServiceAPIDescription
+from capif_events.models.shareable_information import ShareableInformation
+from capif_events.models.time_range_list import TimeRangeList
+from capif_events.models.topology_hiding import TopologyHiding
+from capif_events.models.version import Version
+from capif_events.models.websock_notif_config import WebsockNotifConfig
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list.py b/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list.py
new file mode 100644
index 0000000..4cca41d
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list.py
@@ -0,0 +1,70 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.api_invoker_policy import ApiInvokerPolicy
+from capif_events import util
+
+from capif_events.models.api_invoker_policy import ApiInvokerPolicy  # noqa: E501
+
+class AccessControlPolicyList(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_policies=None):  # noqa: E501
+        """AccessControlPolicyList - a model defined in OpenAPI
+
+        :param api_invoker_policies: The api_invoker_policies of this AccessControlPolicyList.  # noqa: E501
+        :type api_invoker_policies: List[ApiInvokerPolicy]
+        """
+        self.openapi_types = {
+            'api_invoker_policies': List[ApiInvokerPolicy]
+        }
+
+        self.attribute_map = {
+            'api_invoker_policies': 'apiInvokerPolicies'
+        }
+
+        self._api_invoker_policies = api_invoker_policies
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessControlPolicyList':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessControlPolicyList of this AccessControlPolicyList.  # noqa: E501
+        :rtype: AccessControlPolicyList
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_policies(self):
+        """Gets the api_invoker_policies of this AccessControlPolicyList.
+
+        Policy of each API invoker.  # noqa: E501
+
+        :return: The api_invoker_policies of this AccessControlPolicyList.
+        :rtype: List[ApiInvokerPolicy]
+        """
+        return self._api_invoker_policies
+
+    @api_invoker_policies.setter
+    def api_invoker_policies(self, api_invoker_policies):
+        """Sets the api_invoker_policies of this AccessControlPolicyList.
+
+        Policy of each API invoker.  # noqa: E501
+
+        :param api_invoker_policies: The api_invoker_policies of this AccessControlPolicyList.
+        :type api_invoker_policies: List[ApiInvokerPolicy]
+        """
+        if api_invoker_policies is not None and len(api_invoker_policies) < 0:
+            raise ValueError("Invalid value for `api_invoker_policies`, number of items must be greater than or equal to `0`")  # noqa: E501
+
+        self._api_invoker_policies = api_invoker_policies
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext.py b/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext.py
new file mode 100644
index 0000000..6f5709c
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext.py
@@ -0,0 +1,102 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.access_control_policy_list import AccessControlPolicyList
+from capif_events.models.access_control_policy_list_ext_all_of import AccessControlPolicyListExtAllOf
+from capif_events.models.api_invoker_policy import ApiInvokerPolicy
+from capif_events import util
+
+from capif_events.models.access_control_policy_list import AccessControlPolicyList  # noqa: E501
+from capif_events.models.access_control_policy_list_ext_all_of import AccessControlPolicyListExtAllOf  # noqa: E501
+from capif_events.models.api_invoker_policy import ApiInvokerPolicy  # noqa: E501
+
+class AccessControlPolicyListExt(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_policies=None, api_id=None):  # noqa: E501
+        """AccessControlPolicyListExt - a model defined in OpenAPI
+
+        :param api_invoker_policies: The api_invoker_policies of this AccessControlPolicyListExt.  # noqa: E501
+        :type api_invoker_policies: List[ApiInvokerPolicy]
+        :param api_id: The api_id of this AccessControlPolicyListExt.  # noqa: E501
+        :type api_id: str
+        """
+        self.openapi_types = {
+            'api_invoker_policies': List[ApiInvokerPolicy],
+            'api_id': str
+        }
+
+        self.attribute_map = {
+            'api_invoker_policies': 'apiInvokerPolicies',
+            'api_id': 'apiId'
+        }
+
+        self._api_invoker_policies = api_invoker_policies
+        self._api_id = api_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessControlPolicyListExt':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessControlPolicyListExt of this AccessControlPolicyListExt.  # noqa: E501
+        :rtype: AccessControlPolicyListExt
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_policies(self):
+        """Gets the api_invoker_policies of this AccessControlPolicyListExt.
+
+        Policy of each API invoker.  # noqa: E501
+
+        :return: The api_invoker_policies of this AccessControlPolicyListExt.
+        :rtype: List[ApiInvokerPolicy]
+        """
+        return self._api_invoker_policies
+
+    @api_invoker_policies.setter
+    def api_invoker_policies(self, api_invoker_policies):
+        """Sets the api_invoker_policies of this AccessControlPolicyListExt.
+
+        Policy of each API invoker.  # noqa: E501
+
+        :param api_invoker_policies: The api_invoker_policies of this AccessControlPolicyListExt.
+        :type api_invoker_policies: List[ApiInvokerPolicy]
+        """
+        if api_invoker_policies is not None and len(api_invoker_policies) < 0:
+            raise ValueError("Invalid value for `api_invoker_policies`, number of items must be greater than or equal to `0`")  # noqa: E501
+
+        self._api_invoker_policies = api_invoker_policies
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this AccessControlPolicyListExt.
+
+
+        :return: The api_id of this AccessControlPolicyListExt.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this AccessControlPolicyListExt.
+
+
+        :param api_id: The api_id of this AccessControlPolicyListExt.
+        :type api_id: str
+        """
+        if api_id is None:
+            raise ValueError("Invalid value for `api_id`, must not be `None`")  # noqa: E501
+
+        self._api_id = api_id
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext_all_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext_all_of.py
new file mode 100644
index 0000000..cd1dda0
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/access_control_policy_list_ext_all_of.py
@@ -0,0 +1,64 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class AccessControlPolicyListExtAllOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_id=None):  # noqa: E501
+        """AccessControlPolicyListExtAllOf - a model defined in OpenAPI
+
+        :param api_id: The api_id of this AccessControlPolicyListExtAllOf.  # noqa: E501
+        :type api_id: str
+        """
+        self.openapi_types = {
+            'api_id': str
+        }
+
+        self.attribute_map = {
+            'api_id': 'apiId'
+        }
+
+        self._api_id = api_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessControlPolicyListExtAllOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessControlPolicyListExt_allOf of this AccessControlPolicyListExtAllOf.  # noqa: E501
+        :rtype: AccessControlPolicyListExtAllOf
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this AccessControlPolicyListExtAllOf.
+
+
+        :return: The api_id of this AccessControlPolicyListExtAllOf.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this AccessControlPolicyListExtAllOf.
+
+
+        :param api_id: The api_id of this AccessControlPolicyListExtAllOf.
+        :type api_id: str
+        """
+
+        self._api_id = api_id
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/aef_profile.py b/services/TS29222_CAPIF_Events_API/capif_events/models/aef_profile.py
new file mode 100644
index 0000000..ea2ce8b
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/aef_profile.py
@@ -0,0 +1,250 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.data_format import DataFormat
+from capif_events.models.interface_description import InterfaceDescription
+from capif_events.models.protocol import Protocol
+from capif_events.models.security_method import SecurityMethod
+from capif_events.models.version import Version
+from capif_events import util
+
+from capif_events.models.data_format import DataFormat  # noqa: E501
+from capif_events.models.interface_description import InterfaceDescription  # noqa: E501
+from capif_events.models.protocol import Protocol  # noqa: E501
+from capif_events.models.security_method import SecurityMethod  # noqa: E501
+from capif_events.models.version import Version  # noqa: E501
+
+class AefProfile(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, versions=None, protocol=None, data_format=None, security_methods=None, domain_name=None, interface_descriptions=None):  # noqa: E501
+        """AefProfile - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this AefProfile.  # noqa: E501
+        :type aef_id: str
+        :param versions: The versions of this AefProfile.  # noqa: E501
+        :type versions: List[Version]
+        :param protocol: The protocol of this AefProfile.  # noqa: E501
+        :type protocol: Protocol
+        :param data_format: The data_format of this AefProfile.  # noqa: E501
+        :type data_format: DataFormat
+        :param security_methods: The security_methods of this AefProfile.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        :param domain_name: The domain_name of this AefProfile.  # noqa: E501
+        :type domain_name: str
+        :param interface_descriptions: The interface_descriptions of this AefProfile.  # noqa: E501
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'versions': List[Version],
+            'protocol': Protocol,
+            'data_format': DataFormat,
+            'security_methods': List[SecurityMethod],
+            'domain_name': str,
+            'interface_descriptions': List[InterfaceDescription]
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'versions': 'versions',
+            'protocol': 'protocol',
+            'data_format': 'dataFormat',
+            'security_methods': 'securityMethods',
+            'domain_name': 'domainName',
+            'interface_descriptions': 'interfaceDescriptions'
+        }
+
+        self._aef_id = aef_id
+        self._versions = versions
+        self._protocol = protocol
+        self._data_format = data_format
+        self._security_methods = security_methods
+        self._domain_name = domain_name
+        self._interface_descriptions = interface_descriptions
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AefProfile':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AefProfile of this AefProfile.  # noqa: E501
+        :rtype: AefProfile
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_id of this AefProfile.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_id: The aef_id of this AefProfile.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def versions(self):
+        """Gets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :return: The versions of this AefProfile.
+        :rtype: List[Version]
+        """
+        return self._versions
+
+    @versions.setter
+    def versions(self, versions):
+        """Sets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :param versions: The versions of this AefProfile.
+        :type versions: List[Version]
+        """
+        if versions is None:
+            raise ValueError("Invalid value for `versions`, must not be `None`")  # noqa: E501
+        if versions is not None and len(versions) < 1:
+            raise ValueError("Invalid value for `versions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._versions = versions
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this AefProfile.
+
+
+        :return: The protocol of this AefProfile.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this AefProfile.
+
+
+        :param protocol: The protocol of this AefProfile.
+        :type protocol: Protocol
+        """
+
+        self._protocol = protocol
+
+    @property
+    def data_format(self):
+        """Gets the data_format of this AefProfile.
+
+
+        :return: The data_format of this AefProfile.
+        :rtype: DataFormat
+        """
+        return self._data_format
+
+    @data_format.setter
+    def data_format(self, data_format):
+        """Sets the data_format of this AefProfile.
+
+
+        :param data_format: The data_format of this AefProfile.
+        :type data_format: DataFormat
+        """
+
+        self._data_format = data_format
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :return: The security_methods of this AefProfile.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :param security_methods: The security_methods of this AefProfile.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
+
+    @property
+    def domain_name(self):
+        """Gets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :return: The domain_name of this AefProfile.
+        :rtype: str
+        """
+        return self._domain_name
+
+    @domain_name.setter
+    def domain_name(self, domain_name):
+        """Sets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :param domain_name: The domain_name of this AefProfile.
+        :type domain_name: str
+        """
+
+        self._domain_name = domain_name
+
+    @property
+    def interface_descriptions(self):
+        """Gets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :return: The interface_descriptions of this AefProfile.
+        :rtype: List[InterfaceDescription]
+        """
+        return self._interface_descriptions
+
+    @interface_descriptions.setter
+    def interface_descriptions(self, interface_descriptions):
+        """Sets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :param interface_descriptions: The interface_descriptions of this AefProfile.
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        if interface_descriptions is not None and len(interface_descriptions) < 1:
+            raise ValueError("Invalid value for `interface_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._interface_descriptions = interface_descriptions
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/api_invoker_policy.py b/services/TS29222_CAPIF_Events_API/capif_events/models/api_invoker_policy.py
new file mode 100644
index 0000000..dbc1d98
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/api_invoker_policy.py
@@ -0,0 +1,156 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.time_range_list import TimeRangeList
+from capif_events import util
+
+from capif_events.models.time_range_list import TimeRangeList  # noqa: E501
+
+class ApiInvokerPolicy(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_id=None, allowed_total_invocations=None, allowed_invocations_per_second=None, allowed_invocation_time_range_list=None):  # noqa: E501
+        """ApiInvokerPolicy - a model defined in OpenAPI
+
+        :param api_invoker_id: The api_invoker_id of this ApiInvokerPolicy.  # noqa: E501
+        :type api_invoker_id: str
+        :param allowed_total_invocations: The allowed_total_invocations of this ApiInvokerPolicy.  # noqa: E501
+        :type allowed_total_invocations: int
+        :param allowed_invocations_per_second: The allowed_invocations_per_second of this ApiInvokerPolicy.  # noqa: E501
+        :type allowed_invocations_per_second: int
+        :param allowed_invocation_time_range_list: The allowed_invocation_time_range_list of this ApiInvokerPolicy.  # noqa: E501
+        :type allowed_invocation_time_range_list: List[TimeRangeList]
+        """
+        self.openapi_types = {
+            'api_invoker_id': str,
+            'allowed_total_invocations': int,
+            'allowed_invocations_per_second': int,
+            'allowed_invocation_time_range_list': List[TimeRangeList]
+        }
+
+        self.attribute_map = {
+            'api_invoker_id': 'apiInvokerId',
+            'allowed_total_invocations': 'allowedTotalInvocations',
+            'allowed_invocations_per_second': 'allowedInvocationsPerSecond',
+            'allowed_invocation_time_range_list': 'allowedInvocationTimeRangeList'
+        }
+
+        self._api_invoker_id = api_invoker_id
+        self._allowed_total_invocations = allowed_total_invocations
+        self._allowed_invocations_per_second = allowed_invocations_per_second
+        self._allowed_invocation_time_range_list = allowed_invocation_time_range_list
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ApiInvokerPolicy':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ApiInvokerPolicy of this ApiInvokerPolicy.  # noqa: E501
+        :rtype: ApiInvokerPolicy
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this ApiInvokerPolicy.
+
+        API invoker ID assigned by the CAPIF core function  # noqa: E501
+
+        :return: The api_invoker_id of this ApiInvokerPolicy.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this ApiInvokerPolicy.
+
+        API invoker ID assigned by the CAPIF core function  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this ApiInvokerPolicy.
+        :type api_invoker_id: str
+        """
+        if api_invoker_id is None:
+            raise ValueError("Invalid value for `api_invoker_id`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def allowed_total_invocations(self):
+        """Gets the allowed_total_invocations of this ApiInvokerPolicy.
+
+        Total number of invocations allowed on the service API by the API invoker.  # noqa: E501
+
+        :return: The allowed_total_invocations of this ApiInvokerPolicy.
+        :rtype: int
+        """
+        return self._allowed_total_invocations
+
+    @allowed_total_invocations.setter
+    def allowed_total_invocations(self, allowed_total_invocations):
+        """Sets the allowed_total_invocations of this ApiInvokerPolicy.
+
+        Total number of invocations allowed on the service API by the API invoker.  # noqa: E501
+
+        :param allowed_total_invocations: The allowed_total_invocations of this ApiInvokerPolicy.
+        :type allowed_total_invocations: int
+        """
+
+        self._allowed_total_invocations = allowed_total_invocations
+
+    @property
+    def allowed_invocations_per_second(self):
+        """Gets the allowed_invocations_per_second of this ApiInvokerPolicy.
+
+        Invocations per second allowed on the service API by the API invoker.  # noqa: E501
+
+        :return: The allowed_invocations_per_second of this ApiInvokerPolicy.
+        :rtype: int
+        """
+        return self._allowed_invocations_per_second
+
+    @allowed_invocations_per_second.setter
+    def allowed_invocations_per_second(self, allowed_invocations_per_second):
+        """Sets the allowed_invocations_per_second of this ApiInvokerPolicy.
+
+        Invocations per second allowed on the service API by the API invoker.  # noqa: E501
+
+        :param allowed_invocations_per_second: The allowed_invocations_per_second of this ApiInvokerPolicy.
+        :type allowed_invocations_per_second: int
+        """
+
+        self._allowed_invocations_per_second = allowed_invocations_per_second
+
+    @property
+    def allowed_invocation_time_range_list(self):
+        """Gets the allowed_invocation_time_range_list of this ApiInvokerPolicy.
+
+        The time ranges during which the invocations are allowed on the service API by the API invoker.  # noqa: E501
+
+        :return: The allowed_invocation_time_range_list of this ApiInvokerPolicy.
+        :rtype: List[TimeRangeList]
+        """
+        return self._allowed_invocation_time_range_list
+
+    @allowed_invocation_time_range_list.setter
+    def allowed_invocation_time_range_list(self, allowed_invocation_time_range_list):
+        """Sets the allowed_invocation_time_range_list of this ApiInvokerPolicy.
+
+        The time ranges during which the invocations are allowed on the service API by the API invoker.  # noqa: E501
+
+        :param allowed_invocation_time_range_list: The allowed_invocation_time_range_list of this ApiInvokerPolicy.
+        :type allowed_invocation_time_range_list: List[TimeRangeList]
+        """
+        if allowed_invocation_time_range_list is not None and len(allowed_invocation_time_range_list) < 0:
+            raise ValueError("Invalid value for `allowed_invocation_time_range_list`, number of items must be greater than or equal to `0`")  # noqa: E501
+
+        self._allowed_invocation_time_range_list = allowed_invocation_time_range_list
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/base_model_.py b/services/TS29222_CAPIF_Events_API/capif_events/models/base_model_.py
new file mode 100644
index 0000000..c71e9d0
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from capif_events import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event.py b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event.py
new file mode 100644
index 0000000..86648b4
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.capif_event_any_of import CAPIFEventAnyOf
+from capif_events import util
+
+from capif_events.models.capif_event_any_of import CAPIFEventAnyOf  # noqa: E501
+
+class CAPIFEvent(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """CAPIFEvent - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CAPIFEvent':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CAPIFEvent of this CAPIFEvent.  # noqa: E501
+        :rtype: CAPIFEvent
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_any_of.py
new file mode 100644
index 0000000..3b2f4d7
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_any_of.py
@@ -0,0 +1,53 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class CAPIFEventAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    SERVICE_API_AVAILABLE = "SERVICE_API_AVAILABLE"
+    SERVICE_API_UNAVAILABLE = "SERVICE_API_UNAVAILABLE"
+    SERVICE_API_UPDATE = "SERVICE_API_UPDATE"
+    API_INVOKER_ONBOARDED = "API_INVOKER_ONBOARDED"
+    API_INVOKER_OFFBOARDED = "API_INVOKER_OFFBOARDED"
+    SERVICE_API_INVOCATION_SUCCESS = "SERVICE_API_INVOCATION_SUCCESS"
+    SERVICE_API_INVOCATION_FAILURE = "SERVICE_API_INVOCATION_FAILURE"
+    ACCESS_CONTROL_POLICY_UPDATE = "ACCESS_CONTROL_POLICY_UPDATE"
+    ACCESS_CONTROL_POLICY_UNAVAILABLE = "ACCESS_CONTROL_POLICY_UNAVAILABLE"
+    API_INVOKER_AUTHORIZATION_REVOKED = "API_INVOKER_AUTHORIZATION_REVOKED"
+    API_INVOKER_UPDATED = "API_INVOKER_UPDATED"
+    API_TOPOLOGY_HIDING_CREATED = "API_TOPOLOGY_HIDING_CREATED"
+    API_TOPOLOGY_HIDING_REVOKED = "API_TOPOLOGY_HIDING_REVOKED"
+    def __init__(self):  # noqa: E501
+        """CAPIFEventAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CAPIFEventAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CAPIFEvent_anyOf of this CAPIFEventAnyOf.  # noqa: E501
+        :rtype: CAPIFEventAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_detail.py b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_detail.py
new file mode 100644
index 0000000..f9c21eb
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_detail.py
@@ -0,0 +1,218 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.access_control_policy_list_ext import AccessControlPolicyListExt
+from capif_events.models.invocation_log import InvocationLog
+from capif_events.models.service_api_description import ServiceAPIDescription
+from capif_events.models.topology_hiding import TopologyHiding
+from capif_events import util
+
+from capif_events.models.access_control_policy_list_ext import AccessControlPolicyListExt  # noqa: E501
+from capif_events.models.invocation_log import InvocationLog  # noqa: E501
+from capif_events.models.service_api_description import ServiceAPIDescription  # noqa: E501
+from capif_events.models.topology_hiding import TopologyHiding  # noqa: E501
+
+class CAPIFEventDetail(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, service_api_descriptions=None, api_ids=None, api_invoker_ids=None, acc_ctrl_pol_list=None, invocation_logs=None, api_topo_hide=None):  # noqa: E501
+        """CAPIFEventDetail - a model defined in OpenAPI
+
+        :param service_api_descriptions: The service_api_descriptions of this CAPIFEventDetail.  # noqa: E501
+        :type service_api_descriptions: List[ServiceAPIDescription]
+        :param api_ids: The api_ids of this CAPIFEventDetail.  # noqa: E501
+        :type api_ids: List[str]
+        :param api_invoker_ids: The api_invoker_ids of this CAPIFEventDetail.  # noqa: E501
+        :type api_invoker_ids: List[str]
+        :param acc_ctrl_pol_list: The acc_ctrl_pol_list of this CAPIFEventDetail.  # noqa: E501
+        :type acc_ctrl_pol_list: AccessControlPolicyListExt
+        :param invocation_logs: The invocation_logs of this CAPIFEventDetail.  # noqa: E501
+        :type invocation_logs: List[InvocationLog]
+        :param api_topo_hide: The api_topo_hide of this CAPIFEventDetail.  # noqa: E501
+        :type api_topo_hide: TopologyHiding
+        """
+        self.openapi_types = {
+            'service_api_descriptions': List[ServiceAPIDescription],
+            'api_ids': List[str],
+            'api_invoker_ids': List[str],
+            'acc_ctrl_pol_list': AccessControlPolicyListExt,
+            'invocation_logs': List[InvocationLog],
+            'api_topo_hide': TopologyHiding
+        }
+
+        self.attribute_map = {
+            'service_api_descriptions': 'serviceAPIDescriptions',
+            'api_ids': 'apiIds',
+            'api_invoker_ids': 'apiInvokerIds',
+            'acc_ctrl_pol_list': 'accCtrlPolList',
+            'invocation_logs': 'invocationLogs',
+            'api_topo_hide': 'apiTopoHide'
+        }
+
+        self._service_api_descriptions = service_api_descriptions
+        self._api_ids = api_ids
+        self._api_invoker_ids = api_invoker_ids
+        self._acc_ctrl_pol_list = acc_ctrl_pol_list
+        self._invocation_logs = invocation_logs
+        self._api_topo_hide = api_topo_hide
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CAPIFEventDetail':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CAPIFEventDetail of this CAPIFEventDetail.  # noqa: E501
+        :rtype: CAPIFEventDetail
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def service_api_descriptions(self):
+        """Gets the service_api_descriptions of this CAPIFEventDetail.
+
+        Description of the service API as published by the APF.  # noqa: E501
+
+        :return: The service_api_descriptions of this CAPIFEventDetail.
+        :rtype: List[ServiceAPIDescription]
+        """
+        return self._service_api_descriptions
+
+    @service_api_descriptions.setter
+    def service_api_descriptions(self, service_api_descriptions):
+        """Sets the service_api_descriptions of this CAPIFEventDetail.
+
+        Description of the service API as published by the APF.  # noqa: E501
+
+        :param service_api_descriptions: The service_api_descriptions of this CAPIFEventDetail.
+        :type service_api_descriptions: List[ServiceAPIDescription]
+        """
+        if service_api_descriptions is not None and len(service_api_descriptions) < 1:
+            raise ValueError("Invalid value for `service_api_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._service_api_descriptions = service_api_descriptions
+
+    @property
+    def api_ids(self):
+        """Gets the api_ids of this CAPIFEventDetail.
+
+        Identifier of the service API  # noqa: E501
+
+        :return: The api_ids of this CAPIFEventDetail.
+        :rtype: List[str]
+        """
+        return self._api_ids
+
+    @api_ids.setter
+    def api_ids(self, api_ids):
+        """Sets the api_ids of this CAPIFEventDetail.
+
+        Identifier of the service API  # noqa: E501
+
+        :param api_ids: The api_ids of this CAPIFEventDetail.
+        :type api_ids: List[str]
+        """
+        if api_ids is not None and len(api_ids) < 1:
+            raise ValueError("Invalid value for `api_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_ids = api_ids
+
+    @property
+    def api_invoker_ids(self):
+        """Gets the api_invoker_ids of this CAPIFEventDetail.
+
+        Identity of the API invoker  # noqa: E501
+
+        :return: The api_invoker_ids of this CAPIFEventDetail.
+        :rtype: List[str]
+        """
+        return self._api_invoker_ids
+
+    @api_invoker_ids.setter
+    def api_invoker_ids(self, api_invoker_ids):
+        """Sets the api_invoker_ids of this CAPIFEventDetail.
+
+        Identity of the API invoker  # noqa: E501
+
+        :param api_invoker_ids: The api_invoker_ids of this CAPIFEventDetail.
+        :type api_invoker_ids: List[str]
+        """
+        if api_invoker_ids is not None and len(api_invoker_ids) < 1:
+            raise ValueError("Invalid value for `api_invoker_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_invoker_ids = api_invoker_ids
+
+    @property
+    def acc_ctrl_pol_list(self):
+        """Gets the acc_ctrl_pol_list of this CAPIFEventDetail.
+
+
+        :return: The acc_ctrl_pol_list of this CAPIFEventDetail.
+        :rtype: AccessControlPolicyListExt
+        """
+        return self._acc_ctrl_pol_list
+
+    @acc_ctrl_pol_list.setter
+    def acc_ctrl_pol_list(self, acc_ctrl_pol_list):
+        """Sets the acc_ctrl_pol_list of this CAPIFEventDetail.
+
+
+        :param acc_ctrl_pol_list: The acc_ctrl_pol_list of this CAPIFEventDetail.
+        :type acc_ctrl_pol_list: AccessControlPolicyListExt
+        """
+
+        self._acc_ctrl_pol_list = acc_ctrl_pol_list
+
+    @property
+    def invocation_logs(self):
+        """Gets the invocation_logs of this CAPIFEventDetail.
+
+        Invocation logs.  # noqa: E501
+
+        :return: The invocation_logs of this CAPIFEventDetail.
+        :rtype: List[InvocationLog]
+        """
+        return self._invocation_logs
+
+    @invocation_logs.setter
+    def invocation_logs(self, invocation_logs):
+        """Sets the invocation_logs of this CAPIFEventDetail.
+
+        Invocation logs.  # noqa: E501
+
+        :param invocation_logs: The invocation_logs of this CAPIFEventDetail.
+        :type invocation_logs: List[InvocationLog]
+        """
+        if invocation_logs is not None and len(invocation_logs) < 1:
+            raise ValueError("Invalid value for `invocation_logs`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invocation_logs = invocation_logs
+
+    @property
+    def api_topo_hide(self):
+        """Gets the api_topo_hide of this CAPIFEventDetail.
+
+
+        :return: The api_topo_hide of this CAPIFEventDetail.
+        :rtype: TopologyHiding
+        """
+        return self._api_topo_hide
+
+    @api_topo_hide.setter
+    def api_topo_hide(self, api_topo_hide):
+        """Sets the api_topo_hide of this CAPIFEventDetail.
+
+
+        :param api_topo_hide: The api_topo_hide of this CAPIFEventDetail.
+        :type api_topo_hide: TopologyHiding
+        """
+
+        self._api_topo_hide = api_topo_hide
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_filter.py b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_filter.py
new file mode 100644
index 0000000..19aa9e5
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/capif_event_filter.py
@@ -0,0 +1,128 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class CAPIFEventFilter(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_ids=None, api_invoker_ids=None, aef_ids=None):  # noqa: E501
+        """CAPIFEventFilter - a model defined in OpenAPI
+
+        :param api_ids: The api_ids of this CAPIFEventFilter.  # noqa: E501
+        :type api_ids: List[str]
+        :param api_invoker_ids: The api_invoker_ids of this CAPIFEventFilter.  # noqa: E501
+        :type api_invoker_ids: List[str]
+        :param aef_ids: The aef_ids of this CAPIFEventFilter.  # noqa: E501
+        :type aef_ids: List[str]
+        """
+        self.openapi_types = {
+            'api_ids': List[str],
+            'api_invoker_ids': List[str],
+            'aef_ids': List[str]
+        }
+
+        self.attribute_map = {
+            'api_ids': 'apiIds',
+            'api_invoker_ids': 'apiInvokerIds',
+            'aef_ids': 'aefIds'
+        }
+
+        self._api_ids = api_ids
+        self._api_invoker_ids = api_invoker_ids
+        self._aef_ids = aef_ids
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CAPIFEventFilter':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CAPIFEventFilter of this CAPIFEventFilter.  # noqa: E501
+        :rtype: CAPIFEventFilter
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_ids(self):
+        """Gets the api_ids of this CAPIFEventFilter.
+
+        Identifier of the service API  # noqa: E501
+
+        :return: The api_ids of this CAPIFEventFilter.
+        :rtype: List[str]
+        """
+        return self._api_ids
+
+    @api_ids.setter
+    def api_ids(self, api_ids):
+        """Sets the api_ids of this CAPIFEventFilter.
+
+        Identifier of the service API  # noqa: E501
+
+        :param api_ids: The api_ids of this CAPIFEventFilter.
+        :type api_ids: List[str]
+        """
+        if api_ids is not None and len(api_ids) < 1:
+            raise ValueError("Invalid value for `api_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_ids = api_ids
+
+    @property
+    def api_invoker_ids(self):
+        """Gets the api_invoker_ids of this CAPIFEventFilter.
+
+        Identity of the API invoker  # noqa: E501
+
+        :return: The api_invoker_ids of this CAPIFEventFilter.
+        :rtype: List[str]
+        """
+        return self._api_invoker_ids
+
+    @api_invoker_ids.setter
+    def api_invoker_ids(self, api_invoker_ids):
+        """Sets the api_invoker_ids of this CAPIFEventFilter.
+
+        Identity of the API invoker  # noqa: E501
+
+        :param api_invoker_ids: The api_invoker_ids of this CAPIFEventFilter.
+        :type api_invoker_ids: List[str]
+        """
+        if api_invoker_ids is not None and len(api_invoker_ids) < 1:
+            raise ValueError("Invalid value for `api_invoker_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_invoker_ids = api_invoker_ids
+
+    @property
+    def aef_ids(self):
+        """Gets the aef_ids of this CAPIFEventFilter.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_ids of this CAPIFEventFilter.
+        :rtype: List[str]
+        """
+        return self._aef_ids
+
+    @aef_ids.setter
+    def aef_ids(self, aef_ids):
+        """Sets the aef_ids of this CAPIFEventFilter.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_ids: The aef_ids of this CAPIFEventFilter.
+        :type aef_ids: List[str]
+        """
+        if aef_ids is not None and len(aef_ids) < 1:
+            raise ValueError("Invalid value for `aef_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._aef_ids = aef_ids
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/communication_type.py b/services/TS29222_CAPIF_Events_API/capif_events/models/communication_type.py
new file mode 100644
index 0000000..76054ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/communication_type.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.communication_type_any_of import CommunicationTypeAnyOf
+from capif_events import util
+
+from capif_events.models.communication_type_any_of import CommunicationTypeAnyOf  # noqa: E501
+
+class CommunicationType(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """CommunicationType - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationType':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType of this CommunicationType.  # noqa: E501
+        :rtype: CommunicationType
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/communication_type_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/communication_type_any_of.py
new file mode 100644
index 0000000..de71aea
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/communication_type_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class CommunicationTypeAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    REQUEST_RESPONSE = "REQUEST_RESPONSE"
+    SUBSCRIBE_NOTIFY = "SUBSCRIBE_NOTIFY"
+    def __init__(self):  # noqa: E501
+        """CommunicationTypeAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationTypeAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType_anyOf of this CommunicationTypeAnyOf.  # noqa: E501
+        :rtype: CommunicationTypeAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/custom_operation.py b/services/TS29222_CAPIF_Events_API/capif_events/models/custom_operation.py
new file mode 100644
index 0000000..190dae7
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/custom_operation.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.communication_type import CommunicationType
+from capif_events.models.operation import Operation
+from capif_events import util
+
+from capif_events.models.communication_type import CommunicationType  # noqa: E501
+from capif_events.models.operation import Operation  # noqa: E501
+
+class CustomOperation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, comm_type=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """CustomOperation - a model defined in OpenAPI
+
+        :param comm_type: The comm_type of this CustomOperation.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param cust_op_name: The cust_op_name of this CustomOperation.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this CustomOperation.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this CustomOperation.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'comm_type': CommunicationType,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'comm_type': 'commType',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._comm_type = comm_type
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CustomOperation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CustomOperation of this CustomOperation.  # noqa: E501
+        :rtype: CustomOperation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this CustomOperation.
+
+
+        :return: The comm_type of this CustomOperation.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this CustomOperation.
+
+
+        :param comm_type: The comm_type of this CustomOperation.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this CustomOperation.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this CustomOperation.
+        :type cust_op_name: str
+        """
+        if cust_op_name is None:
+            raise ValueError("Invalid value for `cust_op_name`, must not be `None`")  # noqa: E501
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this CustomOperation.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this CustomOperation.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :return: The description of this CustomOperation.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :param description: The description of this CustomOperation.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/data_format.py b/services/TS29222_CAPIF_Events_API/capif_events/models/data_format.py
new file mode 100644
index 0000000..61f13fe
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/data_format.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.data_format_any_of import DataFormatAnyOf
+from capif_events import util
+
+from capif_events.models.data_format_any_of import DataFormatAnyOf  # noqa: E501
+
+class DataFormat(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """DataFormat - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormat':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat of this DataFormat.  # noqa: E501
+        :rtype: DataFormat
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/data_format_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/data_format_any_of.py
new file mode 100644
index 0000000..6ccaf76
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/data_format_any_of.py
@@ -0,0 +1,41 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class DataFormatAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    JSON = "JSON"
+    def __init__(self):  # noqa: E501
+        """DataFormatAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormatAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat_anyOf of this DataFormatAnyOf.  # noqa: E501
+        :rtype: DataFormatAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/event_notification.py b/services/TS29222_CAPIF_Events_API/capif_events/models/event_notification.py
new file mode 100644
index 0000000..633ddcf
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/event_notification.py
@@ -0,0 +1,126 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.capif_event import CAPIFEvent
+from capif_events.models.capif_event_detail import CAPIFEventDetail
+from capif_events import util
+
+from capif_events.models.capif_event import CAPIFEvent  # noqa: E501
+from capif_events.models.capif_event_detail import CAPIFEventDetail  # noqa: E501
+
+class EventNotification(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, subscription_id=None, events=None, event_detail=None):  # noqa: E501
+        """EventNotification - a model defined in OpenAPI
+
+        :param subscription_id: The subscription_id of this EventNotification.  # noqa: E501
+        :type subscription_id: str
+        :param events: The events of this EventNotification.  # noqa: E501
+        :type events: CAPIFEvent
+        :param event_detail: The event_detail of this EventNotification.  # noqa: E501
+        :type event_detail: CAPIFEventDetail
+        """
+        self.openapi_types = {
+            'subscription_id': str,
+            'events': CAPIFEvent,
+            'event_detail': CAPIFEventDetail
+        }
+
+        self.attribute_map = {
+            'subscription_id': 'subscriptionId',
+            'events': 'events',
+            'event_detail': 'eventDetail'
+        }
+
+        self._subscription_id = subscription_id
+        self._events = events
+        self._event_detail = event_detail
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'EventNotification':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The EventNotification of this EventNotification.  # noqa: E501
+        :rtype: EventNotification
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def subscription_id(self):
+        """Gets the subscription_id of this EventNotification.
+
+        Identifier of the subscription resource to which the notification is related – CAPIF resource identifier  # noqa: E501
+
+        :return: The subscription_id of this EventNotification.
+        :rtype: str
+        """
+        return self._subscription_id
+
+    @subscription_id.setter
+    def subscription_id(self, subscription_id):
+        """Sets the subscription_id of this EventNotification.
+
+        Identifier of the subscription resource to which the notification is related – CAPIF resource identifier  # noqa: E501
+
+        :param subscription_id: The subscription_id of this EventNotification.
+        :type subscription_id: str
+        """
+        if subscription_id is None:
+            raise ValueError("Invalid value for `subscription_id`, must not be `None`")  # noqa: E501
+
+        self._subscription_id = subscription_id
+
+    @property
+    def events(self):
+        """Gets the events of this EventNotification.
+
+
+        :return: The events of this EventNotification.
+        :rtype: CAPIFEvent
+        """
+        return self._events
+
+    @events.setter
+    def events(self, events):
+        """Sets the events of this EventNotification.
+
+
+        :param events: The events of this EventNotification.
+        :type events: CAPIFEvent
+        """
+        if events is None:
+            raise ValueError("Invalid value for `events`, must not be `None`")  # noqa: E501
+
+        self._events = events
+
+    @property
+    def event_detail(self):
+        """Gets the event_detail of this EventNotification.
+
+
+        :return: The event_detail of this EventNotification.
+        :rtype: CAPIFEventDetail
+        """
+        return self._event_detail
+
+    @event_detail.setter
+    def event_detail(self, event_detail):
+        """Sets the event_detail of this EventNotification.
+
+
+        :param event_detail: The event_detail of this EventNotification.
+        :type event_detail: CAPIFEventDetail
+        """
+
+        self._event_detail = event_detail
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/event_subscription.py b/services/TS29222_CAPIF_Events_API/capif_events/models/event_subscription.py
new file mode 100644
index 0000000..c7ae736
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/event_subscription.py
@@ -0,0 +1,250 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.capif_event import CAPIFEvent
+from capif_events.models.capif_event_filter import CAPIFEventFilter
+from capif_events.models.reporting_information import ReportingInformation
+from capif_events.models.websock_notif_config import WebsockNotifConfig
+import re
+from capif_events import util
+
+from capif_events.models.capif_event import CAPIFEvent  # noqa: E501
+from capif_events.models.capif_event_filter import CAPIFEventFilter  # noqa: E501
+from capif_events.models.reporting_information import ReportingInformation  # noqa: E501
+from capif_events.models.websock_notif_config import WebsockNotifConfig  # noqa: E501
+import re  # noqa: E501
+
+class EventSubscription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, events=None, event_filters=None, event_req=None, notification_destination=None, request_test_notification=None, websock_notif_config=None, supported_features=None):  # noqa: E501
+        """EventSubscription - a model defined in OpenAPI
+
+        :param events: The events of this EventSubscription.  # noqa: E501
+        :type events: List[CAPIFEvent]
+        :param event_filters: The event_filters of this EventSubscription.  # noqa: E501
+        :type event_filters: List[CAPIFEventFilter]
+        :param event_req: The event_req of this EventSubscription.  # noqa: E501
+        :type event_req: ReportingInformation
+        :param notification_destination: The notification_destination of this EventSubscription.  # noqa: E501
+        :type notification_destination: str
+        :param request_test_notification: The request_test_notification of this EventSubscription.  # noqa: E501
+        :type request_test_notification: bool
+        :param websock_notif_config: The websock_notif_config of this EventSubscription.  # noqa: E501
+        :type websock_notif_config: WebsockNotifConfig
+        :param supported_features: The supported_features of this EventSubscription.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'events': List[CAPIFEvent],
+            'event_filters': List[CAPIFEventFilter],
+            'event_req': ReportingInformation,
+            'notification_destination': str,
+            'request_test_notification': bool,
+            'websock_notif_config': WebsockNotifConfig,
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'events': 'events',
+            'event_filters': 'eventFilters',
+            'event_req': 'eventReq',
+            'notification_destination': 'notificationDestination',
+            'request_test_notification': 'requestTestNotification',
+            'websock_notif_config': 'websockNotifConfig',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._events = events
+        self._event_filters = event_filters
+        self._event_req = event_req
+        self._notification_destination = notification_destination
+        self._request_test_notification = request_test_notification
+        self._websock_notif_config = websock_notif_config
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'EventSubscription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The EventSubscription of this EventSubscription.  # noqa: E501
+        :rtype: EventSubscription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def events(self):
+        """Gets the events of this EventSubscription.
+
+        Subscribed events  # noqa: E501
+
+        :return: The events of this EventSubscription.
+        :rtype: List[CAPIFEvent]
+        """
+        return self._events
+
+    @events.setter
+    def events(self, events):
+        """Sets the events of this EventSubscription.
+
+        Subscribed events  # noqa: E501
+
+        :param events: The events of this EventSubscription.
+        :type events: List[CAPIFEvent]
+        """
+        if events is None:
+            raise ValueError("Invalid value for `events`, must not be `None`")  # noqa: E501
+        if events is not None and len(events) < 1:
+            raise ValueError("Invalid value for `events`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._events = events
+
+    @property
+    def event_filters(self):
+        """Gets the event_filters of this EventSubscription.
+
+        Subscribed event filters  # noqa: E501
+
+        :return: The event_filters of this EventSubscription.
+        :rtype: List[CAPIFEventFilter]
+        """
+        return self._event_filters
+
+    @event_filters.setter
+    def event_filters(self, event_filters):
+        """Sets the event_filters of this EventSubscription.
+
+        Subscribed event filters  # noqa: E501
+
+        :param event_filters: The event_filters of this EventSubscription.
+        :type event_filters: List[CAPIFEventFilter]
+        """
+        if event_filters is not None and len(event_filters) < 1:
+            raise ValueError("Invalid value for `event_filters`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._event_filters = event_filters
+
+    @property
+    def event_req(self):
+        """Gets the event_req of this EventSubscription.
+
+
+        :return: The event_req of this EventSubscription.
+        :rtype: ReportingInformation
+        """
+        return self._event_req
+
+    @event_req.setter
+    def event_req(self, event_req):
+        """Sets the event_req of this EventSubscription.
+
+
+        :param event_req: The event_req of this EventSubscription.
+        :type event_req: ReportingInformation
+        """
+
+        self._event_req = event_req
+
+    @property
+    def notification_destination(self):
+        """Gets the notification_destination of this EventSubscription.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The notification_destination of this EventSubscription.
+        :rtype: str
+        """
+        return self._notification_destination
+
+    @notification_destination.setter
+    def notification_destination(self, notification_destination):
+        """Sets the notification_destination of this EventSubscription.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param notification_destination: The notification_destination of this EventSubscription.
+        :type notification_destination: str
+        """
+        if notification_destination is None:
+            raise ValueError("Invalid value for `notification_destination`, must not be `None`")  # noqa: E501
+
+        self._notification_destination = notification_destination
+
+    @property
+    def request_test_notification(self):
+        """Gets the request_test_notification of this EventSubscription.
+
+        Set to true by Subscriber to request the CAPIF core function to send a test notification as defined in in subclause 7.6. Set to false or omitted otherwise.  # noqa: E501
+
+        :return: The request_test_notification of this EventSubscription.
+        :rtype: bool
+        """
+        return self._request_test_notification
+
+    @request_test_notification.setter
+    def request_test_notification(self, request_test_notification):
+        """Sets the request_test_notification of this EventSubscription.
+
+        Set to true by Subscriber to request the CAPIF core function to send a test notification as defined in in subclause 7.6. Set to false or omitted otherwise.  # noqa: E501
+
+        :param request_test_notification: The request_test_notification of this EventSubscription.
+        :type request_test_notification: bool
+        """
+
+        self._request_test_notification = request_test_notification
+
+    @property
+    def websock_notif_config(self):
+        """Gets the websock_notif_config of this EventSubscription.
+
+
+        :return: The websock_notif_config of this EventSubscription.
+        :rtype: WebsockNotifConfig
+        """
+        return self._websock_notif_config
+
+    @websock_notif_config.setter
+    def websock_notif_config(self, websock_notif_config):
+        """Sets the websock_notif_config of this EventSubscription.
+
+
+        :param websock_notif_config: The websock_notif_config of this EventSubscription.
+        :type websock_notif_config: WebsockNotifConfig
+        """
+
+        self._websock_notif_config = websock_notif_config
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this EventSubscription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this EventSubscription.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this EventSubscription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this EventSubscription.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/interface_description.py b/services/TS29222_CAPIF_Events_API/capif_events/models/interface_description.py
new file mode 100644
index 0000000..14b2b5d
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.security_method import SecurityMethod
+from capif_events import util
+
+from capif_events.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/invalid_param.py b/services/TS29222_CAPIF_Events_API/capif_events/models/invalid_param.py
new file mode 100644
index 0000000..e9bc8ca
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/invocation_log.py b/services/TS29222_CAPIF_Events_API/capif_events/models/invocation_log.py
new file mode 100644
index 0000000..bbe4886
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/invocation_log.py
@@ -0,0 +1,164 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.log import Log
+import re
+from capif_events import util
+
+from capif_events.models.log import Log  # noqa: E501
+import re  # noqa: E501
+
+class InvocationLog(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, api_invoker_id=None, logs=None, supported_features=None):  # noqa: E501
+        """InvocationLog - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this InvocationLog.  # noqa: E501
+        :type aef_id: str
+        :param api_invoker_id: The api_invoker_id of this InvocationLog.  # noqa: E501
+        :type api_invoker_id: str
+        :param logs: The logs of this InvocationLog.  # noqa: E501
+        :type logs: List[Log]
+        :param supported_features: The supported_features of this InvocationLog.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'api_invoker_id': str,
+            'logs': List[Log],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'api_invoker_id': 'apiInvokerId',
+            'logs': 'logs',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._aef_id = aef_id
+        self._api_invoker_id = api_invoker_id
+        self._logs = logs
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvocationLog':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvocationLog of this InvocationLog.  # noqa: E501
+        :rtype: InvocationLog
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this InvocationLog.
+
+        Identity information of the API exposing function requesting logging of service API invocations  # noqa: E501
+
+        :return: The aef_id of this InvocationLog.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this InvocationLog.
+
+        Identity information of the API exposing function requesting logging of service API invocations  # noqa: E501
+
+        :param aef_id: The aef_id of this InvocationLog.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this InvocationLog.
+
+        Identity of the API invoker which invoked the service API  # noqa: E501
+
+        :return: The api_invoker_id of this InvocationLog.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this InvocationLog.
+
+        Identity of the API invoker which invoked the service API  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this InvocationLog.
+        :type api_invoker_id: str
+        """
+        if api_invoker_id is None:
+            raise ValueError("Invalid value for `api_invoker_id`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def logs(self):
+        """Gets the logs of this InvocationLog.
+
+        Service API invocation log  # noqa: E501
+
+        :return: The logs of this InvocationLog.
+        :rtype: List[Log]
+        """
+        return self._logs
+
+    @logs.setter
+    def logs(self, logs):
+        """Sets the logs of this InvocationLog.
+
+        Service API invocation log  # noqa: E501
+
+        :param logs: The logs of this InvocationLog.
+        :type logs: List[Log]
+        """
+        if logs is None:
+            raise ValueError("Invalid value for `logs`, must not be `None`")  # noqa: E501
+        if logs is not None and len(logs) < 1:
+            raise ValueError("Invalid value for `logs`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._logs = logs
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this InvocationLog.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this InvocationLog.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this InvocationLog.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this InvocationLog.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/ipv4_address_range.py b/services/TS29222_CAPIF_Events_API/capif_events/models/ipv4_address_range.py
new file mode 100644
index 0000000..2741ca3
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/ipv4_address_range.py
@@ -0,0 +1,100 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+import re
+from capif_events import util
+
+import re  # noqa: E501
+
+class Ipv4AddressRange(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, start=None, end=None):  # noqa: E501
+        """Ipv4AddressRange - a model defined in OpenAPI
+
+        :param start: The start of this Ipv4AddressRange.  # noqa: E501
+        :type start: str
+        :param end: The end of this Ipv4AddressRange.  # noqa: E501
+        :type end: str
+        """
+        self.openapi_types = {
+            'start': str,
+            'end': str
+        }
+
+        self.attribute_map = {
+            'start': 'start',
+            'end': 'end'
+        }
+
+        self._start = start
+        self._end = end
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Ipv4AddressRange':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Ipv4AddressRange of this Ipv4AddressRange.  # noqa: E501
+        :rtype: Ipv4AddressRange
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def start(self):
+        """Gets the start of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :return: The start of this Ipv4AddressRange.
+        :rtype: str
+        """
+        return self._start
+
+    @start.setter
+    def start(self, start):
+        """Sets the start of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :param start: The start of this Ipv4AddressRange.
+        :type start: str
+        """
+        if start is not None and not re.search(r'^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$', start):  # noqa: E501
+            raise ValueError("Invalid value for `start`, must be a follow pattern or equal to `/^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$/`")  # noqa: E501
+
+        self._start = start
+
+    @property
+    def end(self):
+        """Gets the end of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :return: The end of this Ipv4AddressRange.
+        :rtype: str
+        """
+        return self._end
+
+    @end.setter
+    def end(self, end):
+        """Sets the end of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :param end: The end of this Ipv4AddressRange.
+        :type end: str
+        """
+        if end is not None and not re.search(r'^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$', end):  # noqa: E501
+            raise ValueError("Invalid value for `end`, must be a follow pattern or equal to `/^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$/`")  # noqa: E501
+
+        self._end = end
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/ipv6_address_range.py b/services/TS29222_CAPIF_Events_API/capif_events/models/ipv6_address_range.py
new file mode 100644
index 0000000..a979db9
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/ipv6_address_range.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class Ipv6AddressRange(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, start=None, end=None):  # noqa: E501
+        """Ipv6AddressRange - a model defined in OpenAPI
+
+        :param start: The start of this Ipv6AddressRange.  # noqa: E501
+        :type start: str
+        :param end: The end of this Ipv6AddressRange.  # noqa: E501
+        :type end: str
+        """
+        self.openapi_types = {
+            'start': str,
+            'end': str
+        }
+
+        self.attribute_map = {
+            'start': 'start',
+            'end': 'end'
+        }
+
+        self._start = start
+        self._end = end
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Ipv6AddressRange':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Ipv6AddressRange of this Ipv6AddressRange.  # noqa: E501
+        :rtype: Ipv6AddressRange
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def start(self):
+        """Gets the start of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The start of this Ipv6AddressRange.
+        :rtype: str
+        """
+        return self._start
+
+    @start.setter
+    def start(self, start):
+        """Sets the start of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param start: The start of this Ipv6AddressRange.
+        :type start: str
+        """
+        if start is None:
+            raise ValueError("Invalid value for `start`, must not be `None`")  # noqa: E501
+
+        self._start = start
+
+    @property
+    def end(self):
+        """Gets the end of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The end of this Ipv6AddressRange.
+        :rtype: str
+        """
+        return self._end
+
+    @end.setter
+    def end(self, end):
+        """Sets the end of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param end: The end of this Ipv6AddressRange.
+        :type end: str
+        """
+        if end is None:
+            raise ValueError("Invalid value for `end`, must not be `None`")  # noqa: E501
+
+        self._end = end
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/log.py b/services/TS29222_CAPIF_Events_API/capif_events/models/log.py
new file mode 100644
index 0000000..1ac69f9
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/log.py
@@ -0,0 +1,470 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.interface_description import InterfaceDescription
+from capif_events.models.operation import Operation
+from capif_events.models.protocol import Protocol
+from capif_events import util
+
+from capif_events.models.interface_description import InterfaceDescription  # noqa: E501
+from capif_events.models.operation import Operation  # noqa: E501
+from capif_events.models.protocol import Protocol  # noqa: E501
+
+class Log(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_id=None, api_name=None, api_version=None, resource_name=None, uri=None, protocol=None, operation=None, result=None, invocation_time=None, invocation_latency=None, input_parameters=None, output_parameters=None, src_interface=None, dest_interface=None, fwd_interface=None):  # noqa: E501
+        """Log - a model defined in OpenAPI
+
+        :param api_id: The api_id of this Log.  # noqa: E501
+        :type api_id: str
+        :param api_name: The api_name of this Log.  # noqa: E501
+        :type api_name: str
+        :param api_version: The api_version of this Log.  # noqa: E501
+        :type api_version: str
+        :param resource_name: The resource_name of this Log.  # noqa: E501
+        :type resource_name: str
+        :param uri: The uri of this Log.  # noqa: E501
+        :type uri: str
+        :param protocol: The protocol of this Log.  # noqa: E501
+        :type protocol: Protocol
+        :param operation: The operation of this Log.  # noqa: E501
+        :type operation: Operation
+        :param result: The result of this Log.  # noqa: E501
+        :type result: str
+        :param invocation_time: The invocation_time of this Log.  # noqa: E501
+        :type invocation_time: datetime
+        :param invocation_latency: The invocation_latency of this Log.  # noqa: E501
+        :type invocation_latency: int
+        :param input_parameters: The input_parameters of this Log.  # noqa: E501
+        :type input_parameters: object
+        :param output_parameters: The output_parameters of this Log.  # noqa: E501
+        :type output_parameters: object
+        :param src_interface: The src_interface of this Log.  # noqa: E501
+        :type src_interface: InterfaceDescription
+        :param dest_interface: The dest_interface of this Log.  # noqa: E501
+        :type dest_interface: InterfaceDescription
+        :param fwd_interface: The fwd_interface of this Log.  # noqa: E501
+        :type fwd_interface: str
+        """
+        self.openapi_types = {
+            'api_id': str,
+            'api_name': str,
+            'api_version': str,
+            'resource_name': str,
+            'uri': str,
+            'protocol': Protocol,
+            'operation': Operation,
+            'result': str,
+            'invocation_time': datetime,
+            'invocation_latency': int,
+            'input_parameters': object,
+            'output_parameters': object,
+            'src_interface': InterfaceDescription,
+            'dest_interface': InterfaceDescription,
+            'fwd_interface': str
+        }
+
+        self.attribute_map = {
+            'api_id': 'apiId',
+            'api_name': 'apiName',
+            'api_version': 'apiVersion',
+            'resource_name': 'resourceName',
+            'uri': 'uri',
+            'protocol': 'protocol',
+            'operation': 'operation',
+            'result': 'result',
+            'invocation_time': 'invocationTime',
+            'invocation_latency': 'invocationLatency',
+            'input_parameters': 'inputParameters',
+            'output_parameters': 'outputParameters',
+            'src_interface': 'srcInterface',
+            'dest_interface': 'destInterface',
+            'fwd_interface': 'fwdInterface'
+        }
+
+        self._api_id = api_id
+        self._api_name = api_name
+        self._api_version = api_version
+        self._resource_name = resource_name
+        self._uri = uri
+        self._protocol = protocol
+        self._operation = operation
+        self._result = result
+        self._invocation_time = invocation_time
+        self._invocation_latency = invocation_latency
+        self._input_parameters = input_parameters
+        self._output_parameters = output_parameters
+        self._src_interface = src_interface
+        self._dest_interface = dest_interface
+        self._fwd_interface = fwd_interface
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Log':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Log of this Log.  # noqa: E501
+        :rtype: Log
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this Log.
+
+        String identifying the API invoked.  # noqa: E501
+
+        :return: The api_id of this Log.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this Log.
+
+        String identifying the API invoked.  # noqa: E501
+
+        :param api_id: The api_id of this Log.
+        :type api_id: str
+        """
+        if api_id is None:
+            raise ValueError("Invalid value for `api_id`, must not be `None`")  # noqa: E501
+
+        self._api_id = api_id
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this Log.
+
+        Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this Log.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this Log.
+
+        Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this Log.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Log.
+
+        Version of the API which was invoked  # noqa: E501
+
+        :return: The api_version of this Log.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Log.
+
+        Version of the API which was invoked  # noqa: E501
+
+        :param api_version: The api_version of this Log.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Log.
+
+        Name of the specific resource invoked  # noqa: E501
+
+        :return: The resource_name of this Log.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Log.
+
+        Name of the specific resource invoked  # noqa: E501
+
+        :param resource_name: The resource_name of this Log.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def uri(self):
+        """Gets the uri of this Log.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The uri of this Log.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Log.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param uri: The uri of this Log.
+        :type uri: str
+        """
+
+        self._uri = uri
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this Log.
+
+
+        :return: The protocol of this Log.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this Log.
+
+
+        :param protocol: The protocol of this Log.
+        :type protocol: Protocol
+        """
+        if protocol is None:
+            raise ValueError("Invalid value for `protocol`, must not be `None`")  # noqa: E501
+
+        self._protocol = protocol
+
+    @property
+    def operation(self):
+        """Gets the operation of this Log.
+
+
+        :return: The operation of this Log.
+        :rtype: Operation
+        """
+        return self._operation
+
+    @operation.setter
+    def operation(self, operation):
+        """Sets the operation of this Log.
+
+
+        :param operation: The operation of this Log.
+        :type operation: Operation
+        """
+
+        self._operation = operation
+
+    @property
+    def result(self):
+        """Gets the result of this Log.
+
+        For HTTP protocol, it contains HTTP status code of the invocation  # noqa: E501
+
+        :return: The result of this Log.
+        :rtype: str
+        """
+        return self._result
+
+    @result.setter
+    def result(self, result):
+        """Sets the result of this Log.
+
+        For HTTP protocol, it contains HTTP status code of the invocation  # noqa: E501
+
+        :param result: The result of this Log.
+        :type result: str
+        """
+        if result is None:
+            raise ValueError("Invalid value for `result`, must not be `None`")  # noqa: E501
+
+        self._result = result
+
+    @property
+    def invocation_time(self):
+        """Gets the invocation_time of this Log.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The invocation_time of this Log.
+        :rtype: datetime
+        """
+        return self._invocation_time
+
+    @invocation_time.setter
+    def invocation_time(self, invocation_time):
+        """Sets the invocation_time of this Log.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param invocation_time: The invocation_time of this Log.
+        :type invocation_time: datetime
+        """
+
+        self._invocation_time = invocation_time
+
+    @property
+    def invocation_latency(self):
+        """Gets the invocation_latency of this Log.
+
+        Unsigned integer identifying a period of time in units of milliseconds.  # noqa: E501
+
+        :return: The invocation_latency of this Log.
+        :rtype: int
+        """
+        return self._invocation_latency
+
+    @invocation_latency.setter
+    def invocation_latency(self, invocation_latency):
+        """Sets the invocation_latency of this Log.
+
+        Unsigned integer identifying a period of time in units of milliseconds.  # noqa: E501
+
+        :param invocation_latency: The invocation_latency of this Log.
+        :type invocation_latency: int
+        """
+        if invocation_latency is not None and invocation_latency < 0:  # noqa: E501
+            raise ValueError("Invalid value for `invocation_latency`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._invocation_latency = invocation_latency
+
+    @property
+    def input_parameters(self):
+        """Gets the input_parameters of this Log.
+
+        List of input parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :return: The input_parameters of this Log.
+        :rtype: object
+        """
+        return self._input_parameters
+
+    @input_parameters.setter
+    def input_parameters(self, input_parameters):
+        """Sets the input_parameters of this Log.
+
+        List of input parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :param input_parameters: The input_parameters of this Log.
+        :type input_parameters: object
+        """
+
+        self._input_parameters = input_parameters
+
+    @property
+    def output_parameters(self):
+        """Gets the output_parameters of this Log.
+
+        List of output parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :return: The output_parameters of this Log.
+        :rtype: object
+        """
+        return self._output_parameters
+
+    @output_parameters.setter
+    def output_parameters(self, output_parameters):
+        """Sets the output_parameters of this Log.
+
+        List of output parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :param output_parameters: The output_parameters of this Log.
+        :type output_parameters: object
+        """
+
+        self._output_parameters = output_parameters
+
+    @property
+    def src_interface(self):
+        """Gets the src_interface of this Log.
+
+
+        :return: The src_interface of this Log.
+        :rtype: InterfaceDescription
+        """
+        return self._src_interface
+
+    @src_interface.setter
+    def src_interface(self, src_interface):
+        """Sets the src_interface of this Log.
+
+
+        :param src_interface: The src_interface of this Log.
+        :type src_interface: InterfaceDescription
+        """
+
+        self._src_interface = src_interface
+
+    @property
+    def dest_interface(self):
+        """Gets the dest_interface of this Log.
+
+
+        :return: The dest_interface of this Log.
+        :rtype: InterfaceDescription
+        """
+        return self._dest_interface
+
+    @dest_interface.setter
+    def dest_interface(self, dest_interface):
+        """Sets the dest_interface of this Log.
+
+
+        :param dest_interface: The dest_interface of this Log.
+        :type dest_interface: InterfaceDescription
+        """
+
+        self._dest_interface = dest_interface
+
+    @property
+    def fwd_interface(self):
+        """Gets the fwd_interface of this Log.
+
+        It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60  # noqa: E501
+
+        :return: The fwd_interface of this Log.
+        :rtype: str
+        """
+        return self._fwd_interface
+
+    @fwd_interface.setter
+    def fwd_interface(self, fwd_interface):
+        """Sets the fwd_interface of this Log.
+
+        It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60  # noqa: E501
+
+        :param fwd_interface: The fwd_interface of this Log.
+        :type fwd_interface: str
+        """
+
+        self._fwd_interface = fwd_interface
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag.py b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag.py
new file mode 100644
index 0000000..6bc032c
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.notification_flag_any_of import NotificationFlagAnyOf
+from capif_events import util
+
+from capif_events.models.notification_flag_any_of import NotificationFlagAnyOf  # noqa: E501
+
+class NotificationFlag(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """NotificationFlag - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'NotificationFlag':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The NotificationFlag of this NotificationFlag.  # noqa: E501
+        :rtype: NotificationFlag
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag_any_of.py
new file mode 100644
index 0000000..f1133b1
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_flag_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class NotificationFlagAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    ACTIVATE = "ACTIVATE"
+    DEACTIVATE = "DEACTIVATE"
+    RETRIEVAL = "RETRIEVAL"
+    def __init__(self):  # noqa: E501
+        """NotificationFlagAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'NotificationFlagAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The NotificationFlag_anyOf of this NotificationFlagAnyOf.  # noqa: E501
+        :rtype: NotificationFlagAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/notification_method.py b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_method.py
new file mode 100644
index 0000000..b8600df
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.notification_method_any_of import NotificationMethodAnyOf
+from capif_events import util
+
+from capif_events.models.notification_method_any_of import NotificationMethodAnyOf  # noqa: E501
+
+class NotificationMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """NotificationMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'NotificationMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The NotificationMethod of this NotificationMethod.  # noqa: E501
+        :rtype: NotificationMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/notification_method_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_method_any_of.py
new file mode 100644
index 0000000..3bf0f83
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/notification_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class NotificationMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PERIODIC = "PERIODIC"
+    ONE_TIME = "ONE_TIME"
+    ON_EVENT_DETECTION = "ON_EVENT_DETECTION"
+    def __init__(self):  # noqa: E501
+        """NotificationMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'NotificationMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The NotificationMethod_anyOf of this NotificationMethodAnyOf.  # noqa: E501
+        :rtype: NotificationMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/operation.py b/services/TS29222_CAPIF_Events_API/capif_events/models/operation.py
new file mode 100644
index 0000000..3c85bfb
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/operation.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.operation_any_of import OperationAnyOf
+from capif_events import util
+
+from capif_events.models.operation_any_of import OperationAnyOf  # noqa: E501
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/operation_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/operation_any_of.py
new file mode 100644
index 0000000..4c6b909
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria.py b/services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria.py
new file mode 100644
index 0000000..063782b
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.partitioning_criteria_any_of import PartitioningCriteriaAnyOf
+from capif_events import util
+
+from capif_events.models.partitioning_criteria_any_of import PartitioningCriteriaAnyOf  # noqa: E501
+
+class PartitioningCriteria(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """PartitioningCriteria - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PartitioningCriteria':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PartitioningCriteria of this PartitioningCriteria.  # noqa: E501
+        :rtype: PartitioningCriteria
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria_any_of.py
new file mode 100644
index 0000000..4c0faed
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/partitioning_criteria_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class PartitioningCriteriaAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    TAC = "TAC"
+    SUBPLMN = "SUBPLMN"
+    GEOAREA = "GEOAREA"
+    SNSSAI = "SNSSAI"
+    DNN = "DNN"
+    def __init__(self):  # noqa: E501
+        """PartitioningCriteriaAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PartitioningCriteriaAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PartitioningCriteria_anyOf of this PartitioningCriteriaAnyOf.  # noqa: E501
+        :rtype: PartitioningCriteriaAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/problem_details.py b/services/TS29222_CAPIF_Events_API/capif_events/models/problem_details.py
new file mode 100644
index 0000000..04f1577
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.invalid_param import InvalidParam
+import re
+from capif_events import util
+
+from capif_events.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/protocol.py b/services/TS29222_CAPIF_Events_API/capif_events/models/protocol.py
new file mode 100644
index 0000000..e62d3cd
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/protocol.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.protocol_any_of import ProtocolAnyOf
+from capif_events import util
+
+from capif_events.models.protocol_any_of import ProtocolAnyOf  # noqa: E501
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/protocol_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/protocol_any_of.py
new file mode 100644
index 0000000..fe2fe7c
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/published_api_path.py b/services/TS29222_CAPIF_Events_API/capif_events/models/published_api_path.py
new file mode 100644
index 0000000..6554d77
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/published_api_path.py
@@ -0,0 +1,68 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class PublishedApiPath(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ccf_ids=None):  # noqa: E501
+        """PublishedApiPath - a model defined in OpenAPI
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.  # noqa: E501
+        :type ccf_ids: List[str]
+        """
+        self.openapi_types = {
+            'ccf_ids': List[str]
+        }
+
+        self.attribute_map = {
+            'ccf_ids': 'ccfIds'
+        }
+
+        self._ccf_ids = ccf_ids
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PublishedApiPath':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PublishedApiPath of this PublishedApiPath.  # noqa: E501
+        :rtype: PublishedApiPath
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ccf_ids(self):
+        """Gets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :return: The ccf_ids of this PublishedApiPath.
+        :rtype: List[str]
+        """
+        return self._ccf_ids
+
+    @ccf_ids.setter
+    def ccf_ids(self, ccf_ids):
+        """Sets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.
+        :type ccf_ids: List[str]
+        """
+        if ccf_ids is not None and len(ccf_ids) < 1:
+            raise ValueError("Invalid value for `ccf_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ccf_ids = ccf_ids
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/reporting_information.py b/services/TS29222_CAPIF_Events_API/capif_events/models/reporting_information.py
new file mode 100644
index 0000000..8a1a517
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/reporting_information.py
@@ -0,0 +1,298 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.notification_flag import NotificationFlag
+from capif_events.models.notification_method import NotificationMethod
+from capif_events.models.partitioning_criteria import PartitioningCriteria
+from capif_events import util
+
+from capif_events.models.notification_flag import NotificationFlag  # noqa: E501
+from capif_events.models.notification_method import NotificationMethod  # noqa: E501
+from capif_events.models.partitioning_criteria import PartitioningCriteria  # noqa: E501
+
+class ReportingInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, imm_rep=None, notif_method=None, max_report_nbr=None, mon_dur=None, rep_period=None, samp_ratio=None, partition_criteria=None, grp_rep_time=None, notif_flag=None):  # noqa: E501
+        """ReportingInformation - a model defined in OpenAPI
+
+        :param imm_rep: The imm_rep of this ReportingInformation.  # noqa: E501
+        :type imm_rep: bool
+        :param notif_method: The notif_method of this ReportingInformation.  # noqa: E501
+        :type notif_method: NotificationMethod
+        :param max_report_nbr: The max_report_nbr of this ReportingInformation.  # noqa: E501
+        :type max_report_nbr: int
+        :param mon_dur: The mon_dur of this ReportingInformation.  # noqa: E501
+        :type mon_dur: datetime
+        :param rep_period: The rep_period of this ReportingInformation.  # noqa: E501
+        :type rep_period: int
+        :param samp_ratio: The samp_ratio of this ReportingInformation.  # noqa: E501
+        :type samp_ratio: int
+        :param partition_criteria: The partition_criteria of this ReportingInformation.  # noqa: E501
+        :type partition_criteria: List[PartitioningCriteria]
+        :param grp_rep_time: The grp_rep_time of this ReportingInformation.  # noqa: E501
+        :type grp_rep_time: int
+        :param notif_flag: The notif_flag of this ReportingInformation.  # noqa: E501
+        :type notif_flag: NotificationFlag
+        """
+        self.openapi_types = {
+            'imm_rep': bool,
+            'notif_method': NotificationMethod,
+            'max_report_nbr': int,
+            'mon_dur': datetime,
+            'rep_period': int,
+            'samp_ratio': int,
+            'partition_criteria': List[PartitioningCriteria],
+            'grp_rep_time': int,
+            'notif_flag': NotificationFlag
+        }
+
+        self.attribute_map = {
+            'imm_rep': 'immRep',
+            'notif_method': 'notifMethod',
+            'max_report_nbr': 'maxReportNbr',
+            'mon_dur': 'monDur',
+            'rep_period': 'repPeriod',
+            'samp_ratio': 'sampRatio',
+            'partition_criteria': 'partitionCriteria',
+            'grp_rep_time': 'grpRepTime',
+            'notif_flag': 'notifFlag'
+        }
+
+        self._imm_rep = imm_rep
+        self._notif_method = notif_method
+        self._max_report_nbr = max_report_nbr
+        self._mon_dur = mon_dur
+        self._rep_period = rep_period
+        self._samp_ratio = samp_ratio
+        self._partition_criteria = partition_criteria
+        self._grp_rep_time = grp_rep_time
+        self._notif_flag = notif_flag
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ReportingInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ReportingInformation of this ReportingInformation.  # noqa: E501
+        :rtype: ReportingInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def imm_rep(self):
+        """Gets the imm_rep of this ReportingInformation.
+
+
+        :return: The imm_rep of this ReportingInformation.
+        :rtype: bool
+        """
+        return self._imm_rep
+
+    @imm_rep.setter
+    def imm_rep(self, imm_rep):
+        """Sets the imm_rep of this ReportingInformation.
+
+
+        :param imm_rep: The imm_rep of this ReportingInformation.
+        :type imm_rep: bool
+        """
+
+        self._imm_rep = imm_rep
+
+    @property
+    def notif_method(self):
+        """Gets the notif_method of this ReportingInformation.
+
+
+        :return: The notif_method of this ReportingInformation.
+        :rtype: NotificationMethod
+        """
+        return self._notif_method
+
+    @notif_method.setter
+    def notif_method(self, notif_method):
+        """Sets the notif_method of this ReportingInformation.
+
+
+        :param notif_method: The notif_method of this ReportingInformation.
+        :type notif_method: NotificationMethod
+        """
+
+        self._notif_method = notif_method
+
+    @property
+    def max_report_nbr(self):
+        """Gets the max_report_nbr of this ReportingInformation.
+
+        Unsigned Integer, i.e. only value 0 and integers above 0 are permissible.  # noqa: E501
+
+        :return: The max_report_nbr of this ReportingInformation.
+        :rtype: int
+        """
+        return self._max_report_nbr
+
+    @max_report_nbr.setter
+    def max_report_nbr(self, max_report_nbr):
+        """Sets the max_report_nbr of this ReportingInformation.
+
+        Unsigned Integer, i.e. only value 0 and integers above 0 are permissible.  # noqa: E501
+
+        :param max_report_nbr: The max_report_nbr of this ReportingInformation.
+        :type max_report_nbr: int
+        """
+        if max_report_nbr is not None and max_report_nbr < 0:  # noqa: E501
+            raise ValueError("Invalid value for `max_report_nbr`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._max_report_nbr = max_report_nbr
+
+    @property
+    def mon_dur(self):
+        """Gets the mon_dur of this ReportingInformation.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The mon_dur of this ReportingInformation.
+        :rtype: datetime
+        """
+        return self._mon_dur
+
+    @mon_dur.setter
+    def mon_dur(self, mon_dur):
+        """Sets the mon_dur of this ReportingInformation.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param mon_dur: The mon_dur of this ReportingInformation.
+        :type mon_dur: datetime
+        """
+
+        self._mon_dur = mon_dur
+
+    @property
+    def rep_period(self):
+        """Gets the rep_period of this ReportingInformation.
+
+        indicating a time in seconds.  # noqa: E501
+
+        :return: The rep_period of this ReportingInformation.
+        :rtype: int
+        """
+        return self._rep_period
+
+    @rep_period.setter
+    def rep_period(self, rep_period):
+        """Sets the rep_period of this ReportingInformation.
+
+        indicating a time in seconds.  # noqa: E501
+
+        :param rep_period: The rep_period of this ReportingInformation.
+        :type rep_period: int
+        """
+
+        self._rep_period = rep_period
+
+    @property
+    def samp_ratio(self):
+        """Gets the samp_ratio of this ReportingInformation.
+
+        Unsigned integer indicating Sampling Ratio (see clauses 4.15.1 of 3GPP TS 23.502), expressed in percent.  # noqa: E501
+
+        :return: The samp_ratio of this ReportingInformation.
+        :rtype: int
+        """
+        return self._samp_ratio
+
+    @samp_ratio.setter
+    def samp_ratio(self, samp_ratio):
+        """Sets the samp_ratio of this ReportingInformation.
+
+        Unsigned integer indicating Sampling Ratio (see clauses 4.15.1 of 3GPP TS 23.502), expressed in percent.  # noqa: E501
+
+        :param samp_ratio: The samp_ratio of this ReportingInformation.
+        :type samp_ratio: int
+        """
+        if samp_ratio is not None and samp_ratio > 100:  # noqa: E501
+            raise ValueError("Invalid value for `samp_ratio`, must be a value less than or equal to `100`")  # noqa: E501
+        if samp_ratio is not None and samp_ratio < 1:  # noqa: E501
+            raise ValueError("Invalid value for `samp_ratio`, must be a value greater than or equal to `1`")  # noqa: E501
+
+        self._samp_ratio = samp_ratio
+
+    @property
+    def partition_criteria(self):
+        """Gets the partition_criteria of this ReportingInformation.
+
+        Criteria for partitioning the UEs before applying the sampling ratio.  # noqa: E501
+
+        :return: The partition_criteria of this ReportingInformation.
+        :rtype: List[PartitioningCriteria]
+        """
+        return self._partition_criteria
+
+    @partition_criteria.setter
+    def partition_criteria(self, partition_criteria):
+        """Sets the partition_criteria of this ReportingInformation.
+
+        Criteria for partitioning the UEs before applying the sampling ratio.  # noqa: E501
+
+        :param partition_criteria: The partition_criteria of this ReportingInformation.
+        :type partition_criteria: List[PartitioningCriteria]
+        """
+        if partition_criteria is not None and len(partition_criteria) < 1:
+            raise ValueError("Invalid value for `partition_criteria`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._partition_criteria = partition_criteria
+
+    @property
+    def grp_rep_time(self):
+        """Gets the grp_rep_time of this ReportingInformation.
+
+        indicating a time in seconds.  # noqa: E501
+
+        :return: The grp_rep_time of this ReportingInformation.
+        :rtype: int
+        """
+        return self._grp_rep_time
+
+    @grp_rep_time.setter
+    def grp_rep_time(self, grp_rep_time):
+        """Sets the grp_rep_time of this ReportingInformation.
+
+        indicating a time in seconds.  # noqa: E501
+
+        :param grp_rep_time: The grp_rep_time of this ReportingInformation.
+        :type grp_rep_time: int
+        """
+
+        self._grp_rep_time = grp_rep_time
+
+    @property
+    def notif_flag(self):
+        """Gets the notif_flag of this ReportingInformation.
+
+
+        :return: The notif_flag of this ReportingInformation.
+        :rtype: NotificationFlag
+        """
+        return self._notif_flag
+
+    @notif_flag.setter
+    def notif_flag(self, notif_flag):
+        """Sets the notif_flag of this ReportingInformation.
+
+
+        :param notif_flag: The notif_flag of this ReportingInformation.
+        :type notif_flag: NotificationFlag
+        """
+
+        self._notif_flag = notif_flag
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/resource.py b/services/TS29222_CAPIF_Events_API/capif_events/models/resource.py
new file mode 100644
index 0000000..36e1623
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/resource.py
@@ -0,0 +1,216 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.communication_type import CommunicationType
+from capif_events.models.operation import Operation
+from capif_events import util
+
+from capif_events.models.communication_type import CommunicationType  # noqa: E501
+from capif_events.models.operation import Operation  # noqa: E501
+
+class Resource(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, resource_name=None, comm_type=None, uri=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """Resource - a model defined in OpenAPI
+
+        :param resource_name: The resource_name of this Resource.  # noqa: E501
+        :type resource_name: str
+        :param comm_type: The comm_type of this Resource.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param uri: The uri of this Resource.  # noqa: E501
+        :type uri: str
+        :param cust_op_name: The cust_op_name of this Resource.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this Resource.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this Resource.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'resource_name': str,
+            'comm_type': CommunicationType,
+            'uri': str,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'resource_name': 'resourceName',
+            'comm_type': 'commType',
+            'uri': 'uri',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._resource_name = resource_name
+        self._comm_type = comm_type
+        self._uri = uri
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Resource':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Resource of this Resource.  # noqa: E501
+        :rtype: Resource
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :return: The resource_name of this Resource.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :param resource_name: The resource_name of this Resource.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this Resource.
+
+
+        :return: The comm_type of this Resource.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this Resource.
+
+
+        :param comm_type: The comm_type of this Resource.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def uri(self):
+        """Gets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The uri of this Resource.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param uri: The uri of this Resource.
+        :type uri: str
+        """
+        if uri is None:
+            raise ValueError("Invalid value for `uri`, must not be `None`")  # noqa: E501
+
+        self._uri = uri
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this Resource.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this Resource.
+        :type cust_op_name: str
+        """
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this Resource.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this Resource.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :return: The description of this Resource.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :param description: The description of this Resource.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/routing_rule.py b/services/TS29222_CAPIF_Events_API/capif_events/models/routing_rule.py
new file mode 100644
index 0000000..7ff1d4e
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/routing_rule.py
@@ -0,0 +1,128 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.aef_profile import AefProfile
+from capif_events.models.ipv4_address_range import Ipv4AddressRange
+from capif_events.models.ipv6_address_range import Ipv6AddressRange
+from capif_events import util
+
+from capif_events.models.aef_profile import AefProfile  # noqa: E501
+from capif_events.models.ipv4_address_range import Ipv4AddressRange  # noqa: E501
+from capif_events.models.ipv6_address_range import Ipv6AddressRange  # noqa: E501
+
+class RoutingRule(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr_ranges=None, ipv6_addr_ranges=None, aef_profile=None):  # noqa: E501
+        """RoutingRule - a model defined in OpenAPI
+
+        :param ipv4_addr_ranges: The ipv4_addr_ranges of this RoutingRule.  # noqa: E501
+        :type ipv4_addr_ranges: List[Ipv4AddressRange]
+        :param ipv6_addr_ranges: The ipv6_addr_ranges of this RoutingRule.  # noqa: E501
+        :type ipv6_addr_ranges: List[Ipv6AddressRange]
+        :param aef_profile: The aef_profile of this RoutingRule.  # noqa: E501
+        :type aef_profile: AefProfile
+        """
+        self.openapi_types = {
+            'ipv4_addr_ranges': List[Ipv4AddressRange],
+            'ipv6_addr_ranges': List[Ipv6AddressRange],
+            'aef_profile': AefProfile
+        }
+
+        self.attribute_map = {
+            'ipv4_addr_ranges': 'ipv4AddrRanges',
+            'ipv6_addr_ranges': 'ipv6AddrRanges',
+            'aef_profile': 'aefProfile'
+        }
+
+        self._ipv4_addr_ranges = ipv4_addr_ranges
+        self._ipv6_addr_ranges = ipv6_addr_ranges
+        self._aef_profile = aef_profile
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'RoutingRule':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The RoutingRule of this RoutingRule.  # noqa: E501
+        :rtype: RoutingRule
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr_ranges(self):
+        """Gets the ipv4_addr_ranges of this RoutingRule.
+
+
+        :return: The ipv4_addr_ranges of this RoutingRule.
+        :rtype: List[Ipv4AddressRange]
+        """
+        return self._ipv4_addr_ranges
+
+    @ipv4_addr_ranges.setter
+    def ipv4_addr_ranges(self, ipv4_addr_ranges):
+        """Sets the ipv4_addr_ranges of this RoutingRule.
+
+
+        :param ipv4_addr_ranges: The ipv4_addr_ranges of this RoutingRule.
+        :type ipv4_addr_ranges: List[Ipv4AddressRange]
+        """
+        if ipv4_addr_ranges is not None and len(ipv4_addr_ranges) < 1:
+            raise ValueError("Invalid value for `ipv4_addr_ranges`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ipv4_addr_ranges = ipv4_addr_ranges
+
+    @property
+    def ipv6_addr_ranges(self):
+        """Gets the ipv6_addr_ranges of this RoutingRule.
+
+
+        :return: The ipv6_addr_ranges of this RoutingRule.
+        :rtype: List[Ipv6AddressRange]
+        """
+        return self._ipv6_addr_ranges
+
+    @ipv6_addr_ranges.setter
+    def ipv6_addr_ranges(self, ipv6_addr_ranges):
+        """Sets the ipv6_addr_ranges of this RoutingRule.
+
+
+        :param ipv6_addr_ranges: The ipv6_addr_ranges of this RoutingRule.
+        :type ipv6_addr_ranges: List[Ipv6AddressRange]
+        """
+        if ipv6_addr_ranges is not None and len(ipv6_addr_ranges) < 1:
+            raise ValueError("Invalid value for `ipv6_addr_ranges`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ipv6_addr_ranges = ipv6_addr_ranges
+
+    @property
+    def aef_profile(self):
+        """Gets the aef_profile of this RoutingRule.
+
+
+        :return: The aef_profile of this RoutingRule.
+        :rtype: AefProfile
+        """
+        return self._aef_profile
+
+    @aef_profile.setter
+    def aef_profile(self, aef_profile):
+        """Sets the aef_profile of this RoutingRule.
+
+
+        :param aef_profile: The aef_profile of this RoutingRule.
+        :type aef_profile: AefProfile
+        """
+        if aef_profile is None:
+            raise ValueError("Invalid value for `aef_profile`, must not be `None`")  # noqa: E501
+
+        self._aef_profile = aef_profile
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/security_method.py b/services/TS29222_CAPIF_Events_API/capif_events/models/security_method.py
new file mode 100644
index 0000000..4aec360
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/security_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.security_method_any_of import SecurityMethodAnyOf
+from capif_events import util
+
+from capif_events.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/security_method_any_of.py b/services/TS29222_CAPIF_Events_API/capif_events/models/security_method_any_of.py
new file mode 100644
index 0000000..2ceeb4d
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/service_api_description.py b/services/TS29222_CAPIF_Events_API/capif_events/models/service_api_description.py
new file mode 100644
index 0000000..5c902fe
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/service_api_description.py
@@ -0,0 +1,328 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.aef_profile import AefProfile
+from capif_events.models.published_api_path import PublishedApiPath
+from capif_events.models.shareable_information import ShareableInformation
+import re
+from capif_events import util
+
+from capif_events.models.aef_profile import AefProfile  # noqa: E501
+from capif_events.models.published_api_path import PublishedApiPath  # noqa: E501
+from capif_events.models.shareable_information import ShareableInformation  # noqa: E501
+import re  # noqa: E501
+
+class ServiceAPIDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_name=None, api_id=None, aef_profiles=None, description=None, supported_features=None, shareable_info=None, service_api_category=None, api_supp_feats=None, pub_api_path=None, ccf_id=None):  # noqa: E501
+        """ServiceAPIDescription - a model defined in OpenAPI
+
+        :param api_name: The api_name of this ServiceAPIDescription.  # noqa: E501
+        :type api_name: str
+        :param api_id: The api_id of this ServiceAPIDescription.  # noqa: E501
+        :type api_id: str
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.  # noqa: E501
+        :type aef_profiles: List[AefProfile]
+        :param description: The description of this ServiceAPIDescription.  # noqa: E501
+        :type description: str
+        :param supported_features: The supported_features of this ServiceAPIDescription.  # noqa: E501
+        :type supported_features: str
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.  # noqa: E501
+        :type shareable_info: ShareableInformation
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.  # noqa: E501
+        :type service_api_category: str
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.  # noqa: E501
+        :type api_supp_feats: str
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.  # noqa: E501
+        :type pub_api_path: PublishedApiPath
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.  # noqa: E501
+        :type ccf_id: str
+        """
+        self.openapi_types = {
+            'api_name': str,
+            'api_id': str,
+            'aef_profiles': List[AefProfile],
+            'description': str,
+            'supported_features': str,
+            'shareable_info': ShareableInformation,
+            'service_api_category': str,
+            'api_supp_feats': str,
+            'pub_api_path': PublishedApiPath,
+            'ccf_id': str
+        }
+
+        self.attribute_map = {
+            'api_name': 'apiName',
+            'api_id': 'apiId',
+            'aef_profiles': 'aefProfiles',
+            'description': 'description',
+            'supported_features': 'supportedFeatures',
+            'shareable_info': 'shareableInfo',
+            'service_api_category': 'serviceAPICategory',
+            'api_supp_feats': 'apiSuppFeats',
+            'pub_api_path': 'pubApiPath',
+            'ccf_id': 'ccfId'
+        }
+
+        self._api_name = api_name
+        self._api_id = api_id
+        self._aef_profiles = aef_profiles
+        self._description = description
+        self._supported_features = supported_features
+        self._shareable_info = shareable_info
+        self._service_api_category = service_api_category
+        self._api_supp_feats = api_supp_feats
+        self._pub_api_path = pub_api_path
+        self._ccf_id = ccf_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ServiceAPIDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ServiceAPIDescription of this ServiceAPIDescription.  # noqa: E501
+        :rtype: ServiceAPIDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this ServiceAPIDescription.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :return: The api_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :param api_id: The api_id of this ServiceAPIDescription.
+        :type api_id: str
+        """
+
+        self._api_id = api_id
+
+    @property
+    def aef_profiles(self):
+        """Gets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :return: The aef_profiles of this ServiceAPIDescription.
+        :rtype: List[AefProfile]
+        """
+        return self._aef_profiles
+
+    @aef_profiles.setter
+    def aef_profiles(self, aef_profiles):
+        """Sets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.
+        :type aef_profiles: List[AefProfile]
+        """
+        if aef_profiles is not None and len(aef_profiles) < 1:
+            raise ValueError("Invalid value for `aef_profiles`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._aef_profiles = aef_profiles
+
+    @property
+    def description(self):
+        """Gets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :return: The description of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :param description: The description of this ServiceAPIDescription.
+        :type description: str
+        """
+
+        self._description = description
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ServiceAPIDescription.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
+
+    @property
+    def shareable_info(self):
+        """Gets the shareable_info of this ServiceAPIDescription.
+
+
+        :return: The shareable_info of this ServiceAPIDescription.
+        :rtype: ShareableInformation
+        """
+        return self._shareable_info
+
+    @shareable_info.setter
+    def shareable_info(self, shareable_info):
+        """Sets the shareable_info of this ServiceAPIDescription.
+
+
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.
+        :type shareable_info: ShareableInformation
+        """
+
+        self._shareable_info = shareable_info
+
+    @property
+    def service_api_category(self):
+        """Gets the service_api_category of this ServiceAPIDescription.
+
+
+        :return: The service_api_category of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._service_api_category
+
+    @service_api_category.setter
+    def service_api_category(self, service_api_category):
+        """Sets the service_api_category of this ServiceAPIDescription.
+
+
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.
+        :type service_api_category: str
+        """
+
+        self._service_api_category = service_api_category
+
+    @property
+    def api_supp_feats(self):
+        """Gets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The api_supp_feats of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_supp_feats
+
+    @api_supp_feats.setter
+    def api_supp_feats(self, api_supp_feats):
+        """Sets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.
+        :type api_supp_feats: str
+        """
+        if api_supp_feats is not None and not re.search(r'^[A-Fa-f0-9]*$', api_supp_feats):  # noqa: E501
+            raise ValueError("Invalid value for `api_supp_feats`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._api_supp_feats = api_supp_feats
+
+    @property
+    def pub_api_path(self):
+        """Gets the pub_api_path of this ServiceAPIDescription.
+
+
+        :return: The pub_api_path of this ServiceAPIDescription.
+        :rtype: PublishedApiPath
+        """
+        return self._pub_api_path
+
+    @pub_api_path.setter
+    def pub_api_path(self, pub_api_path):
+        """Sets the pub_api_path of this ServiceAPIDescription.
+
+
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.
+        :type pub_api_path: PublishedApiPath
+        """
+
+        self._pub_api_path = pub_api_path
+
+    @property
+    def ccf_id(self):
+        """Gets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :return: The ccf_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._ccf_id
+
+    @ccf_id.setter
+    def ccf_id(self, ccf_id):
+        """Sets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.
+        :type ccf_id: str
+        """
+
+        self._ccf_id = ccf_id
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/shareable_information.py b/services/TS29222_CAPIF_Events_API/capif_events/models/shareable_information.py
new file mode 100644
index 0000000..134674a
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/shareable_information.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class ShareableInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, is_shareable=None, capif_prov_doms=None):  # noqa: E501
+        """ShareableInformation - a model defined in OpenAPI
+
+        :param is_shareable: The is_shareable of this ShareableInformation.  # noqa: E501
+        :type is_shareable: bool
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.  # noqa: E501
+        :type capif_prov_doms: List[str]
+        """
+        self.openapi_types = {
+            'is_shareable': bool,
+            'capif_prov_doms': List[str]
+        }
+
+        self.attribute_map = {
+            'is_shareable': 'isShareable',
+            'capif_prov_doms': 'capifProvDoms'
+        }
+
+        self._is_shareable = is_shareable
+        self._capif_prov_doms = capif_prov_doms
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ShareableInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ShareableInformation of this ShareableInformation.  # noqa: E501
+        :rtype: ShareableInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def is_shareable(self):
+        """Gets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :return: The is_shareable of this ShareableInformation.
+        :rtype: bool
+        """
+        return self._is_shareable
+
+    @is_shareable.setter
+    def is_shareable(self, is_shareable):
+        """Sets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :param is_shareable: The is_shareable of this ShareableInformation.
+        :type is_shareable: bool
+        """
+        if is_shareable is None:
+            raise ValueError("Invalid value for `is_shareable`, must not be `None`")  # noqa: E501
+
+        self._is_shareable = is_shareable
+
+    @property
+    def capif_prov_doms(self):
+        """Gets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :return: The capif_prov_doms of this ShareableInformation.
+        :rtype: List[str]
+        """
+        return self._capif_prov_doms
+
+    @capif_prov_doms.setter
+    def capif_prov_doms(self, capif_prov_doms):
+        """Sets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.
+        :type capif_prov_doms: List[str]
+        """
+        if capif_prov_doms is not None and len(capif_prov_doms) < 1:
+            raise ValueError("Invalid value for `capif_prov_doms`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._capif_prov_doms = capif_prov_doms
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/time_range_list.py b/services/TS29222_CAPIF_Events_API/capif_events/models/time_range_list.py
new file mode 100644
index 0000000..71c9987
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/time_range_list.py
@@ -0,0 +1,94 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class TimeRangeList(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, start_time=None, stop_time=None):  # noqa: E501
+        """TimeRangeList - a model defined in OpenAPI
+
+        :param start_time: The start_time of this TimeRangeList.  # noqa: E501
+        :type start_time: datetime
+        :param stop_time: The stop_time of this TimeRangeList.  # noqa: E501
+        :type stop_time: datetime
+        """
+        self.openapi_types = {
+            'start_time': datetime,
+            'stop_time': datetime
+        }
+
+        self.attribute_map = {
+            'start_time': 'startTime',
+            'stop_time': 'stopTime'
+        }
+
+        self._start_time = start_time
+        self._stop_time = stop_time
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'TimeRangeList':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The TimeRangeList of this TimeRangeList.  # noqa: E501
+        :rtype: TimeRangeList
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def start_time(self):
+        """Gets the start_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The start_time of this TimeRangeList.
+        :rtype: datetime
+        """
+        return self._start_time
+
+    @start_time.setter
+    def start_time(self, start_time):
+        """Sets the start_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param start_time: The start_time of this TimeRangeList.
+        :type start_time: datetime
+        """
+
+        self._start_time = start_time
+
+    @property
+    def stop_time(self):
+        """Gets the stop_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The stop_time of this TimeRangeList.
+        :rtype: datetime
+        """
+        return self._stop_time
+
+    @stop_time.setter
+    def stop_time(self, stop_time):
+        """Sets the stop_time of this TimeRangeList.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param stop_time: The stop_time of this TimeRangeList.
+        :type stop_time: datetime
+        """
+
+        self._stop_time = stop_time
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/topology_hiding.py b/services/TS29222_CAPIF_Events_API/capif_events/models/topology_hiding.py
new file mode 100644
index 0000000..5d22b9c
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/topology_hiding.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.routing_rule import RoutingRule
+from capif_events import util
+
+from capif_events.models.routing_rule import RoutingRule  # noqa: E501
+
+class TopologyHiding(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_id=None, routing_rules=None):  # noqa: E501
+        """TopologyHiding - a model defined in OpenAPI
+
+        :param api_id: The api_id of this TopologyHiding.  # noqa: E501
+        :type api_id: str
+        :param routing_rules: The routing_rules of this TopologyHiding.  # noqa: E501
+        :type routing_rules: List[RoutingRule]
+        """
+        self.openapi_types = {
+            'api_id': str,
+            'routing_rules': List[RoutingRule]
+        }
+
+        self.attribute_map = {
+            'api_id': 'apiId',
+            'routing_rules': 'routingRules'
+        }
+
+        self._api_id = api_id
+        self._routing_rules = routing_rules
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'TopologyHiding':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The TopologyHiding of this TopologyHiding.  # noqa: E501
+        :rtype: TopologyHiding
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this TopologyHiding.
+
+
+        :return: The api_id of this TopologyHiding.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this TopologyHiding.
+
+
+        :param api_id: The api_id of this TopologyHiding.
+        :type api_id: str
+        """
+        if api_id is None:
+            raise ValueError("Invalid value for `api_id`, must not be `None`")  # noqa: E501
+
+        self._api_id = api_id
+
+    @property
+    def routing_rules(self):
+        """Gets the routing_rules of this TopologyHiding.
+
+
+        :return: The routing_rules of this TopologyHiding.
+        :rtype: List[RoutingRule]
+        """
+        return self._routing_rules
+
+    @routing_rules.setter
+    def routing_rules(self, routing_rules):
+        """Sets the routing_rules of this TopologyHiding.
+
+
+        :param routing_rules: The routing_rules of this TopologyHiding.
+        :type routing_rules: List[RoutingRule]
+        """
+        if routing_rules is None:
+            raise ValueError("Invalid value for `routing_rules`, must not be `None`")  # noqa: E501
+        if routing_rules is not None and len(routing_rules) < 1:
+            raise ValueError("Invalid value for `routing_rules`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._routing_rules = routing_rules
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/version.py b/services/TS29222_CAPIF_Events_API/capif_events/models/version.py
new file mode 100644
index 0000000..3b78d8f
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/version.py
@@ -0,0 +1,160 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events.models.custom_operation import CustomOperation
+from capif_events.models.resource import Resource
+from capif_events import util
+
+from capif_events.models.custom_operation import CustomOperation  # noqa: E501
+from capif_events.models.resource import Resource  # noqa: E501
+
+class Version(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_version=None, expiry=None, resources=None, cust_operations=None):  # noqa: E501
+        """Version - a model defined in OpenAPI
+
+        :param api_version: The api_version of this Version.  # noqa: E501
+        :type api_version: str
+        :param expiry: The expiry of this Version.  # noqa: E501
+        :type expiry: datetime
+        :param resources: The resources of this Version.  # noqa: E501
+        :type resources: List[Resource]
+        :param cust_operations: The cust_operations of this Version.  # noqa: E501
+        :type cust_operations: List[CustomOperation]
+        """
+        self.openapi_types = {
+            'api_version': str,
+            'expiry': datetime,
+            'resources': List[Resource],
+            'cust_operations': List[CustomOperation]
+        }
+
+        self.attribute_map = {
+            'api_version': 'apiVersion',
+            'expiry': 'expiry',
+            'resources': 'resources',
+            'cust_operations': 'custOperations'
+        }
+
+        self._api_version = api_version
+        self._expiry = expiry
+        self._resources = resources
+        self._cust_operations = cust_operations
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Version':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Version of this Version.  # noqa: E501
+        :rtype: Version
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :return: The api_version of this Version.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :param api_version: The api_version of this Version.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def expiry(self):
+        """Gets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The expiry of this Version.
+        :rtype: datetime
+        """
+        return self._expiry
+
+    @expiry.setter
+    def expiry(self, expiry):
+        """Sets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param expiry: The expiry of this Version.
+        :type expiry: datetime
+        """
+
+        self._expiry = expiry
+
+    @property
+    def resources(self):
+        """Gets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :return: The resources of this Version.
+        :rtype: List[Resource]
+        """
+        return self._resources
+
+    @resources.setter
+    def resources(self, resources):
+        """Sets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :param resources: The resources of this Version.
+        :type resources: List[Resource]
+        """
+        if resources is not None and len(resources) < 1:
+            raise ValueError("Invalid value for `resources`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._resources = resources
+
+    @property
+    def cust_operations(self):
+        """Gets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :return: The cust_operations of this Version.
+        :rtype: List[CustomOperation]
+        """
+        return self._cust_operations
+
+    @cust_operations.setter
+    def cust_operations(self, cust_operations):
+        """Sets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :param cust_operations: The cust_operations of this Version.
+        :type cust_operations: List[CustomOperation]
+        """
+        if cust_operations is not None and len(cust_operations) < 1:
+            raise ValueError("Invalid value for `cust_operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._cust_operations = cust_operations
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/models/websock_notif_config.py b/services/TS29222_CAPIF_Events_API/capif_events/models/websock_notif_config.py
new file mode 100644
index 0000000..9a7c40b
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/models/websock_notif_config.py
@@ -0,0 +1,94 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_events.models.base_model_ import Model
+from capif_events import util
+
+
+class WebsockNotifConfig(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, websocket_uri=None, request_websocket_uri=None):  # noqa: E501
+        """WebsockNotifConfig - a model defined in OpenAPI
+
+        :param websocket_uri: The websocket_uri of this WebsockNotifConfig.  # noqa: E501
+        :type websocket_uri: str
+        :param request_websocket_uri: The request_websocket_uri of this WebsockNotifConfig.  # noqa: E501
+        :type request_websocket_uri: bool
+        """
+        self.openapi_types = {
+            'websocket_uri': str,
+            'request_websocket_uri': bool
+        }
+
+        self.attribute_map = {
+            'websocket_uri': 'websocketUri',
+            'request_websocket_uri': 'requestWebsocketUri'
+        }
+
+        self._websocket_uri = websocket_uri
+        self._request_websocket_uri = request_websocket_uri
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'WebsockNotifConfig':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The WebsockNotifConfig of this WebsockNotifConfig.  # noqa: E501
+        :rtype: WebsockNotifConfig
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def websocket_uri(self):
+        """Gets the websocket_uri of this WebsockNotifConfig.
+
+        string formatted according to IETF RFC 3986 identifying a referenced resource.  # noqa: E501
+
+        :return: The websocket_uri of this WebsockNotifConfig.
+        :rtype: str
+        """
+        return self._websocket_uri
+
+    @websocket_uri.setter
+    def websocket_uri(self, websocket_uri):
+        """Sets the websocket_uri of this WebsockNotifConfig.
+
+        string formatted according to IETF RFC 3986 identifying a referenced resource.  # noqa: E501
+
+        :param websocket_uri: The websocket_uri of this WebsockNotifConfig.
+        :type websocket_uri: str
+        """
+
+        self._websocket_uri = websocket_uri
+
+    @property
+    def request_websocket_uri(self):
+        """Gets the request_websocket_uri of this WebsockNotifConfig.
+
+        Set by the SCS/AS to indicate that the Websocket delivery is requested.  # noqa: E501
+
+        :return: The request_websocket_uri of this WebsockNotifConfig.
+        :rtype: bool
+        """
+        return self._request_websocket_uri
+
+    @request_websocket_uri.setter
+    def request_websocket_uri(self, request_websocket_uri):
+        """Sets the request_websocket_uri of this WebsockNotifConfig.
+
+        Set by the SCS/AS to indicate that the Websocket delivery is requested.  # noqa: E501
+
+        :param request_websocket_uri: The request_websocket_uri of this WebsockNotifConfig.
+        :type request_websocket_uri: bool
+        """
+
+        self._request_websocket_uri = request_websocket_uri
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/openapi/openapi.yaml b/services/TS29222_CAPIF_Events_API/capif_events/openapi/openapi.yaml
new file mode 100644
index 0000000..d89f8dd
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/openapi/openapi.yaml
@@ -0,0 +1,3314 @@
+openapi: 3.0.0
+info:
+  description: |
+    API for event subscription management.
+    © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
+    All rights reserved.
+  title: CAPIF_Events_API
+  version: 1.2.0-alpha.1
+externalDocs:
+  description: 3GPP TS 29.222 V17.1.0 Common API Framework for 3GPP Northbound APIs
+  url: http://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/capif-events/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in subclause 7.5 of 3GPP TS 29.222
+paths:
+  /{subscriberId}/subscriptions:
+    post:
+      callbacks:
+        notificationDestination:
+          '{request.body#/notificationDestination}':
+            post:
+              operationId: notificationDestination_request_bodyNotificationDestinationPost
+              requestBody:
+                content:
+                  application/json:
+                    schema:
+                      $ref: '#/components/schemas/EventNotification'
+                required: true
+              responses:
+                "204":
+                  description: No Content (successful notification)
+                "307":
+                  description: Temporary Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "308":
+                  description: Permanent Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "400":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Bad request
+                "401":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unauthorized
+                "403":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Forbidden
+                "404":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Not Found
+                "411":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Length Required
+                "413":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Payload Too Large
+                "415":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unsupported Media Type
+                "429":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Too Many Requests
+                "500":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Internal Server Error
+                "503":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Service Unavailable
+                default:
+                  description: Generic Error
+              x-callback-request: true
+      description: Creates a new individual CAPIF Event Subscription.
+      operationId: subscriber_id_subscriptions_post
+      parameters:
+      - description: Identifier of the Subscriber
+        explode: false
+        in: path
+        name: subscriberId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/EventSubscription'
+        required: true
+      responses:
+        "201":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/EventSubscription'
+          description: Created (Successful creation of subscription)
+          headers:
+            Location:
+              description: 'Contains the URI of the newly created resource, according
+                to the structure: {apiRoot}/capif-events/v1/{subscriberId}/subscriptions/{subscriptionId}'
+              explode: false
+              required: true
+              schema:
+                type: string
+              style: simple
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: capif_events.controllers.default_controller
+  /{subscriberId}/subscriptions/{subscriptionId}:
+    delete:
+      description: Deletes an individual CAPIF Event Subscription.
+      operationId: subscriber_id_subscriptions_subscription_id_delete
+      parameters:
+      - description: Identifier of the Subscriber
+        explode: false
+        in: path
+        name: subscriberId
+        required: true
+        schema:
+          type: string
+        style: simple
+      - description: Identifier of an individual Events Subscription
+        explode: false
+        in: path
+        name: subscriptionId
+        required: true
+        schema:
+          type: string
+        style: simple
+      responses:
+        "204":
+          description: The individual CAPIF Events Subscription matching the subscriptionId
+            is deleted.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: capif_events.controllers.default_controller
+components:
+  schemas:
+    EventSubscription:
+      description: Represents an individual CAPIF Event Subscription resource.
+      example:
+        notificationDestination: notificationDestination
+        eventFilters:
+        - aefIds:
+          - aefIds
+          - aefIds
+          apiInvokerIds:
+          - apiInvokerIds
+          - apiInvokerIds
+          apiIds:
+          - apiIds
+          - apiIds
+        - aefIds:
+          - aefIds
+          - aefIds
+          apiInvokerIds:
+          - apiInvokerIds
+          - apiInvokerIds
+          apiIds:
+          - apiIds
+          - apiIds
+        supportedFeatures: supportedFeatures
+        eventReq:
+          partitionCriteria:
+          - null
+          - null
+          grpRepTime: 5
+          monDur: 2000-01-23T04:56:07.000+00:00
+          immRep: true
+          maxReportNbr: 0
+          repPeriod: 6
+          sampRatio: 15
+        websockNotifConfig:
+          requestWebsocketUri: true
+          websocketUri: websocketUri
+        events:
+        - null
+        - null
+        requestTestNotification: true
+      properties:
+        events:
+          description: Subscribed events
+          items:
+            $ref: '#/components/schemas/CAPIFEvent'
+          minItems: 1
+          title: events
+          type: array
+        eventFilters:
+          description: Subscribed event filters
+          items:
+            $ref: '#/components/schemas/CAPIFEventFilter'
+          minItems: 1
+          title: eventFilters
+          type: array
+        eventReq:
+          $ref: '#/components/schemas/ReportingInformation'
+        notificationDestination:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        requestTestNotification:
+          description: Set to true by Subscriber to request the CAPIF core function
+            to send a test notification as defined in in subclause 7.6. Set to false
+            or omitted otherwise.
+          title: requestTestNotification
+          type: boolean
+        websockNotifConfig:
+          $ref: '#/components/schemas/WebsockNotifConfig'
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+      required:
+      - events
+      - notificationDestination
+      title: EventSubscription
+      type: object
+    EventNotification:
+      description: Represents an individual CAPIF Event notification.
+      example:
+        subscriptionId: subscriptionId
+        eventDetail:
+          apiInvokerIds:
+          - apiInvokerIds
+          - apiInvokerIds
+          invocationLogs:
+          - supportedFeatures: supportedFeatures
+            apiInvokerId: apiInvokerId
+            aefId: aefId
+            logs:
+            - apiName: apiName
+              invocationTime: 2000-01-23T04:56:07.000+00:00
+              srcInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              fwdInterface: fwdInterface
+              resourceName: resourceName
+              uri: uri
+              inputParameters: ""
+              invocationLatency: 0
+              result: result
+              apiVersion: apiVersion
+              destInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              apiId: apiId
+              outputParameters: ""
+            - apiName: apiName
+              invocationTime: 2000-01-23T04:56:07.000+00:00
+              srcInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              fwdInterface: fwdInterface
+              resourceName: resourceName
+              uri: uri
+              inputParameters: ""
+              invocationLatency: 0
+              result: result
+              apiVersion: apiVersion
+              destInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              apiId: apiId
+              outputParameters: ""
+          - supportedFeatures: supportedFeatures
+            apiInvokerId: apiInvokerId
+            aefId: aefId
+            logs:
+            - apiName: apiName
+              invocationTime: 2000-01-23T04:56:07.000+00:00
+              srcInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              fwdInterface: fwdInterface
+              resourceName: resourceName
+              uri: uri
+              inputParameters: ""
+              invocationLatency: 0
+              result: result
+              apiVersion: apiVersion
+              destInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              apiId: apiId
+              outputParameters: ""
+            - apiName: apiName
+              invocationTime: 2000-01-23T04:56:07.000+00:00
+              srcInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              fwdInterface: fwdInterface
+              resourceName: resourceName
+              uri: uri
+              inputParameters: ""
+              invocationLatency: 0
+              result: result
+              apiVersion: apiVersion
+              destInterface:
+                ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              apiId: apiId
+              outputParameters: ""
+          apiTopoHide:
+            apiId: apiId
+            routingRules:
+            - ipv6AddrRanges:
+              - start: start
+                end: end
+              - start: start
+                end: end
+              aefProfile:
+                securityMethods:
+                - null
+                - null
+                versions:
+                - apiVersion: apiVersion
+                  resources:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  custOperations:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  expiry: 2000-01-23T04:56:07.000+00:00
+                - apiVersion: apiVersion
+                  resources:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  custOperations:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  expiry: 2000-01-23T04:56:07.000+00:00
+                domainName: domainName
+                aefId: aefId
+                interfaceDescriptions:
+                - ipv6Addr: ipv6Addr
+                  securityMethods:
+                  - null
+                  - null
+                  port: 5248
+                  ipv4Addr: ipv4Addr
+                - ipv6Addr: ipv6Addr
+                  securityMethods:
+                  - null
+                  - null
+                  port: 5248
+                  ipv4Addr: ipv4Addr
+              ipv4AddrRanges:
+              - start: 198.51.100.1
+                end: 198.51.100.1
+              - start: 198.51.100.1
+                end: 198.51.100.1
+            - ipv6AddrRanges:
+              - start: start
+                end: end
+              - start: start
+                end: end
+              aefProfile:
+                securityMethods:
+                - null
+                - null
+                versions:
+                - apiVersion: apiVersion
+                  resources:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  custOperations:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  expiry: 2000-01-23T04:56:07.000+00:00
+                - apiVersion: apiVersion
+                  resources:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    resourceName: resourceName
+                    custOpName: custOpName
+                    uri: uri
+                  custOperations:
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  - operations:
+                    - null
+                    - null
+                    description: description
+                    custOpName: custOpName
+                  expiry: 2000-01-23T04:56:07.000+00:00
+                domainName: domainName
+                aefId: aefId
+                interfaceDescriptions:
+                - ipv6Addr: ipv6Addr
+                  securityMethods:
+                  - null
+                  - null
+                  port: 5248
+                  ipv4Addr: ipv4Addr
+                - ipv6Addr: ipv6Addr
+                  securityMethods:
+                  - null
+                  - null
+                  port: 5248
+                  ipv4Addr: ipv4Addr
+              ipv4AddrRanges:
+              - start: 198.51.100.1
+                end: 198.51.100.1
+              - start: 198.51.100.1
+                end: 198.51.100.1
+          serviceAPIDescriptions:
+          - serviceAPICategory: serviceAPICategory
+            ccfId: ccfId
+            apiName: apiName
+            shareableInfo:
+              capifProvDoms:
+              - capifProvDoms
+              - capifProvDoms
+              isShareable: true
+            supportedFeatures: supportedFeatures
+            description: description
+            apiSuppFeats: apiSuppFeats
+            apiId: apiId
+            aefProfiles:
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            pubApiPath:
+              ccfIds:
+              - ccfIds
+              - ccfIds
+          - serviceAPICategory: serviceAPICategory
+            ccfId: ccfId
+            apiName: apiName
+            shareableInfo:
+              capifProvDoms:
+              - capifProvDoms
+              - capifProvDoms
+              isShareable: true
+            supportedFeatures: supportedFeatures
+            description: description
+            apiSuppFeats: apiSuppFeats
+            apiId: apiId
+            aefProfiles:
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            - securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            pubApiPath:
+              ccfIds:
+              - ccfIds
+              - ccfIds
+          apiIds:
+          - apiIds
+          - apiIds
+      properties:
+        subscriptionId:
+          description: Identifier of the subscription resource to which the notification
+            is related – CAPIF resource identifier
+          type: string
+        events:
+          $ref: '#/components/schemas/CAPIFEvent'
+        eventDetail:
+          $ref: '#/components/schemas/CAPIFEventDetail'
+      required:
+      - events
+      - subscriptionId
+      type: object
+    CAPIFEventFilter:
+      description: Represents a CAPIF event filter.
+      example:
+        aefIds:
+        - aefIds
+        - aefIds
+        apiInvokerIds:
+        - apiInvokerIds
+        - apiInvokerIds
+        apiIds:
+        - apiIds
+        - apiIds
+      properties:
+        apiIds:
+          description: Identifier of the service API
+          items:
+            type: string
+          minItems: 1
+          title: apiIds
+          type: array
+        apiInvokerIds:
+          description: Identity of the API invoker
+          items:
+            type: string
+          minItems: 1
+          title: apiInvokerIds
+          type: array
+        aefIds:
+          description: Identifier of the API exposing function
+          items:
+            type: string
+          minItems: 1
+          title: aefIds
+          type: array
+      title: CAPIFEventFilter
+      type: object
+    CAPIFEventDetail:
+      description: Represents a CAPIF event details.
+      example:
+        apiInvokerIds:
+        - apiInvokerIds
+        - apiInvokerIds
+        invocationLogs:
+        - supportedFeatures: supportedFeatures
+          apiInvokerId: apiInvokerId
+          aefId: aefId
+          logs:
+          - apiName: apiName
+            invocationTime: 2000-01-23T04:56:07.000+00:00
+            srcInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            fwdInterface: fwdInterface
+            resourceName: resourceName
+            uri: uri
+            inputParameters: ""
+            invocationLatency: 0
+            result: result
+            apiVersion: apiVersion
+            destInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            apiId: apiId
+            outputParameters: ""
+          - apiName: apiName
+            invocationTime: 2000-01-23T04:56:07.000+00:00
+            srcInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            fwdInterface: fwdInterface
+            resourceName: resourceName
+            uri: uri
+            inputParameters: ""
+            invocationLatency: 0
+            result: result
+            apiVersion: apiVersion
+            destInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            apiId: apiId
+            outputParameters: ""
+        - supportedFeatures: supportedFeatures
+          apiInvokerId: apiInvokerId
+          aefId: aefId
+          logs:
+          - apiName: apiName
+            invocationTime: 2000-01-23T04:56:07.000+00:00
+            srcInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            fwdInterface: fwdInterface
+            resourceName: resourceName
+            uri: uri
+            inputParameters: ""
+            invocationLatency: 0
+            result: result
+            apiVersion: apiVersion
+            destInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            apiId: apiId
+            outputParameters: ""
+          - apiName: apiName
+            invocationTime: 2000-01-23T04:56:07.000+00:00
+            srcInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            fwdInterface: fwdInterface
+            resourceName: resourceName
+            uri: uri
+            inputParameters: ""
+            invocationLatency: 0
+            result: result
+            apiVersion: apiVersion
+            destInterface:
+              ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            apiId: apiId
+            outputParameters: ""
+        apiTopoHide:
+          apiId: apiId
+          routingRules:
+          - ipv6AddrRanges:
+            - start: start
+              end: end
+            - start: start
+              end: end
+            aefProfile:
+              securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            ipv4AddrRanges:
+            - start: 198.51.100.1
+              end: 198.51.100.1
+            - start: 198.51.100.1
+              end: 198.51.100.1
+          - ipv6AddrRanges:
+            - start: start
+              end: end
+            - start: start
+              end: end
+            aefProfile:
+              securityMethods:
+              - null
+              - null
+              versions:
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              - apiVersion: apiVersion
+                resources:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  resourceName: resourceName
+                  custOpName: custOpName
+                  uri: uri
+                custOperations:
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                - operations:
+                  - null
+                  - null
+                  description: description
+                  custOpName: custOpName
+                expiry: 2000-01-23T04:56:07.000+00:00
+              domainName: domainName
+              aefId: aefId
+              interfaceDescriptions:
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+              - ipv6Addr: ipv6Addr
+                securityMethods:
+                - null
+                - null
+                port: 5248
+                ipv4Addr: ipv4Addr
+            ipv4AddrRanges:
+            - start: 198.51.100.1
+              end: 198.51.100.1
+            - start: 198.51.100.1
+              end: 198.51.100.1
+        serviceAPIDescriptions:
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+        - serviceAPICategory: serviceAPICategory
+          ccfId: ccfId
+          apiName: apiName
+          shareableInfo:
+            capifProvDoms:
+            - capifProvDoms
+            - capifProvDoms
+            isShareable: true
+          supportedFeatures: supportedFeatures
+          description: description
+          apiSuppFeats: apiSuppFeats
+          apiId: apiId
+          aefProfiles:
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          - securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          pubApiPath:
+            ccfIds:
+            - ccfIds
+            - ccfIds
+        apiIds:
+        - apiIds
+        - apiIds
+      properties:
+        serviceAPIDescriptions:
+          description: Description of the service API as published by the APF.
+          items:
+            $ref: '#/components/schemas/ServiceAPIDescription'
+          minItems: 1
+          title: serviceAPIDescriptions
+          type: array
+        apiIds:
+          description: Identifier of the service API
+          items:
+            type: string
+          minItems: 1
+          title: apiIds
+          type: array
+        apiInvokerIds:
+          description: Identity of the API invoker
+          items:
+            type: string
+          minItems: 1
+          title: apiInvokerIds
+          type: array
+        accCtrlPolList:
+          $ref: '#/components/schemas/AccessControlPolicyListExt'
+        invocationLogs:
+          description: Invocation logs.
+          items:
+            $ref: '#/components/schemas/InvocationLog'
+          minItems: 1
+          title: invocationLogs
+          type: array
+        apiTopoHide:
+          $ref: '#/components/schemas/TopologyHiding'
+      title: CAPIFEventDetail
+      type: object
+    AccessControlPolicyListExt:
+      allOf:
+      - $ref: '#/components/schemas/AccessControlPolicyList'
+      - $ref: '#/components/schemas/AccessControlPolicyListExt_allOf'
+      description: Represents the extension for access control policies.
+      required:
+      - apiId
+      properties:
+        apiId:
+          title: apiId
+          type: string
+      title: AccessControlPolicyListExt
+    TopologyHiding:
+      description: Represents the routing rules information of a service API.
+      example:
+        apiId: apiId
+        routingRules:
+        - ipv6AddrRanges:
+          - start: start
+            end: end
+          - start: start
+            end: end
+          aefProfile:
+            securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          ipv4AddrRanges:
+          - start: 198.51.100.1
+            end: 198.51.100.1
+          - start: 198.51.100.1
+            end: 198.51.100.1
+        - ipv6AddrRanges:
+          - start: start
+            end: end
+          - start: start
+            end: end
+          aefProfile:
+            securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          ipv4AddrRanges:
+          - start: 198.51.100.1
+            end: 198.51.100.1
+          - start: 198.51.100.1
+            end: 198.51.100.1
+      properties:
+        apiId:
+          title: apiId
+          type: string
+        routingRules:
+          items:
+            $ref: '#/components/schemas/RoutingRule'
+          minItems: 1
+          title: routingRules
+          type: array
+      required:
+      - apiId
+      - routingRules
+      title: TopologyHiding
+      type: object
+    CAPIFEvent:
+      anyOf:
+      - $ref: '#/components/schemas/CAPIFEvent_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - SERVICE_API_AVAILABLE: Events related to the availability of service APIs after the service APIs are published. - SERVICE_API_UNAVAILABLE: Events related to the unavailability of service APIs after the service APIs are unpublished. - SERVICE_API_UPDATE: Events related to change in service API information. - API_INVOKER_ONBOARDED: Events related to API invoker onboarded to CAPIF. - API_INVOKER_OFFBOARDED: Events related to API invoker offboarded from CAPIF. - SERVICE_API_INVOCATION_SUCCESS: Events related to the successful invocation of service APIs. - SERVICE_API_INVOCATION_FAILURE: Events related to the failed invocation of service APIs. - ACCESS_CONTROL_POLICY_UPDATE: Events related to the update for the access control policy related to the service APIs. - ACCESS_CONTROL_POLICY_UNAVAILABLE: Events related to the unavailability of the access control policy related to the service APIs. - API_INVOKER_AUTHORIZATION_REVOKED: Events related to the revocation of the authorization of API invokers to access the service APIs. - API_INVOKER_UPDATED: Events related to API invoker profile updated to CAPIF. - API_TOPOLOGY_HIDING_CREATED: Events related to the creation or update of the API topology hiding information of the service APIs after the service APIs are published. - API_TOPOLOGY_HIDING_REVOKED: Events related to the revocation of the API topology hiding information of the service APIs after the service APIs are unpublished.
+      title: CAPIFEvent
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: Uri
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    ReportingInformation:
+      description: Represents the type of reporting that the subscription requires.
+      example:
+        partitionCriteria:
+        - null
+        - null
+        grpRepTime: 5
+        monDur: 2000-01-23T04:56:07.000+00:00
+        immRep: true
+        maxReportNbr: 0
+        repPeriod: 6
+        sampRatio: 15
+      properties:
+        immRep:
+          title: immRep
+          type: boolean
+        notifMethod:
+          $ref: '#/components/schemas/NotificationMethod'
+        maxReportNbr:
+          description: Unsigned Integer, i.e. only value 0 and integers above 0 are
+            permissible.
+          minimum: 0
+          title: Uinteger
+          type: integer
+        monDur:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        repPeriod:
+          description: indicating a time in seconds.
+          title: DurationSec
+          type: integer
+        sampRatio:
+          description: Unsigned integer indicating Sampling Ratio (see clauses 4.15.1
+            of 3GPP TS 23.502), expressed in percent.
+          maximum: 100
+          minimum: 1
+          title: SamplingRatio
+          type: integer
+        partitionCriteria:
+          description: Criteria for partitioning the UEs before applying the sampling
+            ratio.
+          items:
+            $ref: '#/components/schemas/PartitioningCriteria'
+          minItems: 1
+          title: partitionCriteria
+          type: array
+        grpRepTime:
+          description: indicating a time in seconds.
+          title: DurationSec
+          type: integer
+        notifFlag:
+          $ref: '#/components/schemas/NotificationFlag'
+      title: ReportingInformation
+      type: object
+    WebsockNotifConfig:
+      description: Represents the configuration information for the delivery of notifications
+        over Websockets.
+      example:
+        requestWebsocketUri: true
+        websocketUri: websocketUri
+      properties:
+        websocketUri:
+          description: string formatted according to IETF RFC 3986 identifying a referenced
+            resource.
+          title: Link
+          type: string
+        requestWebsocketUri:
+          description: Set by the SCS/AS to indicate that the Websocket delivery is
+            requested.
+          title: requestWebsocketUri
+          type: boolean
+      title: WebsockNotifConfig
+      type: object
+    Link:
+      description: string formatted according to IETF RFC 3986 identifying a referenced
+        resource.
+      title: Link
+      type: string
+    SupportedFeatures:
+      description: A string used to indicate the features supported by an API that
+        is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain
+        a bitmask indicating supported features in hexadecimal representation Each
+        character in the string shall take a value of "0" to "9", "a" to "f" or "A"
+        to "F" and shall represent the support of 4 features as described in table 5.2.2-3.
+        The most significant character representing the highest-numbered features
+        shall appear first in the string, and the character representing features
+        1 to 4 shall appear last in the string. The list of features and their numbering
+        (starting with 1) are defined separately for each API. If the string contains
+        a lower number of characters than there are defined features for an API, all
+        features that would be represented by characters that are not present in the
+        string are not supported
+      pattern: ^[A-Fa-f0-9]*$
+      title: SupportedFeatures
+      type: string
+    ServiceAPIDescription:
+      description: Represents the description of a service API as published by the
+        APF.
+      example:
+        serviceAPICategory: serviceAPICategory
+        ccfId: ccfId
+        apiName: apiName
+        shareableInfo:
+          capifProvDoms:
+          - capifProvDoms
+          - capifProvDoms
+          isShareable: true
+        supportedFeatures: supportedFeatures
+        description: description
+        apiSuppFeats: apiSuppFeats
+        apiId: apiId
+        aefProfiles:
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        pubApiPath:
+          ccfIds:
+          - ccfIds
+          - ccfIds
+      properties:
+        apiName:
+          description: API name, it is set as {apiName} part of the URI structure
+            as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: apiName
+          type: string
+        apiId:
+          description: API identifier assigned by the CAPIF core function to the published
+            service API. Shall not be present in the HTTP POST request from the API
+            publishing function to the CAPIF core function. Shall be present in the
+            HTTP POST response from the CAPIF core function to the API publishing
+            function and in the HTTP GET response from the CAPIF core function to
+            the API invoker (discovery API).
+          title: apiId
+          type: string
+        aefProfiles:
+          description: AEF profile information, which includes the exposed API details
+            (e.g. protocol).
+          items:
+            $ref: '#/components/schemas/AefProfile'
+          minItems: 1
+          title: aefProfiles
+          type: array
+        description:
+          description: Text description of the API
+          title: description
+          type: string
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+        shareableInfo:
+          $ref: '#/components/schemas/ShareableInformation'
+        serviceAPICategory:
+          title: serviceAPICategory
+          type: string
+        apiSuppFeats:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+        pubApiPath:
+          $ref: '#/components/schemas/PublishedApiPath'
+        ccfId:
+          description: CAPIF core function identifier.
+          title: ccfId
+          type: string
+      required:
+      - apiName
+      title: ServiceAPIDescription
+      type: object
+    AefProfile:
+      description: Represents the AEF profile data.
+      example:
+        securityMethods:
+        - null
+        - null
+        versions:
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        domainName: domainName
+        aefId: aefId
+        interfaceDescriptions:
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - domainName
+      - required:
+        - interfaceDescriptions
+      properties:
+        aefId:
+          description: Identifier of the API exposing function
+          title: aefId
+          type: string
+        versions:
+          description: API version
+          items:
+            $ref: '#/components/schemas/Version'
+          minItems: 1
+          title: versions
+          type: array
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        dataFormat:
+          $ref: '#/components/schemas/DataFormat'
+        securityMethods:
+          description: Security methods supported by the AEF
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+        domainName:
+          description: Domain to which API belongs to
+          title: domainName
+          type: string
+        interfaceDescriptions:
+          description: Interface details
+          items:
+            $ref: '#/components/schemas/InterfaceDescription'
+          minItems: 1
+          title: interfaceDescriptions
+          type: array
+      required:
+      - aefId
+      - versions
+      title: AefProfile
+      type: object
+    Version:
+      description: Represents the API version information.
+      example:
+        apiVersion: apiVersion
+        resources:
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        custOperations:
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        expiry: 2000-01-23T04:56:07.000+00:00
+      properties:
+        apiVersion:
+          description: API major version in URI (e.g. v1)
+          title: apiVersion
+          type: string
+        expiry:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        resources:
+          description: Resources supported by the API.
+          items:
+            $ref: '#/components/schemas/Resource'
+          minItems: 1
+          title: resources
+          type: array
+        custOperations:
+          description: Custom operations without resource association.
+          items:
+            $ref: '#/components/schemas/CustomOperation'
+          minItems: 1
+          title: custOperations
+          type: array
+      required:
+      - apiVersion
+      title: Version
+      type: object
+    Resource:
+      description: Represents the API resource data.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        resourceName: resourceName
+        custOpName: custOpName
+        uri: uri
+      properties:
+        resourceName:
+          description: Resource name
+          title: resourceName
+          type: string
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        uri:
+          description: Relative URI of the API resource, it is set as {apiSpecificResourceUriPart}
+            part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: uri
+          type: string
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation associated with a resource as defined in subclause 4.4 of 3GPP
+            TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the API resource
+          title: description
+          type: string
+      required:
+      - commType
+      - resourceName
+      - uri
+      title: Resource
+      type: object
+    CommunicationType:
+      anyOf:
+      - $ref: '#/components/schemas/CommunicationType_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - REQUEST_RESPONSE: The communication is of the type request-response - SUBSCRIBE_NOTIFY: The communication is of the type subscribe-notify
+      title: CommunicationType
+    Operation:
+      anyOf:
+      - $ref: '#/components/schemas/Operation_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - GET: HTTP GET method - POST: HTTP POST method - PUT: HTTP PUT method - PATCH: HTTP PATCH method - DELETE: HTTP DELETE method
+      title: Operation
+    CustomOperation:
+      description: Represents the description of a custom operation.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        custOpName: custOpName
+      properties:
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation without resource association as defined in subclause 4.4 of
+            3GPP TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the custom operation
+          title: description
+          type: string
+      required:
+      - commType
+      - custOpName
+      title: CustomOperation
+      type: object
+    Protocol:
+      anyOf:
+      - $ref: '#/components/schemas/Protocol_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - HTTP_1_1: HTTP version 1.1 - HTTP_2: HTTP version 2
+      title: Protocol
+    DataFormat:
+      anyOf:
+      - $ref: '#/components/schemas/DataFormat_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - JSON: JavaScript Object Notation
+      title: DataFormat
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122 - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122 - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      title: SecurityMethod
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 5248
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: Security methods supported by the interface, it take precedence
+            over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    ShareableInformation:
+      description: Indicates whether the service API and/or the service API category
+        can be shared to the list of CAPIF provider domains.
+      example:
+        capifProvDoms:
+        - capifProvDoms
+        - capifProvDoms
+        isShareable: true
+      properties:
+        isShareable:
+          description: Set to "true" indicates that the service API and/or the service
+            API category can be shared to the list of CAPIF provider domain information.
+            Otherwise set to "false".
+          title: isShareable
+          type: boolean
+        capifProvDoms:
+          description: List of CAPIF provider domains to which the service API information
+            to be shared.
+          items:
+            type: string
+          minItems: 1
+          title: capifProvDoms
+          type: array
+      required:
+      - isShareable
+      title: ShareableInformation
+      type: object
+    PublishedApiPath:
+      description: Represents the published API path within the same CAPIF provider
+        domain.
+      example:
+        ccfIds:
+        - ccfIds
+        - ccfIds
+      properties:
+        ccfIds:
+          description: A list of CCF identifiers where the service API is already
+            published.
+          items:
+            type: string
+          minItems: 1
+          title: ccfIds
+          type: array
+      title: PublishedApiPath
+      type: object
+    InvocationLog:
+      description: Represents a set of Service API invocation logs to be stored in
+        a CAPIF core function.
+      example:
+        supportedFeatures: supportedFeatures
+        apiInvokerId: apiInvokerId
+        aefId: aefId
+        logs:
+        - apiName: apiName
+          invocationTime: 2000-01-23T04:56:07.000+00:00
+          srcInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          fwdInterface: fwdInterface
+          resourceName: resourceName
+          uri: uri
+          inputParameters: ""
+          invocationLatency: 0
+          result: result
+          apiVersion: apiVersion
+          destInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          apiId: apiId
+          outputParameters: ""
+        - apiName: apiName
+          invocationTime: 2000-01-23T04:56:07.000+00:00
+          srcInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          fwdInterface: fwdInterface
+          resourceName: resourceName
+          uri: uri
+          inputParameters: ""
+          invocationLatency: 0
+          result: result
+          apiVersion: apiVersion
+          destInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          apiId: apiId
+          outputParameters: ""
+      properties:
+        aefId:
+          description: Identity information of the API exposing function requesting
+            logging of service API invocations
+          title: aefId
+          type: string
+        apiInvokerId:
+          description: Identity of the API invoker which invoked the service API
+          title: apiInvokerId
+          type: string
+        logs:
+          description: Service API invocation log
+          items:
+            $ref: '#/components/schemas/Log'
+          minItems: 1
+          title: logs
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: SupportedFeatures
+          type: string
+      required:
+      - aefId
+      - apiInvokerId
+      - logs
+      title: InvocationLog
+      type: object
+    Log:
+      description: Represents an individual service API invocation log entry.
+      example:
+        apiName: apiName
+        invocationTime: 2000-01-23T04:56:07.000+00:00
+        srcInterface:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        fwdInterface: fwdInterface
+        resourceName: resourceName
+        uri: uri
+        inputParameters: ""
+        invocationLatency: 0
+        result: result
+        apiVersion: apiVersion
+        destInterface:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        apiId: apiId
+        outputParameters: ""
+      properties:
+        apiId:
+          description: String identifying the API invoked.
+          title: apiId
+          type: string
+        apiName:
+          description: Name of the API which was invoked, it is set as {apiName} part
+            of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: apiName
+          type: string
+        apiVersion:
+          description: Version of the API which was invoked
+          title: apiVersion
+          type: string
+        resourceName:
+          description: Name of the specific resource invoked
+          title: resourceName
+          type: string
+        uri:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        operation:
+          $ref: '#/components/schemas/Operation'
+        result:
+          description: For HTTP protocol, it contains HTTP status code of the invocation
+          title: result
+          type: string
+        invocationTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        invocationLatency:
+          description: Unsigned integer identifying a period of time in units of milliseconds.
+          minimum: 0
+          title: DurationMs
+          type: integer
+        inputParameters:
+          description: List of input parameters. Can be any value - string, number,
+            boolean, array or object.
+          title: inputParameters
+        outputParameters:
+          description: List of output parameters. Can be any value - string, number,
+            boolean, array or object.
+          title: outputParameters
+        srcInterface:
+          $ref: '#/components/schemas/InterfaceDescription'
+        destInterface:
+          $ref: '#/components/schemas/InterfaceDescription'
+        fwdInterface:
+          description: It includes the node identifier (as defined in IETF RFC 7239
+            of all forwarding entities between the API invoker and the AEF, concatenated
+            with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60
+          title: fwdInterface
+          type: string
+      required:
+      - apiId
+      - apiName
+      - apiVersion
+      - protocol
+      - resourceName
+      - result
+      title: Log
+      type: object
+    DurationMs:
+      description: Unsigned integer identifying a period of time in units of milliseconds.
+      minimum: 0
+      title: DurationMs
+      type: integer
+    AccessControlPolicyList:
+      description: Represents the access control policy list for a published service
+        API.
+      properties:
+        apiInvokerPolicies:
+          description: Policy of each API invoker.
+          items:
+            $ref: '#/components/schemas/ApiInvokerPolicy'
+          minItems: 0
+          title: apiInvokerPolicies
+          type: array
+      title: AccessControlPolicyList
+      type: object
+    ApiInvokerPolicy:
+      description: Represents the policy of an API Invoker.
+      properties:
+        apiInvokerId:
+          description: API invoker ID assigned by the CAPIF core function
+          title: apiInvokerId
+          type: string
+        allowedTotalInvocations:
+          description: Total number of invocations allowed on the service API by the
+            API invoker.
+          title: allowedTotalInvocations
+          type: integer
+        allowedInvocationsPerSecond:
+          description: Invocations per second allowed on the service API by the API
+            invoker.
+          title: allowedInvocationsPerSecond
+          type: integer
+        allowedInvocationTimeRangeList:
+          description: The time ranges during which the invocations are allowed on
+            the service API by the API invoker.
+          items:
+            $ref: '#/components/schemas/TimeRangeList'
+          minItems: 0
+          title: allowedInvocationTimeRangeList
+          type: array
+      required:
+      - apiInvokerId
+      title: ApiInvokerPolicy
+      type: object
+    TimeRangeList:
+      description: Represents the time range during which the invocation of a service
+        API is allowed by the API invoker.
+      properties:
+        startTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        stopTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+      title: TimeRangeList
+      type: object
+    RoutingRule:
+      description: Represents an API routing rule.
+      example:
+        ipv6AddrRanges:
+        - start: start
+          end: end
+        - start: start
+          end: end
+        aefProfile:
+          securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        ipv4AddrRanges:
+        - start: 198.51.100.1
+          end: 198.51.100.1
+        - start: 198.51.100.1
+          end: 198.51.100.1
+      properties:
+        ipv4AddrRanges:
+          items:
+            $ref: '#/components/schemas/Ipv4AddressRange'
+          minItems: 1
+          title: ipv4AddrRanges
+          type: array
+        ipv6AddrRanges:
+          items:
+            $ref: '#/components/schemas/Ipv6AddressRange'
+          minItems: 1
+          title: ipv6AddrRanges
+          type: array
+        aefProfile:
+          $ref: '#/components/schemas/AefProfile'
+      required:
+      - aefProfile
+      title: RoutingRule
+      type: object
+    Ipv6AddressRange:
+      description: Represents IPv6 address range.
+      example:
+        start: start
+        end: end
+      properties:
+        start:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        end:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+      required:
+      - end
+      - start
+      title: Ipv6AddressRange
+      type: object
+    NotificationMethod:
+      anyOf:
+      - $ref: '#/components/schemas/NotificationMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PERIODIC - ONE_TIME - ON_EVENT_DETECTION
+      title: NotificationMethod
+    Uinteger:
+      description: Unsigned Integer, i.e. only value 0 and integers above 0 are permissible.
+      minimum: 0
+      title: Uinteger
+      type: integer
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    DurationSec:
+      description: indicating a time in seconds.
+      title: DurationSec
+      type: integer
+    SamplingRatio:
+      description: Unsigned integer indicating Sampling Ratio (see clauses 4.15.1
+        of 3GPP TS 23.502), expressed in percent.
+      maximum: 100
+      minimum: 1
+      title: SamplingRatio
+      type: integer
+    PartitioningCriteria:
+      anyOf:
+      - $ref: '#/components/schemas/PartitioningCriteria_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - "TAC": Type Allocation Code - "SUBPLMN": Subscriber PLMN ID - "GEOAREA": Geographical area, i.e. list(s) of TAI(s) - "SNSSAI": S-NSSAI - "DNN": DNN
+      title: PartitioningCriteria
+    NotificationFlag:
+      anyOf:
+      - $ref: '#/components/schemas/NotificationFlag_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - ACTIVATE: The event notification is activated. - DEACTIVATE: The event notification is deactivated and shall be muted. The available event(s) shall be stored. - RETRIEVAL: The event notification shall be sent to the NF service consumer(s), after that, is muted again.
+      title: NotificationFlag
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    Ipv4AddressRange:
+      description: Range of IPv4 addresses
+      example:
+        start: 198.51.100.1
+        end: 198.51.100.1
+      properties:
+        start:
+          description: String identifying a IPv4 address formatted in the "dotted
+            decimal" notation as defined in RFC 1166.
+          example: 198.51.100.1
+          pattern: ^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$
+          title: Ipv4Addr_1
+          type: string
+        end:
+          description: String identifying a IPv4 address formatted in the "dotted
+            decimal" notation as defined in RFC 1166.
+          example: 198.51.100.1
+          pattern: ^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$
+          title: Ipv4Addr_1
+          type: string
+      title: Ipv4AddressRange
+      type: object
+    Ipv4Addr_1:
+      description: String identifying a IPv4 address formatted in the "dotted decimal"
+        notation as defined in RFC 1166.
+      example: 198.51.100.1
+      pattern: ^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$
+      title: Ipv4Addr_1
+      type: string
+    AccessControlPolicyListExt_allOf:
+      properties:
+        apiId:
+          title: apiId
+          type: string
+      title: AccessControlPolicyListExt_allOf
+      type: object
+    CAPIFEvent_anyOf:
+      enum:
+      - SERVICE_API_AVAILABLE
+      - SERVICE_API_UNAVAILABLE
+      - SERVICE_API_UPDATE
+      - API_INVOKER_ONBOARDED
+      - API_INVOKER_OFFBOARDED
+      - SERVICE_API_INVOCATION_SUCCESS
+      - SERVICE_API_INVOCATION_FAILURE
+      - ACCESS_CONTROL_POLICY_UPDATE
+      - ACCESS_CONTROL_POLICY_UNAVAILABLE
+      - API_INVOKER_AUTHORIZATION_REVOKED
+      - API_INVOKER_UPDATED
+      - API_TOPOLOGY_HIDING_CREATED
+      - API_TOPOLOGY_HIDING_REVOKED
+      title: CAPIFEvent_anyOf
+      type: string
+    CommunicationType_anyOf:
+      enum:
+      - REQUEST_RESPONSE
+      - SUBSCRIBE_NOTIFY
+      title: CommunicationType_anyOf
+      type: string
+    Operation_anyOf:
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation_anyOf
+      type: string
+    Protocol_anyOf:
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol_anyOf
+      type: string
+    DataFormat_anyOf:
+      enum:
+      - JSON
+      title: DataFormat_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
+    NotificationMethod_anyOf:
+      enum:
+      - PERIODIC
+      - ONE_TIME
+      - ON_EVENT_DETECTION
+      title: NotificationMethod_anyOf
+      type: string
+    PartitioningCriteria_anyOf:
+      enum:
+      - TAC
+      - SUBPLMN
+      - GEOAREA
+      - SNSSAI
+      - DNN
+      title: PartitioningCriteria_anyOf
+      type: string
+    NotificationFlag_anyOf:
+      enum:
+      - ACTIVATE
+      - DEACTIVATE
+      - RETRIEVAL
+      title: NotificationFlag_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/typing_utils.py b/services/TS29222_CAPIF_Events_API/capif_events/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Events_API/capif_events/util.py b/services/TS29222_CAPIF_Events_API/capif_events/util.py
new file mode 100644
index 0000000..396c6a5
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/capif_events/util.py
@@ -0,0 +1,175 @@
+import datetime
+
+import six
+import typing
+from capif_events import typing_utils
+
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Events_API/config.yaml b/services/TS29222_CAPIF_Events_API/config.yaml
new file mode 100644
index 0000000..101d300
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/config.yaml
@@ -0,0 +1,23 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'eventsdetails',
+  'certs_col': "certs",
+  'capif_invokers_col': 'invokerdetails',
+  'capif_providers_col': 'providerenrolmentdetails',
+  'capif_acls_col': 'acls',
+  'host': 'mongo',
+  'port': "27017"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
diff --git a/services/TS29222_CAPIF_Events_API/git_push.sh b/services/TS29222_CAPIF_Events_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Events_API/requirements.txt b/services/TS29222_CAPIF_Events_API/requirements.txt
new file mode 100644
index 0000000..bbef950
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/requirements.txt
@@ -0,0 +1,23 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+flask_jwt_extended
+pyopenssl
+rfc3987
+redis
+flask_executor
+Flask-APScheduler
diff --git a/services/TS29222_CAPIF_Events_API/setup.py b/services/TS29222_CAPIF_Events_API/setup.py
new file mode 100644
index 0000000..6ac5631
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "capif_events"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Events_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Events_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['capif_events=capif_events.__main__:main']},
+    long_description="""\
+    API for event subscription management. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Events_API/test-requirements.txt b/services/TS29222_CAPIF_Events_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Events_API/tox.ini b/services/TS29222_CAPIF_Events_API/tox.ini
new file mode 100644
index 0000000..8ef20cd
--- /dev/null
+++ b/services/TS29222_CAPIF_Events_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=capif_events
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/.dockerignore b/services/TS29222_CAPIF_Logging_API_Invocation_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/.gitignore b/services/TS29222_CAPIF_Logging_API_Invocation_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/FILES
new file mode 100644
index 0000000..42622dc
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/FILES
@@ -0,0 +1,33 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+api_invocation_logs/__init__.py
+api_invocation_logs/__main__.py
+api_invocation_logs/controllers/__init__.py
+api_invocation_logs/controllers/default_controller.py
+api_invocation_logs/controllers/security_controller_.py
+api_invocation_logs/encoder.py
+api_invocation_logs/models/__init__.py
+api_invocation_logs/models/base_model_.py
+api_invocation_logs/models/interface_description.py
+api_invocation_logs/models/invalid_param.py
+api_invocation_logs/models/invocation_log.py
+api_invocation_logs/models/log.py
+api_invocation_logs/models/operation.py
+api_invocation_logs/models/operation_any_of.py
+api_invocation_logs/models/problem_details.py
+api_invocation_logs/models/protocol.py
+api_invocation_logs/models/protocol_any_of.py
+api_invocation_logs/models/security_method.py
+api_invocation_logs/models/security_method_any_of.py
+api_invocation_logs/openapi/openapi.yaml
+api_invocation_logs/test/__init__.py
+api_invocation_logs/typing_utils.py
+api_invocation_logs/util.py
+git_push.sh
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/.travis.yml b/services/TS29222_CAPIF_Logging_API_Invocation_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/Dockerfile b/services/TS29222_CAPIF_Logging_API_Invocation_API/Dockerfile
new file mode 100644
index 0000000..7339cec
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/Dockerfile
@@ -0,0 +1,17 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "api_invocation_logs"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/README.md b/services/TS29222_CAPIF_Logging_API_Invocation_API/README.md
new file mode 100644
index 0000000..4c9ab92
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m api_invocation_logs
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/api-invocation-logs/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/api-invocation-logs/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t api_invocation_logs .
+
+# starting up a container
+docker run -p 8080:8080 api_invocation_logs
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__init__.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__main__.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__main__.py
new file mode 100644
index 0000000..f5323c9
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/__main__.py
@@ -0,0 +1,120 @@
+#!/usr/bin/env python3
+
+import connexion
+import logging
+from logging.handlers import RotatingFileHandler
+from api_invocation_logs import encoder
+from .config import Config
+import os
+from fluent import sender
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+
+
+
+
+NAME = "Logging-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Logging-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Logging-Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="logging_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+  
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_Logging_API_Invocation_API'},
+            pythonic_params=True)
+
+configure_logging(app.app)
+
+config = Config()
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+if __name__ == '__main__':
+    app.run(port=8080)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/config.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/config.py
new file mode 100644
index 0000000..d04bd1a
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/config.py
@@ -0,0 +1,20 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/__init__.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/default_controller.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/default_controller.py
new file mode 100644
index 0000000..eb0cd98
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/default_controller.py
@@ -0,0 +1,69 @@
+import connexion
+
+from api_invocation_logs.models.invocation_log import InvocationLog  # noqa: E501
+
+from ..core.invocationlogs import LoggingInvocationOperations
+
+import json
+from flask import Response, request, current_app
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from ..core.validate_user import ControlAccess
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+
+logging_invocation_operations = LoggingInvocationOperations()
+
+valid_user = ControlAccess()
+
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+            cn = cert.subject.get_attributes_for_oid(x509.OID_COMMON_NAME)[0].value.strip()
+
+            if cn != "superadmin":
+                cert_signature = cert.signature.hex()
+                result = valid_user.validate_user_cert(args["aefId"], cert_signature)
+
+                if result is not None:
+                    return result
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+
+def aef_id_logs_post(aef_id, body):  # noqa: E501
+    """aef_id_logs_post
+
+    Creates a new log entry for service API invocations. # noqa: E501
+
+    :param aef_id: Identifier of the API exposing function
+    :type aef_id: str
+    :param invocation_log: 
+    :type invocation_log: dict | bytes
+
+    :rtype: InvocationLog
+    """
+    current_app.logger.info("API Invocation Logs")
+
+    if connexion.request.is_json:
+        body = InvocationLog.from_dict(connexion.request.get_json())  # noqa: E501
+
+    res = logging_invocation_operations.add_invocationlog(aef_id, body)
+
+    if res.status_code == 201:
+        current_app.logger.info("Invocation Logs stored successfully")
+
+    return res
+
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/security_controller_.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/invocationlogs.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/invocationlogs.py
new file mode 100644
index 0000000..dde0c64
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/invocationlogs.py
@@ -0,0 +1,121 @@
+import sys
+import os
+import pymongo
+import secrets
+from flask import current_app, Flask, Response
+import json
+
+from ..db.db import MongoDatabse
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from pymongo import ReturnDocument
+from ..util import dict_to_camel_case, clean_empty
+from .resources import Resource
+from .responses import bad_request_error, internal_server_error, forbidden_error, not_found_error, unauthorized_error, make_response
+from ..models.invocation_log import InvocationLog
+
+
+class LoggingInvocationOperations(Resource):
+
+    def __check_aef(self, request_aef_id, body_aef_id):
+
+        prov_col = self.db.get_col_by_name(self.db.provider_details)
+
+        current_app.logger.debug("Checking aef id")
+        aef_res = prov_col.find_one({'api_prov_funcs': {'$elemMatch': {'api_prov_func_role': 'AEF', 'api_prov_func_id': request_aef_id}}})
+
+        if aef_res is None:
+            current_app.logger.error("Exposer not exist")
+            return not_found_error(detail="Exposer not exist", cause="Exposer id not found")
+
+        if request_aef_id != body_aef_id:
+            return unauthorized_error(detail="AEF id not matching in request and body", cause="Not identical AEF id")
+
+
+        return None
+
+    def __check_invoker(self, invoker_id):
+        inv_col = self.db.get_col_by_name(self.db.invoker_details)
+
+        current_app.logger.debug("Checking invoker id")
+        invoker_res = inv_col.find_one({'api_invoker_id': invoker_id})
+
+        if invoker_res is None:
+            current_app.logger.error("Invoker not exist")
+            return not_found_error(detail="Invoker not exist", cause="Invoker id not found")
+
+        return None
+
+    def __check_service_apis(self, api_id, api_name):
+        serv_apis = self.db.get_col_by_name(self.db.service_apis)
+
+        current_app.logger.debug("Checking service apis")
+        services_api_res = serv_apis.find_one({"$and": [{'api_id': api_id}, {'api_name': api_name}]})
+
+        if services_api_res is None:
+            detail = "Service API not exist"
+            cause = "Service API with id {} and name {} not found".format(api_id, api_name)
+            current_app.logger.error(detail)
+            return not_found_error(detail=detail, cause=cause)
+
+        return None
+
+    def add_invocationlog(self, aef_id, invocationlog):
+
+        mycol = self.db.get_col_by_name(self.db.invocation_logs)
+
+        try:
+            current_app.logger.debug("Adding invocation logs")
+            current_app.logger.debug("Check request aef_id")
+            result = self.__check_aef(aef_id, invocationlog.aef_id)
+
+            if result is not None:
+                return result
+
+            current_app.logger.debug("Check request api_invoker_id")
+            result = self.__check_invoker(invocationlog.api_invoker_id)
+
+            if result is not None:
+                return result
+
+            current_app.logger.debug("Check service apis")
+            for log in invocationlog.logs:
+                result = self.__check_service_apis(log.api_id, log.api_name)
+
+                if result is not None:
+                    return result
+
+            current_app.logger.debug("Check existing logs")
+            my_query = {'aef_id': aef_id, 'api_invoker_id': invocationlog.api_invoker_id}
+            existing_invocationlog = mycol.find_one(my_query)
+
+            if existing_invocationlog is None:
+                current_app.logger.debug("Create new log")
+                log_id = secrets.token_hex(15)
+                rec = dict()
+                rec['log_id'] = log_id
+                rec.update(invocationlog.to_dict())
+                mycol.insert_one(rec)
+            else:
+                current_app.logger.debug("Update existing log")
+                log_id = existing_invocationlog['log_id']
+                updated_invocation_logs = invocationlog.to_dict()
+                for updated_invocation_log in updated_invocation_logs['logs']:
+                    existing_invocationlog['logs'].append(updated_invocation_log)
+                mycol.find_one_and_update(my_query, {"$set": existing_invocationlog}, projection={'_id': 0, 'log_id': 0}, return_document=ReturnDocument.AFTER, upsert=False)
+
+            res = make_response(object=invocationlog, status=201)
+            current_app.logger.debug("Invocation Logs response ready")
+
+            apis_added = {log.api_id:log.api_name for log in invocationlog.logs}
+
+            current_app.logger.debug(f"Added log entry to apis: {apis_added}")
+
+            res.headers['Location'] = "https://{}/api-invocation-logs/v1/{}/logs/{}".format(os.getenv('CAPIF_HOSTNAME'), str(aef_id), str(log_id))
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in inserting invocation logs"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/resources.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/resources.py
new file mode 100644
index 0000000..d55b30c
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/resources.py
@@ -0,0 +1,8 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/responses.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/responses.py
new file mode 100644
index 0000000..3a136b1
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/responses.py
@@ -0,0 +1,43 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+from bson import json_util
+
+mimetype = "application/json"
+
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
+
+
+def unauthorized_error(detail, cause):
+    prob = ProblemDetails(title="Unauthorized", status=401, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/validate_user.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/validate_user.py
new file mode 100644
index 0000000..2a89437
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/core/validate_user.py
@@ -0,0 +1,26 @@
+from flask import current_app, Response
+import json
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from .resources import Resource
+from .responses import internal_server_error
+
+class ControlAccess(Resource):
+
+    def validate_user_cert(self, aef_id, cert_signature):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        try:
+            my_query = {'id':aef_id}
+            cert_entry = cert_col.find_one(my_query)
+
+            if cert_entry is not None:
+                if cert_entry["cert_signature"] != cert_signature:
+                    prob = ProblemDetails(title="Unauthorized", detail="User not authorized", cause="You are not the owner of this resource")
+                    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype="application/json")
+
+        except Exception as e:
+            exception = "An exception occurred in validate invoker"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/db/db.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/db/db.py
new file mode 100644
index 0000000..96a39f3
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/db/db.py
@@ -0,0 +1,46 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.invocation_logs = self.config['mongo']['logs_col']
+        self.invoker_details = self.config['mongo']['invoker_col']
+        self.provider_details = self.config['mongo']['prov_col']
+        self.service_apis = self.config['mongo']['serv_col']
+        self.capif_users = self.config['mongo']['capif_users_col']
+
+    def get_col_by_name(self, name):
+        return self.db[name]
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/encoder.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/encoder.py
new file mode 100644
index 0000000..efa1154
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from api_invocation_logs.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/__init__.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/__init__.py
new file mode 100644
index 0000000..6660505
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/__init__.py
@@ -0,0 +1,16 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from api_invocation_logs.models.interface_description import InterfaceDescription
+from api_invocation_logs.models.invalid_param import InvalidParam
+from api_invocation_logs.models.invocation_log import InvocationLog
+from api_invocation_logs.models.log import Log
+from api_invocation_logs.models.operation import Operation
+from api_invocation_logs.models.operation_any_of import OperationAnyOf
+from api_invocation_logs.models.problem_details import ProblemDetails
+from api_invocation_logs.models.protocol import Protocol
+from api_invocation_logs.models.protocol_any_of import ProtocolAnyOf
+from api_invocation_logs.models.security_method import SecurityMethod
+from api_invocation_logs.models.security_method_any_of import SecurityMethodAnyOf
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/base_model_.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/base_model_.py
new file mode 100644
index 0000000..31d9751
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from api_invocation_logs import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/interface_description.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/interface_description.py
new file mode 100644
index 0000000..b484946
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.security_method import SecurityMethod
+from api_invocation_logs import util
+
+from api_invocation_logs.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invalid_param.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invalid_param.py
new file mode 100644
index 0000000..58f04d6
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invocation_log.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invocation_log.py
new file mode 100644
index 0000000..79a228c
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/invocation_log.py
@@ -0,0 +1,164 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.log import Log
+import re
+from api_invocation_logs import util
+
+from api_invocation_logs.models.log import Log  # noqa: E501
+import re  # noqa: E501
+
+class InvocationLog(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, api_invoker_id=None, logs=None, supported_features=None):  # noqa: E501
+        """InvocationLog - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this InvocationLog.  # noqa: E501
+        :type aef_id: str
+        :param api_invoker_id: The api_invoker_id of this InvocationLog.  # noqa: E501
+        :type api_invoker_id: str
+        :param logs: The logs of this InvocationLog.  # noqa: E501
+        :type logs: List[Log]
+        :param supported_features: The supported_features of this InvocationLog.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'api_invoker_id': str,
+            'logs': List[Log],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'api_invoker_id': 'apiInvokerId',
+            'logs': 'logs',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._aef_id = aef_id
+        self._api_invoker_id = api_invoker_id
+        self._logs = logs
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvocationLog':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvocationLog of this InvocationLog.  # noqa: E501
+        :rtype: InvocationLog
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this InvocationLog.
+
+        Identity information of the API exposing function requesting logging of service API invocations  # noqa: E501
+
+        :return: The aef_id of this InvocationLog.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this InvocationLog.
+
+        Identity information of the API exposing function requesting logging of service API invocations  # noqa: E501
+
+        :param aef_id: The aef_id of this InvocationLog.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this InvocationLog.
+
+        Identity of the API invoker which invoked the service API  # noqa: E501
+
+        :return: The api_invoker_id of this InvocationLog.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this InvocationLog.
+
+        Identity of the API invoker which invoked the service API  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this InvocationLog.
+        :type api_invoker_id: str
+        """
+        if api_invoker_id is None:
+            raise ValueError("Invalid value for `api_invoker_id`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def logs(self):
+        """Gets the logs of this InvocationLog.
+
+        Service API invocation log  # noqa: E501
+
+        :return: The logs of this InvocationLog.
+        :rtype: List[Log]
+        """
+        return self._logs
+
+    @logs.setter
+    def logs(self, logs):
+        """Sets the logs of this InvocationLog.
+
+        Service API invocation log  # noqa: E501
+
+        :param logs: The logs of this InvocationLog.
+        :type logs: List[Log]
+        """
+        if logs is None:
+            raise ValueError("Invalid value for `logs`, must not be `None`")  # noqa: E501
+        if logs is not None and len(logs) < 1:
+            raise ValueError("Invalid value for `logs`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._logs = logs
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this InvocationLog.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this InvocationLog.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this InvocationLog.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this InvocationLog.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/log.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/log.py
new file mode 100644
index 0000000..8f45706
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/log.py
@@ -0,0 +1,470 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.interface_description import InterfaceDescription
+from api_invocation_logs.models.operation import Operation
+from api_invocation_logs.models.protocol import Protocol
+from api_invocation_logs import util
+
+from api_invocation_logs.models.interface_description import InterfaceDescription  # noqa: E501
+from api_invocation_logs.models.operation import Operation  # noqa: E501
+from api_invocation_logs.models.protocol import Protocol  # noqa: E501
+
+class Log(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_id=None, api_name=None, api_version=None, resource_name=None, uri=None, protocol=None, operation=None, result=None, invocation_time=None, invocation_latency=None, input_parameters=None, output_parameters=None, src_interface=None, dest_interface=None, fwd_interface=None):  # noqa: E501
+        """Log - a model defined in OpenAPI
+
+        :param api_id: The api_id of this Log.  # noqa: E501
+        :type api_id: str
+        :param api_name: The api_name of this Log.  # noqa: E501
+        :type api_name: str
+        :param api_version: The api_version of this Log.  # noqa: E501
+        :type api_version: str
+        :param resource_name: The resource_name of this Log.  # noqa: E501
+        :type resource_name: str
+        :param uri: The uri of this Log.  # noqa: E501
+        :type uri: str
+        :param protocol: The protocol of this Log.  # noqa: E501
+        :type protocol: Protocol
+        :param operation: The operation of this Log.  # noqa: E501
+        :type operation: Operation
+        :param result: The result of this Log.  # noqa: E501
+        :type result: str
+        :param invocation_time: The invocation_time of this Log.  # noqa: E501
+        :type invocation_time: datetime
+        :param invocation_latency: The invocation_latency of this Log.  # noqa: E501
+        :type invocation_latency: int
+        :param input_parameters: The input_parameters of this Log.  # noqa: E501
+        :type input_parameters: object
+        :param output_parameters: The output_parameters of this Log.  # noqa: E501
+        :type output_parameters: object
+        :param src_interface: The src_interface of this Log.  # noqa: E501
+        :type src_interface: InterfaceDescription
+        :param dest_interface: The dest_interface of this Log.  # noqa: E501
+        :type dest_interface: InterfaceDescription
+        :param fwd_interface: The fwd_interface of this Log.  # noqa: E501
+        :type fwd_interface: str
+        """
+        self.openapi_types = {
+            'api_id': str,
+            'api_name': str,
+            'api_version': str,
+            'resource_name': str,
+            'uri': str,
+            'protocol': Protocol,
+            'operation': Operation,
+            'result': str,
+            'invocation_time': datetime,
+            'invocation_latency': int,
+            'input_parameters': object,
+            'output_parameters': object,
+            'src_interface': InterfaceDescription,
+            'dest_interface': InterfaceDescription,
+            'fwd_interface': str
+        }
+
+        self.attribute_map = {
+            'api_id': 'apiId',
+            'api_name': 'apiName',
+            'api_version': 'apiVersion',
+            'resource_name': 'resourceName',
+            'uri': 'uri',
+            'protocol': 'protocol',
+            'operation': 'operation',
+            'result': 'result',
+            'invocation_time': 'invocationTime',
+            'invocation_latency': 'invocationLatency',
+            'input_parameters': 'inputParameters',
+            'output_parameters': 'outputParameters',
+            'src_interface': 'srcInterface',
+            'dest_interface': 'destInterface',
+            'fwd_interface': 'fwdInterface'
+        }
+
+        self._api_id = api_id
+        self._api_name = api_name
+        self._api_version = api_version
+        self._resource_name = resource_name
+        self._uri = uri
+        self._protocol = protocol
+        self._operation = operation
+        self._result = result
+        self._invocation_time = invocation_time
+        self._invocation_latency = invocation_latency
+        self._input_parameters = input_parameters
+        self._output_parameters = output_parameters
+        self._src_interface = src_interface
+        self._dest_interface = dest_interface
+        self._fwd_interface = fwd_interface
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Log':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Log of this Log.  # noqa: E501
+        :rtype: Log
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this Log.
+
+        String identifying the API invoked.  # noqa: E501
+
+        :return: The api_id of this Log.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this Log.
+
+        String identifying the API invoked.  # noqa: E501
+
+        :param api_id: The api_id of this Log.
+        :type api_id: str
+        """
+        if api_id is None:
+            raise ValueError("Invalid value for `api_id`, must not be `None`")  # noqa: E501
+
+        self._api_id = api_id
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this Log.
+
+        Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this Log.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this Log.
+
+        Name of the API which was invoked, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this Log.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Log.
+
+        Version of the API which was invoked  # noqa: E501
+
+        :return: The api_version of this Log.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Log.
+
+        Version of the API which was invoked  # noqa: E501
+
+        :param api_version: The api_version of this Log.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Log.
+
+        Name of the specific resource invoked  # noqa: E501
+
+        :return: The resource_name of this Log.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Log.
+
+        Name of the specific resource invoked  # noqa: E501
+
+        :param resource_name: The resource_name of this Log.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def uri(self):
+        """Gets the uri of this Log.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The uri of this Log.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Log.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param uri: The uri of this Log.
+        :type uri: str
+        """
+
+        self._uri = uri
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this Log.
+
+
+        :return: The protocol of this Log.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this Log.
+
+
+        :param protocol: The protocol of this Log.
+        :type protocol: Protocol
+        """
+        if protocol is None:
+            raise ValueError("Invalid value for `protocol`, must not be `None`")  # noqa: E501
+
+        self._protocol = protocol
+
+    @property
+    def operation(self):
+        """Gets the operation of this Log.
+
+
+        :return: The operation of this Log.
+        :rtype: Operation
+        """
+        return self._operation
+
+    @operation.setter
+    def operation(self, operation):
+        """Sets the operation of this Log.
+
+
+        :param operation: The operation of this Log.
+        :type operation: Operation
+        """
+
+        self._operation = operation
+
+    @property
+    def result(self):
+        """Gets the result of this Log.
+
+        For HTTP protocol, it contains HTTP status code of the invocation  # noqa: E501
+
+        :return: The result of this Log.
+        :rtype: str
+        """
+        return self._result
+
+    @result.setter
+    def result(self, result):
+        """Sets the result of this Log.
+
+        For HTTP protocol, it contains HTTP status code of the invocation  # noqa: E501
+
+        :param result: The result of this Log.
+        :type result: str
+        """
+        if result is None:
+            raise ValueError("Invalid value for `result`, must not be `None`")  # noqa: E501
+
+        self._result = result
+
+    @property
+    def invocation_time(self):
+        """Gets the invocation_time of this Log.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The invocation_time of this Log.
+        :rtype: datetime
+        """
+        return self._invocation_time
+
+    @invocation_time.setter
+    def invocation_time(self, invocation_time):
+        """Sets the invocation_time of this Log.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param invocation_time: The invocation_time of this Log.
+        :type invocation_time: datetime
+        """
+
+        self._invocation_time = invocation_time
+
+    @property
+    def invocation_latency(self):
+        """Gets the invocation_latency of this Log.
+
+        Unsigned integer identifying a period of time in units of milliseconds.  # noqa: E501
+
+        :return: The invocation_latency of this Log.
+        :rtype: int
+        """
+        return self._invocation_latency
+
+    @invocation_latency.setter
+    def invocation_latency(self, invocation_latency):
+        """Sets the invocation_latency of this Log.
+
+        Unsigned integer identifying a period of time in units of milliseconds.  # noqa: E501
+
+        :param invocation_latency: The invocation_latency of this Log.
+        :type invocation_latency: int
+        """
+        if invocation_latency is not None and invocation_latency < 0:  # noqa: E501
+            raise ValueError("Invalid value for `invocation_latency`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._invocation_latency = invocation_latency
+
+    @property
+    def input_parameters(self):
+        """Gets the input_parameters of this Log.
+
+        List of input parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :return: The input_parameters of this Log.
+        :rtype: object
+        """
+        return self._input_parameters
+
+    @input_parameters.setter
+    def input_parameters(self, input_parameters):
+        """Sets the input_parameters of this Log.
+
+        List of input parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :param input_parameters: The input_parameters of this Log.
+        :type input_parameters: object
+        """
+
+        self._input_parameters = input_parameters
+
+    @property
+    def output_parameters(self):
+        """Gets the output_parameters of this Log.
+
+        List of output parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :return: The output_parameters of this Log.
+        :rtype: object
+        """
+        return self._output_parameters
+
+    @output_parameters.setter
+    def output_parameters(self, output_parameters):
+        """Sets the output_parameters of this Log.
+
+        List of output parameters. Can be any value - string, number, boolean, array or object.  # noqa: E501
+
+        :param output_parameters: The output_parameters of this Log.
+        :type output_parameters: object
+        """
+
+        self._output_parameters = output_parameters
+
+    @property
+    def src_interface(self):
+        """Gets the src_interface of this Log.
+
+
+        :return: The src_interface of this Log.
+        :rtype: InterfaceDescription
+        """
+        return self._src_interface
+
+    @src_interface.setter
+    def src_interface(self, src_interface):
+        """Sets the src_interface of this Log.
+
+
+        :param src_interface: The src_interface of this Log.
+        :type src_interface: InterfaceDescription
+        """
+
+        self._src_interface = src_interface
+
+    @property
+    def dest_interface(self):
+        """Gets the dest_interface of this Log.
+
+
+        :return: The dest_interface of this Log.
+        :rtype: InterfaceDescription
+        """
+        return self._dest_interface
+
+    @dest_interface.setter
+    def dest_interface(self, dest_interface):
+        """Sets the dest_interface of this Log.
+
+
+        :param dest_interface: The dest_interface of this Log.
+        :type dest_interface: InterfaceDescription
+        """
+
+        self._dest_interface = dest_interface
+
+    @property
+    def fwd_interface(self):
+        """Gets the fwd_interface of this Log.
+
+        It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60  # noqa: E501
+
+        :return: The fwd_interface of this Log.
+        :rtype: str
+        """
+        return self._fwd_interface
+
+    @fwd_interface.setter
+    def fwd_interface(self, fwd_interface):
+        """Sets the fwd_interface of this Log.
+
+        It includes the node identifier (as defined in IETF RFC 7239 of all forwarding entities between the API invoker and the AEF, concatenated with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60  # noqa: E501
+
+        :param fwd_interface: The fwd_interface of this Log.
+        :type fwd_interface: str
+        """
+
+        self._fwd_interface = fwd_interface
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation.py
new file mode 100644
index 0000000..e4cdbe4
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.operation_any_of import OperationAnyOf
+from api_invocation_logs import util
+
+from api_invocation_logs.models.operation_any_of import OperationAnyOf  # noqa: E501
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation_any_of.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation_any_of.py
new file mode 100644
index 0000000..46c1921
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/problem_details.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/problem_details.py
new file mode 100644
index 0000000..e4cb2c9
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.invalid_param import InvalidParam
+import re
+from api_invocation_logs import util
+
+from api_invocation_logs.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol.py
new file mode 100644
index 0000000..023ba4d
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.protocol_any_of import ProtocolAnyOf
+from api_invocation_logs import util
+
+from api_invocation_logs.models.protocol_any_of import ProtocolAnyOf  # noqa: E501
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol_any_of.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol_any_of.py
new file mode 100644
index 0000000..b7966df
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method.py
new file mode 100644
index 0000000..e059b81
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs.models.security_method_any_of import SecurityMethodAnyOf
+from api_invocation_logs import util
+
+from api_invocation_logs.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method_any_of.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method_any_of.py
new file mode 100644
index 0000000..877c646
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from api_invocation_logs.models.base_model_ import Model
+from api_invocation_logs import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/openapi/openapi.yaml b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/openapi/openapi.yaml
new file mode 100644
index 0000000..85b35aa
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/openapi/openapi.yaml
@@ -0,0 +1,524 @@
+openapi: 3.0.0
+info:
+  description: |
+    API for invocation logs.
+    © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
+    All rights reserved.
+  title: CAPIF_Logging_API_Invocation_API
+  version: 1.2.0-alpha.1
+externalDocs:
+  description: 3GPP TS 29.222 V17.1.0 Common API Framework for 3GPP Northbound APIs
+  url: http://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/api-invocation-logs/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in subclause 7.5 of 3GPP TS 29.222
+paths:
+  /{aefId}/logs:
+    post:
+      description: Creates a new log entry for service API invocations.
+      operationId: aef_id_logs_post
+      parameters:
+      - description: Identifier of the API exposing function
+        explode: false
+        in: path
+        name: aefId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/InvocationLog'
+        required: true
+      responses:
+        "201":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/InvocationLog'
+          description: Log of service API invocations provided by API exposing function
+            successfully stored on the CAPIF core function.
+          headers:
+            Location:
+              description: 'Contains the URI of the newly created resource, according
+                to the structure: {apiRoot}/api-invocation-logs/v1/{aefId}/logs/{logId}'
+              explode: false
+              required: true
+              schema:
+                type: string
+              style: simple
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: api_invocation_logs.controllers.default_controller
+  /{aefId}/logs/{logId}:
+    description: Creates a new log entry for service API invocations.
+components:
+  schemas:
+    InvocationLog:
+      description: Represents a set of Service API invocation logs to be stored in
+        a CAPIF core function.
+      example:
+        supportedFeatures: supportedFeatures
+        apiInvokerId: apiInvokerId
+        aefId: aefId
+        logs:
+        - apiName: apiName
+          invocationTime: 2000-01-23T04:56:07.000+00:00
+          srcInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          fwdInterface: fwdInterface
+          resourceName: resourceName
+          uri: uri
+          inputParameters: ""
+          invocationLatency: 0
+          result: result
+          apiVersion: apiVersion
+          destInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          apiId: apiId
+          outputParameters: ""
+        - apiName: apiName
+          invocationTime: 2000-01-23T04:56:07.000+00:00
+          srcInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          fwdInterface: fwdInterface
+          resourceName: resourceName
+          uri: uri
+          inputParameters: ""
+          invocationLatency: 0
+          result: result
+          apiVersion: apiVersion
+          destInterface:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 39500
+            ipv4Addr: ipv4Addr
+          apiId: apiId
+          outputParameters: ""
+      properties:
+        aefId:
+          description: Identity information of the API exposing function requesting
+            logging of service API invocations
+          title: aefId
+          type: string
+        apiInvokerId:
+          description: Identity of the API invoker which invoked the service API
+          title: apiInvokerId
+          type: string
+        logs:
+          description: Service API invocation log
+          items:
+            $ref: '#/components/schemas/Log'
+          minItems: 1
+          title: logs
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: supportedFeatures
+          type: string
+      required:
+      - aefId
+      - apiInvokerId
+      - logs
+      title: InvocationLog
+      type: object
+    Log:
+      description: Represents an individual service API invocation log entry.
+      example:
+        apiName: apiName
+        invocationTime: 2000-01-23T04:56:07.000+00:00
+        srcInterface:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 39500
+          ipv4Addr: ipv4Addr
+        fwdInterface: fwdInterface
+        resourceName: resourceName
+        uri: uri
+        inputParameters: ""
+        invocationLatency: 0
+        result: result
+        apiVersion: apiVersion
+        destInterface:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 39500
+          ipv4Addr: ipv4Addr
+        apiId: apiId
+        outputParameters: ""
+      properties:
+        apiId:
+          description: String identifying the API invoked.
+          title: apiId
+          type: string
+        apiName:
+          description: Name of the API which was invoked, it is set as {apiName} part
+            of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: apiName
+          type: string
+        apiVersion:
+          description: Version of the API which was invoked
+          title: apiVersion
+          type: string
+        resourceName:
+          description: Name of the specific resource invoked
+          title: resourceName
+          type: string
+        uri:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        operation:
+          $ref: '#/components/schemas/Operation'
+        result:
+          description: For HTTP protocol, it contains HTTP status code of the invocation
+          title: result
+          type: string
+        invocationTime:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        invocationLatency:
+          description: Unsigned integer identifying a period of time in units of milliseconds.
+          minimum: 0
+          title: DurationMs
+          type: integer
+        inputParameters:
+          description: List of input parameters. Can be any value - string, number,
+            boolean, array or object.
+          title: inputParameters
+        outputParameters:
+          description: List of output parameters. Can be any value - string, number,
+            boolean, array or object.
+          title: outputParameters
+        srcInterface:
+          $ref: '#/components/schemas/InterfaceDescription'
+        destInterface:
+          $ref: '#/components/schemas/InterfaceDescription'
+        fwdInterface:
+          description: It includes the node identifier (as defined in IETF RFC 7239
+            of all forwarding entities between the API invoker and the AEF, concatenated
+            with comma and space, e.g. 192.0.2.43:80, unknown:_OBFport, 203.0.113.60
+          title: fwdInterface
+          type: string
+      required:
+      - apiId
+      - apiName
+      - apiVersion
+      - protocol
+      - resourceName
+      - result
+      title: Log
+      type: object
+    DurationMs:
+      description: Unsigned integer identifying a period of time in units of milliseconds.
+      minimum: 0
+      title: DurationMs
+      type: integer
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: Uri
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: supportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: Uri
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    SupportedFeatures:
+      description: A string used to indicate the features supported by an API that
+        is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain
+        a bitmask indicating supported features in hexadecimal representation Each
+        character in the string shall take a value of "0" to "9", "a" to "f" or "A"
+        to "F" and shall represent the support of 4 features as described in table 5.2.2-3.
+        The most significant character representing the highest-numbered features
+        shall appear first in the string, and the character representing features
+        1 to 4 shall appear last in the string. The list of features and their numbering
+        (starting with 1) are defined separately for each API. If the string contains
+        a lower number of characters than there are defined features for an API, all
+        features that would be represented by characters that are not present in the
+        string are not supported
+      pattern: ^[A-Fa-f0-9]*$
+      title: supportedFeatures
+      type: string
+    Protocol:
+      anyOf:
+      - $ref: '#/components/schemas/Protocol_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - HTTP_1_1: HTTP version 1.1 - HTTP_2: HTTP version 2
+      title: Protocol
+    Operation:
+      anyOf:
+      - $ref: '#/components/schemas/Operation_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - GET: HTTP GET method - POST: HTTP POST method - PUT: HTTP PUT method - PATCH: HTTP PATCH method - DELETE: HTTP DELETE method
+      title: Operation
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 39500
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: Security methods supported by the interface, it take precedence
+            over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122 - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122 - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      title: SecurityMethod
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    Protocol_anyOf:
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol_anyOf
+      type: string
+    Operation_anyOf:
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/typing_utils.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/util.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/util.py
new file mode 100644
index 0000000..af55567
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/api_invocation_logs/util.py
@@ -0,0 +1,186 @@
+import datetime
+
+import six
+import typing
+from api_invocation_logs import typing_utils
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+            if my_key == "serviceApiCategory":
+                my_key = "serviceAPICategory"
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/config.yaml b/services/TS29222_CAPIF_Logging_API_Invocation_API/config.yaml
new file mode 100644
index 0000000..0625fc6
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/config.yaml
@@ -0,0 +1,23 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'logs_col': 'invocationlogs',
+  'invoker_col': 'invokerdetails',
+  'prov_col': 'providerenrolmentdetails',
+  'serv_col': 'serviceapidescriptions',
+  'capif_users_col': "user",
+  'host': 'mongo',
+  'port': "27017"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/git_push.sh b/services/TS29222_CAPIF_Logging_API_Invocation_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/requirements.txt b/services/TS29222_CAPIF_Logging_API_Invocation_API/requirements.txt
new file mode 100644
index 0000000..197399f
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/requirements.txt
@@ -0,0 +1,20 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+elasticsearch == 8.4.3
+flask_jwt_extended == 4.4.4
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+pyopenssl == 23.0.0
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/setup.py b/services/TS29222_CAPIF_Logging_API_Invocation_API/setup.py
new file mode 100644
index 0000000..cf63e4a
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "api_invocation_logs"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Logging_API_Invocation_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Logging_API_Invocation_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['api_invocation_logs=api_invocation_logs.__main__:main']},
+    long_description="""\
+    API for invocation logs. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/test-requirements.txt b/services/TS29222_CAPIF_Logging_API_Invocation_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Logging_API_Invocation_API/tox.ini b/services/TS29222_CAPIF_Logging_API_Invocation_API/tox.ini
new file mode 100644
index 0000000..01a6d21
--- /dev/null
+++ b/services/TS29222_CAPIF_Logging_API_Invocation_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=api_invocation_logs
diff --git a/services/TS29222_CAPIF_Publish_Service_API/.dockerignore b/services/TS29222_CAPIF_Publish_Service_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Publish_Service_API/.gitignore b/services/TS29222_CAPIF_Publish_Service_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/FILES
new file mode 100644
index 0000000..fc1b00e
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/FILES
@@ -0,0 +1,42 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+git_push.sh
+published_apis/__init__.py
+published_apis/__main__.py
+published_apis/controllers/__init__.py
+published_apis/controllers/default_controller.py
+published_apis/controllers/security_controller_.py
+published_apis/encoder.py
+published_apis/models/__init__.py
+published_apis/models/aef_profile.py
+published_apis/models/base_model_.py
+published_apis/models/communication_type.py
+published_apis/models/communication_type_any_of.py
+published_apis/models/custom_operation.py
+published_apis/models/data_format.py
+published_apis/models/data_format_any_of.py
+published_apis/models/interface_description.py
+published_apis/models/invalid_param.py
+published_apis/models/operation.py
+published_apis/models/operation_any_of.py
+published_apis/models/problem_details.py
+published_apis/models/protocol.py
+published_apis/models/protocol_any_of.py
+published_apis/models/published_api_path.py
+published_apis/models/resource.py
+published_apis/models/security_method.py
+published_apis/models/security_method_any_of.py
+published_apis/models/service_api_description.py
+published_apis/models/shareable_information.py
+published_apis/models/version.py
+published_apis/openapi/openapi.yaml
+published_apis/test/__init__.py
+published_apis/typing_utils.py
+published_apis/util.py
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/.travis.yml b/services/TS29222_CAPIF_Publish_Service_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Publish_Service_API/Dockerfile b/services/TS29222_CAPIF_Publish_Service_API/Dockerfile
new file mode 100644
index 0000000..b2e6167
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/Dockerfile
@@ -0,0 +1,17 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "published_apis"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/README.md b/services/TS29222_CAPIF_Publish_Service_API/README.md
new file mode 100644
index 0000000..60ff8b0
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m published_apis
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/published-apis/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/published-apis/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t published_apis .
+
+# starting up a container
+docker run -p 8080:8080 published_apis
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/config.yaml b/services/TS29222_CAPIF_Publish_Service_API/config.yaml
new file mode 100644
index 0000000..3ca4ba3
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/config.yaml
@@ -0,0 +1,21 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'serviceapidescriptions',
+  'certs_col': "certs",
+  'capif_provider_col': "providerenrolmentdetails",
+  'host': 'mongo',
+  'port': "27017"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/git_push.sh b/services/TS29222_CAPIF_Publish_Service_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/__init__.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/__main__.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/__main__.py
new file mode 100644
index 0000000..dfba9ef
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/__main__.py
@@ -0,0 +1,142 @@
+#!/usr/bin/env python3
+
+import connexion
+import logging 
+
+from published_apis import encoder
+
+from flask import Flask, jsonify, request
+from flask_jwt_extended import JWTManager, jwt_required, create_access_token
+from pymongo import MongoClient
+from .config import Config
+from logging.handlers import RotatingFileHandler
+from .core.consumer_messager import Subscriber
+from flask_executor import Executor
+import os
+from fluent import sender
+from flask_executor import Executor
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+
+
+NAME = "Publish-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Publish-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Publish-Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="publish_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+app = connexion.App(__name__, specification_dir='./openapi/')
+app.app.json_encoder = encoder.JSONEncoder
+app.add_api('openapi.yaml',
+            arguments={'title': 'CAPIF_Publish_Service_API'},
+            pythonic_params=True)
+
+app.app.config["JWT_SECRET_KEY"] = "this-is-secret-key"
+
+config = Config()
+
+jwt = JWTManager(app.app)
+configure_logging(app.app)
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    configure_monitoring(app.app, config.get_config())
+
+executor = Executor(app.app)
+subscriber = Subscriber()
+
+@app.app.before_first_request
+def up_listener():
+    executor.submit(subscriber.listen)
+
+
+if __name__ == '__main__':
+    app.run(debug=True, port=8080)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/config.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/config.py
new file mode 100644
index 0000000..11e1c4f
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/config.py
@@ -0,0 +1,21 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
+
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/__init__.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/default_controller.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/default_controller.py
new file mode 100644
index 0000000..8fc2b62
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/default_controller.py
@@ -0,0 +1,160 @@
+import connexion
+from published_apis.models.service_api_description import ServiceAPIDescription  # noqa: E501
+from ..core import serviceapidescriptions
+from ..core.serviceapidescriptions import PublishServiceOperations
+from ..core.publisher import Publisher
+
+import json
+from flask import Response, request, current_app
+from flask_jwt_extended import jwt_required, get_jwt_identity
+from flask import current_app
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from ..core.validate_user import ControlAccess
+from functools import wraps
+import pymongo
+
+
+service_operations = PublishServiceOperations()
+publisher_ops = Publisher()
+
+valid_user = ControlAccess()
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+            cn = cert.subject.get_attributes_for_oid(x509.OID_COMMON_NAME)[0].value.strip()
+
+            if cn != "superadmin":
+                cert_signature = cert.signature.hex()
+                result = valid_user.validate_user_cert(args["apfId"], args["serviceApiId"], cert_signature)
+
+                if result is not None:
+                    return result
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+def apf_id_service_apis_get(apf_id):  # noqa: E501
+    """apf_id_service_apis_get
+
+    Retrieve all published APIs. # noqa: E501
+
+    :param apf_id: 
+    :type apf_id: str
+
+    :rtype: ServiceAPIDescription
+    """
+    current_app.logger.info("Obtainig all service published")
+    res = service_operations.get_serviceapis(apf_id)
+
+    return res
+
+
+def apf_id_service_apis_post(apf_id, body):  # noqa: E501
+    """apf_id_service_apis_post
+
+    Publish a new API. # noqa: E501
+
+    :param apf_id: 
+    :type apf_id: str
+    :param service_api_description: 
+    :type service_api_description: dict | bytes
+
+    :rtype: ServiceAPIDescription
+    """
+
+    current_app.logger.info("Publishing service")
+    if connexion.request.is_json:
+        body = ServiceAPIDescription.from_dict(connexion.request.get_json())  # noqa: E501
+
+    res = service_operations.add_serviceapidescription(apf_id, body)
+
+    if res.status_code == 201:
+        current_app.logger.info("Service published")
+        publisher_ops.publish_message("events", "SERVICE_API_AVAILABLE")
+
+    return res
+
+@cert_validation()
+def apf_id_service_apis_service_api_id_delete(service_api_id, apf_id):  # noqa: E501
+    """apf_id_service_apis_service_api_id_delete
+
+    Unpublish a published service API. # noqa: E501
+
+    :param service_api_id: 
+    :type service_api_id: str
+    :param apf_id: 
+    :type apf_id: str
+
+    :rtype: None
+    """
+
+    current_app.logger.info("Removing service published")
+    res = service_operations.delete_serviceapidescription(service_api_id, apf_id)
+
+    if res.status_code == 204:
+        current_app.logger.info("Removed service published")
+        publisher_ops.publish_message("events", "SERVICE_API_UNAVAILABLE")
+        publisher_ops.publish_message("internal-messages", f"service-removed:{service_api_id}")
+
+    return res
+
+@cert_validation()
+def apf_id_service_apis_service_api_id_get(service_api_id, apf_id):  # noqa: E501
+    """apf_id_service_apis_service_api_id_get
+
+    Retrieve a published service API. # noqa: E501
+
+    :param service_api_id: 
+    :type service_api_id: str
+    :param apf_id: 
+    :type apf_id: str
+
+    :rtype: ServiceAPIDescription
+    """
+
+    current_app.logger.info("Obtaining service api with id: " + service_api_id)
+    res = service_operations.get_one_serviceapi(service_api_id, apf_id)
+
+    return res
+
+@cert_validation()
+def apf_id_service_apis_service_api_id_put(service_api_id, apf_id, body):  # noqa: E501
+    """apf_id_service_apis_service_api_id_put
+
+    Update a published service API. # noqa: E501
+
+    :param service_api_id: 
+    :type service_api_id: str
+    :param apf_id: 
+    :type apf_id: str
+    :param service_api_description: 
+    :type service_api_description: dict | bytes
+
+    :rtype: ServiceAPIDescription
+    """
+
+    current_app.logger.info("Updating service api id with id: " + service_api_id)
+
+    if connexion.request.is_json:
+        body = ServiceAPIDescription.from_dict(connexion.request.get_json())  # noqa: E501
+
+    response = service_operations.update_serviceapidescription(service_api_id, apf_id, body)
+
+    if response.status_code == 200:
+        publisher_ops.publish_message("events", "SERVICE_API_UPDATE")
+
+    return response
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/security_controller_.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/auth_manager.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/auth_manager.py
new file mode 100644
index 0000000..6e329a4
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/auth_manager.py
@@ -0,0 +1,47 @@
+
+from flask import current_app
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from .resources import Resource
+
+
+class AuthManager(Resource):
+
+    def add_auth_service(self, service_id, apf_id):
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        auth_context = cert_col.find_one({"id":apf_id})
+
+        if "services" in auth_context["resources"]:
+            if service_id not in auth_context["resources"]["services"]:
+                auth_context["resources"]["services"].append(service_id)
+        else:
+            auth_context["resources"]["services"] = [service_id]
+
+        current_app.logger.info(auth_context)
+        cert_col.find_one_and_update({"id":apf_id}, {"$set":auth_context})
+
+
+    def remove_auth_service(self, service_id, apf_id):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        auth_context = cert_col.find_one({"id":apf_id})
+
+        if "services" in auth_context["resources"]:
+            if service_id in auth_context["resources"]["services"]:
+                auth_context["resources"]["services"].remove(service_id)
+
+        cert_col.find_one_and_update({"id":apf_id}, {"$set":auth_context})
+
+    def remove_auth_all_service(self, apf_id):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        auth_context = cert_col.find_one({"id":apf_id})
+
+        if auth_context != None:
+            if "services" in auth_context["resources"]:
+                auth_context["resources"]["services"] = []
+
+            cert_col.find_one_and_update({"id":apf_id}, {"$set":auth_context})
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/consumer_messager.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/consumer_messager.py
new file mode 100644
index 0000000..93d35e4
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/consumer_messager.py
@@ -0,0 +1,29 @@
+# subscriber.py
+import redis
+import time
+import sys
+import json
+import asyncio
+from threading import Thread
+from .internal_service_ops import InternalServiceOps
+from flask import current_app
+
+class Subscriber():
+
+    def __init__(self):
+        self.r = redis.Redis(host='redis', port=6379, db=0)
+        self.security_ops = InternalServiceOps()
+        self.p = self.r.pubsub()
+        self.p.subscribe("internal-messages")
+
+    def listen(self):
+        current_app.logger.info("Listening publish messages")
+        for raw_message in self.p.listen():
+            if raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "internal-messages":
+                message, *ids = raw_message["data"].decode('utf-8').split(":")
+                if message == "provider-removed" and len(ids)==2:
+                    self.security_ops.delete_intern_service(ids[1])
+
+
+
+
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/internal_service_ops.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/internal_service_ops.py
new file mode 100644
index 0000000..71c2759
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/internal_service_ops.py
@@ -0,0 +1,22 @@
+
+from flask import current_app
+from .resources import Resource
+from .auth_manager import AuthManager
+
+class InternalServiceOps(Resource):
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.auth_manager = AuthManager()
+
+    def delete_intern_service(self, apf_id):
+
+        current_app.logger.info("Provider removed, removing services published by APF")
+        mycol = self.db.get_col_by_name(self.db.service_api_descriptions)
+        my_query = {'apf_id': apf_id}
+        mycol.delete_many(my_query)
+
+        #We dont need remove all auth events, because when provider is removed, remove auth entry
+        #self.auth_manager.remove_auth_all_service(apf_id)
+
+        current_app.logger.info("Removed service")
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/publisher.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/publisher.py
new file mode 100644
index 0000000..f7b0c3c
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/publisher.py
@@ -0,0 +1,10 @@
+import redis
+import sys
+
+class Publisher():
+
+    def __init__(self):
+        self. r = redis.Redis(host='redis', port=6379, db=0)
+
+    def publish_message(self, channel, message):
+        self.r.publish(channel, message)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/resources.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/resources.py
new file mode 100644
index 0000000..94e29ec
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/resources.py
@@ -0,0 +1,7 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/responses.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/responses.py
new file mode 100644
index 0000000..c1809ed
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/responses.py
@@ -0,0 +1,37 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+from bson import json_util
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object, cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
+
+def unauthorized_error(detail, cause):
+    prob = ProblemDetails(title="Unauthorized", status=401, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/serviceapidescriptions.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/serviceapidescriptions.py
new file mode 100644
index 0000000..e2892e6
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/serviceapidescriptions.py
@@ -0,0 +1,218 @@
+import sys
+
+import pymongo
+from pymongo import ReturnDocument
+import secrets
+from flask import current_app, Flask, Response
+import json
+
+from pymongo import response
+from ..db.db import MongoDatabse
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from .resources import Resource
+from ..util import dict_to_camel_case, clean_empty
+from .responses import bad_request_error, internal_server_error, forbidden_error, not_found_error, unauthorized_error, make_response
+from bson import json_util
+from .auth_manager import AuthManager
+
+
+service_api_not_found_message = "Service API not found"
+
+class PublishServiceOperations(Resource):
+
+    def __check_apf(self, apf_id):
+        providers_col = self.db.get_col_by_name(self.db.capif_provider_col)
+
+        current_app.logger.debug("Checking apf id")
+        provider = providers_col.find_one({"api_prov_funcs.api_prov_func_id": apf_id})
+
+        if provider is None:
+            current_app.logger.error("Publisher not exist")
+            return unauthorized_error(detail = "Publisher not existing", cause = "Publisher id not found")
+
+        list_apf_ids =  [func["api_prov_func_id"] for func in provider["api_prov_funcs"] if func["api_prov_func_role"] == "APF"]
+        if apf_id not in list_apf_ids:
+            current_app.logger.debug("This id not belongs to APF")
+            return unauthorized_error(detail ="You are not a publisher", cause ="This API is only available for publishers")
+
+        return None
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.auth_manager = AuthManager()
+
+    def get_serviceapis(self, apf_id):
+
+        mycol = self.db.get_col_by_name(self.db.service_api_descriptions)
+
+        try:
+
+            current_app.logger.debug("Geting service apis")
+
+            result = self.__check_apf(apf_id)
+
+            if result != None:
+                return result
+
+            service = mycol.find({"apf_id": apf_id}, {"apf_id":0, "_id":0})
+            if service is None:
+                current_app.logger.error("Not found services for this apf id")
+                return not_found_error(detail="Not exist published services for this apf_id", cause="Not exist service with this apf_id")
+
+            json_docs = []
+            for serviceapi in service:
+                my_service_api = dict_to_camel_case(serviceapi)
+                my_service_api = clean_empty(my_service_api)
+                json_docs.append(my_service_api)
+
+            current_app.logger.debug("Obtained services apis")
+
+            res = make_response(object=json_docs, status=200)
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in get services"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def add_serviceapidescription(self, apf_id, serviceapidescription):
+
+        mycol = self.db.get_col_by_name(self.db.service_api_descriptions)
+
+        try:
+
+            current_app.logger.debug("Publishing service")
+            result = self.__check_apf(apf_id)
+
+            if result != None:
+                return result
+
+            service = mycol.find_one({"api_name": serviceapidescription.api_name})
+            if service is not None:
+                current_app.logger.error("Service already registered with same api name")
+                return forbidden_error(detail="Already registered service with same api name", cause="Found service with same api name")
+
+            api_id = secrets.token_hex(15)
+            serviceapidescription.api_id = api_id
+            rec = dict()
+            rec['apf_id'] = apf_id
+            rec.update(serviceapidescription.to_dict())
+            mycol.insert_one(rec)
+
+            self.auth_manager.add_auth_service(api_id, apf_id)
+
+            current_app.logger.debug("Service inserted in database")
+            res = make_response(object=serviceapidescription, status=201)
+            res.headers['Location'] = "http://localhost:8080/published-apis/v1/" + str(apf_id) + "/service-apis/" + str(api_id)
+
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in add services"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
+
+    def get_one_serviceapi(self, service_api_id, apf_id):
+
+        mycol = self.db.get_col_by_name(self.db.service_api_descriptions)
+
+        try:
+            current_app.logger.debug("Geting service api with id: " + service_api_id)
+            result = self.__check_apf(apf_id)
+
+            if result != None:
+                return result
+
+            my_query = {'apf_id': apf_id, 'api_id': service_api_id}
+            service_api = mycol.find_one(my_query, {"apf_id":0, "_id":0})
+            if service_api is None:
+                current_app.logger.error(service_api_not_found_message)
+                return not_found_error(detail=service_api_not_found_message, cause="No Service with specific credentials exists")
+
+
+            my_service_api = dict_to_camel_case(service_api)
+            my_service_api = clean_empty(my_service_api)
+
+            current_app.logger.debug("Obtained service api")
+            res = make_response(object=my_service_api, status=200)
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in get one service"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+    def delete_serviceapidescription(self, service_api_id, apf_id):
+
+        mycol = self.db.get_col_by_name(self.db.service_api_descriptions)
+
+        try:
+
+            current_app.logger.debug("Removing api service with id: " + service_api_id)
+            result = self.__check_apf(apf_id)
+
+            if result != None:
+                return result
+
+            my_query = {'apf_id': apf_id, 'api_id': service_api_id}
+            serviceapidescription = mycol.find_one(my_query)
+
+            if serviceapidescription is None:
+                current_app.logger.error(service_api_not_found_message)
+                return not_found_error(detail="Service API not existing", cause="Service API id not found")
+
+            mycol.delete_one(my_query)
+
+            self.auth_manager.remove_auth_service(service_api_id, apf_id)
+
+            current_app.logger.debug("Removed service from database")
+            out =  "The service matching api_id " + service_api_id + " was deleted."
+            return make_response(out, status=204)
+
+        except Exception as e:
+            exception = "An exception occurred in delete service"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
+    def update_serviceapidescription(self, service_api_id, apf_id, service_api_description):
+
+        mycol = self.db.get_col_by_name(self.db.service_api_descriptions)
+
+        try:
+
+            current_app.logger.debug("Updating service api with id: " + service_api_id)
+
+            result = self.__check_apf(apf_id)
+
+            if result != None:
+                return result
+
+            my_query = {'apf_id': apf_id, 'api_id': service_api_id}
+            serviceapidescription = mycol.find_one(my_query)
+
+            if serviceapidescription is None:
+                current_app.logger.error(service_api_not_found_message)
+                return not_found_error(detail="Service API not existing", cause="Service API id not found")
+
+            service_api_description = service_api_description.to_dict()
+            service_api_description = clean_empty(service_api_description)
+
+            result = mycol.find_one_and_update(serviceapidescription, {"$set":service_api_description}, projection={"apf_id":0, "_id":0},return_document=ReturnDocument.AFTER ,upsert=False)
+
+            result = clean_empty(result)
+
+            current_app.logger.debug("Updated service api")
+    
+            response = make_response(object=dict_to_camel_case(result), status=200)
+
+            return response
+
+        except Exception as e:
+            exception = "An exception occurred in update service"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/validate_user.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/validate_user.py
new file mode 100644
index 0000000..67d434d
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/core/validate_user.py
@@ -0,0 +1,26 @@
+from flask import current_app, Response
+import json
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from .resources import Resource
+from .responses import internal_server_error
+
+class ControlAccess(Resource):
+
+    def validate_user_cert(self, apf_id, service_id, cert_signature):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        try:
+            my_query = {'id':apf_id}
+            cert_entry = cert_col.find_one(my_query)
+
+            if cert_entry is not None:
+                if cert_entry["cert_signature"] != cert_signature or "services" not in cert_entry["resources"] or service_id not in cert_entry["resources"]["services"]:
+                    prob = ProblemDetails(title="Unauthorized", detail="User not authorized", cause="You are not the owner of this resource")
+                    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype="application/json")
+
+        except Exception as e:
+            exception = "An exception occurred in validate apf"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/db/db.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/db/db.py
new file mode 100644
index 0000000..91f7b6b
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/db/db.py
@@ -0,0 +1,45 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.service_api_descriptions = self.config['mongo']['col']
+        self.capif_provider_col = self.config['mongo']['capif_provider_col']
+        self.certs_col = self.config['mongo']['certs_col']
+
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/encoder.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/encoder.py
new file mode 100644
index 0000000..c753f45
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from published_apis.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/__init__.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/__init__.py
new file mode 100644
index 0000000..e80629d
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/__init__.py
@@ -0,0 +1,25 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from published_apis.models.aef_profile import AefProfile
+from published_apis.models.communication_type import CommunicationType
+from published_apis.models.communication_type_any_of import CommunicationTypeAnyOf
+from published_apis.models.custom_operation import CustomOperation
+from published_apis.models.data_format import DataFormat
+from published_apis.models.data_format_any_of import DataFormatAnyOf
+from published_apis.models.interface_description import InterfaceDescription
+from published_apis.models.invalid_param import InvalidParam
+from published_apis.models.operation import Operation
+from published_apis.models.operation_any_of import OperationAnyOf
+from published_apis.models.problem_details import ProblemDetails
+from published_apis.models.protocol import Protocol
+from published_apis.models.protocol_any_of import ProtocolAnyOf
+from published_apis.models.published_api_path import PublishedApiPath
+from published_apis.models.resource import Resource
+from published_apis.models.security_method import SecurityMethod
+from published_apis.models.security_method_any_of import SecurityMethodAnyOf
+from published_apis.models.service_api_description import ServiceAPIDescription
+from published_apis.models.shareable_information import ShareableInformation
+from published_apis.models.version import Version
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/aef_profile.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/aef_profile.py
new file mode 100644
index 0000000..ff3c3c5
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/aef_profile.py
@@ -0,0 +1,250 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.data_format import DataFormat
+from published_apis.models.interface_description import InterfaceDescription
+from published_apis.models.protocol import Protocol
+from published_apis.models.security_method import SecurityMethod
+from published_apis.models.version import Version
+from published_apis import util
+
+from published_apis.models.data_format import DataFormat  # noqa: E501
+from published_apis.models.interface_description import InterfaceDescription  # noqa: E501
+from published_apis.models.protocol import Protocol  # noqa: E501
+from published_apis.models.security_method import SecurityMethod  # noqa: E501
+from published_apis.models.version import Version  # noqa: E501
+
+class AefProfile(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, versions=None, protocol=None, data_format=None, security_methods=None, domain_name=None, interface_descriptions=None):  # noqa: E501
+        """AefProfile - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this AefProfile.  # noqa: E501
+        :type aef_id: str
+        :param versions: The versions of this AefProfile.  # noqa: E501
+        :type versions: List[Version]
+        :param protocol: The protocol of this AefProfile.  # noqa: E501
+        :type protocol: Protocol
+        :param data_format: The data_format of this AefProfile.  # noqa: E501
+        :type data_format: DataFormat
+        :param security_methods: The security_methods of this AefProfile.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        :param domain_name: The domain_name of this AefProfile.  # noqa: E501
+        :type domain_name: str
+        :param interface_descriptions: The interface_descriptions of this AefProfile.  # noqa: E501
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'versions': List[Version],
+            'protocol': Protocol,
+            'data_format': DataFormat,
+            'security_methods': List[SecurityMethod],
+            'domain_name': str,
+            'interface_descriptions': List[InterfaceDescription]
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'versions': 'versions',
+            'protocol': 'protocol',
+            'data_format': 'dataFormat',
+            'security_methods': 'securityMethods',
+            'domain_name': 'domainName',
+            'interface_descriptions': 'interfaceDescriptions'
+        }
+
+        self._aef_id = aef_id
+        self._versions = versions
+        self._protocol = protocol
+        self._data_format = data_format
+        self._security_methods = security_methods
+        self._domain_name = domain_name
+        self._interface_descriptions = interface_descriptions
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AefProfile':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AefProfile of this AefProfile.  # noqa: E501
+        :rtype: AefProfile
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_id of this AefProfile.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_id: The aef_id of this AefProfile.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def versions(self):
+        """Gets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :return: The versions of this AefProfile.
+        :rtype: List[Version]
+        """
+        return self._versions
+
+    @versions.setter
+    def versions(self, versions):
+        """Sets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :param versions: The versions of this AefProfile.
+        :type versions: List[Version]
+        """
+        if versions is None:
+            raise ValueError("Invalid value for `versions`, must not be `None`")  # noqa: E501
+        if versions is not None and len(versions) < 1:
+            raise ValueError("Invalid value for `versions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._versions = versions
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this AefProfile.
+
+
+        :return: The protocol of this AefProfile.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this AefProfile.
+
+
+        :param protocol: The protocol of this AefProfile.
+        :type protocol: Protocol
+        """
+
+        self._protocol = protocol
+
+    @property
+    def data_format(self):
+        """Gets the data_format of this AefProfile.
+
+
+        :return: The data_format of this AefProfile.
+        :rtype: DataFormat
+        """
+        return self._data_format
+
+    @data_format.setter
+    def data_format(self, data_format):
+        """Sets the data_format of this AefProfile.
+
+
+        :param data_format: The data_format of this AefProfile.
+        :type data_format: DataFormat
+        """
+
+        self._data_format = data_format
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :return: The security_methods of this AefProfile.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :param security_methods: The security_methods of this AefProfile.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
+
+    @property
+    def domain_name(self):
+        """Gets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :return: The domain_name of this AefProfile.
+        :rtype: str
+        """
+        return self._domain_name
+
+    @domain_name.setter
+    def domain_name(self, domain_name):
+        """Sets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :param domain_name: The domain_name of this AefProfile.
+        :type domain_name: str
+        """
+
+        self._domain_name = domain_name
+
+    @property
+    def interface_descriptions(self):
+        """Gets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :return: The interface_descriptions of this AefProfile.
+        :rtype: List[InterfaceDescription]
+        """
+        return self._interface_descriptions
+
+    @interface_descriptions.setter
+    def interface_descriptions(self, interface_descriptions):
+        """Sets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :param interface_descriptions: The interface_descriptions of this AefProfile.
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        if interface_descriptions is not None and len(interface_descriptions) < 1:
+            raise ValueError("Invalid value for `interface_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._interface_descriptions = interface_descriptions
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/base_model_.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/base_model_.py
new file mode 100644
index 0000000..2c63ab0
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from published_apis import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type.py
new file mode 100644
index 0000000..2c4d15f
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.communication_type_any_of import CommunicationTypeAnyOf
+from published_apis import util
+
+from published_apis.models.communication_type_any_of import CommunicationTypeAnyOf  # noqa: E501
+
+class CommunicationType(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """CommunicationType - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationType':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType of this CommunicationType.  # noqa: E501
+        :rtype: CommunicationType
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type_any_of.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type_any_of.py
new file mode 100644
index 0000000..8315583
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/communication_type_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class CommunicationTypeAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    REQUEST_RESPONSE = "REQUEST_RESPONSE"
+    SUBSCRIBE_NOTIFY = "SUBSCRIBE_NOTIFY"
+    def __init__(self):  # noqa: E501
+        """CommunicationTypeAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationTypeAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType_anyOf of this CommunicationTypeAnyOf.  # noqa: E501
+        :rtype: CommunicationTypeAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/custom_operation.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/custom_operation.py
new file mode 100644
index 0000000..bf1cd38
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/custom_operation.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.communication_type import CommunicationType
+from published_apis.models.operation import Operation
+from published_apis import util
+
+from published_apis.models.communication_type import CommunicationType  # noqa: E501
+from published_apis.models.operation import Operation  # noqa: E501
+
+class CustomOperation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, comm_type=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """CustomOperation - a model defined in OpenAPI
+
+        :param comm_type: The comm_type of this CustomOperation.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param cust_op_name: The cust_op_name of this CustomOperation.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this CustomOperation.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this CustomOperation.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'comm_type': CommunicationType,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'comm_type': 'commType',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._comm_type = comm_type
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CustomOperation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CustomOperation of this CustomOperation.  # noqa: E501
+        :rtype: CustomOperation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this CustomOperation.
+
+
+        :return: The comm_type of this CustomOperation.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this CustomOperation.
+
+
+        :param comm_type: The comm_type of this CustomOperation.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this CustomOperation.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this CustomOperation.
+        :type cust_op_name: str
+        """
+        if cust_op_name is None:
+            raise ValueError("Invalid value for `cust_op_name`, must not be `None`")  # noqa: E501
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this CustomOperation.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this CustomOperation.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :return: The description of this CustomOperation.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :param description: The description of this CustomOperation.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format.py
new file mode 100644
index 0000000..72e3f15
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.data_format_any_of import DataFormatAnyOf
+from published_apis import util
+
+from published_apis.models.data_format_any_of import DataFormatAnyOf  # noqa: E501
+
+class DataFormat(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """DataFormat - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormat':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat of this DataFormat.  # noqa: E501
+        :rtype: DataFormat
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format_any_of.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format_any_of.py
new file mode 100644
index 0000000..726b386
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/data_format_any_of.py
@@ -0,0 +1,41 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class DataFormatAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    JSON = "JSON"
+    def __init__(self):  # noqa: E501
+        """DataFormatAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormatAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat_anyOf of this DataFormatAnyOf.  # noqa: E501
+        :rtype: DataFormatAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/interface_description.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/interface_description.py
new file mode 100644
index 0000000..fd7e5b5
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.security_method import SecurityMethod
+from published_apis import util
+
+from published_apis.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/invalid_param.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/invalid_param.py
new file mode 100644
index 0000000..8e794cf
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation.py
new file mode 100644
index 0000000..b985c08
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.operation_any_of import OperationAnyOf
+from published_apis import util
+
+from published_apis.models.operation_any_of import OperationAnyOf  # noqa: E501
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation_any_of.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation_any_of.py
new file mode 100644
index 0000000..0e9b63f
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/problem_details.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/problem_details.py
new file mode 100644
index 0000000..2f5151f
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.invalid_param import InvalidParam
+import re
+from published_apis import util
+
+from published_apis.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol.py
new file mode 100644
index 0000000..6bb623c
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.protocol_any_of import ProtocolAnyOf
+from published_apis import util
+
+from published_apis.models.protocol_any_of import ProtocolAnyOf  # noqa: E501
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol_any_of.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol_any_of.py
new file mode 100644
index 0000000..cbbfd46
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/published_api_path.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/published_api_path.py
new file mode 100644
index 0000000..0a34778
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/published_api_path.py
@@ -0,0 +1,68 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class PublishedApiPath(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ccf_ids=None):  # noqa: E501
+        """PublishedApiPath - a model defined in OpenAPI
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.  # noqa: E501
+        :type ccf_ids: List[str]
+        """
+        self.openapi_types = {
+            'ccf_ids': List[str]
+        }
+
+        self.attribute_map = {
+            'ccf_ids': 'ccfIds'
+        }
+
+        self._ccf_ids = ccf_ids
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PublishedApiPath':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PublishedApiPath of this PublishedApiPath.  # noqa: E501
+        :rtype: PublishedApiPath
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ccf_ids(self):
+        """Gets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :return: The ccf_ids of this PublishedApiPath.
+        :rtype: List[str]
+        """
+        return self._ccf_ids
+
+    @ccf_ids.setter
+    def ccf_ids(self, ccf_ids):
+        """Sets the ccf_ids of this PublishedApiPath.
+
+        A list of CCF identifiers where the service API is already published.  # noqa: E501
+
+        :param ccf_ids: The ccf_ids of this PublishedApiPath.
+        :type ccf_ids: List[str]
+        """
+        if ccf_ids is not None and len(ccf_ids) < 1:
+            raise ValueError("Invalid value for `ccf_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ccf_ids = ccf_ids
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/resource.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/resource.py
new file mode 100644
index 0000000..ef8bebe
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/resource.py
@@ -0,0 +1,216 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.communication_type import CommunicationType
+from published_apis.models.operation import Operation
+from published_apis import util
+
+from published_apis.models.communication_type import CommunicationType  # noqa: E501
+from published_apis.models.operation import Operation  # noqa: E501
+
+class Resource(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, resource_name=None, comm_type=None, uri=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """Resource - a model defined in OpenAPI
+
+        :param resource_name: The resource_name of this Resource.  # noqa: E501
+        :type resource_name: str
+        :param comm_type: The comm_type of this Resource.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param uri: The uri of this Resource.  # noqa: E501
+        :type uri: str
+        :param cust_op_name: The cust_op_name of this Resource.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this Resource.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this Resource.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'resource_name': str,
+            'comm_type': CommunicationType,
+            'uri': str,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'resource_name': 'resourceName',
+            'comm_type': 'commType',
+            'uri': 'uri',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._resource_name = resource_name
+        self._comm_type = comm_type
+        self._uri = uri
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Resource':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Resource of this Resource.  # noqa: E501
+        :rtype: Resource
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :return: The resource_name of this Resource.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :param resource_name: The resource_name of this Resource.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this Resource.
+
+
+        :return: The comm_type of this Resource.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this Resource.
+
+
+        :param comm_type: The comm_type of this Resource.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def uri(self):
+        """Gets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The uri of this Resource.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param uri: The uri of this Resource.
+        :type uri: str
+        """
+        if uri is None:
+            raise ValueError("Invalid value for `uri`, must not be `None`")  # noqa: E501
+
+        self._uri = uri
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this Resource.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this Resource.
+        :type cust_op_name: str
+        """
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this Resource.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this Resource.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :return: The description of this Resource.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :param description: The description of this Resource.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method.py
new file mode 100644
index 0000000..643e41d
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.security_method_any_of import SecurityMethodAnyOf
+from published_apis import util
+
+from published_apis.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method_any_of.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method_any_of.py
new file mode 100644
index 0000000..061d64c
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/service_api_description.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/service_api_description.py
new file mode 100644
index 0000000..e098f0b
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/service_api_description.py
@@ -0,0 +1,328 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.aef_profile import AefProfile
+from published_apis.models.published_api_path import PublishedApiPath
+from published_apis.models.shareable_information import ShareableInformation
+import re
+from published_apis import util
+
+from published_apis.models.aef_profile import AefProfile  # noqa: E501
+from published_apis.models.published_api_path import PublishedApiPath  # noqa: E501
+from published_apis.models.shareable_information import ShareableInformation  # noqa: E501
+import re  # noqa: E501
+
+class ServiceAPIDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_name=None, api_id=None, aef_profiles=None, description=None, supported_features=None, shareable_info=None, service_api_category=None, api_supp_feats=None, pub_api_path=None, ccf_id=None):  # noqa: E501
+        """ServiceAPIDescription - a model defined in OpenAPI
+
+        :param api_name: The api_name of this ServiceAPIDescription.  # noqa: E501
+        :type api_name: str
+        :param api_id: The api_id of this ServiceAPIDescription.  # noqa: E501
+        :type api_id: str
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.  # noqa: E501
+        :type aef_profiles: List[AefProfile]
+        :param description: The description of this ServiceAPIDescription.  # noqa: E501
+        :type description: str
+        :param supported_features: The supported_features of this ServiceAPIDescription.  # noqa: E501
+        :type supported_features: str
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.  # noqa: E501
+        :type shareable_info: ShareableInformation
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.  # noqa: E501
+        :type service_api_category: str
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.  # noqa: E501
+        :type api_supp_feats: str
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.  # noqa: E501
+        :type pub_api_path: PublishedApiPath
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.  # noqa: E501
+        :type ccf_id: str
+        """
+        self.openapi_types = {
+            'api_name': str,
+            'api_id': str,
+            'aef_profiles': List[AefProfile],
+            'description': str,
+            'supported_features': str,
+            'shareable_info': ShareableInformation,
+            'service_api_category': str,
+            'api_supp_feats': str,
+            'pub_api_path': PublishedApiPath,
+            'ccf_id': str
+        }
+
+        self.attribute_map = {
+            'api_name': 'apiName',
+            'api_id': 'apiId',
+            'aef_profiles': 'aefProfiles',
+            'description': 'description',
+            'supported_features': 'supportedFeatures',
+            'shareable_info': 'shareableInfo',
+            'service_api_category': 'serviceAPICategory',
+            'api_supp_feats': 'apiSuppFeats',
+            'pub_api_path': 'pubApiPath',
+            'ccf_id': 'ccfId'
+        }
+
+        self._api_name = api_name
+        self._api_id = api_id
+        self._aef_profiles = aef_profiles
+        self._description = description
+        self._supported_features = supported_features
+        self._shareable_info = shareable_info
+        self._service_api_category = service_api_category
+        self._api_supp_feats = api_supp_feats
+        self._pub_api_path = pub_api_path
+        self._ccf_id = ccf_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ServiceAPIDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ServiceAPIDescription of this ServiceAPIDescription.  # noqa: E501
+        :rtype: ServiceAPIDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_name(self):
+        """Gets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The api_name of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_name
+
+    @api_name.setter
+    def api_name(self, api_name):
+        """Sets the api_name of this ServiceAPIDescription.
+
+        API name, it is set as {apiName} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param api_name: The api_name of this ServiceAPIDescription.
+        :type api_name: str
+        """
+        if api_name is None:
+            raise ValueError("Invalid value for `api_name`, must not be `None`")  # noqa: E501
+
+        self._api_name = api_name
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :return: The api_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this ServiceAPIDescription.
+
+        API identifier assigned by the CAPIF core function to the published service API. Shall not be present in the HTTP POST request from the API publishing function to the CAPIF core function. Shall be present in the HTTP POST response from the CAPIF core function to the API publishing function and in the HTTP GET response from the CAPIF core function to the API invoker (discovery API).  # noqa: E501
+
+        :param api_id: The api_id of this ServiceAPIDescription.
+        :type api_id: str
+        """
+
+        self._api_id = api_id
+
+    @property
+    def aef_profiles(self):
+        """Gets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :return: The aef_profiles of this ServiceAPIDescription.
+        :rtype: List[AefProfile]
+        """
+        return self._aef_profiles
+
+    @aef_profiles.setter
+    def aef_profiles(self, aef_profiles):
+        """Sets the aef_profiles of this ServiceAPIDescription.
+
+        AEF profile information, which includes the exposed API details (e.g. protocol).  # noqa: E501
+
+        :param aef_profiles: The aef_profiles of this ServiceAPIDescription.
+        :type aef_profiles: List[AefProfile]
+        """
+        if aef_profiles is not None and len(aef_profiles) < 1:
+            raise ValueError("Invalid value for `aef_profiles`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._aef_profiles = aef_profiles
+
+    @property
+    def description(self):
+        """Gets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :return: The description of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this ServiceAPIDescription.
+
+        Text description of the API  # noqa: E501
+
+        :param description: The description of this ServiceAPIDescription.
+        :type description: str
+        """
+
+        self._description = description
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ServiceAPIDescription.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
+
+    @property
+    def shareable_info(self):
+        """Gets the shareable_info of this ServiceAPIDescription.
+
+
+        :return: The shareable_info of this ServiceAPIDescription.
+        :rtype: ShareableInformation
+        """
+        return self._shareable_info
+
+    @shareable_info.setter
+    def shareable_info(self, shareable_info):
+        """Sets the shareable_info of this ServiceAPIDescription.
+
+
+        :param shareable_info: The shareable_info of this ServiceAPIDescription.
+        :type shareable_info: ShareableInformation
+        """
+
+        self._shareable_info = shareable_info
+
+    @property
+    def service_api_category(self):
+        """Gets the service_api_category of this ServiceAPIDescription.
+
+
+        :return: The service_api_category of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._service_api_category
+
+    @service_api_category.setter
+    def service_api_category(self, service_api_category):
+        """Sets the service_api_category of this ServiceAPIDescription.
+
+
+        :param service_api_category: The service_api_category of this ServiceAPIDescription.
+        :type service_api_category: str
+        """
+
+        self._service_api_category = service_api_category
+
+    @property
+    def api_supp_feats(self):
+        """Gets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The api_supp_feats of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._api_supp_feats
+
+    @api_supp_feats.setter
+    def api_supp_feats(self, api_supp_feats):
+        """Sets the api_supp_feats of this ServiceAPIDescription.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param api_supp_feats: The api_supp_feats of this ServiceAPIDescription.
+        :type api_supp_feats: str
+        """
+        if api_supp_feats is not None and not re.search(r'^[A-Fa-f0-9]*$', api_supp_feats):  # noqa: E501
+            raise ValueError("Invalid value for `api_supp_feats`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._api_supp_feats = api_supp_feats
+
+    @property
+    def pub_api_path(self):
+        """Gets the pub_api_path of this ServiceAPIDescription.
+
+
+        :return: The pub_api_path of this ServiceAPIDescription.
+        :rtype: PublishedApiPath
+        """
+        return self._pub_api_path
+
+    @pub_api_path.setter
+    def pub_api_path(self, pub_api_path):
+        """Sets the pub_api_path of this ServiceAPIDescription.
+
+
+        :param pub_api_path: The pub_api_path of this ServiceAPIDescription.
+        :type pub_api_path: PublishedApiPath
+        """
+
+        self._pub_api_path = pub_api_path
+
+    @property
+    def ccf_id(self):
+        """Gets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :return: The ccf_id of this ServiceAPIDescription.
+        :rtype: str
+        """
+        return self._ccf_id
+
+    @ccf_id.setter
+    def ccf_id(self, ccf_id):
+        """Sets the ccf_id of this ServiceAPIDescription.
+
+        CAPIF core function identifier.  # noqa: E501
+
+        :param ccf_id: The ccf_id of this ServiceAPIDescription.
+        :type ccf_id: str
+        """
+
+        self._ccf_id = ccf_id
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/shareable_information.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/shareable_information.py
new file mode 100644
index 0000000..c8bdc25
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/shareable_information.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis import util
+
+
+class ShareableInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, is_shareable=None, capif_prov_doms=None):  # noqa: E501
+        """ShareableInformation - a model defined in OpenAPI
+
+        :param is_shareable: The is_shareable of this ShareableInformation.  # noqa: E501
+        :type is_shareable: bool
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.  # noqa: E501
+        :type capif_prov_doms: List[str]
+        """
+        self.openapi_types = {
+            'is_shareable': bool,
+            'capif_prov_doms': List[str]
+        }
+
+        self.attribute_map = {
+            'is_shareable': 'isShareable',
+            'capif_prov_doms': 'capifProvDoms'
+        }
+
+        self._is_shareable = is_shareable
+        self._capif_prov_doms = capif_prov_doms
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ShareableInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ShareableInformation of this ShareableInformation.  # noqa: E501
+        :rtype: ShareableInformation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def is_shareable(self):
+        """Gets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :return: The is_shareable of this ShareableInformation.
+        :rtype: bool
+        """
+        return self._is_shareable
+
+    @is_shareable.setter
+    def is_shareable(self, is_shareable):
+        """Sets the is_shareable of this ShareableInformation.
+
+        Set to \"true\" indicates that the service API and/or the service API category can be shared to the list of CAPIF provider domain information. Otherwise set to \"false\".  # noqa: E501
+
+        :param is_shareable: The is_shareable of this ShareableInformation.
+        :type is_shareable: bool
+        """
+        if is_shareable is None:
+            raise ValueError("Invalid value for `is_shareable`, must not be `None`")  # noqa: E501
+
+        self._is_shareable = is_shareable
+
+    @property
+    def capif_prov_doms(self):
+        """Gets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :return: The capif_prov_doms of this ShareableInformation.
+        :rtype: List[str]
+        """
+        return self._capif_prov_doms
+
+    @capif_prov_doms.setter
+    def capif_prov_doms(self, capif_prov_doms):
+        """Sets the capif_prov_doms of this ShareableInformation.
+
+        List of CAPIF provider domains to which the service API information to be shared.  # noqa: E501
+
+        :param capif_prov_doms: The capif_prov_doms of this ShareableInformation.
+        :type capif_prov_doms: List[str]
+        """
+        if capif_prov_doms is not None and len(capif_prov_doms) < 1:
+            raise ValueError("Invalid value for `capif_prov_doms`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._capif_prov_doms = capif_prov_doms
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/version.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/version.py
new file mode 100644
index 0000000..6c7bc20
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/models/version.py
@@ -0,0 +1,160 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from published_apis.models.base_model_ import Model
+from published_apis.models.custom_operation import CustomOperation
+from published_apis.models.resource import Resource
+from published_apis import util
+
+from published_apis.models.custom_operation import CustomOperation  # noqa: E501
+from published_apis.models.resource import Resource  # noqa: E501
+
+class Version(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_version=None, expiry=None, resources=None, cust_operations=None):  # noqa: E501
+        """Version - a model defined in OpenAPI
+
+        :param api_version: The api_version of this Version.  # noqa: E501
+        :type api_version: str
+        :param expiry: The expiry of this Version.  # noqa: E501
+        :type expiry: datetime
+        :param resources: The resources of this Version.  # noqa: E501
+        :type resources: List[Resource]
+        :param cust_operations: The cust_operations of this Version.  # noqa: E501
+        :type cust_operations: List[CustomOperation]
+        """
+        self.openapi_types = {
+            'api_version': str,
+            'expiry': datetime,
+            'resources': List[Resource],
+            'cust_operations': List[CustomOperation]
+        }
+
+        self.attribute_map = {
+            'api_version': 'apiVersion',
+            'expiry': 'expiry',
+            'resources': 'resources',
+            'cust_operations': 'custOperations'
+        }
+
+        self._api_version = api_version
+        self._expiry = expiry
+        self._resources = resources
+        self._cust_operations = cust_operations
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Version':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Version of this Version.  # noqa: E501
+        :rtype: Version
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :return: The api_version of this Version.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :param api_version: The api_version of this Version.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def expiry(self):
+        """Gets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The expiry of this Version.
+        :rtype: datetime
+        """
+        return self._expiry
+
+    @expiry.setter
+    def expiry(self, expiry):
+        """Sets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param expiry: The expiry of this Version.
+        :type expiry: datetime
+        """
+
+        self._expiry = expiry
+
+    @property
+    def resources(self):
+        """Gets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :return: The resources of this Version.
+        :rtype: List[Resource]
+        """
+        return self._resources
+
+    @resources.setter
+    def resources(self, resources):
+        """Sets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :param resources: The resources of this Version.
+        :type resources: List[Resource]
+        """
+        if resources is not None and len(resources) < 1:
+            raise ValueError("Invalid value for `resources`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._resources = resources
+
+    @property
+    def cust_operations(self):
+        """Gets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :return: The cust_operations of this Version.
+        :rtype: List[CustomOperation]
+        """
+        return self._cust_operations
+
+    @cust_operations.setter
+    def cust_operations(self, cust_operations):
+        """Sets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :param cust_operations: The cust_operations of this Version.
+        :type cust_operations: List[CustomOperation]
+        """
+        if cust_operations is not None and len(cust_operations) < 1:
+            raise ValueError("Invalid value for `cust_operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._cust_operations = cust_operations
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/openapi/openapi.yaml b/services/TS29222_CAPIF_Publish_Service_API/published_apis/openapi/openapi.yaml
new file mode 100644
index 0000000..6c2012f
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/openapi/openapi.yaml
@@ -0,0 +1,1285 @@
+openapi: 3.0.0
+info:
+  description: |
+    API for publishing service APIs.
+    © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
+    All rights reserved.
+  title: CAPIF_Publish_Service_API
+  version: 1.2.0-alpha.2
+externalDocs:
+  description: 3GPP TS 29.222 V17.2.0 Common API Framework for 3GPP Northbound APIs
+  url: http://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/published-apis/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in subclause 7.5 of 3GPP TS 29.222.
+paths:
+  /{apfId}/service-apis:
+    get:
+      description: Retrieve all published APIs.
+      operationId: apf_id_service_apis_get
+      parameters:
+      - explode: false
+        in: path
+        name: apfId
+        required: true
+        schema:
+          $ref: '#/components/schemas/apfId'
+        style: simple
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceAPIDescription'
+          description: Definition of all service API(s) published by the API publishing
+            function.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: published_apis.controllers.default_controller
+    post:
+      description: Publish a new API.
+      operationId: apf_id_service_apis_post
+      parameters:
+      - explode: false
+        in: path
+        name: apfId
+        required: true
+        schema:
+          $ref: '#/components/schemas/apfId'
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/ServiceAPIDescription'
+        required: true
+      responses:
+        "201":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceAPIDescription'
+          description: Service API published successfully The URI of the created resource
+            shall be returned in the "Location" HTTP header.
+          headers:
+            Location:
+              description: 'Contains the URI of the newly created resource, according
+                to the structure: {apiRoot}/published-apis/v1/{apfId}/service-apis/{serviceApiId}'
+              explode: false
+              required: true
+              schema:
+                type: string
+              style: simple
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: published_apis.controllers.default_controller
+  /{apfId}/service-apis/{serviceApiId}:
+    delete:
+      description: Unpublish a published service API.
+      operationId: apf_id_service_apis_service_api_id_delete
+      parameters:
+      - explode: false
+        in: path
+        name: serviceApiId
+        required: true
+        schema:
+          $ref: '#/components/schemas/serviceApiId'
+        style: simple
+      - explode: false
+        in: path
+        name: apfId
+        required: true
+        schema:
+          $ref: '#/components/schemas/apfId'
+        style: simple
+      responses:
+        "204":
+          description: The individual published service API matching the serviceAPiId
+            is deleted.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: published_apis.controllers.default_controller
+    get:
+      description: Retrieve a published service API.
+      operationId: apf_id_service_apis_service_api_id_get
+      parameters:
+      - explode: false
+        in: path
+        name: serviceApiId
+        required: true
+        schema:
+          $ref: '#/components/schemas/serviceApiId'
+        style: simple
+      - explode: false
+        in: path
+        name: apfId
+        required: true
+        schema:
+          $ref: '#/components/schemas/apfId'
+        style: simple
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceAPIDescription'
+          description: Definition of all service API published by the API publishing
+            function.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: published_apis.controllers.default_controller
+    put:
+      description: Update a published service API.
+      operationId: apf_id_service_apis_service_api_id_put
+      parameters:
+      - explode: false
+        in: path
+        name: serviceApiId
+        required: true
+        schema:
+          $ref: '#/components/schemas/serviceApiId'
+        style: simple
+      - explode: false
+        in: path
+        name: apfId
+        required: true
+        schema:
+          $ref: '#/components/schemas/apfId'
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/ServiceAPIDescription'
+        required: true
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceAPIDescription'
+          description: Definition of service API updated successfully.
+        "204":
+          description: No Content
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: published_apis.controllers.default_controller
+components:
+  schemas:
+    apfId:
+      description: Identification of the API publishing function.
+      type: string
+    serviceApiId:
+      description: String identifying an individual published service API.
+      type: string
+    ServiceAPIDescription:
+      description: Represents the description of a service API as published by the
+        APF.
+      example:
+        serviceAPICategory: serviceAPICategory
+        ccfId: ccfId
+        apiName: apiName
+        shareableInfo:
+          capifProvDoms:
+          - capifProvDoms
+          - capifProvDoms
+          isShareable: true
+        supportedFeatures: supportedFeatures
+        description: description
+        apiSuppFeats: apiSuppFeats
+        apiId: apiId
+        aefProfiles:
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        - securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        pubApiPath:
+          ccfIds:
+          - ccfIds
+          - ccfIds
+      properties:
+        apiName:
+          description: API name, it is set as {apiName} part of the URI structure
+            as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: apiName
+          type: string
+        apiId:
+          description: API identifier assigned by the CAPIF core function to the published
+            service API. Shall not be present in the HTTP POST request from the API
+            publishing function to the CAPIF core function. Shall be present in the
+            HTTP POST response from the CAPIF core function to the API publishing
+            function and in the HTTP GET response from the CAPIF core function to
+            the API invoker (discovery API).
+          title: apiId
+          type: string
+        aefProfiles:
+          description: AEF profile information, which includes the exposed API details
+            (e.g. protocol).
+          items:
+            $ref: '#/components/schemas/AefProfile'
+          minItems: 1
+          title: aefProfiles
+          type: array
+        description:
+          description: Text description of the API
+          title: description
+          type: string
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: supportedFeatures
+          type: string
+        shareableInfo:
+          $ref: '#/components/schemas/ShareableInformation'
+        serviceAPICategory:
+          title: serviceAPICategory
+          type: string
+        apiSuppFeats:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: supportedFeatures
+          type: string
+        pubApiPath:
+          $ref: '#/components/schemas/PublishedApiPath'
+        ccfId:
+          description: CAPIF core function identifier.
+          title: ccfId
+          type: string
+      required:
+      - apiName
+      title: ServiceAPIDescription
+      type: object
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 5248
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: Security methods supported by the interface, it take precedence
+            over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    AefProfile:
+      description: Represents the AEF profile data.
+      example:
+        securityMethods:
+        - null
+        - null
+        versions:
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        domainName: domainName
+        aefId: aefId
+        interfaceDescriptions:
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - domainName
+      - required:
+        - interfaceDescriptions
+      properties:
+        aefId:
+          description: Identifier of the API exposing function
+          title: aefId
+          type: string
+        versions:
+          description: API version
+          items:
+            $ref: '#/components/schemas/Version'
+          minItems: 1
+          title: versions
+          type: array
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        dataFormat:
+          $ref: '#/components/schemas/DataFormat'
+        securityMethods:
+          description: Security methods supported by the AEF
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+        domainName:
+          description: Domain to which API belongs to
+          title: domainName
+          type: string
+        interfaceDescriptions:
+          description: Interface details
+          items:
+            $ref: '#/components/schemas/InterfaceDescription'
+          minItems: 1
+          title: interfaceDescriptions
+          type: array
+      required:
+      - aefId
+      - versions
+      title: AefProfile
+      type: object
+    Resource:
+      description: Represents the API resource data.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        resourceName: resourceName
+        custOpName: custOpName
+        uri: uri
+      properties:
+        resourceName:
+          description: Resource name
+          title: resourceName
+          type: string
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        uri:
+          description: Relative URI of the API resource, it is set as {apiSpecificResourceUriPart}
+            part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: uri
+          type: string
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation associated with a resource as defined in subclause 4.4 of 3GPP
+            TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the API resource
+          title: description
+          type: string
+      required:
+      - commType
+      - resourceName
+      - uri
+      title: Resource
+      type: object
+    CustomOperation:
+      description: Represents the description of a custom operation.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        custOpName: custOpName
+      properties:
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation without resource association as defined in subclause 4.4 of
+            3GPP TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the custom operation
+          title: description
+          type: string
+      required:
+      - commType
+      - custOpName
+      title: CustomOperation
+      type: object
+    Version:
+      description: Represents the API version information.
+      example:
+        apiVersion: apiVersion
+        resources:
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        custOperations:
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        expiry: 2000-01-23T04:56:07.000+00:00
+      properties:
+        apiVersion:
+          description: API major version in URI (e.g. v1)
+          title: apiVersion
+          type: string
+        expiry:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        resources:
+          description: Resources supported by the API.
+          items:
+            $ref: '#/components/schemas/Resource'
+          minItems: 1
+          title: resources
+          type: array
+        custOperations:
+          description: Custom operations without resource association.
+          items:
+            $ref: '#/components/schemas/CustomOperation'
+          minItems: 1
+          title: custOperations
+          type: array
+      required:
+      - apiVersion
+      title: Version
+      type: object
+    ShareableInformation:
+      description: Indicates whether the service API and/or the service API category
+        can be shared to the list of CAPIF provider domains.
+      example:
+        capifProvDoms:
+        - capifProvDoms
+        - capifProvDoms
+        isShareable: true
+      properties:
+        isShareable:
+          description: Set to "true" indicates that the service API and/or the service
+            API category can be shared to the list of CAPIF provider domain information.
+            Otherwise set to "false".
+          title: isShareable
+          type: boolean
+        capifProvDoms:
+          description: List of CAPIF provider domains to which the service API information
+            to be shared.
+          items:
+            type: string
+          minItems: 1
+          title: capifProvDoms
+          type: array
+      required:
+      - isShareable
+      title: ShareableInformation
+      type: object
+    PublishedApiPath:
+      description: Represents the published API path within the same CAPIF provider
+        domain.
+      example:
+        ccfIds:
+        - ccfIds
+        - ccfIds
+      properties:
+        ccfIds:
+          description: A list of CCF identifiers where the service API is already
+            published.
+          items:
+            type: string
+          minItems: 1
+          title: ccfIds
+          type: array
+      title: PublishedApiPath
+      type: object
+    Protocol:
+      anyOf:
+      - $ref: '#/components/schemas/Protocol_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - HTTP_1_1: HTTP version 1.1 - HTTP_2: HTTP version 2
+      title: Protocol
+    CommunicationType:
+      anyOf:
+      - $ref: '#/components/schemas/CommunicationType_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - REQUEST_RESPONSE: The communication is of the type request-response - SUBSCRIBE_NOTIFY: The communication is of the type subscribe-notify
+      title: CommunicationType
+    DataFormat:
+      anyOf:
+      - $ref: '#/components/schemas/DataFormat_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - JSON: JavaScript Object Notation
+      title: DataFormat
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122 - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122 - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      title: SecurityMethod
+    Operation:
+      anyOf:
+      - $ref: '#/components/schemas/Operation_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - GET: HTTP GET method - POST: HTTP POST method - PUT: HTTP PUT method - PATCH: HTTP PATCH method - DELETE: HTTP DELETE method
+      title: Operation
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: supportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: type
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    SupportedFeatures:
+      description: A string used to indicate the features supported by an API that
+        is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain
+        a bitmask indicating supported features in hexadecimal representation Each
+        character in the string shall take a value of "0" to "9", "a" to "f" or "A"
+        to "F" and shall represent the support of 4 features as described in table 5.2.2-3.
+        The most significant character representing the highest-numbered features
+        shall appear first in the string, and the character representing features
+        1 to 4 shall appear last in the string. The list of features and their numbering
+        (starting with 1) are defined separately for each API. If the string contains
+        a lower number of characters than there are defined features for an API, all
+        features that would be represented by characters that are not present in the
+        string are not supported
+      pattern: ^[A-Fa-f0-9]*$
+      title: supportedFeatures
+      type: string
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    Protocol_anyOf:
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol_anyOf
+      type: string
+    CommunicationType_anyOf:
+      enum:
+      - REQUEST_RESPONSE
+      - SUBSCRIBE_NOTIFY
+      title: CommunicationType_anyOf
+      type: string
+    DataFormat_anyOf:
+      enum:
+      - JSON
+      title: DataFormat_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
+    Operation_anyOf:
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/typing_utils.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Publish_Service_API/published_apis/util.py b/services/TS29222_CAPIF_Publish_Service_API/published_apis/util.py
new file mode 100644
index 0000000..3f53de6
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/published_apis/util.py
@@ -0,0 +1,187 @@
+import datetime
+
+import six
+import typing
+from published_apis import typing_utils
+
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+            if my_key == "serviceApiCategory":
+                my_key = "serviceAPICategory"
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Publish_Service_API/requirements.txt b/services/TS29222_CAPIF_Publish_Service_API/requirements.txt
new file mode 100644
index 0000000..0ba8fb5
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/requirements.txt
@@ -0,0 +1,21 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+flask_jwt_extended == 4.4.4
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
+pyopenssl == 23.0.0
+redis ==  4.5.4
+flask_executor == 1.0.0
diff --git a/services/TS29222_CAPIF_Publish_Service_API/setup.py b/services/TS29222_CAPIF_Publish_Service_API/setup.py
new file mode 100644
index 0000000..0b21a83
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "published_apis"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Publish_Service_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Publish_Service_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['published_apis=published_apis.__main__:main']},
+    long_description="""\
+    API for publishing service APIs. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Publish_Service_API/test-requirements.txt b/services/TS29222_CAPIF_Publish_Service_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Publish_Service_API/tox.ini b/services/TS29222_CAPIF_Publish_Service_API/tox.ini
new file mode 100644
index 0000000..17663ab
--- /dev/null
+++ b/services/TS29222_CAPIF_Publish_Service_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=published_apis
diff --git a/services/TS29222_CAPIF_Routing_Info_API/.dockerignore b/services/TS29222_CAPIF_Routing_Info_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Routing_Info_API/.gitignore b/services/TS29222_CAPIF_Routing_Info_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/FILES
new file mode 100644
index 0000000..ddc37ec
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/FILES
@@ -0,0 +1,43 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+capif_routing_info/__init__.py
+capif_routing_info/__main__.py
+capif_routing_info/controllers/__init__.py
+capif_routing_info/controllers/default_controller.py
+capif_routing_info/controllers/security_controller_.py
+capif_routing_info/encoder.py
+capif_routing_info/models/__init__.py
+capif_routing_info/models/aef_profile.py
+capif_routing_info/models/base_model_.py
+capif_routing_info/models/communication_type.py
+capif_routing_info/models/communication_type_any_of.py
+capif_routing_info/models/custom_operation.py
+capif_routing_info/models/data_format.py
+capif_routing_info/models/data_format_any_of.py
+capif_routing_info/models/interface_description.py
+capif_routing_info/models/invalid_param.py
+capif_routing_info/models/ipv4_address_range.py
+capif_routing_info/models/ipv6_address_range.py
+capif_routing_info/models/operation.py
+capif_routing_info/models/operation_any_of.py
+capif_routing_info/models/problem_details.py
+capif_routing_info/models/protocol.py
+capif_routing_info/models/protocol_any_of.py
+capif_routing_info/models/resource.py
+capif_routing_info/models/routing_info.py
+capif_routing_info/models/routing_rule.py
+capif_routing_info/models/security_method.py
+capif_routing_info/models/security_method_any_of.py
+capif_routing_info/models/version.py
+capif_routing_info/openapi/openapi.yaml
+capif_routing_info/test/__init__.py
+capif_routing_info/typing_utils.py
+capif_routing_info/util.py
+git_push.sh
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Routing_Info_API/.travis.yml b/services/TS29222_CAPIF_Routing_Info_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Routing_Info_API/Dockerfile b/services/TS29222_CAPIF_Routing_Info_API/Dockerfile
new file mode 100644
index 0000000..9911d06
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/Dockerfile
@@ -0,0 +1,16 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/
+
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+ENTRYPOINT ["python3"]
+
+CMD ["-m", "capif_routing_info"]
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Routing_Info_API/README.md b/services/TS29222_CAPIF_Routing_Info_API/README.md
new file mode 100644
index 0000000..b239418
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m capif_routing_info
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/capif-routing-info/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/capif-routing-info/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t capif_routing_info .
+
+# starting up a container
+docker run -p 8080:8080 capif_routing_info
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__init__.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__main__.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__main__.py
new file mode 100644
index 0000000..e595fa0
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/__main__.py
@@ -0,0 +1,19 @@
+#!/usr/bin/env python3
+
+import connexion
+
+from capif_routing_info import encoder
+
+
+def main():
+    app = connexion.App(__name__, specification_dir='./openapi/')
+    app.app.json_encoder = encoder.JSONEncoder
+    app.add_api('openapi.yaml',
+                arguments={'title': 'CAPIF_Routing_Info_API'},
+                pythonic_params=True)
+
+    app.run(port=8080)
+
+
+if __name__ == '__main__':
+    main()
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/__init__.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/default_controller.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/default_controller.py
new file mode 100644
index 0000000..7cd07dd
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/default_controller.py
@@ -0,0 +1,23 @@
+import connexion
+import six
+
+from capif_routing_info.models.problem_details import ProblemDetails  # noqa: E501
+from capif_routing_info.models.routing_info import RoutingInfo  # noqa: E501
+from capif_routing_info import util
+
+
+def service_apis_service_api_id_get(service_api_id, aef_id, supp_feat=None):  # noqa: E501
+    """service_apis_service_api_id_get
+
+    Retrieves the API routing information. # noqa: E501
+
+    :param service_api_id: Identifier of a published service API
+    :type service_api_id: str
+    :param aef_id: Identifier of the AEF
+    :type aef_id: str
+    :param supp_feat: To filter irrelevant responses related to unsupported features
+    :type supp_feat: str
+
+    :rtype: RoutingInfo
+    """
+    return 'do some magic!'
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/security_controller_.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/encoder.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/encoder.py
new file mode 100644
index 0000000..b536470
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from capif_routing_info.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/__init__.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/__init__.py
new file mode 100644
index 0000000..68aa16c
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/__init__.py
@@ -0,0 +1,26 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from capif_routing_info.models.aef_profile import AefProfile
+from capif_routing_info.models.communication_type import CommunicationType
+from capif_routing_info.models.communication_type_any_of import CommunicationTypeAnyOf
+from capif_routing_info.models.custom_operation import CustomOperation
+from capif_routing_info.models.data_format import DataFormat
+from capif_routing_info.models.data_format_any_of import DataFormatAnyOf
+from capif_routing_info.models.interface_description import InterfaceDescription
+from capif_routing_info.models.invalid_param import InvalidParam
+from capif_routing_info.models.ipv4_address_range import Ipv4AddressRange
+from capif_routing_info.models.ipv6_address_range import Ipv6AddressRange
+from capif_routing_info.models.operation import Operation
+from capif_routing_info.models.operation_any_of import OperationAnyOf
+from capif_routing_info.models.problem_details import ProblemDetails
+from capif_routing_info.models.protocol import Protocol
+from capif_routing_info.models.protocol_any_of import ProtocolAnyOf
+from capif_routing_info.models.resource import Resource
+from capif_routing_info.models.routing_info import RoutingInfo
+from capif_routing_info.models.routing_rule import RoutingRule
+from capif_routing_info.models.security_method import SecurityMethod
+from capif_routing_info.models.security_method_any_of import SecurityMethodAnyOf
+from capif_routing_info.models.version import Version
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/aef_profile.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/aef_profile.py
new file mode 100644
index 0000000..9a7e083
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/aef_profile.py
@@ -0,0 +1,250 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.data_format import DataFormat
+from capif_routing_info.models.interface_description import InterfaceDescription
+from capif_routing_info.models.protocol import Protocol
+from capif_routing_info.models.security_method import SecurityMethod
+from capif_routing_info.models.version import Version
+from capif_routing_info import util
+
+from capif_routing_info.models.data_format import DataFormat  # noqa: E501
+from capif_routing_info.models.interface_description import InterfaceDescription  # noqa: E501
+from capif_routing_info.models.protocol import Protocol  # noqa: E501
+from capif_routing_info.models.security_method import SecurityMethod  # noqa: E501
+from capif_routing_info.models.version import Version  # noqa: E501
+
+class AefProfile(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, aef_id=None, versions=None, protocol=None, data_format=None, security_methods=None, domain_name=None, interface_descriptions=None):  # noqa: E501
+        """AefProfile - a model defined in OpenAPI
+
+        :param aef_id: The aef_id of this AefProfile.  # noqa: E501
+        :type aef_id: str
+        :param versions: The versions of this AefProfile.  # noqa: E501
+        :type versions: List[Version]
+        :param protocol: The protocol of this AefProfile.  # noqa: E501
+        :type protocol: Protocol
+        :param data_format: The data_format of this AefProfile.  # noqa: E501
+        :type data_format: DataFormat
+        :param security_methods: The security_methods of this AefProfile.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        :param domain_name: The domain_name of this AefProfile.  # noqa: E501
+        :type domain_name: str
+        :param interface_descriptions: The interface_descriptions of this AefProfile.  # noqa: E501
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        self.openapi_types = {
+            'aef_id': str,
+            'versions': List[Version],
+            'protocol': Protocol,
+            'data_format': DataFormat,
+            'security_methods': List[SecurityMethod],
+            'domain_name': str,
+            'interface_descriptions': List[InterfaceDescription]
+        }
+
+        self.attribute_map = {
+            'aef_id': 'aefId',
+            'versions': 'versions',
+            'protocol': 'protocol',
+            'data_format': 'dataFormat',
+            'security_methods': 'securityMethods',
+            'domain_name': 'domainName',
+            'interface_descriptions': 'interfaceDescriptions'
+        }
+
+        self._aef_id = aef_id
+        self._versions = versions
+        self._protocol = protocol
+        self._data_format = data_format
+        self._security_methods = security_methods
+        self._domain_name = domain_name
+        self._interface_descriptions = interface_descriptions
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AefProfile':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AefProfile of this AefProfile.  # noqa: E501
+        :rtype: AefProfile
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_id of this AefProfile.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this AefProfile.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_id: The aef_id of this AefProfile.
+        :type aef_id: str
+        """
+        if aef_id is None:
+            raise ValueError("Invalid value for `aef_id`, must not be `None`")  # noqa: E501
+
+        self._aef_id = aef_id
+
+    @property
+    def versions(self):
+        """Gets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :return: The versions of this AefProfile.
+        :rtype: List[Version]
+        """
+        return self._versions
+
+    @versions.setter
+    def versions(self, versions):
+        """Sets the versions of this AefProfile.
+
+        API version  # noqa: E501
+
+        :param versions: The versions of this AefProfile.
+        :type versions: List[Version]
+        """
+        if versions is None:
+            raise ValueError("Invalid value for `versions`, must not be `None`")  # noqa: E501
+        if versions is not None and len(versions) < 1:
+            raise ValueError("Invalid value for `versions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._versions = versions
+
+    @property
+    def protocol(self):
+        """Gets the protocol of this AefProfile.
+
+
+        :return: The protocol of this AefProfile.
+        :rtype: Protocol
+        """
+        return self._protocol
+
+    @protocol.setter
+    def protocol(self, protocol):
+        """Sets the protocol of this AefProfile.
+
+
+        :param protocol: The protocol of this AefProfile.
+        :type protocol: Protocol
+        """
+
+        self._protocol = protocol
+
+    @property
+    def data_format(self):
+        """Gets the data_format of this AefProfile.
+
+
+        :return: The data_format of this AefProfile.
+        :rtype: DataFormat
+        """
+        return self._data_format
+
+    @data_format.setter
+    def data_format(self, data_format):
+        """Sets the data_format of this AefProfile.
+
+
+        :param data_format: The data_format of this AefProfile.
+        :type data_format: DataFormat
+        """
+
+        self._data_format = data_format
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :return: The security_methods of this AefProfile.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this AefProfile.
+
+        Security methods supported by the AEF  # noqa: E501
+
+        :param security_methods: The security_methods of this AefProfile.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
+
+    @property
+    def domain_name(self):
+        """Gets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :return: The domain_name of this AefProfile.
+        :rtype: str
+        """
+        return self._domain_name
+
+    @domain_name.setter
+    def domain_name(self, domain_name):
+        """Sets the domain_name of this AefProfile.
+
+        Domain to which API belongs to  # noqa: E501
+
+        :param domain_name: The domain_name of this AefProfile.
+        :type domain_name: str
+        """
+
+        self._domain_name = domain_name
+
+    @property
+    def interface_descriptions(self):
+        """Gets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :return: The interface_descriptions of this AefProfile.
+        :rtype: List[InterfaceDescription]
+        """
+        return self._interface_descriptions
+
+    @interface_descriptions.setter
+    def interface_descriptions(self, interface_descriptions):
+        """Sets the interface_descriptions of this AefProfile.
+
+        Interface details  # noqa: E501
+
+        :param interface_descriptions: The interface_descriptions of this AefProfile.
+        :type interface_descriptions: List[InterfaceDescription]
+        """
+        if interface_descriptions is not None and len(interface_descriptions) < 1:
+            raise ValueError("Invalid value for `interface_descriptions`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._interface_descriptions = interface_descriptions
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/base_model_.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/base_model_.py
new file mode 100644
index 0000000..4f38e97
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from capif_routing_info import util
+
+T = typing.TypeVar('T')
+
+
+class Model(object):
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type.py
new file mode 100644
index 0000000..090173b
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.communication_type_any_of import CommunicationTypeAnyOf
+from capif_routing_info import util
+
+from capif_routing_info.models.communication_type_any_of import CommunicationTypeAnyOf  # noqa: E501
+
+class CommunicationType(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """CommunicationType - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationType':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType of this CommunicationType.  # noqa: E501
+        :rtype: CommunicationType
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type_any_of.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type_any_of.py
new file mode 100644
index 0000000..4390894
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/communication_type_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class CommunicationTypeAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    REQUEST_RESPONSE = "REQUEST_RESPONSE"
+    SUBSCRIBE_NOTIFY = "SUBSCRIBE_NOTIFY"
+    def __init__(self):  # noqa: E501
+        """CommunicationTypeAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CommunicationTypeAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CommunicationType_anyOf of this CommunicationTypeAnyOf.  # noqa: E501
+        :rtype: CommunicationTypeAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/custom_operation.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/custom_operation.py
new file mode 100644
index 0000000..fe5a6e9
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/custom_operation.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.communication_type import CommunicationType
+from capif_routing_info.models.operation import Operation
+from capif_routing_info import util
+
+from capif_routing_info.models.communication_type import CommunicationType  # noqa: E501
+from capif_routing_info.models.operation import Operation  # noqa: E501
+
+class CustomOperation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, comm_type=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """CustomOperation - a model defined in OpenAPI
+
+        :param comm_type: The comm_type of this CustomOperation.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param cust_op_name: The cust_op_name of this CustomOperation.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this CustomOperation.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this CustomOperation.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'comm_type': CommunicationType,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'comm_type': 'commType',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._comm_type = comm_type
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CustomOperation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The CustomOperation of this CustomOperation.  # noqa: E501
+        :rtype: CustomOperation
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this CustomOperation.
+
+
+        :return: The comm_type of this CustomOperation.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this CustomOperation.
+
+
+        :param comm_type: The comm_type of this CustomOperation.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this CustomOperation.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this CustomOperation.
+
+        it is set as {custOpName} part of the URI structure for a custom operation without resource association as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this CustomOperation.
+        :type cust_op_name: str
+        """
+        if cust_op_name is None:
+            raise ValueError("Invalid value for `cust_op_name`, must not be `None`")  # noqa: E501
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this CustomOperation.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this CustomOperation.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this CustomOperation.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :return: The description of this CustomOperation.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this CustomOperation.
+
+        Text description of the custom operation  # noqa: E501
+
+        :param description: The description of this CustomOperation.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format.py
new file mode 100644
index 0000000..61a086c
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.data_format_any_of import DataFormatAnyOf
+from capif_routing_info import util
+
+from capif_routing_info.models.data_format_any_of import DataFormatAnyOf  # noqa: E501
+
+class DataFormat(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """DataFormat - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormat':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat of this DataFormat.  # noqa: E501
+        :rtype: DataFormat
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format_any_of.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format_any_of.py
new file mode 100644
index 0000000..97da8ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/data_format_any_of.py
@@ -0,0 +1,41 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class DataFormatAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    JSON = "JSON"
+    def __init__(self):  # noqa: E501
+        """DataFormatAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'DataFormatAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The DataFormat_anyOf of this DataFormatAnyOf.  # noqa: E501
+        :rtype: DataFormatAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/interface_description.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/interface_description.py
new file mode 100644
index 0000000..1350c6f
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.security_method import SecurityMethod
+from capif_routing_info import util
+
+from capif_routing_info.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.  # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/invalid_param.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/invalid_param.py
new file mode 100644
index 0000000..020db5d
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv4_address_range.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv4_address_range.py
new file mode 100644
index 0000000..8bf4532
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv4_address_range.py
@@ -0,0 +1,100 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+import re
+from capif_routing_info import util
+
+import re  # noqa: E501
+
+class Ipv4AddressRange(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, start=None, end=None):  # noqa: E501
+        """Ipv4AddressRange - a model defined in OpenAPI
+
+        :param start: The start of this Ipv4AddressRange.  # noqa: E501
+        :type start: str
+        :param end: The end of this Ipv4AddressRange.  # noqa: E501
+        :type end: str
+        """
+        self.openapi_types = {
+            'start': str,
+            'end': str
+        }
+
+        self.attribute_map = {
+            'start': 'start',
+            'end': 'end'
+        }
+
+        self._start = start
+        self._end = end
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Ipv4AddressRange':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Ipv4AddressRange of this Ipv4AddressRange.  # noqa: E501
+        :rtype: Ipv4AddressRange
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def start(self):
+        """Gets the start of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :return: The start of this Ipv4AddressRange.
+        :rtype: str
+        """
+        return self._start
+
+    @start.setter
+    def start(self, start):
+        """Sets the start of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :param start: The start of this Ipv4AddressRange.
+        :type start: str
+        """
+        if start is not None and not re.search(r'^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$', start):  # noqa: E501
+            raise ValueError("Invalid value for `start`, must be a follow pattern or equal to `/^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$/`")  # noqa: E501
+
+        self._start = start
+
+    @property
+    def end(self):
+        """Gets the end of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :return: The end of this Ipv4AddressRange.
+        :rtype: str
+        """
+        return self._end
+
+    @end.setter
+    def end(self, end):
+        """Sets the end of this Ipv4AddressRange.
+
+        String identifying a IPv4 address formatted in the \"dotted decimal\" notation as defined in RFC 1166.  # noqa: E501
+
+        :param end: The end of this Ipv4AddressRange.
+        :type end: str
+        """
+        if end is not None and not re.search(r'^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$', end):  # noqa: E501
+            raise ValueError("Invalid value for `end`, must be a follow pattern or equal to `/^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$/`")  # noqa: E501
+
+        self._end = end
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv6_address_range.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv6_address_range.py
new file mode 100644
index 0000000..d2afb78
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/ipv6_address_range.py
@@ -0,0 +1,98 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class Ipv6AddressRange(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, start=None, end=None):  # noqa: E501
+        """Ipv6AddressRange - a model defined in OpenAPI
+
+        :param start: The start of this Ipv6AddressRange.  # noqa: E501
+        :type start: str
+        :param end: The end of this Ipv6AddressRange.  # noqa: E501
+        :type end: str
+        """
+        self.openapi_types = {
+            'start': str,
+            'end': str
+        }
+
+        self.attribute_map = {
+            'start': 'start',
+            'end': 'end'
+        }
+
+        self._start = start
+        self._end = end
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Ipv6AddressRange':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Ipv6AddressRange of this Ipv6AddressRange.  # noqa: E501
+        :rtype: Ipv6AddressRange
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def start(self):
+        """Gets the start of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The start of this Ipv6AddressRange.
+        :rtype: str
+        """
+        return self._start
+
+    @start.setter
+    def start(self, start):
+        """Sets the start of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param start: The start of this Ipv6AddressRange.
+        :type start: str
+        """
+        if start is None:
+            raise ValueError("Invalid value for `start`, must not be `None`")  # noqa: E501
+
+        self._start = start
+
+    @property
+    def end(self):
+        """Gets the end of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The end of this Ipv6AddressRange.
+        :rtype: str
+        """
+        return self._end
+
+    @end.setter
+    def end(self, end):
+        """Sets the end of this Ipv6AddressRange.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param end: The end of this Ipv6AddressRange.
+        :type end: str
+        """
+        if end is None:
+            raise ValueError("Invalid value for `end`, must not be `None`")  # noqa: E501
+
+        self._end = end
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation.py
new file mode 100644
index 0000000..d54629b
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.operation_any_of import OperationAnyOf
+from capif_routing_info import util
+
+from capif_routing_info.models.operation_any_of import OperationAnyOf  # noqa: E501
+
+class Operation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Operation - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Operation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation of this Operation.  # noqa: E501
+        :rtype: Operation
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation_any_of.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation_any_of.py
new file mode 100644
index 0000000..d92e495
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/operation_any_of.py
@@ -0,0 +1,45 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class OperationAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    GET = "GET"
+    POST = "POST"
+    PUT = "PUT"
+    PATCH = "PATCH"
+    DELETE = "DELETE"
+    def __init__(self):  # noqa: E501
+        """OperationAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'OperationAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Operation_anyOf of this OperationAnyOf.  # noqa: E501
+        :rtype: OperationAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/problem_details.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/problem_details.py
new file mode 100644
index 0000000..b661b72
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.invalid_param import InvalidParam
+import re
+from capif_routing_info import util
+
+from capif_routing_info.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in table 5.2.2-3. The most significant character representing the highest-numbered features shall appear first in the string, and the character representing features 1 to 4 shall appear last in the string. The list of features and their numbering (starting with 1) are defined separately for each API. If the string contains a lower number of characters than there are defined features for an API, all features that would be represented by characters that are not present in the string are not supported  # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol.py
new file mode 100644
index 0000000..da612ec
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.protocol_any_of import ProtocolAnyOf
+from capif_routing_info import util
+
+from capif_routing_info.models.protocol_any_of import ProtocolAnyOf  # noqa: E501
+
+class Protocol(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Protocol - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Protocol':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol of this Protocol.  # noqa: E501
+        :rtype: Protocol
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol_any_of.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol_any_of.py
new file mode 100644
index 0000000..add5527
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/protocol_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class ProtocolAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    _1_1 = "HTTP_1_1"
+    _2 = "HTTP_2"
+    def __init__(self):  # noqa: E501
+        """ProtocolAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProtocolAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Protocol_anyOf of this ProtocolAnyOf.  # noqa: E501
+        :rtype: ProtocolAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/resource.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/resource.py
new file mode 100644
index 0000000..e4eb5b8
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/resource.py
@@ -0,0 +1,216 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.communication_type import CommunicationType
+from capif_routing_info.models.operation import Operation
+from capif_routing_info import util
+
+from capif_routing_info.models.communication_type import CommunicationType  # noqa: E501
+from capif_routing_info.models.operation import Operation  # noqa: E501
+
+class Resource(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, resource_name=None, comm_type=None, uri=None, cust_op_name=None, operations=None, description=None):  # noqa: E501
+        """Resource - a model defined in OpenAPI
+
+        :param resource_name: The resource_name of this Resource.  # noqa: E501
+        :type resource_name: str
+        :param comm_type: The comm_type of this Resource.  # noqa: E501
+        :type comm_type: CommunicationType
+        :param uri: The uri of this Resource.  # noqa: E501
+        :type uri: str
+        :param cust_op_name: The cust_op_name of this Resource.  # noqa: E501
+        :type cust_op_name: str
+        :param operations: The operations of this Resource.  # noqa: E501
+        :type operations: List[Operation]
+        :param description: The description of this Resource.  # noqa: E501
+        :type description: str
+        """
+        self.openapi_types = {
+            'resource_name': str,
+            'comm_type': CommunicationType,
+            'uri': str,
+            'cust_op_name': str,
+            'operations': List[Operation],
+            'description': str
+        }
+
+        self.attribute_map = {
+            'resource_name': 'resourceName',
+            'comm_type': 'commType',
+            'uri': 'uri',
+            'cust_op_name': 'custOpName',
+            'operations': 'operations',
+            'description': 'description'
+        }
+
+        self._resource_name = resource_name
+        self._comm_type = comm_type
+        self._uri = uri
+        self._cust_op_name = cust_op_name
+        self._operations = operations
+        self._description = description
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Resource':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Resource of this Resource.  # noqa: E501
+        :rtype: Resource
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def resource_name(self):
+        """Gets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :return: The resource_name of this Resource.
+        :rtype: str
+        """
+        return self._resource_name
+
+    @resource_name.setter
+    def resource_name(self, resource_name):
+        """Sets the resource_name of this Resource.
+
+        Resource name  # noqa: E501
+
+        :param resource_name: The resource_name of this Resource.
+        :type resource_name: str
+        """
+        if resource_name is None:
+            raise ValueError("Invalid value for `resource_name`, must not be `None`")  # noqa: E501
+
+        self._resource_name = resource_name
+
+    @property
+    def comm_type(self):
+        """Gets the comm_type of this Resource.
+
+
+        :return: The comm_type of this Resource.
+        :rtype: CommunicationType
+        """
+        return self._comm_type
+
+    @comm_type.setter
+    def comm_type(self, comm_type):
+        """Sets the comm_type of this Resource.
+
+
+        :param comm_type: The comm_type of this Resource.
+        :type comm_type: CommunicationType
+        """
+        if comm_type is None:
+            raise ValueError("Invalid value for `comm_type`, must not be `None`")  # noqa: E501
+
+        self._comm_type = comm_type
+
+    @property
+    def uri(self):
+        """Gets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The uri of this Resource.
+        :rtype: str
+        """
+        return self._uri
+
+    @uri.setter
+    def uri(self, uri):
+        """Sets the uri of this Resource.
+
+        Relative URI of the API resource, it is set as {apiSpecificResourceUriPart} part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param uri: The uri of this Resource.
+        :type uri: str
+        """
+        if uri is None:
+            raise ValueError("Invalid value for `uri`, must not be `None`")  # noqa: E501
+
+        self._uri = uri
+
+    @property
+    def cust_op_name(self):
+        """Gets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :return: The cust_op_name of this Resource.
+        :rtype: str
+        """
+        return self._cust_op_name
+
+    @cust_op_name.setter
+    def cust_op_name(self, cust_op_name):
+        """Sets the cust_op_name of this Resource.
+
+        it is set as {custOpName} part of the URI structure for a custom operation associated with a resource as defined in subclause 4.4 of 3GPP TS 29.501.  # noqa: E501
+
+        :param cust_op_name: The cust_op_name of this Resource.
+        :type cust_op_name: str
+        """
+
+        self._cust_op_name = cust_op_name
+
+    @property
+    def operations(self):
+        """Gets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :return: The operations of this Resource.
+        :rtype: List[Operation]
+        """
+        return self._operations
+
+    @operations.setter
+    def operations(self, operations):
+        """Sets the operations of this Resource.
+
+        Supported HTTP methods for the API resource. Only applicable when the protocol in AefProfile indicates HTTP.  # noqa: E501
+
+        :param operations: The operations of this Resource.
+        :type operations: List[Operation]
+        """
+        if operations is not None and len(operations) < 1:
+            raise ValueError("Invalid value for `operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._operations = operations
+
+    @property
+    def description(self):
+        """Gets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :return: The description of this Resource.
+        :rtype: str
+        """
+        return self._description
+
+    @description.setter
+    def description(self, description):
+        """Sets the description of this Resource.
+
+        Text description of the API resource  # noqa: E501
+
+        :param description: The description of this Resource.
+        :type description: str
+        """
+
+        self._description = description
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_info.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_info.py
new file mode 100644
index 0000000..34b5b73
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_info.py
@@ -0,0 +1,70 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.routing_rule import RoutingRule
+from capif_routing_info import util
+
+from capif_routing_info.models.routing_rule import RoutingRule  # noqa: E501
+
+class RoutingInfo(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, routing_rules=None):  # noqa: E501
+        """RoutingInfo - a model defined in OpenAPI
+
+        :param routing_rules: The routing_rules of this RoutingInfo.  # noqa: E501
+        :type routing_rules: List[RoutingRule]
+        """
+        self.openapi_types = {
+            'routing_rules': List[RoutingRule]
+        }
+
+        self.attribute_map = {
+            'routing_rules': 'routingRules'
+        }
+
+        self._routing_rules = routing_rules
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'RoutingInfo':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The RoutingInfo of this RoutingInfo.  # noqa: E501
+        :rtype: RoutingInfo
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def routing_rules(self):
+        """Gets the routing_rules of this RoutingInfo.
+
+
+        :return: The routing_rules of this RoutingInfo.
+        :rtype: List[RoutingRule]
+        """
+        return self._routing_rules
+
+    @routing_rules.setter
+    def routing_rules(self, routing_rules):
+        """Sets the routing_rules of this RoutingInfo.
+
+
+        :param routing_rules: The routing_rules of this RoutingInfo.
+        :type routing_rules: List[RoutingRule]
+        """
+        if routing_rules is None:
+            raise ValueError("Invalid value for `routing_rules`, must not be `None`")  # noqa: E501
+        if routing_rules is not None and len(routing_rules) < 1:
+            raise ValueError("Invalid value for `routing_rules`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._routing_rules = routing_rules
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_rule.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_rule.py
new file mode 100644
index 0000000..f177670
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/routing_rule.py
@@ -0,0 +1,128 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.aef_profile import AefProfile
+from capif_routing_info.models.ipv4_address_range import Ipv4AddressRange
+from capif_routing_info.models.ipv6_address_range import Ipv6AddressRange
+from capif_routing_info import util
+
+from capif_routing_info.models.aef_profile import AefProfile  # noqa: E501
+from capif_routing_info.models.ipv4_address_range import Ipv4AddressRange  # noqa: E501
+from capif_routing_info.models.ipv6_address_range import Ipv6AddressRange  # noqa: E501
+
+class RoutingRule(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr_ranges=None, ipv6_addr_ranges=None, aef_profile=None):  # noqa: E501
+        """RoutingRule - a model defined in OpenAPI
+
+        :param ipv4_addr_ranges: The ipv4_addr_ranges of this RoutingRule.  # noqa: E501
+        :type ipv4_addr_ranges: List[Ipv4AddressRange]
+        :param ipv6_addr_ranges: The ipv6_addr_ranges of this RoutingRule.  # noqa: E501
+        :type ipv6_addr_ranges: List[Ipv6AddressRange]
+        :param aef_profile: The aef_profile of this RoutingRule.  # noqa: E501
+        :type aef_profile: AefProfile
+        """
+        self.openapi_types = {
+            'ipv4_addr_ranges': List[Ipv4AddressRange],
+            'ipv6_addr_ranges': List[Ipv6AddressRange],
+            'aef_profile': AefProfile
+        }
+
+        self.attribute_map = {
+            'ipv4_addr_ranges': 'ipv4AddrRanges',
+            'ipv6_addr_ranges': 'ipv6AddrRanges',
+            'aef_profile': 'aefProfile'
+        }
+
+        self._ipv4_addr_ranges = ipv4_addr_ranges
+        self._ipv6_addr_ranges = ipv6_addr_ranges
+        self._aef_profile = aef_profile
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'RoutingRule':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The RoutingRule of this RoutingRule.  # noqa: E501
+        :rtype: RoutingRule
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr_ranges(self):
+        """Gets the ipv4_addr_ranges of this RoutingRule.
+
+
+        :return: The ipv4_addr_ranges of this RoutingRule.
+        :rtype: List[Ipv4AddressRange]
+        """
+        return self._ipv4_addr_ranges
+
+    @ipv4_addr_ranges.setter
+    def ipv4_addr_ranges(self, ipv4_addr_ranges):
+        """Sets the ipv4_addr_ranges of this RoutingRule.
+
+
+        :param ipv4_addr_ranges: The ipv4_addr_ranges of this RoutingRule.
+        :type ipv4_addr_ranges: List[Ipv4AddressRange]
+        """
+        if ipv4_addr_ranges is not None and len(ipv4_addr_ranges) < 1:
+            raise ValueError("Invalid value for `ipv4_addr_ranges`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ipv4_addr_ranges = ipv4_addr_ranges
+
+    @property
+    def ipv6_addr_ranges(self):
+        """Gets the ipv6_addr_ranges of this RoutingRule.
+
+
+        :return: The ipv6_addr_ranges of this RoutingRule.
+        :rtype: List[Ipv6AddressRange]
+        """
+        return self._ipv6_addr_ranges
+
+    @ipv6_addr_ranges.setter
+    def ipv6_addr_ranges(self, ipv6_addr_ranges):
+        """Sets the ipv6_addr_ranges of this RoutingRule.
+
+
+        :param ipv6_addr_ranges: The ipv6_addr_ranges of this RoutingRule.
+        :type ipv6_addr_ranges: List[Ipv6AddressRange]
+        """
+        if ipv6_addr_ranges is not None and len(ipv6_addr_ranges) < 1:
+            raise ValueError("Invalid value for `ipv6_addr_ranges`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._ipv6_addr_ranges = ipv6_addr_ranges
+
+    @property
+    def aef_profile(self):
+        """Gets the aef_profile of this RoutingRule.
+
+
+        :return: The aef_profile of this RoutingRule.
+        :rtype: AefProfile
+        """
+        return self._aef_profile
+
+    @aef_profile.setter
+    def aef_profile(self, aef_profile):
+        """Sets the aef_profile of this RoutingRule.
+
+
+        :param aef_profile: The aef_profile of this RoutingRule.
+        :type aef_profile: AefProfile
+        """
+        if aef_profile is None:
+            raise ValueError("Invalid value for `aef_profile`, must not be `None`")  # noqa: E501
+
+        self._aef_profile = aef_profile
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method.py
new file mode 100644
index 0000000..7de2582
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.security_method_any_of import SecurityMethodAnyOf
+from capif_routing_info import util
+
+from capif_routing_info.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method_any_of.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method_any_of.py
new file mode 100644
index 0000000..00fd8e2
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/security_method_any_of.py
@@ -0,0 +1,43 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/version.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/version.py
new file mode 100644
index 0000000..fa60f02
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/models/version.py
@@ -0,0 +1,160 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_routing_info.models.base_model_ import Model
+from capif_routing_info.models.custom_operation import CustomOperation
+from capif_routing_info.models.resource import Resource
+from capif_routing_info import util
+
+from capif_routing_info.models.custom_operation import CustomOperation  # noqa: E501
+from capif_routing_info.models.resource import Resource  # noqa: E501
+
+class Version(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_version=None, expiry=None, resources=None, cust_operations=None):  # noqa: E501
+        """Version - a model defined in OpenAPI
+
+        :param api_version: The api_version of this Version.  # noqa: E501
+        :type api_version: str
+        :param expiry: The expiry of this Version.  # noqa: E501
+        :type expiry: datetime
+        :param resources: The resources of this Version.  # noqa: E501
+        :type resources: List[Resource]
+        :param cust_operations: The cust_operations of this Version.  # noqa: E501
+        :type cust_operations: List[CustomOperation]
+        """
+        self.openapi_types = {
+            'api_version': str,
+            'expiry': datetime,
+            'resources': List[Resource],
+            'cust_operations': List[CustomOperation]
+        }
+
+        self.attribute_map = {
+            'api_version': 'apiVersion',
+            'expiry': 'expiry',
+            'resources': 'resources',
+            'cust_operations': 'custOperations'
+        }
+
+        self._api_version = api_version
+        self._expiry = expiry
+        self._resources = resources
+        self._cust_operations = cust_operations
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Version':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Version of this Version.  # noqa: E501
+        :rtype: Version
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_version(self):
+        """Gets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :return: The api_version of this Version.
+        :rtype: str
+        """
+        return self._api_version
+
+    @api_version.setter
+    def api_version(self, api_version):
+        """Sets the api_version of this Version.
+
+        API major version in URI (e.g. v1)  # noqa: E501
+
+        :param api_version: The api_version of this Version.
+        :type api_version: str
+        """
+        if api_version is None:
+            raise ValueError("Invalid value for `api_version`, must not be `None`")  # noqa: E501
+
+        self._api_version = api_version
+
+    @property
+    def expiry(self):
+        """Gets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :return: The expiry of this Version.
+        :rtype: datetime
+        """
+        return self._expiry
+
+    @expiry.setter
+    def expiry(self, expiry):
+        """Sets the expiry of this Version.
+
+        string with format \"date-time\" as defined in OpenAPI.  # noqa: E501
+
+        :param expiry: The expiry of this Version.
+        :type expiry: datetime
+        """
+
+        self._expiry = expiry
+
+    @property
+    def resources(self):
+        """Gets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :return: The resources of this Version.
+        :rtype: List[Resource]
+        """
+        return self._resources
+
+    @resources.setter
+    def resources(self, resources):
+        """Sets the resources of this Version.
+
+        Resources supported by the API.  # noqa: E501
+
+        :param resources: The resources of this Version.
+        :type resources: List[Resource]
+        """
+        if resources is not None and len(resources) < 1:
+            raise ValueError("Invalid value for `resources`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._resources = resources
+
+    @property
+    def cust_operations(self):
+        """Gets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :return: The cust_operations of this Version.
+        :rtype: List[CustomOperation]
+        """
+        return self._cust_operations
+
+    @cust_operations.setter
+    def cust_operations(self, cust_operations):
+        """Sets the cust_operations of this Version.
+
+        Custom operations without resource association.  # noqa: E501
+
+        :param cust_operations: The cust_operations of this Version.
+        :type cust_operations: List[CustomOperation]
+        """
+        if cust_operations is not None and len(cust_operations) < 1:
+            raise ValueError("Invalid value for `cust_operations`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._cust_operations = cust_operations
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/openapi/openapi.yaml b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/openapi/openapi.yaml
new file mode 100644
index 0000000..53446f2
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/openapi/openapi.yaml
@@ -0,0 +1,972 @@
+openapi: 3.0.0
+info:
+  description: |
+    API for Routing information.
+    © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
+    All rights reserved.
+  title: CAPIF_Routing_Info_API
+  version: 1.1.0-alpha.1
+externalDocs:
+  description: 3GPP TS 29.222 V17.1.0 Common API Framework for 3GPP Northbound APIs
+  url: http://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: '{apiRoot}/capif-routing-info/v1'
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in subclause 7.5 of 3GPP TS 29.222
+paths:
+  /service-apis/{serviceApiId}:
+    get:
+      description: Retrieves the API routing information.
+      operationId: service_apis_service_api_id_get
+      parameters:
+      - description: Identifier of a published service API
+        explode: false
+        in: path
+        name: serviceApiId
+        required: true
+        schema:
+          type: string
+        style: simple
+      - description: Identifier of the AEF
+        explode: true
+        in: query
+        name: aef-id
+        required: true
+        schema:
+          type: string
+        style: form
+      - description: To filter irrelevant responses related to unsupported features
+        explode: true
+        in: query
+        name: supp-feat
+        required: false
+        schema:
+          $ref: '#/components/schemas/SupportedFeatures'
+        style: form
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/RoutingInfo'
+          description: OK.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "414":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: URI Too Long
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller: capif_routing_info.controllers.default_controller
+components:
+  schemas:
+    RoutingInfo:
+      description: Represents an API routing information.
+      example:
+        routingRules:
+        - ipv6AddrRanges:
+          - start: start
+            end: end
+          - start: start
+            end: end
+          aefProfile:
+            securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          ipv4AddrRanges:
+          - start: 198.51.100.1
+            end: 198.51.100.1
+          - start: 198.51.100.1
+            end: 198.51.100.1
+        - ipv6AddrRanges:
+          - start: start
+            end: end
+          - start: start
+            end: end
+          aefProfile:
+            securityMethods:
+            - null
+            - null
+            versions:
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            - apiVersion: apiVersion
+              resources:
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              - operations:
+                - null
+                - null
+                description: description
+                resourceName: resourceName
+                custOpName: custOpName
+                uri: uri
+              custOperations:
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              - operations:
+                - null
+                - null
+                description: description
+                custOpName: custOpName
+              expiry: 2000-01-23T04:56:07.000+00:00
+            domainName: domainName
+            aefId: aefId
+            interfaceDescriptions:
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+            - ipv6Addr: ipv6Addr
+              securityMethods:
+              - null
+              - null
+              port: 5248
+              ipv4Addr: ipv4Addr
+          ipv4AddrRanges:
+          - start: 198.51.100.1
+            end: 198.51.100.1
+          - start: 198.51.100.1
+            end: 198.51.100.1
+      properties:
+        routingRules:
+          items:
+            $ref: '#/components/schemas/RoutingRule'
+          minItems: 1
+          title: routingRules
+          type: array
+      required:
+      - routingRules
+      title: RoutingInfo
+      type: object
+    RoutingRule:
+      description: Represents an API routing rule.
+      example:
+        ipv6AddrRanges:
+        - start: start
+          end: end
+        - start: start
+          end: end
+        aefProfile:
+          securityMethods:
+          - null
+          - null
+          versions:
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          - apiVersion: apiVersion
+            resources:
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            - operations:
+              - null
+              - null
+              description: description
+              resourceName: resourceName
+              custOpName: custOpName
+              uri: uri
+            custOperations:
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            - operations:
+              - null
+              - null
+              description: description
+              custOpName: custOpName
+            expiry: 2000-01-23T04:56:07.000+00:00
+          domainName: domainName
+          aefId: aefId
+          interfaceDescriptions:
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          - ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+        ipv4AddrRanges:
+        - start: 198.51.100.1
+          end: 198.51.100.1
+        - start: 198.51.100.1
+          end: 198.51.100.1
+      properties:
+        ipv4AddrRanges:
+          items:
+            $ref: '#/components/schemas/Ipv4AddressRange'
+          minItems: 1
+          title: ipv4AddrRanges
+          type: array
+        ipv6AddrRanges:
+          items:
+            $ref: '#/components/schemas/Ipv6AddressRange'
+          minItems: 1
+          title: ipv6AddrRanges
+          type: array
+        aefProfile:
+          $ref: '#/components/schemas/AefProfile'
+      required:
+      - aefProfile
+      title: RoutingRule
+      type: object
+    Ipv6AddressRange:
+      description: Represents IPv6 address range.
+      example:
+        start: start
+        end: end
+      properties:
+        start:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        end:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+      required:
+      - end
+      - start
+      title: Ipv6AddressRange
+      type: object
+    SupportedFeatures:
+      description: A string used to indicate the features supported by an API that
+        is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall contain
+        a bitmask indicating supported features in hexadecimal representation Each
+        character in the string shall take a value of "0" to "9", "a" to "f" or "A"
+        to "F" and shall represent the support of 4 features as described in table 5.2.2-3.
+        The most significant character representing the highest-numbered features
+        shall appear first in the string, and the character representing features
+        1 to 4 shall appear last in the string. The list of features and their numbering
+        (starting with 1) are defined separately for each API. If the string contains
+        a lower number of characters than there are defined features for an API, all
+        features that would be represented by characters that are not present in the
+        string are not supported
+      pattern: ^[A-Fa-f0-9]*$
+      title: supportedFeatures
+      type: string
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        title:
+          description: A short, human-readable summary of the problem type. It should
+            not change from occurrence to occurrence of the problem.
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        cause:
+          description: A machine-readable application error cause specific to this
+            occurrence of the problem. This IE should be present and provide application-related
+            error information, if available.
+          title: cause
+          type: string
+        invalidParams:
+          description: Description of invalid parameters, for a request rejected due
+            to invalid parameters.
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: A string used to indicate the features supported by an API
+            that is used as defined in clause 6.6 in 3GPP TS 29.500. The string shall
+            contain a bitmask indicating supported features in hexadecimal representation
+            Each character in the string shall take a value of "0" to "9", "a" to
+            "f" or "A" to "F" and shall represent the support of 4 features as described
+            in table 5.2.2-3. The most significant character representing the highest-numbered
+            features shall appear first in the string, and the character representing
+            features 1 to 4 shall appear last in the string. The list of features
+            and their numbering (starting with 1) are defined separately for each
+            API. If the string contains a lower number of characters than there are
+            defined features for an API, all features that would be represented by
+            characters that are not present in the string are not supported
+          pattern: ^[A-Fa-f0-9]*$
+          title: supportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: type
+      type: string
+    InvalidParam:
+      description: Represents the description of invalid parameters, for a request
+        rejected due to invalid parameters.
+      properties:
+        param:
+          description: Attribute's name encoded as a JSON Pointer, or header's name.
+          title: param
+          type: string
+        reason:
+          description: A human-readable reason, e.g. "must be a positive integer".
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    Ipv4AddressRange:
+      description: Range of IPv4 addresses
+      example:
+        start: 198.51.100.1
+        end: 198.51.100.1
+      properties:
+        start:
+          description: String identifying a IPv4 address formatted in the "dotted
+            decimal" notation as defined in RFC 1166.
+          example: 198.51.100.1
+          pattern: ^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$
+          title: Ipv4Addr
+          type: string
+        end:
+          description: String identifying a IPv4 address formatted in the "dotted
+            decimal" notation as defined in RFC 1166.
+          example: 198.51.100.1
+          pattern: ^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$
+          title: Ipv4Addr
+          type: string
+      title: Ipv4AddressRange
+      type: object
+    AefProfile:
+      description: Represents the AEF profile data.
+      example:
+        securityMethods:
+        - null
+        - null
+        versions:
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        - apiVersion: apiVersion
+          resources:
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          - operations:
+            - null
+            - null
+            description: description
+            resourceName: resourceName
+            custOpName: custOpName
+            uri: uri
+          custOperations:
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          - operations:
+            - null
+            - null
+            description: description
+            custOpName: custOpName
+          expiry: 2000-01-23T04:56:07.000+00:00
+        domainName: domainName
+        aefId: aefId
+        interfaceDescriptions:
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        - ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - domainName
+      - required:
+        - interfaceDescriptions
+      properties:
+        aefId:
+          description: Identifier of the API exposing function
+          title: aefId
+          type: string
+        versions:
+          description: API version
+          items:
+            $ref: '#/components/schemas/Version'
+          minItems: 1
+          title: versions
+          type: array
+        protocol:
+          $ref: '#/components/schemas/Protocol'
+        dataFormat:
+          $ref: '#/components/schemas/DataFormat'
+        securityMethods:
+          description: Security methods supported by the AEF
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+        domainName:
+          description: Domain to which API belongs to
+          title: domainName
+          type: string
+        interfaceDescriptions:
+          description: Interface details
+          items:
+            $ref: '#/components/schemas/InterfaceDescription'
+          minItems: 1
+          title: interfaceDescriptions
+          type: array
+      required:
+      - aefId
+      - versions
+      title: AefProfile
+      type: object
+    Version:
+      description: Represents the API version information.
+      example:
+        apiVersion: apiVersion
+        resources:
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        - operations:
+          - null
+          - null
+          description: description
+          resourceName: resourceName
+          custOpName: custOpName
+          uri: uri
+        custOperations:
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        - operations:
+          - null
+          - null
+          description: description
+          custOpName: custOpName
+        expiry: 2000-01-23T04:56:07.000+00:00
+      properties:
+        apiVersion:
+          description: API major version in URI (e.g. v1)
+          title: apiVersion
+          type: string
+        expiry:
+          description: string with format "date-time" as defined in OpenAPI.
+          format: date-time
+          title: DateTime
+          type: string
+        resources:
+          description: Resources supported by the API.
+          items:
+            $ref: '#/components/schemas/Resource'
+          minItems: 1
+          title: resources
+          type: array
+        custOperations:
+          description: Custom operations without resource association.
+          items:
+            $ref: '#/components/schemas/CustomOperation'
+          minItems: 1
+          title: custOperations
+          type: array
+      required:
+      - apiVersion
+      title: Version
+      type: object
+    Resource:
+      description: Represents the API resource data.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        resourceName: resourceName
+        custOpName: custOpName
+        uri: uri
+      properties:
+        resourceName:
+          description: Resource name
+          title: resourceName
+          type: string
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        uri:
+          description: Relative URI of the API resource, it is set as {apiSpecificResourceUriPart}
+            part of the URI structure as defined in subclause 4.4 of 3GPP TS 29.501.
+          title: uri
+          type: string
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation associated with a resource as defined in subclause 4.4 of 3GPP
+            TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the API resource
+          title: description
+          type: string
+      required:
+      - commType
+      - resourceName
+      - uri
+      title: Resource
+      type: object
+    CommunicationType:
+      anyOf:
+      - $ref: '#/components/schemas/CommunicationType_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - REQUEST_RESPONSE: The communication is of the type request-response - SUBSCRIBE_NOTIFY: The communication is of the type subscribe-notify
+      title: CommunicationType
+    Operation:
+      anyOf:
+      - $ref: '#/components/schemas/Operation_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - GET: HTTP GET method - POST: HTTP POST method - PUT: HTTP PUT method - PATCH: HTTP PATCH method - DELETE: HTTP DELETE method
+      title: Operation
+    CustomOperation:
+      description: Represents the description of a custom operation.
+      example:
+        operations:
+        - null
+        - null
+        description: description
+        custOpName: custOpName
+      properties:
+        commType:
+          $ref: '#/components/schemas/CommunicationType'
+        custOpName:
+          description: it is set as {custOpName} part of the URI structure for a custom
+            operation without resource association as defined in subclause 4.4 of
+            3GPP TS 29.501.
+          title: custOpName
+          type: string
+        operations:
+          description: Supported HTTP methods for the API resource. Only applicable
+            when the protocol in AefProfile indicates HTTP.
+          items:
+            $ref: '#/components/schemas/Operation'
+          minItems: 1
+          title: operations
+          type: array
+        description:
+          description: Text description of the custom operation
+          title: description
+          type: string
+      required:
+      - commType
+      - custOpName
+      title: CustomOperation
+      type: object
+    Protocol:
+      anyOf:
+      - $ref: '#/components/schemas/Protocol_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - HTTP_1_1: HTTP version 1.1 - HTTP_2: HTTP version 2
+      title: Protocol
+    DataFormat:
+      anyOf:
+      - $ref: '#/components/schemas/DataFormat_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - JSON: JavaScript Object Notation
+      title: DataFormat
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: |
+        Possible values are - PSK: Security method 1 (Using TLS-PSK) as described in 3GPP TS 33.122 - PKI: Security method 2 (Using PKI) as described in 3GPP TS 33.122 - OAUTH: Security method 3 (TLS with OAuth token) as described in 3GPP TS 33.122
+      title: SecurityMethod
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 5248
+        ipv4Addr: ipv4Addr
+      oneOf:
+      - required:
+        - ipv4Addr
+      - required:
+        - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr_1
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: Security methods supported by the interface, it take precedence
+            over the security methods provided in AefProfile, for this specific interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Ipv4Addr:
+      description: String identifying a IPv4 address formatted in the "dotted decimal"
+        notation as defined in RFC 1166.
+      example: 198.51.100.1
+      pattern: ^(([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])$
+      title: Ipv4Addr
+      type: string
+    DateTime:
+      description: string with format "date-time" as defined in OpenAPI.
+      format: date-time
+      title: DateTime
+      type: string
+    Ipv4Addr_1:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr_1
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    CommunicationType_anyOf:
+      enum:
+      - REQUEST_RESPONSE
+      - SUBSCRIBE_NOTIFY
+      title: CommunicationType_anyOf
+      type: string
+    Operation_anyOf:
+      enum:
+      - GET
+      - POST
+      - PUT
+      - PATCH
+      - DELETE
+      title: Operation_anyOf
+      type: string
+    Protocol_anyOf:
+      enum:
+      - HTTP_1_1
+      - HTTP_2
+      title: Protocol_anyOf
+      type: string
+    DataFormat_anyOf:
+      enum:
+      - JSON
+      title: DataFormat_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/__init__.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/__init__.py
new file mode 100644
index 0000000..e95f59c
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/__init__.py
@@ -0,0 +1,16 @@
+import logging
+
+import connexion
+from flask_testing import TestCase
+
+from capif_routing_info.encoder import JSONEncoder
+
+
+class BaseTestCase(TestCase):
+
+    def create_app(self):
+        logging.getLogger('connexion.operation').setLevel('ERROR')
+        app = connexion.App(__name__, specification_dir='../openapi/')
+        app.app.json_encoder = JSONEncoder
+        app.add_api('openapi.yaml', pythonic_params=True)
+        return app.app
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/test_default_controller.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/test_default_controller.py
new file mode 100644
index 0000000..e602d5d
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/test/test_default_controller.py
@@ -0,0 +1,37 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+import unittest
+
+from flask import json
+from six import BytesIO
+
+from capif_routing_info.models.problem_details import ProblemDetails  # noqa: E501
+from capif_routing_info.models.routing_info import RoutingInfo  # noqa: E501
+from capif_routing_info.test import BaseTestCase
+
+
+class TestDefaultController(BaseTestCase):
+    """DefaultController integration test stubs"""
+
+    def test_service_apis_service_api_id_get(self):
+        """Test case for service_apis_service_api_id_get
+
+        
+        """
+        query_string = [('aef-id', 'aef_id_example'),
+                        ('supp-feat', 'supp_feat_example')]
+        headers = { 
+            'Accept': 'application/json',
+        }
+        response = self.client.open(
+            '/capif-routing-info/v1/service-apis/{service_api_id}'.format(service_api_id='service_api_id_example'),
+            method='GET',
+            headers=headers,
+            query_string=query_string)
+        self.assert200(response,
+                       'Response body is : ' + response.data.decode('utf-8'))
+
+
+if __name__ == '__main__':
+    unittest.main()
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/typing_utils.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/util.py b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/util.py
new file mode 100644
index 0000000..2270765
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/capif_routing_info/util.py
@@ -0,0 +1,148 @@
+import datetime
+
+import six
+import typing
+from capif_routing_info import typing_utils
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Routing_Info_API/git_push.sh b/services/TS29222_CAPIF_Routing_Info_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Routing_Info_API/requirements.txt b/services/TS29222_CAPIF_Routing_Info_API/requirements.txt
new file mode 100644
index 0000000..1be0346
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/requirements.txt
@@ -0,0 +1,5 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
diff --git a/services/TS29222_CAPIF_Routing_Info_API/setup.py b/services/TS29222_CAPIF_Routing_Info_API/setup.py
new file mode 100644
index 0000000..58c68e2
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "capif_routing_info"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Routing_Info_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Routing_Info_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['capif_routing_info=capif_routing_info.__main__:main']},
+    long_description="""\
+    API for Routing information. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Routing_Info_API/test-requirements.txt b/services/TS29222_CAPIF_Routing_Info_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Routing_Info_API/tox.ini b/services/TS29222_CAPIF_Routing_Info_API/tox.ini
new file mode 100644
index 0000000..6e0e6e7
--- /dev/null
+++ b/services/TS29222_CAPIF_Routing_Info_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=capif_routing_info
diff --git a/services/TS29222_CAPIF_Security_API/.dockerignore b/services/TS29222_CAPIF_Security_API/.dockerignore
new file mode 100644
index 0000000..f961960
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/.dockerignore
@@ -0,0 +1,72 @@
+.travis.yaml
+.openapi-generator-ignore
+README.md
+tox.ini
+git_push.sh
+test-requirements.txt
+setup.py
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.python-version
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Security_API/.gitignore b/services/TS29222_CAPIF_Security_API/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/TS29222_CAPIF_Security_API/.openapi-generator-ignore b/services/TS29222_CAPIF_Security_API/.openapi-generator-ignore
new file mode 100644
index 0000000..7484ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/.openapi-generator-ignore
@@ -0,0 +1,23 @@
+# OpenAPI Generator Ignore
+# Generated by openapi-generator https://github.com/openapitools/openapi-generator
+
+# Use this file to prevent files from being overwritten by the generator.
+# The patterns follow closely to .gitignore or .dockerignore.
+
+# As an example, the C# client generator defines ApiClient.cs.
+# You can make changes and tell OpenAPI Generator to ignore just this file by uncommenting the following line:
+#ApiClient.cs
+
+# You can match any string of characters against a directory, file or extension with a single asterisk (*):
+#foo/*/qux
+# The above matches foo/bar/qux and foo/baz/qux, but not foo/bar/baz/qux
+
+# You can recursively match patterns against a directory, file or extension with a double asterisk (**):
+#foo/**/qux
+# This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+
+# You can also negate patterns with an exclamation (!).
+# For example, you can ignore all files in a docs folder with the file extension .md:
+#docs/*.md
+# Then explicitly reverse the ignore rule for a single file:
+#!docs/README.md
diff --git a/services/TS29222_CAPIF_Security_API/.openapi-generator/FILES b/services/TS29222_CAPIF_Security_API/.openapi-generator/FILES
new file mode 100644
index 0000000..80c09cf
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/.openapi-generator/FILES
@@ -0,0 +1,36 @@
+.dockerignore
+.gitignore
+.travis.yml
+Dockerfile
+README.md
+capif_security/__init__.py
+capif_security/__main__.py
+capif_security/controllers/__init__.py
+capif_security/controllers/default_controller.py
+capif_security/controllers/security_controller_.py
+capif_security/encoder.py
+capif_security/models/__init__.py
+capif_security/models/access_token_claims.py
+capif_security/models/access_token_err.py
+capif_security/models/access_token_rsp.py
+capif_security/models/base_model_.py
+capif_security/models/cause.py
+capif_security/models/cause_any_of.py
+capif_security/models/interface_description.py
+capif_security/models/invalid_param.py
+capif_security/models/problem_details.py
+capif_security/models/security_information.py
+capif_security/models/security_method.py
+capif_security/models/security_method_any_of.py
+capif_security/models/security_notification.py
+capif_security/models/service_security.py
+capif_security/models/websock_notif_config.py
+capif_security/openapi/openapi.yaml
+capif_security/test/__init__.py
+capif_security/typing_utils.py
+capif_security/util.py
+git_push.sh
+requirements.txt
+setup.py
+test-requirements.txt
+tox.ini
diff --git a/services/TS29222_CAPIF_Security_API/.openapi-generator/VERSION b/services/TS29222_CAPIF_Security_API/.openapi-generator/VERSION
new file mode 100644
index 0000000..4b448de
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/.openapi-generator/VERSION
@@ -0,0 +1 @@
+5.3.0-SNAPSHOT
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/.travis.yml b/services/TS29222_CAPIF_Security_API/.travis.yml
new file mode 100644
index 0000000..ad71ee5
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/.travis.yml
@@ -0,0 +1,14 @@
+# ref: https://docs.travis-ci.com/user/languages/python
+language: python
+python:
+  - "3.2"
+  - "3.3"
+  - "3.4"
+  - "3.5"
+  - "3.6"
+  - "3.7"
+  - "3.8"
+# command to install dependencies
+install: "pip install -r requirements.txt"
+# command to run tests
+script: nosetests
diff --git a/services/TS29222_CAPIF_Security_API/Dockerfile b/services/TS29222_CAPIF_Security_API/Dockerfile
new file mode 100644
index 0000000..9566c75
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/Dockerfile
@@ -0,0 +1,18 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN apk add redis
+RUN apk add jq
+RUN apk add curl
+RUN pip3 install --no-cache-dir -r requirements.txt
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+CMD ["sh", "security_prepare.sh"]
diff --git a/services/TS29222_CAPIF_Security_API/README.md b/services/TS29222_CAPIF_Security_API/README.md
new file mode 100644
index 0000000..66df109
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/README.md
@@ -0,0 +1,49 @@
+# OpenAPI generated server
+
+## Overview
+This server was generated by the [OpenAPI Generator](https://openapi-generator.tech) project. By using the
+[OpenAPI-Spec](https://openapis.org) from a remote server, you can easily generate a server stub.  This
+is an example of building a OpenAPI-enabled Flask server.
+
+This example uses the [Connexion](https://github.com/zalando/connexion) library on top of Flask.
+
+## Requirements
+Python 3.5.2+
+
+## Usage
+To run the server, please execute the following from the root directory:
+
+```
+pip3 install -r requirements.txt
+python3 -m capif_security
+```
+
+and open your browser to here:
+
+```
+http://localhost:8080/capif-security/v1/ui/
+```
+
+Your OpenAPI definition lives here:
+
+```
+http://localhost:8080/capif-security/v1/openapi.json
+```
+
+To launch the integration tests, use tox:
+```
+sudo pip install tox
+tox
+```
+
+## Running with Docker
+
+To run the server on a Docker container, please execute the following from the root directory:
+
+```bash
+# building the image
+docker build -t capif_security .
+
+# starting up a container
+docker run -p 8080:8080 capif_security
+```
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/__init__.py b/services/TS29222_CAPIF_Security_API/capif_security/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/__main__.py b/services/TS29222_CAPIF_Security_API/capif_security/__main__.py
new file mode 100644
index 0000000..98d3964
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/__main__.py
@@ -0,0 +1,148 @@
+#!/usr/bin/env python3
+
+import connexion
+import logging
+from capif_security import encoder
+from flask_jwt_extended import JWTManager
+from .config import Config
+from .core.consumer_messager import Subscriber
+from threading import Thread
+from flask_executor import Executor
+from logging.handlers import RotatingFileHandler
+import sys
+import os
+from fluent import sender
+from flask_executor import Executor
+from opentelemetry.instrumentation.flask import FlaskInstrumentor
+from opentelemetry import trace
+from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+from opentelemetry.sdk.resources import Resource
+from opentelemetry.sdk.trace import TracerProvider
+from opentelemetry.sdk.trace.export import BatchSpanProcessor
+from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+
+
+NAME = "Security-Service"
+
+def configure_monitoring(app, config):
+
+    resource = Resource(attributes={"service.name": NAME})
+
+    fluent_bit_host = config['monitoring']['fluent_bit_host']
+    fluent_bit_port = config['monitoring']['fluent_bit_port']
+    fluent_bit_sender = sender.FluentSender('Security-Service', host=fluent_bit_host, port=fluent_bit_port)
+    propagator = TraceContextTextMapPropagator()
+
+    tracer_provider = TracerProvider(resource=resource)
+    trace.set_tracer_provider(tracer_provider)
+    exporter = OTLPSpanExporter(endpoint=f"http://{config['monitoring']['opentelemetry_url']}:{config['monitoring']['opentelemetry_port']}", insecure=True)
+    span_processor = BatchSpanProcessor(
+        exporter,
+        max_queue_size=config['monitoring']['opentelemetry_max_queue_size'],
+        schedule_delay_millis=config['monitoring']['opentelemetry_schedule_delay_millis'],
+        max_export_batch_size=config['monitoring']['opentelemetry_max_export_batch_size'],
+        export_timeout_millis=config['monitoring']['opentelemetry_export_timeout_millis'],
+    )
+
+    trace.get_tracer_provider().add_span_processor(span_processor)
+
+    FlaskInstrumentor().instrument_app(app)
+
+    RedisInstrumentor().instrument()
+
+    class FluentBitHandler(logging.Handler):
+
+        def __init__(self):
+            logging.Handler.__init__(self)
+
+        def emit(self, record):
+            log_entry = self.format(record)
+            log_data = {
+                'message': log_entry,
+                'level': record.levelname,
+                'timestamp': record.created,
+                'logger': record.name,
+                'function': record.funcName,
+                'line': record.lineno,
+                'container_name': os.environ.get('CONTAINER_NAME', ''),
+            }
+
+            # # Obtener el trace ID actual
+            current_context = trace.get_current_span().get_span_context()
+
+            trace_id = current_context.trace_id
+            traceparent_id = current_context.span_id
+            log_data['traceID'] = hex(trace_id)[2:]
+            if traceparent_id != None:
+                log_data['traceparent'] = hex(traceparent_id)[2:]
+            fluent_bit_sender.emit('Security-Service', log_data)
+
+    loggers = [app.logger, ]
+    for l in loggers:
+         l.addHandler(FluentBitHandler())
+
+
+def configure_logging(app):
+    del app.logger.handlers[:]
+    loggers = [app.logger, ]
+    handlers = []
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.DEBUG)
+    console_handler.setFormatter(verbose_formatter())
+    file_handler = RotatingFileHandler(filename="security_logs.log", maxBytes=1024 * 1024 * 100, backupCount=20)
+    file_handler.setLevel(logging.DEBUG)
+    file_handler.setFormatter(verbose_formatter())
+    handlers.append(console_handler)
+    handlers.append(file_handler)
+
+    for l in loggers:
+        for handler in handlers:
+            l.addHandler(handler)
+        l.propagate = False
+        l.setLevel(logging.DEBUG)
+
+
+def verbose_formatter():
+    return logging.Formatter(
+        '{"timestamp": "%(asctime)s", "level": "%(levelname)s", "logger": "%(name)s", "function": "%(funcName)s", "line": %(lineno)d, "message": %(message)s}',
+        datefmt='%d/%m/%Y %H:%M:%S'
+    )
+
+def main():
+
+    with open("/usr/src/app/capif_security/server.key", "rb") as key_file:
+            key_data = key_file.read()
+
+    app = connexion.App(__name__, specification_dir='./openapi/')
+    app.app.json_encoder = encoder.JSONEncoder
+
+
+    app.app.config['JWT_ALGORITHM'] = 'RS256'
+    app.app.config['JWT_PRIVATE_KEY'] = key_data
+    app.add_api('openapi.yaml',
+                arguments={'title': 'CAPIF_Security_API'},
+                pythonic_params=True)
+
+    JWTManager(app.app)
+    subscriber = Subscriber()
+
+    config = Config()
+    configure_logging(app.app)
+
+    if eval(os.environ.get("MONITORING").lower().capitalize()):
+        configure_monitoring(app.app, config.get_config())
+
+    executor = Executor(app.app)
+
+    @app.app.before_first_request
+    def up_listener():
+        executor.submit(subscriber.listen)
+
+
+    app.run(port=8080, debug=True)
+
+if __name__ == '__main__':
+    main()
+
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/config.py b/services/TS29222_CAPIF_Security_API/capif_security/config.py
new file mode 100644
index 0000000..11e1c4f
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/config.py
@@ -0,0 +1,21 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
+
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/controllers/__init__.py b/services/TS29222_CAPIF_Security_API/capif_security/controllers/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/controllers/default_controller.py b/services/TS29222_CAPIF_Security_API/capif_security/controllers/default_controller.py
new file mode 100644
index 0000000..aee7098
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/controllers/default_controller.py
@@ -0,0 +1,191 @@
+import connexion
+import six
+
+from capif_security.models.access_token_err import AccessTokenErr  # noqa: E501
+from capif_security.models.access_token_rsp import AccessTokenRsp  # noqa: E501
+from capif_security.models.access_token_req import AccessTokenReq  # noqa: E501
+from capif_security.models.security_notification import SecurityNotification  # noqa: E501
+from capif_security.models.service_security import ServiceSecurity  # noqa: E501
+from capif_security import util
+from ..core.servicesecurity import SecurityOperations
+from ..core.consumer_messager import Subscriber
+from ..core.publisher import Publisher
+import json
+from flask import Response, request, current_app
+from flask_jwt_extended import jwt_required, get_jwt_identity
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+import sys
+from cryptography import x509
+from cryptography.hazmat.backends import default_backend
+from ..core.validate_user import ControlAccess
+from functools import wraps
+import pymongo
+
+service_security_ops = SecurityOperations()
+publish_ops = Publisher()
+
+valid_user = ControlAccess()
+
+def cert_validation():
+    def _cert_validation(f):
+        @wraps(f)
+        def __cert_validation(*args, **kwargs):
+
+            args = request.view_args
+            cert_tmp = request.headers['X-Ssl-Client-Cert']
+            cert_raw = cert_tmp.replace('\t', '')
+
+            cert = x509.load_pem_x509_certificate(str.encode(cert_raw), default_backend())
+
+            cn = cert.subject.get_attributes_for_oid(x509.OID_COMMON_NAME)[0].value.strip()
+            current_app.logger.info(f"CN: {cn}")
+            if cn != "superadmin" and "AEF" not in cn :
+                cert_signature = cert.signature.hex()
+
+                if "securityId" in args:
+                    result = valid_user.validate_user_cert(args["securityId"], cert_signature)
+                else:
+                    result = valid_user.validate_user_cert(args["apiInvokerId"], cert_signature)
+
+                if result is not None:
+                    return result
+
+            result = f(**kwargs)
+            return result
+        return __cert_validation
+    return _cert_validation
+
+@cert_validation()
+def securities_security_id_token_post(security_id, body):  # noqa: E501
+    """securities_security_id_token_post
+
+     # noqa: E501
+
+    :param security_id: Identifier of an individual API invoker
+    :type security_id: str
+    :param grant_type:
+    :type grant_type: str
+    :param client_id:
+    :type client_id: str
+    :param client_secret:
+    :type client_secret: str
+    :param scope:
+    :type scope: str
+
+    :rtype: AccessTokenRsp
+    """
+
+    current_app.logger.info("Creating security token")
+    if connexion.request.is_json:
+        body = AccessTokenReq.from_dict(connexion.request.get_json())  # noqa: E501
+    res = service_security_ops.return_token(security_id, body)
+
+
+    return res
+
+@cert_validation()
+def trusted_invokers_api_invoker_id_delete(api_invoker_id):  # noqa: E501
+    """trusted_invokers_api_invoker_id_delete
+
+     # noqa: E501
+
+    :param api_invoker_id: Identifier of an individual API invoker
+    :type api_invoker_id: str
+
+    :rtype: None
+    """
+    current_app.logger.info("Removing security context")
+    return service_security_ops.delete_servicesecurity(api_invoker_id)
+
+@cert_validation()
+def trusted_invokers_api_invoker_id_delete_post(api_invoker_id, body):  # noqa: E501
+    """trusted_invokers_api_invoker_id_delete_post
+
+     # noqa: E501
+
+    :param api_invoker_id: Identifier of an individual API invoker
+    :type api_invoker_id: str
+    :param security_notification: Revoke the authorization of the API invoker for APIs.
+    :type security_notification: dict | bytes
+
+    :rtype: None
+    """
+
+    if connexion.request.is_json:
+        body = SecurityNotification.from_dict(connexion.request.get_json())  # noqa: E501
+
+    current_app.logger.info("Revoking permissions")
+    res = service_security_ops.revoke_api_authorization(api_invoker_id, body)
+    if res.status_code == 204:
+        current_app.logger.info("Permissions revoked")
+        publish_ops.publish_message("events", "API_INVOKER_AUTHORIZATION_REVOKED")
+
+    return res
+
+@cert_validation()
+def trusted_invokers_api_invoker_id_get(api_invoker_id, authentication_info=False, authorization_info=False):  # noqa: E501
+    """trusted_invokers_api_invoker_id_get
+
+     # noqa: E501
+
+    :param api_invoker_id: Identifier of an individual API invoker
+    :type api_invoker_id: str
+    :param authentication_info: When set to &#39;true&#39;, it indicates the CAPIF core function to send the authentication information of the API invoker. Set to false or omitted otherwise.
+    :type authentication_info: bool
+    :param authorization_info: When set to &#39;true&#39;, it indicates the CAPIF core function to send the authorization information of the API invoker. Set to false or omitted otherwise.
+    :type authorization_info: bool
+
+    :rtype: Union[ServiceSecurity, Tuple[ServiceSecurity, int], Tuple[ServiceSecurity, int, Dict[str, str]]
+    """
+
+    current_app.logger.info("Obtaining security context")
+    res = service_security_ops.get_servicesecurity(api_invoker_id, authentication_info, authorization_info)
+
+    return res
+
+@cert_validation()
+def trusted_invokers_api_invoker_id_put(api_invoker_id, body):  # noqa: E501
+    """trusted_invokers_api_invoker_id_put
+
+     # noqa: E501
+
+    :param api_invoker_id: Identifier of an individual API invoker
+    :type api_invoker_id: str
+    :param service_security: create a security context for an API invoker
+    :type service_security: dict | bytes
+
+    :rtype: Union[ServiceSecurity, Tuple[ServiceSecurity, int], Tuple[ServiceSecurity, int, Dict[str, str]]
+    """
+    current_app.logger.info("Creating security context")
+
+    if connexion.request.is_json:
+        body = ServiceSecurity.from_dict(connexion.request.get_json())  # noqa: E501
+    res = service_security_ops.create_servicesecurity(api_invoker_id, body)
+
+    if res.status_code == 201:
+        for service_instance in body.security_info:
+            if service_instance.api_id is not None:
+                publish_ops.publish_message("internal-messages", "security-context-created:"+api_invoker_id+":"+service_instance.api_id )
+
+    return res
+
+@cert_validation()
+def trusted_invokers_api_invoker_id_update_post(api_invoker_id, body):  # noqa: E501
+    """trusted_invokers_api_invoker_id_update_post
+
+     # noqa: E501
+
+    :param api_invoker_id: Identifier of an individual API invoker
+    :type api_invoker_id: str
+    :param service_security: Update the security context (e.g. re-negotiate the security methods).
+    :type service_security: dict | bytes
+
+    :rtype: ServiceSecurity
+    """
+    current_app.logger.info("Updating security context")
+
+    if connexion.request.is_json:
+        body = ServiceSecurity.from_dict(connexion.request.get_json())  # noqa: E501
+    res = service_security_ops.update_servicesecurity(api_invoker_id, body)
+    return res
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/controllers/security_controller_.py b/services/TS29222_CAPIF_Security_API/capif_security/controllers/security_controller_.py
new file mode 100644
index 0000000..6d294ff
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/controllers/security_controller_.py
@@ -0,0 +1,2 @@
+from typing import List
+
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/consumer_messager.py b/services/TS29222_CAPIF_Security_API/capif_security/core/consumer_messager.py
new file mode 100644
index 0000000..fd9c328
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/consumer_messager.py
@@ -0,0 +1,32 @@
+# subscriber.py
+import redis
+import time
+import sys
+import json
+import asyncio
+from threading import Thread
+from .internal_security_ops import InternalSecurityOps
+from flask import current_app
+
+class Subscriber():
+
+    def __init__(self):
+        self.r = redis.Redis(host='redis', port=6379, db=0)
+        self.security_ops = InternalSecurityOps()
+        self.p = self.r.pubsub()
+        self.p.subscribe("internal-messages", "acls-messages")
+
+    def listen(self):
+        current_app.logger.info("Listening security context messages")
+        for raw_message in self.p.listen():
+            if raw_message["type"] == "message" and raw_message["channel"].decode('utf-8') == "internal-messages":
+                message, *ids = raw_message["data"].decode('utf-8').split(":")
+                if message == "invoker-removed" and len(ids)>0:
+                    self.security_ops.delete_intern_servicesecurity(ids[0])
+                if message == "provider-removed" or message == "service-removed" and len(ids) > 0:
+                    self.security_ops.update_intern_servicesecurity(ids[0])
+                
+
+
+
+
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/internal_security_ops.py b/services/TS29222_CAPIF_Security_API/capif_security/core/internal_security_ops.py
new file mode 100644
index 0000000..d5cbd96
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/internal_security_ops.py
@@ -0,0 +1,22 @@
+
+from flask import current_app
+from .resources import Resource
+
+class InternalSecurityOps(Resource):
+
+    def delete_intern_servicesecurity(self, api_invoker_id):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+        my_query = {'api_invoker_id': api_invoker_id}
+        mycol.delete_many(my_query)
+
+    def update_intern_servicesecurity(self, id):
+
+        security_col = self.db.get_col_by_name(self.db.security_info)
+
+        security_contexts = security_col.find({"$or":[{"security_info.aef_id":id}, {"security_info.api_id":id}]})
+
+        for security_context in security_contexts:
+            new_security_info = [info for info  in security_context["security_info"] if info["aef_id"]!=id and info["api_id"] != id]
+            security_context["security_info"] = new_security_info
+            security_col.update_one({'api_invoker_id':security_context["api_invoker_id"]}, {"$set":security_context})
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/notification.py b/services/TS29222_CAPIF_Security_API/capif_security/core/notification.py
new file mode 100644
index 0000000..5d69adc
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/notification.py
@@ -0,0 +1,14 @@
+import requests
+from ..encoder import JSONEncoder
+import sys
+import json
+
+class Notifications():
+
+    def send_notification(self, url, data):
+
+        self.request_post(url, data)
+
+    def request_post(self, url, data):
+        headers = {'content-type': 'application/json'}
+        return requests.post(url, json={'text': str(data.to_str())}, headers=headers)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/publisher.py b/services/TS29222_CAPIF_Security_API/capif_security/core/publisher.py
new file mode 100644
index 0000000..f7b0c3c
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/publisher.py
@@ -0,0 +1,10 @@
+import redis
+import sys
+
+class Publisher():
+
+    def __init__(self):
+        self. r = redis.Redis(host='redis', port=6379, db=0)
+
+    def publish_message(self, channel, message):
+        self.r.publish(channel, message)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/resources.py b/services/TS29222_CAPIF_Security_API/capif_security/core/resources.py
new file mode 100644
index 0000000..2ba2a0f
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/resources.py
@@ -0,0 +1,9 @@
+from abc import ABC, abstractmethod
+from ..db.db import MongoDatabse
+from .notification import Notifications
+
+class Resource(ABC):
+
+    def __init__(self):
+        self.db = MongoDatabse()
+        self.notification = Notifications()
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/responses.py b/services/TS29222_CAPIF_Security_API/capif_security/core/responses.py
new file mode 100644
index 0000000..26e82b6
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/responses.py
@@ -0,0 +1,37 @@
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from flask import Response
+import json
+from bson import json_util
+
+mimetype = "application/json"
+
+def make_response(object, status):
+    res = Response(json.dumps(object,  cls=JSONEncoder), status=status, mimetype=mimetype)
+
+    return res
+
+def internal_server_error(detail, cause):
+    prob = ProblemDetails(title="Internal Server Error", status=500, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=500, mimetype=mimetype)
+
+def forbidden_error(detail, cause):
+    prob = ProblemDetails(title="Forbidden", status=403, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=403, mimetype=mimetype)
+
+def bad_request_error(detail, cause, invalid_params):
+    prob = ProblemDetails(title="Bad Request", status=400, detail=detail, cause=cause, invalid_params=invalid_params)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=400, mimetype=cause)
+
+def not_found_error(detail, cause):
+    prob = ProblemDetails(title="Not Found", status=404, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=404, mimetype=mimetype)
+
+def unauthorized_error(detail, cause):
+    prob = ProblemDetails(title="Unauthorized", status=401, detail=detail, cause=cause)
+
+    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype=mimetype)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/servicesecurity.py b/services/TS29222_CAPIF_Security_API/capif_security/core/servicesecurity.py
new file mode 100644
index 0000000..69475ac
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/servicesecurity.py
@@ -0,0 +1,376 @@
+import sys
+
+import pymongo
+from pymongo import ReturnDocument
+import secrets
+import re
+import rfc3987
+from flask import current_app, Flask, Response
+from flask_jwt_extended import create_access_token
+from datetime import datetime, timedelta
+import json
+
+from ..db.db import MongoDatabse
+from ..encoder import JSONEncoder
+from ..models.problem_details import ProblemDetails
+from ..models.access_token_rsp import AccessTokenRsp
+from ..models.access_token_claims import AccessTokenClaims
+from bson import json_util
+import requests
+from ..core.publisher import Publisher
+from ..models.access_token_err import AccessTokenErr
+from ..models.service_security import ServiceSecurity
+from ..util import dict_to_camel_case, clean_empty
+from .responses import not_found_error, make_response, bad_request_error, internal_server_error, forbidden_error
+from .notification import Notifications
+from .resources import Resource
+import os
+
+publish_ops = Publisher()
+
+security_context_not_found_detail = "Security context not found"
+api_invoker_no_context_cause = "API Invoker has no security context"
+
+class SecurityOperations(Resource):
+
+    def __check_invoker(self, api_invoker_id):
+        invokers_col = self.db.get_col_by_name(self.db.capif_invokers)
+
+        current_app.logger.debug("Checking api invoker with id: " + api_invoker_id)
+        invoker =  invokers_col.find_one({"api_invoker_id": api_invoker_id})
+        if invoker is None:
+            current_app.logger.error("Invoker not found")
+            return not_found_error(detail="Invoker not found", cause="API Invoker not exists or invalid ID")
+
+        return None
+
+    def __check_scope(self, scope, security_context):
+
+        try:
+
+            current_app.logger.debug("Checking scope")
+            header = scope[0:4]
+            if header != "3gpp":
+                current_app.logger.error("Bad format scope")
+                token_error = AccessTokenErr(error="invalid_scope", error_description="The first characters must be '3gpp'")
+                return make_response(object=token_error, status=400)
+
+            _, body = scope.split("#")
+
+            capif_service_col = self.db.get_col_by_name(self.db.capif_service_col)
+            security_info = security_context["security_info"]
+            aef_security_context = [info["aef_id"] for info in security_info]
+
+            groups = body.split(";")
+            for group in groups:
+                aef_id, api_names = group.split(":")
+                if aef_id not in aef_security_context:
+                    current_app.logger.error("Bad format Scope, not valid aef id ")
+                    token_error = AccessTokenErr(error="invalid_scope", error_description="One of aef_id not belongs of your security context")
+                    return make_response(object=token_error, status=400)
+                api_names = api_names.split(",")
+                for api_name in api_names:
+                    service = capif_service_col.find_one({"$and": [{"api_name":api_name},{self.filter_aef_id:aef_id}]})
+                    if service is None:
+                        current_app.logger.error("Bad format Scope, not valid api name")
+                        token_error = AccessTokenErr(error="invalid_scope", error_description="One of the api names does not exist or is not associated with the aef id provided")
+                        return make_response(object=token_error, status=400)
+
+            return None
+
+        except Exception as e:
+            current_app.logger.error("Bad format Scope: " + e)
+            token_error = AccessTokenErr(error="invalid_scope", error_description="malformed scope")
+            return make_response(object=token_error, status=400)
+
+    def __init__(self):
+        Resource.__init__(self)
+        self.filter_aef_id = "aef_profiles.aef_id"
+
+    def get_servicesecurity(self, api_invoker_id, authentication_info=True, authorization_info=True):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+
+        try:
+
+            current_app.logger.debug("Obtainig security context with id: " + api_invoker_id)
+            result = self.__check_invoker(api_invoker_id)
+            if result != None:
+                return result
+            else:
+                services_security_object = mycol.find_one({"api_invoker_id": api_invoker_id}, {"_id":0, "api_invoker_id":0})
+
+                if services_security_object is None:
+                    current_app.logger.error("Not found security context")
+                    return not_found_error(detail= security_context_not_found_detail, cause=api_invoker_no_context_cause)
+
+                if not authentication_info:
+                    for security_info_obj in services_security_object['security_info']:
+                        del security_info_obj['authentication_info']
+                if not authorization_info:
+                    for security_info_obj in services_security_object['security_info']:
+                        del security_info_obj['authorization_info']
+
+                properyly_json= json.dumps(services_security_object, default=json_util.default)
+                my_service_security = dict_to_camel_case(json.loads(properyly_json))
+                my_service_security = clean_empty(my_service_security)
+
+                current_app.logger.debug("Obtained security context from database")
+        
+                res = make_response(object=my_service_security, status=200)
+
+                return res
+        except Exception as e:
+            exception = "An exception occurred in get security info"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
+    def create_servicesecurity(self, api_invoker_id, service_security):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+
+        try:
+
+            current_app.logger.debug("Creating security context")
+            result = self.__check_invoker(api_invoker_id)
+            if result != None:
+                return result
+
+            if rfc3987.match(service_security.notification_destination, rule="URI") is None:
+                current_app.logger.error("Bad url format")
+                return bad_request_error(detail="Bad Param", cause = "Detected Bad format of param", invalid_params=[{"param": "notificationDestination", "reason": "Not valid URL format"}])
+
+            services_security_object = mycol.find_one({"api_invoker_id": api_invoker_id})
+
+            if services_security_object is not None:
+
+                current_app.logger.error("Already security context defined with same api invoker id")
+                return forbidden_error(detail="Security method already defined", cause="Identical AEF Profile IDs")
+
+
+            for service_instance in service_security.security_info:
+                if service_instance.interface_details is not None:
+                    security_methods = service_instance.interface_details.security_methods
+                    pref_security_methods = service_instance.pref_security_methods
+                    valid_security_method = set(security_methods) & set(pref_security_methods)
+
+                else:
+                    capif_service_col = self.db.get_col_by_name(self.db.capif_service_col)
+                    services_security_object = capif_service_col.find_one({"api_id":service_instance.api_id, self.filter_aef_id: service_instance.aef_id}, {"aef_profiles.security_methods.$":1})
+
+                    if services_security_object is None:
+                        current_app.logger.error("Not found service with this aef id: " + service_instance.aef_id)
+                        return not_found_error(detail="Service with this aefId not found", cause="Not found Service")
+
+                    pref_security_methods = service_instance.pref_security_methods
+                    valid_security_methods = [security_method for array_methods in services_security_object["aef_profiles"] for security_method in array_methods["security_methods"]]
+                    valid_security_method = set(valid_security_methods) & set(pref_security_methods)
+
+                if len(list(valid_security_method)) == 0:
+                    current_app.logger.error("Not found comptaible security method with pref security method")
+                    return bad_request_error(detail="Not found compatible security method with pref security method", cause="Error pref security method", invalid_params=[{"param": "prefSecurityMethods", "reason": "pref security method not compatible with security method available"}])
+
+                service_instance.sel_security_method = list(valid_security_method)[0]
+                # Send service instance to ACL
+                current_app.logger.debug("Sending message to create ACL")
+                publish_ops.publish_message("acls-messages", "create-acl:"+str(api_invoker_id)+":"+str(service_instance.api_id)+":"+str(service_instance.aef_id))
+                current_app.logger.debug("Inserted security context in database")
+
+            rec = dict()
+            rec['api_invoker_id'] = api_invoker_id
+            rec.update(service_security.to_dict())
+            mycol.insert_one(rec)
+
+            res = make_response(object=service_security, status=201)
+            res.headers['Location'] = "https://{}/capif-security/v1/trustedInvokers/{}".format(os.getenv('CAPIF_HOSTNAME'),str(api_invoker_id))
+            return res
+
+        except Exception as e:
+            exception = "An exception occurred in create security info"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
+    def delete_servicesecurity(self, api_invoker_id):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+
+        try:
+
+            current_app.logger.debug("Removing security context")
+
+            result = self.__check_invoker(api_invoker_id)
+            if result != None:
+                return result
+            else:
+                my_query = {'api_invoker_id': api_invoker_id}
+                services_security_count = mycol.count_documents(my_query)
+
+                if services_security_count == 0:
+                    current_app.logger.error(security_context_not_found_detail)
+                    return not_found_error(detail=security_context_not_found_detail, cause=api_invoker_no_context_cause)
+                
+                mycol.delete_many(my_query)
+
+                publish_ops.publish_message("acls-messages", "remove-acl:"+api_invoker_id)
+
+                current_app.logger.debug("Removed security context from database")
+                out= "The security info of Netapp with Netapp ID " + api_invoker_id + " were deleted.", 204
+                return make_response(out, status=204)
+
+        except Exception as e:
+            exception = "An exception occurred in create security info"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause = str(e))
+
+    def delete_intern_servicesecurity(self, api_invoker_id):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+        my_query = {'api_invoker_id': api_invoker_id}
+        mycol.delete_many(my_query)
+
+    def return_token(self, security_id, access_token_req):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+
+        try:
+
+            current_app.logger.debug("Generating access token")
+
+            invokers_col = self.db.get_col_by_name(self.db.capif_invokers)
+
+            current_app.logger.debug("Checking api invoker with id: " + access_token_req["client_id"])
+            invoker =  invokers_col.find_one({"api_invoker_id": access_token_req["client_id"]})
+            if invoker is None:
+                client_id_error =  AccessTokenErr(error="invalid_client", error_description="Client Id not found")
+                return make_response(object=client_id_error, status=400)
+
+
+            if access_token_req["grant_type"] != "client_credentials":
+                client_id_error =  AccessTokenErr(error="unsupported_grant_type", error_description="Invalid value for `grant_type` ({0}), must be one of ['client_credentials'] - 'grant_type'"
+                .format(access_token_req["grant_type"]))
+                return make_response(object=client_id_error, status=400)
+
+            service_security = mycol.find_one({"api_invoker_id": security_id})
+            if service_security is None:
+                current_app.logger.error("Not found securoty context with id: " + security_id)
+                return not_found_error(detail= security_context_not_found_detail, cause=api_invoker_no_context_cause)
+
+            result = self.__check_scope(access_token_req["scope"], service_security)
+
+            if result != None:
+                return result
+
+            expire_time = timedelta(minutes=10)
+            now=datetime.now()
+
+            claims = AccessTokenClaims(iss = access_token_req["client_id"], scope=access_token_req["scope"], exp=int((now+expire_time).timestamp()))
+            access_token = create_access_token(identity = access_token_req["client_id"] , additional_claims=claims.to_dict())
+            access_token_resp = AccessTokenRsp(access_token=access_token, token_type="Bearer", expires_in=int(expire_time.total_seconds()), scope=access_token_req["scope"])
+
+            current_app.logger.debug("Created access token")
+
+            res = make_response(object=access_token_resp, status=200)
+            return res
+        except Exception as e:
+            exception = "An exception occurred in return token"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
+    def update_servicesecurity(self, api_invoker_id, service_security):
+        mycol = self.db.get_col_by_name(self.db.security_info)
+        try:
+
+            current_app.logger.debug("Updating security context")
+            result = self.__check_invoker(api_invoker_id)
+            if result != None:
+                return result
+
+            old_object = mycol.find_one({"api_invoker_id": api_invoker_id})
+
+            if old_object is None:
+                current_app.logger.error("Service api not found with id: " + api_invoker_id)
+                return not_found_error(detail="Service API not existing", cause="Not exist securiy information for this invoker")
+
+            for service_instance in service_security.security_info:
+                if service_instance.interface_details is not None:
+                    security_methods = service_instance.interface_details.security_methods
+                    pref_security_methods = service_instance.pref_security_methods
+                    valid_security_method = set(security_methods) & set(pref_security_methods)
+                    service_instance.sel_security_method = list(valid_security_method)[0]
+                else:
+                    capif_service_col = self.db.get_col_by_name(self.db.capif_service_col)
+                    services_security_object = capif_service_col.find_one({self.filter_aef_id: service_instance.aef_id}, {"aef_profiles.security_methods.$":1})
+
+                    if services_security_object is None:
+                        current_app.logger.error("Service api with this aefId not found: " + service_instance.aef_id)
+                        return not_found_error(detail="Service with this aefId not found", cause="Not found Service")
+
+                    pref_security_methods = service_instance.pref_security_methods
+                    valid_security_methods = [security_method for array_methods in services_security_object["aef_profiles"] for security_method in array_methods["security_methods"]]
+                    valid_security_method = set(valid_security_methods) & set(pref_security_methods)
+                    service_instance.sel_security_method = list(valid_security_method)[0]
+
+            service_security = service_security.to_dict()
+            service_security = clean_empty(service_security)
+
+            result = mycol.find_one_and_update(old_object, {"$set":service_security}, projection={'_id': 0, "api_invoker_id":0},return_document=ReturnDocument.AFTER ,upsert=False)
+
+            result = clean_empty(result)
+
+            current_app.logger.debug("Updated security context")
+
+            res= make_response(object=dict_to_camel_case(result), status=200)
+            res.headers['Location'] = "https://${CAPIF_HOSTNAME}/capif-security/v1/trustedInvokers/" + str(
+                api_invoker_id)
+            return res
+        except Exception as e:
+            exception = "An exception occurred in update security info"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
+
+
+    def revoke_api_authorization(self, api_invoker_id, security_notification):
+
+        mycol = self.db.get_col_by_name(self.db.security_info)
+
+        try:
+
+            current_app.logger.debug("Revoking security context")
+            result = self.__check_invoker(api_invoker_id)
+            if result != None:
+                return result
+
+            my_query = {'api_invoker_id': api_invoker_id}
+            services_security_context = mycol.find_one(my_query)
+
+            if services_security_context is None:
+                current_app.logger.error(security_context_not_found_detail)
+                return not_found_error(detail=security_context_not_found_detail, cause=api_invoker_no_context_cause)
+
+            updated_security_context = services_security_context.copy()
+            for context in services_security_context["security_info"]:
+                index = services_security_context["security_info"].index(context)
+                if security_notification.aef_id == context["aef_id"] or context["api_id"] in security_notification.api_ids:
+                    current_app.logger.debug("Sending message.")
+                    publish_ops.publish_message("acls-messages", "remove-acl:"+str(api_invoker_id)+":"+str(context["api_id"])+":"+str(security_notification.aef_id))
+                    current_app.logger.debug("message sended.")
+                    updated_security_context["security_info"].pop(index)
+
+            mycol.replace_one(my_query, updated_security_context)
+
+            if len(updated_security_context["security_info"]) == 0:
+                mycol.delete_many(my_query)
+
+            #self.notification.send_notification(services_security_context["notification_destination"], security_notification)
+
+            current_app.logger.debug("Revoked security context")
+            out= "Netapp with ID " + api_invoker_id + " was revoked by some APIs.", 204
+            return make_response(out, status=204)
+
+        except Exception as e:
+            exception = "An exception occurred in revoke security auth"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/core/validate_user.py b/services/TS29222_CAPIF_Security_API/capif_security/core/validate_user.py
new file mode 100644
index 0000000..45ec518
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/core/validate_user.py
@@ -0,0 +1,26 @@
+from flask import current_app, Response
+import json
+from ..models.problem_details import ProblemDetails
+from ..encoder import JSONEncoder
+from .resources import Resource
+from .responses import internal_server_error
+
+class ControlAccess(Resource):
+
+    def validate_user_cert(self, invoker_id, cert_signature):
+
+        cert_col = self.db.get_col_by_name(self.db.certs_col)
+
+        try:
+            my_query = {'id':invoker_id}
+            cert_entry = cert_col.find_one(my_query)
+
+            if cert_entry is not None:
+                if cert_entry["cert_signature"] != cert_signature:
+                    prob = ProblemDetails(title="Unauthorized", detail="User not authorized", cause="You are not the owner of this resource")
+                    return Response(json.dumps(prob, cls=JSONEncoder), status=401, mimetype="application/json")
+
+        except Exception as e:
+            exception = "An exception occurred in validate invoker"
+            current_app.logger.error(exception + "::" + str(e))
+            return internal_server_error(detail=exception, cause=str(e))
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/db/db.py b/services/TS29222_CAPIF_Security_API/capif_security/db/db.py
new file mode 100644
index 0000000..dbbb99e
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/db/db.py
@@ -0,0 +1,46 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+import os
+from opentelemetry.instrumentation.pymongo import PymongoInstrumentor
+
+if eval(os.environ.get("MONITORING").lower().capitalize()):
+    PymongoInstrumentor().instrument()
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.security_info = self.config['mongo']['col']
+        self.capif_service_col = self.config['mongo']['capif_service_col']
+        self.capif_invokers = self.config['mongo']['capif_invokers']
+        self.certs_col = self.config['mongo']['certs_col']
+
+
+    def get_col_by_name(self, name):
+        return self.db[name].with_options(codec_options=CodecOptions(tz_aware=True))
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/encoder.py b/services/TS29222_CAPIF_Security_API/capif_security/encoder.py
new file mode 100644
index 0000000..9d6964e
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/encoder.py
@@ -0,0 +1,20 @@
+from connexion.apps.flask_app import FlaskJSONEncoder
+import six
+
+from capif_security.models.base_model_ import Model
+
+
+class JSONEncoder(FlaskJSONEncoder):
+    include_nulls = False
+
+    def default(self, o):
+        if isinstance(o, Model):
+            dikt = {}
+            for attr, _ in six.iteritems(o.openapi_types):
+                value = getattr(o, attr)
+                if value is None and not self.include_nulls:
+                    continue
+                attr = o.attribute_map[attr]
+                dikt[attr] = value
+            return dikt
+        return FlaskJSONEncoder.default(self, o)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/__init__.py b/services/TS29222_CAPIF_Security_API/capif_security/models/__init__.py
new file mode 100644
index 0000000..b6f04f8
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/__init__.py
@@ -0,0 +1,28 @@
+# coding: utf-8
+
+# flake8: noqa
+from __future__ import absolute_import
+# import models into model package
+from capif_security.models.access_token_claims import AccessTokenClaims
+from capif_security.models.access_token_err import AccessTokenErr
+from capif_security.models.access_token_err1 import AccessTokenErr1
+from capif_security.models.access_token_req1 import AccessTokenReq1
+from capif_security.models.access_token_rsp import AccessTokenRsp
+from capif_security.models.cause import Cause
+from capif_security.models.cause_any_of import CauseAnyOf
+from capif_security.models.interface_description import InterfaceDescription
+from capif_security.models.invalid_param import InvalidParam
+from capif_security.models.invalid_param1 import InvalidParam1
+from capif_security.models.nf_type import NFType
+from capif_security.models.nf_type_any_of import NFTypeAnyOf
+from capif_security.models.plmn_id import PlmnId
+from capif_security.models.plmn_id_nid import PlmnIdNid
+from capif_security.models.problem_details import ProblemDetails
+from capif_security.models.problem_details1 import ProblemDetails1
+from capif_security.models.security_information import SecurityInformation
+from capif_security.models.security_method import SecurityMethod
+from capif_security.models.security_method_any_of import SecurityMethodAnyOf
+from capif_security.models.security_notification import SecurityNotification
+from capif_security.models.service_security import ServiceSecurity
+from capif_security.models.snssai import Snssai
+from capif_security.models.websock_notif_config import WebsockNotifConfig
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_claims.py b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_claims.py
new file mode 100644
index 0000000..fc19f93
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_claims.py
@@ -0,0 +1,126 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class AccessTokenClaims(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, iss=None, scope=None, exp=None):  # noqa: E501
+        """AccessTokenClaims - a model defined in OpenAPI
+
+        :param iss: The iss of this AccessTokenClaims.  # noqa: E501
+        :type iss: str
+        :param scope: The scope of this AccessTokenClaims.  # noqa: E501
+        :type scope: str
+        :param exp: The exp of this AccessTokenClaims.  # noqa: E501
+        :type exp: int
+        """
+        self.openapi_types = {
+            'iss': str,
+            'scope': str,
+            'exp': int
+        }
+
+        self.attribute_map = {
+            'iss': 'iss',
+            'scope': 'scope',
+            'exp': 'exp'
+        }
+
+        self._iss = iss
+        self._scope = scope
+        self._exp = exp
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessTokenClaims':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessTokenClaims of this AccessTokenClaims.  # noqa: E501
+        :rtype: AccessTokenClaims
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def iss(self):
+        """Gets the iss of this AccessTokenClaims.
+
+
+        :return: The iss of this AccessTokenClaims.
+        :rtype: str
+        """
+        return self._iss
+
+    @iss.setter
+    def iss(self, iss):
+        """Sets the iss of this AccessTokenClaims.
+
+
+        :param iss: The iss of this AccessTokenClaims.
+        :type iss: str
+        """
+        if iss is None:
+            raise ValueError("Invalid value for `iss`, must not be `None`")  # noqa: E501
+
+        self._iss = iss
+
+    @property
+    def scope(self):
+        """Gets the scope of this AccessTokenClaims.
+
+
+        :return: The scope of this AccessTokenClaims.
+        :rtype: str
+        """
+        return self._scope
+
+    @scope.setter
+    def scope(self, scope):
+        """Sets the scope of this AccessTokenClaims.
+
+
+        :param scope: The scope of this AccessTokenClaims.
+        :type scope: str
+        """
+        if scope is None:
+            raise ValueError("Invalid value for `scope`, must not be `None`")  # noqa: E501
+
+        self._scope = scope
+
+    @property
+    def exp(self):
+        """Gets the exp of this AccessTokenClaims.
+
+        Unsigned integer identifying a period of time in units of seconds.  # noqa: E501
+
+        :return: The exp of this AccessTokenClaims.
+        :rtype: int
+        """
+        return self._exp
+
+    @exp.setter
+    def exp(self, exp):
+        """Sets the exp of this AccessTokenClaims.
+
+        Unsigned integer identifying a period of time in units of seconds.  # noqa: E501
+
+        :param exp: The exp of this AccessTokenClaims.
+        :type exp: int
+        """
+        if exp is None:
+            raise ValueError("Invalid value for `exp`, must not be `None`")  # noqa: E501
+        if exp is not None and exp < 0:  # noqa: E501
+            raise ValueError("Invalid value for `exp`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._exp = exp
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err.py b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err.py
new file mode 100644
index 0000000..4423dcc
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err.py
@@ -0,0 +1,122 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class AccessTokenErr(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, error=None, error_description=None, error_uri=None):  # noqa: E501
+        """AccessTokenErr - a model defined in OpenAPI
+
+        :param error: The error of this AccessTokenErr.  # noqa: E501
+        :type error: str
+        :param error_description: The error_description of this AccessTokenErr.  # noqa: E501
+        :type error_description: str
+        :param error_uri: The error_uri of this AccessTokenErr.  # noqa: E501
+        :type error_uri: str
+        """
+        self.openapi_types = {
+            'error': str,
+            'error_description': str,
+            'error_uri': str
+        }
+
+        self.attribute_map = {
+            'error': 'error',
+            'error_description': 'error_description',
+            'error_uri': 'error_uri'
+        }
+
+        self._error = error
+        self._error_description = error_description
+        self._error_uri = error_uri
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessTokenErr':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessTokenErr of this AccessTokenErr.  # noqa: E501
+        :rtype: AccessTokenErr
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def error(self):
+        """Gets the error of this AccessTokenErr.
+
+
+        :return: The error of this AccessTokenErr.
+        :rtype: str
+        """
+        return self._error
+
+    @error.setter
+    def error(self, error):
+        """Sets the error of this AccessTokenErr.
+
+
+        :param error: The error of this AccessTokenErr.
+        :type error: str
+        """
+        allowed_values = ["invalid_request", "invalid_client", "invalid_grant", "unauthorized_client", "unsupported_grant_type", "invalid_scope"]  # noqa: E501
+        if error not in allowed_values:
+            raise ValueError(
+                "Invalid value for `error` ({0}), must be one of {1}"
+                .format(error, allowed_values)
+            )
+
+        self._error = error
+
+    @property
+    def error_description(self):
+        """Gets the error_description of this AccessTokenErr.
+
+
+        :return: The error_description of this AccessTokenErr.
+        :rtype: str
+        """
+        return self._error_description
+
+    @error_description.setter
+    def error_description(self, error_description):
+        """Sets the error_description of this AccessTokenErr.
+
+
+        :param error_description: The error_description of this AccessTokenErr.
+        :type error_description: str
+        """
+
+        self._error_description = error_description
+
+    @property
+    def error_uri(self):
+        """Gets the error_uri of this AccessTokenErr.
+
+
+        :return: The error_uri of this AccessTokenErr.
+        :rtype: str
+        """
+        return self._error_uri
+
+    @error_uri.setter
+    def error_uri(self, error_uri):
+        """Sets the error_uri of this AccessTokenErr.
+
+
+        :param error_uri: The error_uri of this AccessTokenErr.
+        :type error_uri: str
+        """
+
+        self._error_uri = error_uri
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err1.py b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err1.py
new file mode 100644
index 0000000..8d2253f
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_err1.py
@@ -0,0 +1,122 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class AccessTokenErr1(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, error=None, error_description=None, error_uri=None):  # noqa: E501
+        """AccessTokenErr1 - a model defined in OpenAPI
+
+        :param error: The error of this AccessTokenErr1.  # noqa: E501
+        :type error: str
+        :param error_description: The error_description of this AccessTokenErr1.  # noqa: E501
+        :type error_description: str
+        :param error_uri: The error_uri of this AccessTokenErr1.  # noqa: E501
+        :type error_uri: str
+        """
+        self.openapi_types = {
+            'error': str,
+            'error_description': str,
+            'error_uri': str
+        }
+
+        self.attribute_map = {
+            'error': 'error',
+            'error_description': 'error_description',
+            'error_uri': 'error_uri'
+        }
+
+        self._error = error
+        self._error_description = error_description
+        self._error_uri = error_uri
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessTokenErr1':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessTokenErr_1 of this AccessTokenErr1.  # noqa: E501
+        :rtype: AccessTokenErr1
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def error(self):
+        """Gets the error of this AccessTokenErr1.
+
+
+        :return: The error of this AccessTokenErr1.
+        :rtype: str
+        """
+        return self._error
+
+    @error.setter
+    def error(self, error):
+        """Sets the error of this AccessTokenErr1.
+
+
+        :param error: The error of this AccessTokenErr1.
+        :type error: str
+        """
+        allowed_values = ["invalid_request", "invalid_client", "invalid_grant", "unauthorized_client", "unsupported_grant_type", "invalid_scope"]  # noqa: E501
+        if error not in allowed_values:
+            raise ValueError(
+                "Invalid value for `error` ({0}), must be one of {1}"
+                .format(error, allowed_values)
+            )
+
+        self._error = error
+
+    @property
+    def error_description(self):
+        """Gets the error_description of this AccessTokenErr1.
+
+
+        :return: The error_description of this AccessTokenErr1.
+        :rtype: str
+        """
+        return self._error_description
+
+    @error_description.setter
+    def error_description(self, error_description):
+        """Sets the error_description of this AccessTokenErr1.
+
+
+        :param error_description: The error_description of this AccessTokenErr1.
+        :type error_description: str
+        """
+
+        self._error_description = error_description
+
+    @property
+    def error_uri(self):
+        """Gets the error_uri of this AccessTokenErr1.
+
+
+        :return: The error_uri of this AccessTokenErr1.
+        :rtype: str
+        """
+        return self._error_uri
+
+    @error_uri.setter
+    def error_uri(self, error_uri):
+        """Sets the error_uri of this AccessTokenErr1.
+
+
+        :param error_uri: The error_uri of this AccessTokenErr1.
+        :type error_uri: str
+        """
+
+        self._error_uri = error_uri
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req.py b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req.py
new file mode 100644
index 0000000..5a8ec22
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req.py
@@ -0,0 +1,151 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.access_token_err import AccessTokenErr
+from capif_security import util
+
+
+class AccessTokenReq(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, grant_type=None, client_id=None, client_secret=None, scope=None):  # noqa: E501
+        """AccessTokenReq - a model defined in OpenAPI
+
+        :param grant_type: The grant_type of this AccessTokenReq.  # noqa: E501
+        :type grant_type: str
+        :param client_id: The client_id of this AccessTokenReq.  # noqa: E501
+        :type client_id: str
+        :param client_secret: The client_secret of this AccessTokenReq.  # noqa: E501
+        :type client_secret: str
+        :param scope: The scope of this AccessTokenReq.  # noqa: E501
+        :type scope: str
+        """
+        self.openapi_types = {
+            'grant_type': str,
+            'client_id': str,
+            'client_secret': str,
+            'scope': str
+        }
+
+        self.attribute_map = {
+            'grant_type': 'grant_type',
+            'client_id': 'client_id',
+            'client_secret': 'client_secret',
+            'scope': 'scope'
+        }
+
+        self._grant_type = grant_type
+        self._client_id = client_id
+        self._client_secret = client_secret
+        self._scope = scope
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessTokenReq':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessTokenReq of this AccessTokenReq.  # noqa: E501
+        :rtype: AccessTokenReq
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def grant_type(self):
+        """Gets the grant_type of this AccessTokenReq.
+
+
+        :return: The grant_type of this AccessTokenReq.
+        :rtype: str
+        """
+        return self._grant_type
+
+    @grant_type.setter
+    def grant_type(self, grant_type):
+        """Sets the grant_type of this AccessTokenReq.
+
+
+        :param grant_type: The grant_type of this AccessTokenReq.
+        :type grant_type: str
+        """
+        allowed_values = ["client_credentials"]  # noqa: E501
+        if grant_type not in allowed_values:
+            raise ValueError(
+                "Invalid value for `grant_type` ({0}), must be one of {1}"
+                .format(grant_type, allowed_values)
+            )
+
+        self._grant_type = grant_type
+
+    @property
+    def client_id(self):
+        """Gets the client_id of this AccessTokenReq.
+
+
+        :return: The client_id of this AccessTokenReq.
+        :rtype: str
+        """
+        return self._client_id
+
+    @client_id.setter
+    def client_id(self, client_id):
+        """Sets the client_id of this AccessTokenReq.
+
+
+        :param client_id: The client_id of this AccessTokenReq.
+        :type client_id: str
+        """
+        if client_id is None:
+            raise ValueError("Invalid value for `client_id`, must not be `None`")  # noqa: E501
+
+        self._client_id = client_id
+
+    @property
+    def client_secret(self):
+        """Gets the client_secret of this AccessTokenReq.
+
+
+        :return: The client_secret of this AccessTokenReq.
+        :rtype: str
+        """
+        return self._client_secret
+
+    @client_secret.setter
+    def client_secret(self, client_secret):
+        """Sets the client_secret of this AccessTokenReq.
+
+
+        :param client_secret: The client_secret of this AccessTokenReq.
+        :type client_secret: str
+        """
+
+        self._client_secret = client_secret
+
+    @property
+    def scope(self):
+        """Gets the scope of this AccessTokenReq.
+
+
+        :return: The scope of this AccessTokenReq.
+        :rtype: str
+        """
+        return self._scope
+
+    @scope.setter
+    def scope(self, scope):
+        """Sets the scope of this AccessTokenReq.
+
+
+        :param scope: The scope of this AccessTokenReq.
+        :type scope: str
+        """
+
+        self._scope = scope
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req1.py b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req1.py
new file mode 100644
index 0000000..b119e9c
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_req1.py
@@ -0,0 +1,559 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.nf_type import NFType
+from capif_security.models.plmn_id import PlmnId
+from capif_security.models.plmn_id_nid import PlmnIdNid
+from capif_security.models.snssai import Snssai
+import re
+from capif_security import util
+
+from capif_security.models.nf_type import NFType  # noqa: E501
+from capif_security.models.access_token_err import  AccessTokenErr
+from capif_security.models.plmn_id import PlmnId  # noqa: E501
+from capif_security.models.plmn_id_nid import PlmnIdNid  # noqa: E501
+from capif_security.models.snssai import Snssai  # noqa: E501
+import re  # noqa: E501
+
+class AccessTokenReq1(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, grant_type=None, nf_instance_id=None, nf_type=None, target_nf_type=None, scope=None, target_nf_instance_id=None, requester_plmn=None, requester_plmn_list=None, requester_snssai_list=None, requester_fqdn=None, requester_snpn_list=None, target_plmn=None, target_snssai_list=None, target_nsi_list=None, target_nf_set_id=None, target_nf_service_set_id=None, hnrf_access_token_uri=None, source_nf_instance_id=None):  # noqa: E501
+        """AccessTokenReq1 - a model defined in OpenAPI
+
+        :param grant_type: The grant_type of this AccessTokenReq1.  # noqa: E501
+        :type grant_type: str
+        :param nf_instance_id: The nf_instance_id of this AccessTokenReq1.  # noqa: E501
+        :type nf_instance_id: str
+        :param nf_type: The nf_type of this AccessTokenReq1.  # noqa: E501
+        :type nf_type: NFType
+        :param target_nf_type: The target_nf_type of this AccessTokenReq1.  # noqa: E501
+        :type target_nf_type: NFType
+        :param scope: The scope of this AccessTokenReq1.  # noqa: E501
+        :type scope: str
+        :param target_nf_instance_id: The target_nf_instance_id of this AccessTokenReq1.  # noqa: E501
+        :type target_nf_instance_id: str
+        :param requester_plmn: The requester_plmn of this AccessTokenReq1.  # noqa: E501
+        :type requester_plmn: PlmnId
+        :param requester_plmn_list: The requester_plmn_list of this AccessTokenReq1.  # noqa: E501
+        :type requester_plmn_list: List[PlmnId]
+        :param requester_snssai_list: The requester_snssai_list of this AccessTokenReq1.  # noqa: E501
+        :type requester_snssai_list: List[Snssai]
+        :param requester_fqdn: The requester_fqdn of this AccessTokenReq1.  # noqa: E501
+        :type requester_fqdn: str
+        :param requester_snpn_list: The requester_snpn_list of this AccessTokenReq1.  # noqa: E501
+        :type requester_snpn_list: List[PlmnIdNid]
+        :param target_plmn: The target_plmn of this AccessTokenReq1.  # noqa: E501
+        :type target_plmn: PlmnId
+        :param target_snssai_list: The target_snssai_list of this AccessTokenReq1.  # noqa: E501
+        :type target_snssai_list: List[Snssai]
+        :param target_nsi_list: The target_nsi_list of this AccessTokenReq1.  # noqa: E501
+        :type target_nsi_list: List[str]
+        :param target_nf_set_id: The target_nf_set_id of this AccessTokenReq1.  # noqa: E501
+        :type target_nf_set_id: str
+        :param target_nf_service_set_id: The target_nf_service_set_id of this AccessTokenReq1.  # noqa: E501
+        :type target_nf_service_set_id: str
+        :param hnrf_access_token_uri: The hnrf_access_token_uri of this AccessTokenReq1.  # noqa: E501
+        :type hnrf_access_token_uri: str
+        :param source_nf_instance_id: The source_nf_instance_id of this AccessTokenReq1.  # noqa: E501
+        :type source_nf_instance_id: str
+        """
+        self.openapi_types = {
+            'grant_type': str,
+            'nf_instance_id': str,
+            'nf_type': NFType,
+            'target_nf_type': NFType,
+            'scope': str,
+            'target_nf_instance_id': str,
+            'requester_plmn': PlmnId,
+            'requester_plmn_list': List[PlmnId],
+            'requester_snssai_list': List[Snssai],
+            'requester_fqdn': str,
+            'requester_snpn_list': List[PlmnIdNid],
+            'target_plmn': PlmnId,
+            'target_snssai_list': List[Snssai],
+            'target_nsi_list': List[str],
+            'target_nf_set_id': str,
+            'target_nf_service_set_id': str,
+            'hnrf_access_token_uri': str,
+            'source_nf_instance_id': str
+        }
+
+        self.attribute_map = {
+            'grant_type': 'grant_type',
+            'nf_instance_id': 'nfInstanceId',
+            'nf_type': 'nfType',
+            'target_nf_type': 'targetNfType',
+            'scope': 'scope',
+            'target_nf_instance_id': 'targetNfInstanceId',
+            'requester_plmn': 'requesterPlmn',
+            'requester_plmn_list': 'requesterPlmnList',
+            'requester_snssai_list': 'requesterSnssaiList',
+            'requester_fqdn': 'requesterFqdn',
+            'requester_snpn_list': 'requesterSnpnList',
+            'target_plmn': 'targetPlmn',
+            'target_snssai_list': 'targetSnssaiList',
+            'target_nsi_list': 'targetNsiList',
+            'target_nf_set_id': 'targetNfSetId',
+            'target_nf_service_set_id': 'targetNfServiceSetId',
+            'hnrf_access_token_uri': 'hnrfAccessTokenUri',
+            'source_nf_instance_id': 'sourceNfInstanceId'
+        }
+
+        self._grant_type = grant_type
+        self._nf_instance_id = nf_instance_id
+        self._nf_type = nf_type
+        self._target_nf_type = target_nf_type
+        self._scope = scope
+        self._target_nf_instance_id = target_nf_instance_id
+        self._requester_plmn = requester_plmn
+        self._requester_plmn_list = requester_plmn_list
+        self._requester_snssai_list = requester_snssai_list
+        self._requester_fqdn = requester_fqdn
+        self._requester_snpn_list = requester_snpn_list
+        self._target_plmn = target_plmn
+        self._target_snssai_list = target_snssai_list
+        self._target_nsi_list = target_nsi_list
+        self._target_nf_set_id = target_nf_set_id
+        self._target_nf_service_set_id = target_nf_service_set_id
+        self._hnrf_access_token_uri = hnrf_access_token_uri
+        self._source_nf_instance_id = source_nf_instance_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessTokenReq1':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessTokenReq_1 of this AccessTokenReq1.  # noqa: E501
+        :rtype: AccessTokenReq1
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def grant_type(self):
+        """Gets the grant_type of this AccessTokenReq1.
+
+
+        :return: The grant_type of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._grant_type
+
+    @grant_type.setter
+    def grant_type(self, grant_type):
+        """Sets the grant_type of this AccessTokenReq1.
+
+
+        :param grant_type: The grant_type of this AccessTokenReq1.
+        :type grant_type: str
+        """
+        allowed_values = ["client_credentials"]  # noqa: E501
+        if grant_type not in allowed_values:
+            raise ValueError(
+                "Invalid value for `grant_type` ({0}), must be one of {1}"
+                .format(grant_type, allowed_values)
+            )
+
+        self._grant_type = grant_type
+
+    @property
+    def nf_instance_id(self):
+        """Gets the nf_instance_id of this AccessTokenReq1.
+
+        String uniquely identifying a NF instance. The format of the NF Instance ID shall be a  Universally Unique Identifier (UUID) version 4, as described in IETF RFC 4122.    # noqa: E501
+
+        :return: The nf_instance_id of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._nf_instance_id
+
+    @nf_instance_id.setter
+    def nf_instance_id(self, nf_instance_id):
+        """Sets the nf_instance_id of this AccessTokenReq1.
+
+        String uniquely identifying a NF instance. The format of the NF Instance ID shall be a  Universally Unique Identifier (UUID) version 4, as described in IETF RFC 4122.    # noqa: E501
+
+        :param nf_instance_id: The nf_instance_id of this AccessTokenReq1.
+        :type nf_instance_id: str
+        """
+        if nf_instance_id is None:
+            raise ValueError("Invalid value for `nf_instance_id`, must not be `None`")  # noqa: E501
+
+        self._nf_instance_id = nf_instance_id
+
+    @property
+    def nf_type(self):
+        """Gets the nf_type of this AccessTokenReq1.
+
+
+        :return: The nf_type of this AccessTokenReq1.
+        :rtype: NFType
+        """
+        return self._nf_type
+
+    @nf_type.setter
+    def nf_type(self, nf_type):
+        """Sets the nf_type of this AccessTokenReq1.
+
+
+        :param nf_type: The nf_type of this AccessTokenReq1.
+        :type nf_type: NFType
+        """
+
+        self._nf_type = nf_type
+
+    @property
+    def target_nf_type(self):
+        """Gets the target_nf_type of this AccessTokenReq1.
+
+
+        :return: The target_nf_type of this AccessTokenReq1.
+        :rtype: NFType
+        """
+        return self._target_nf_type
+
+    @target_nf_type.setter
+    def target_nf_type(self, target_nf_type):
+        """Sets the target_nf_type of this AccessTokenReq1.
+
+
+        :param target_nf_type: The target_nf_type of this AccessTokenReq1.
+        :type target_nf_type: NFType
+        """
+
+        self._target_nf_type = target_nf_type
+
+    @property
+    def scope(self):
+        """Gets the scope of this AccessTokenReq1.
+
+
+        :return: The scope of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._scope
+
+    @scope.setter
+    def scope(self, scope):
+        """Sets the scope of this AccessTokenReq1.
+
+
+        :param scope: The scope of this AccessTokenReq1.
+        :type scope: str
+        """
+        if scope is None:
+            raise ValueError("Invalid value for `scope`, must not be `None`")  # noqa: E501
+        if scope is not None and not re.search(r'^([a-zA-Z0-9_:-]+)( [a-zA-Z0-9_:-]+)*$', scope):  # noqa: E501
+            raise ValueError("Invalid value for `scope`, must be a follow pattern or equal to `/^([a-zA-Z0-9_:-]+)( [a-zA-Z0-9_:-]+)*$/`")  # noqa: E501
+
+        self._scope = scope
+
+    @property
+    def target_nf_instance_id(self):
+        """Gets the target_nf_instance_id of this AccessTokenReq1.
+
+        String uniquely identifying a NF instance. The format of the NF Instance ID shall be a  Universally Unique Identifier (UUID) version 4, as described in IETF RFC 4122.    # noqa: E501
+
+        :return: The target_nf_instance_id of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._target_nf_instance_id
+
+    @target_nf_instance_id.setter
+    def target_nf_instance_id(self, target_nf_instance_id):
+        """Sets the target_nf_instance_id of this AccessTokenReq1.
+
+        String uniquely identifying a NF instance. The format of the NF Instance ID shall be a  Universally Unique Identifier (UUID) version 4, as described in IETF RFC 4122.    # noqa: E501
+
+        :param target_nf_instance_id: The target_nf_instance_id of this AccessTokenReq1.
+        :type target_nf_instance_id: str
+        """
+
+        self._target_nf_instance_id = target_nf_instance_id
+
+    @property
+    def requester_plmn(self):
+        """Gets the requester_plmn of this AccessTokenReq1.
+
+
+        :return: The requester_plmn of this AccessTokenReq1.
+        :rtype: PlmnId
+        """
+        return self._requester_plmn
+
+    @requester_plmn.setter
+    def requester_plmn(self, requester_plmn):
+        """Sets the requester_plmn of this AccessTokenReq1.
+
+
+        :param requester_plmn: The requester_plmn of this AccessTokenReq1.
+        :type requester_plmn: PlmnId
+        """
+
+        self._requester_plmn = requester_plmn
+
+    @property
+    def requester_plmn_list(self):
+        """Gets the requester_plmn_list of this AccessTokenReq1.
+
+
+        :return: The requester_plmn_list of this AccessTokenReq1.
+        :rtype: List[PlmnId]
+        """
+        return self._requester_plmn_list
+
+    @requester_plmn_list.setter
+    def requester_plmn_list(self, requester_plmn_list):
+        """Sets the requester_plmn_list of this AccessTokenReq1.
+
+
+        :param requester_plmn_list: The requester_plmn_list of this AccessTokenReq1.
+        :type requester_plmn_list: List[PlmnId]
+        """
+        if requester_plmn_list is not None and len(requester_plmn_list) < 2:
+            raise ValueError("Invalid value for `requester_plmn_list`, number of items must be greater than or equal to `2`")  # noqa: E501
+
+        self._requester_plmn_list = requester_plmn_list
+
+    @property
+    def requester_snssai_list(self):
+        """Gets the requester_snssai_list of this AccessTokenReq1.
+
+
+        :return: The requester_snssai_list of this AccessTokenReq1.
+        :rtype: List[Snssai]
+        """
+        return self._requester_snssai_list
+
+    @requester_snssai_list.setter
+    def requester_snssai_list(self, requester_snssai_list):
+        """Sets the requester_snssai_list of this AccessTokenReq1.
+
+
+        :param requester_snssai_list: The requester_snssai_list of this AccessTokenReq1.
+        :type requester_snssai_list: List[Snssai]
+        """
+        if requester_snssai_list is not None and len(requester_snssai_list) < 1:
+            raise ValueError("Invalid value for `requester_snssai_list`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._requester_snssai_list = requester_snssai_list
+
+    @property
+    def requester_fqdn(self):
+        """Gets the requester_fqdn of this AccessTokenReq1.
+
+        Fully Qualified Domain Name  # noqa: E501
+
+        :return: The requester_fqdn of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._requester_fqdn
+
+    @requester_fqdn.setter
+    def requester_fqdn(self, requester_fqdn):
+        """Sets the requester_fqdn of this AccessTokenReq1.
+
+        Fully Qualified Domain Name  # noqa: E501
+
+        :param requester_fqdn: The requester_fqdn of this AccessTokenReq1.
+        :type requester_fqdn: str
+        """
+        if requester_fqdn is not None and len(requester_fqdn) > 253:
+            raise ValueError("Invalid value for `requester_fqdn`, length must be less than or equal to `253`")  # noqa: E501
+        if requester_fqdn is not None and len(requester_fqdn) < 4:
+            raise ValueError("Invalid value for `requester_fqdn`, length must be greater than or equal to `4`")  # noqa: E501
+        if requester_fqdn is not None and not re.search(r'^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\.)+[A-Za-z]{2,63}\.?$', requester_fqdn):  # noqa: E501
+            raise ValueError("Invalid value for `requester_fqdn`, must be a follow pattern or equal to `/^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\.)+[A-Za-z]{2,63}\.?$/`")  # noqa: E501
+
+        self._requester_fqdn = requester_fqdn
+
+    @property
+    def requester_snpn_list(self):
+        """Gets the requester_snpn_list of this AccessTokenReq1.
+
+
+        :return: The requester_snpn_list of this AccessTokenReq1.
+        :rtype: List[PlmnIdNid]
+        """
+        return self._requester_snpn_list
+
+    @requester_snpn_list.setter
+    def requester_snpn_list(self, requester_snpn_list):
+        """Sets the requester_snpn_list of this AccessTokenReq1.
+
+
+        :param requester_snpn_list: The requester_snpn_list of this AccessTokenReq1.
+        :type requester_snpn_list: List[PlmnIdNid]
+        """
+        if requester_snpn_list is not None and len(requester_snpn_list) < 1:
+            raise ValueError("Invalid value for `requester_snpn_list`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._requester_snpn_list = requester_snpn_list
+
+    @property
+    def target_plmn(self):
+        """Gets the target_plmn of this AccessTokenReq1.
+
+
+        :return: The target_plmn of this AccessTokenReq1.
+        :rtype: PlmnId
+        """
+        return self._target_plmn
+
+    @target_plmn.setter
+    def target_plmn(self, target_plmn):
+        """Sets the target_plmn of this AccessTokenReq1.
+
+
+        :param target_plmn: The target_plmn of this AccessTokenReq1.
+        :type target_plmn: PlmnId
+        """
+
+        self._target_plmn = target_plmn
+
+    @property
+    def target_snssai_list(self):
+        """Gets the target_snssai_list of this AccessTokenReq1.
+
+
+        :return: The target_snssai_list of this AccessTokenReq1.
+        :rtype: List[Snssai]
+        """
+        return self._target_snssai_list
+
+    @target_snssai_list.setter
+    def target_snssai_list(self, target_snssai_list):
+        """Sets the target_snssai_list of this AccessTokenReq1.
+
+
+        :param target_snssai_list: The target_snssai_list of this AccessTokenReq1.
+        :type target_snssai_list: List[Snssai]
+        """
+        if target_snssai_list is not None and len(target_snssai_list) < 1:
+            raise ValueError("Invalid value for `target_snssai_list`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._target_snssai_list = target_snssai_list
+
+    @property
+    def target_nsi_list(self):
+        """Gets the target_nsi_list of this AccessTokenReq1.
+
+
+        :return: The target_nsi_list of this AccessTokenReq1.
+        :rtype: List[str]
+        """
+        return self._target_nsi_list
+
+    @target_nsi_list.setter
+    def target_nsi_list(self, target_nsi_list):
+        """Sets the target_nsi_list of this AccessTokenReq1.
+
+
+        :param target_nsi_list: The target_nsi_list of this AccessTokenReq1.
+        :type target_nsi_list: List[str]
+        """
+        if target_nsi_list is not None and len(target_nsi_list) < 1:
+            raise ValueError("Invalid value for `target_nsi_list`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._target_nsi_list = target_nsi_list
+
+    @property
+    def target_nf_set_id(self):
+        """Gets the target_nf_set_id of this AccessTokenReq1.
+
+        NF Set Identifier (see clause 28.12 of 3GPP TS 23.003), formatted as the following string \"set<Set ID>.<nftype>set.5gc.mnc<MNC>.mcc<MCC>\", or  \"set<SetID>.<NFType>set.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\" with  <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)  <MNC> encoding the Mobile Network Code part of the PLMN, comprising 3 digits.    If there are only 2 significant digits in the MNC, one \"0\" digit shall be inserted    at the left side to fill the 3 digits coding of MNC.  Pattern: '^[0-9]{3}$' <NFType> encoded as a value defined in Table 6.1.6.3.3-1 of 3GPP TS 29.510 but    with lower case characters <Set ID> encoded as a string of characters consisting of    alphabetic characters (A-Z and a-z), digits (0-9) and/or the hyphen (-) and that    shall end with either an alphabetic character or a digit.    # noqa: E501
+
+        :return: The target_nf_set_id of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._target_nf_set_id
+
+    @target_nf_set_id.setter
+    def target_nf_set_id(self, target_nf_set_id):
+        """Sets the target_nf_set_id of this AccessTokenReq1.
+
+        NF Set Identifier (see clause 28.12 of 3GPP TS 23.003), formatted as the following string \"set<Set ID>.<nftype>set.5gc.mnc<MNC>.mcc<MCC>\", or  \"set<SetID>.<NFType>set.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\" with  <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)  <MNC> encoding the Mobile Network Code part of the PLMN, comprising 3 digits.    If there are only 2 significant digits in the MNC, one \"0\" digit shall be inserted    at the left side to fill the 3 digits coding of MNC.  Pattern: '^[0-9]{3}$' <NFType> encoded as a value defined in Table 6.1.6.3.3-1 of 3GPP TS 29.510 but    with lower case characters <Set ID> encoded as a string of characters consisting of    alphabetic characters (A-Z and a-z), digits (0-9) and/or the hyphen (-) and that    shall end with either an alphabetic character or a digit.    # noqa: E501
+
+        :param target_nf_set_id: The target_nf_set_id of this AccessTokenReq1.
+        :type target_nf_set_id: str
+        """
+
+        self._target_nf_set_id = target_nf_set_id
+
+    @property
+    def target_nf_service_set_id(self):
+        """Gets the target_nf_service_set_id of this AccessTokenReq1.
+
+        NF Service Set Identifier (see clause 28.12 of 3GPP TS 23.003) formatted as the following  string \"set<Set ID>.sn<Service Name>.nfi<NF Instance ID>.5gc.mnc<MNC>.mcc<MCC>\", or  \"set<SetID>.sn<ServiceName>.nfi<NFInstanceID>.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\" with  <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)   <MNC> encoding the Mobile Network Code part of the PLMN, comprising 3 digits.    If there are only 2 significant digits in the MNC, one \"0\" digit shall be inserted    at the left side to fill the 3 digits coding of MNC.  Pattern: '^[0-9]{3}$' <NID> encoded as defined in clause 5.4.2 (\"Nid\" data type definition)  <NFInstanceId> encoded as defined in clause 5.3.2  <ServiceName> encoded as defined in 3GPP TS 29.510  <Set ID> encoded as a string of characters consisting of alphabetic    characters (A-Z and a-z), digits (0-9) and/or the hyphen (-) and that shall end    with either an alphabetic character or a digit.   # noqa: E501
+
+        :return: The target_nf_service_set_id of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._target_nf_service_set_id
+
+    @target_nf_service_set_id.setter
+    def target_nf_service_set_id(self, target_nf_service_set_id):
+        """Sets the target_nf_service_set_id of this AccessTokenReq1.
+
+        NF Service Set Identifier (see clause 28.12 of 3GPP TS 23.003) formatted as the following  string \"set<Set ID>.sn<Service Name>.nfi<NF Instance ID>.5gc.mnc<MNC>.mcc<MCC>\", or  \"set<SetID>.sn<ServiceName>.nfi<NFInstanceID>.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\" with  <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)   <MNC> encoding the Mobile Network Code part of the PLMN, comprising 3 digits.    If there are only 2 significant digits in the MNC, one \"0\" digit shall be inserted    at the left side to fill the 3 digits coding of MNC.  Pattern: '^[0-9]{3}$' <NID> encoded as defined in clause 5.4.2 (\"Nid\" data type definition)  <NFInstanceId> encoded as defined in clause 5.3.2  <ServiceName> encoded as defined in 3GPP TS 29.510  <Set ID> encoded as a string of characters consisting of alphabetic    characters (A-Z and a-z), digits (0-9) and/or the hyphen (-) and that shall end    with either an alphabetic character or a digit.   # noqa: E501
+
+        :param target_nf_service_set_id: The target_nf_service_set_id of this AccessTokenReq1.
+        :type target_nf_service_set_id: str
+        """
+
+        self._target_nf_service_set_id = target_nf_service_set_id
+
+    @property
+    def hnrf_access_token_uri(self):
+        """Gets the hnrf_access_token_uri of this AccessTokenReq1.
+
+        String providing an URI formatted according to RFC 3986.  # noqa: E501
+
+        :return: The hnrf_access_token_uri of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._hnrf_access_token_uri
+
+    @hnrf_access_token_uri.setter
+    def hnrf_access_token_uri(self, hnrf_access_token_uri):
+        """Sets the hnrf_access_token_uri of this AccessTokenReq1.
+
+        String providing an URI formatted according to RFC 3986.  # noqa: E501
+
+        :param hnrf_access_token_uri: The hnrf_access_token_uri of this AccessTokenReq1.
+        :type hnrf_access_token_uri: str
+        """
+
+        self._hnrf_access_token_uri = hnrf_access_token_uri
+
+    @property
+    def source_nf_instance_id(self):
+        """Gets the source_nf_instance_id of this AccessTokenReq1.
+
+        String uniquely identifying a NF instance. The format of the NF Instance ID shall be a  Universally Unique Identifier (UUID) version 4, as described in IETF RFC 4122.    # noqa: E501
+
+        :return: The source_nf_instance_id of this AccessTokenReq1.
+        :rtype: str
+        """
+        return self._source_nf_instance_id
+
+    @source_nf_instance_id.setter
+    def source_nf_instance_id(self, source_nf_instance_id):
+        """Sets the source_nf_instance_id of this AccessTokenReq1.
+
+        String uniquely identifying a NF instance. The format of the NF Instance ID shall be a  Universally Unique Identifier (UUID) version 4, as described in IETF RFC 4122.    # noqa: E501
+
+        :param source_nf_instance_id: The source_nf_instance_id of this AccessTokenReq1.
+        :type source_nf_instance_id: str
+        """
+
+        self._source_nf_instance_id = source_nf_instance_id
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_rsp.py b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_rsp.py
new file mode 100644
index 0000000..57f6720
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/access_token_rsp.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class AccessTokenRsp(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, access_token=None, token_type=None, expires_in=None, scope=None):  # noqa: E501
+        """AccessTokenRsp - a model defined in OpenAPI
+
+        :param access_token: The access_token of this AccessTokenRsp.  # noqa: E501
+        :type access_token: str
+        :param token_type: The token_type of this AccessTokenRsp.  # noqa: E501
+        :type token_type: str
+        :param expires_in: The expires_in of this AccessTokenRsp.  # noqa: E501
+        :type expires_in: int
+        :param scope: The scope of this AccessTokenRsp.  # noqa: E501
+        :type scope: str
+        """
+        self.openapi_types = {
+            'access_token': str,
+            'token_type': str,
+            'expires_in': int,
+            'scope': str
+        }
+
+        self.attribute_map = {
+            'access_token': 'access_token',
+            'token_type': 'token_type',
+            'expires_in': 'expires_in',
+            'scope': 'scope'
+        }
+
+        self._access_token = access_token
+        self._token_type = token_type
+        self._expires_in = expires_in
+        self._scope = scope
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'AccessTokenRsp':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The AccessTokenRsp of this AccessTokenRsp.  # noqa: E501
+        :rtype: AccessTokenRsp
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def access_token(self):
+        """Gets the access_token of this AccessTokenRsp.
+
+        JWS Compact Serialized representation of JWS signed JSON object (AccessTokenClaims)   # noqa: E501
+
+        :return: The access_token of this AccessTokenRsp.
+        :rtype: str
+        """
+        return self._access_token
+
+    @access_token.setter
+    def access_token(self, access_token):
+        """Sets the access_token of this AccessTokenRsp.
+
+        JWS Compact Serialized representation of JWS signed JSON object (AccessTokenClaims)   # noqa: E501
+
+        :param access_token: The access_token of this AccessTokenRsp.
+        :type access_token: str
+        """
+        if access_token is None:
+            raise ValueError("Invalid value for `access_token`, must not be `None`")  # noqa: E501
+
+        self._access_token = access_token
+
+    @property
+    def token_type(self):
+        """Gets the token_type of this AccessTokenRsp.
+
+
+        :return: The token_type of this AccessTokenRsp.
+        :rtype: str
+        """
+        return self._token_type
+
+    @token_type.setter
+    def token_type(self, token_type):
+        """Sets the token_type of this AccessTokenRsp.
+
+
+        :param token_type: The token_type of this AccessTokenRsp.
+        :type token_type: str
+        """
+        allowed_values = ["Bearer"]  # noqa: E501
+        if token_type not in allowed_values:
+            raise ValueError(
+                "Invalid value for `token_type` ({0}), must be one of {1}"
+                .format(token_type, allowed_values)
+            )
+
+        self._token_type = token_type
+
+    @property
+    def expires_in(self):
+        """Gets the expires_in of this AccessTokenRsp.
+
+        Unsigned integer identifying a period of time in units of seconds.  # noqa: E501
+
+        :return: The expires_in of this AccessTokenRsp.
+        :rtype: int
+        """
+        return self._expires_in
+
+    @expires_in.setter
+    def expires_in(self, expires_in):
+        """Sets the expires_in of this AccessTokenRsp.
+
+        Unsigned integer identifying a period of time in units of seconds.  # noqa: E501
+
+        :param expires_in: The expires_in of this AccessTokenRsp.
+        :type expires_in: int
+        """
+        if expires_in is None:
+            raise ValueError("Invalid value for `expires_in`, must not be `None`")  # noqa: E501
+        if expires_in is not None and expires_in < 0:  # noqa: E501
+            raise ValueError("Invalid value for `expires_in`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._expires_in = expires_in
+
+    @property
+    def scope(self):
+        """Gets the scope of this AccessTokenRsp.
+
+
+        :return: The scope of this AccessTokenRsp.
+        :rtype: str
+        """
+        return self._scope
+
+    @scope.setter
+    def scope(self, scope):
+        """Sets the scope of this AccessTokenRsp.
+
+
+        :param scope: The scope of this AccessTokenRsp.
+        :type scope: str
+        """
+
+        self._scope = scope
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/base_model_.py b/services/TS29222_CAPIF_Security_API/capif_security/models/base_model_.py
new file mode 100644
index 0000000..e8f6832
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/base_model_.py
@@ -0,0 +1,69 @@
+import pprint
+
+import six
+import typing
+
+from capif_security import util
+
+T = typing.TypeVar('T')
+
+
+class Model():
+    # openapiTypes: The key is attribute name and the
+    # value is attribute type.
+    openapi_types: typing.Dict[str, type] = {}
+
+    # attributeMap: The key is attribute name and the
+    # value is json key in definition.
+    attribute_map: typing.Dict[str, str] = {}
+
+    @classmethod
+    def from_dict(cls: typing.Type[T], dikt) -> T:
+        """Returns the dict as a model"""
+        return util.deserialize_model(dikt, cls)
+
+    def to_dict(self):
+        """Returns the model properties as a dict
+
+        :rtype: dict
+        """
+        result = {}
+
+        for attr, _ in six.iteritems(self.openapi_types):
+            value = getattr(self, attr)
+            if isinstance(value, list):
+                result[attr] = list(map(
+                    lambda x: x.to_dict() if hasattr(x, "to_dict") else x,
+                    value
+                ))
+            elif hasattr(value, "to_dict"):
+                result[attr] = value.to_dict()
+            elif isinstance(value, dict):
+                result[attr] = dict(map(
+                    lambda item: (item[0], item[1].to_dict())
+                    if hasattr(item[1], "to_dict") else item,
+                    value.items()
+                ))
+            else:
+                result[attr] = value
+
+        return result
+
+    def to_str(self):
+        """Returns the string representation of the model
+
+        :rtype: str
+        """
+        return pprint.pformat(self.to_dict())
+
+    def __repr__(self):
+        """For `print` and `pprint`"""
+        return self.to_str()
+
+    def __eq__(self, other):
+        """Returns true if both objects are equal"""
+        return self.__dict__ == other.__dict__
+
+    def __ne__(self, other):
+        """Returns true if both objects are not equal"""
+        return not self == other
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/cause.py b/services/TS29222_CAPIF_Security_API/capif_security/models/cause.py
new file mode 100644
index 0000000..a93f5a8
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/cause.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.cause_any_of import CauseAnyOf
+from capif_security import util
+
+from capif_security.models.cause_any_of import CauseAnyOf  # noqa: E501
+
+class Cause(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """Cause - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Cause':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Cause of this Cause.  # noqa: E501
+        :rtype: Cause
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/cause_any_of.py b/services/TS29222_CAPIF_Security_API/capif_security/models/cause_any_of.py
new file mode 100644
index 0000000..64b601c
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/cause_any_of.py
@@ -0,0 +1,42 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class CauseAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    OVERLIMIT_USAGE = "OVERLIMIT_USAGE"
+    UNEXPECTED_REASON = "UNEXPECTED_REASON"
+    def __init__(self):  # noqa: E501
+        """CauseAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'CauseAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Cause_anyOf of this CauseAnyOf.  # noqa: E501
+        :rtype: CauseAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/interface_description.py b/services/TS29222_CAPIF_Security_API/capif_security/models/interface_description.py
new file mode 100644
index 0000000..546ef7f
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/interface_description.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.security_method import SecurityMethod
+from capif_security import util
+
+from capif_security.models.security_method import SecurityMethod  # noqa: E501
+
+class InterfaceDescription(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, ipv4_addr=None, ipv6_addr=None, port=None, security_methods=None):  # noqa: E501
+        """InterfaceDescription - a model defined in OpenAPI
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv4_addr: str
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.  # noqa: E501
+        :type ipv6_addr: str
+        :param port: The port of this InterfaceDescription.  # noqa: E501
+        :type port: int
+        :param security_methods: The security_methods of this InterfaceDescription.  # noqa: E501
+        :type security_methods: List[SecurityMethod]
+        """
+        self.openapi_types = {
+            'ipv4_addr': str,
+            'ipv6_addr': str,
+            'port': int,
+            'security_methods': List[SecurityMethod]
+        }
+
+        self.attribute_map = {
+            'ipv4_addr': 'ipv4Addr',
+            'ipv6_addr': 'ipv6Addr',
+            'port': 'port',
+            'security_methods': 'securityMethods'
+        }
+
+        self._ipv4_addr = ipv4_addr
+        self._ipv6_addr = ipv6_addr
+        self._port = port
+        self._security_methods = security_methods
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InterfaceDescription':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InterfaceDescription of this InterfaceDescription.  # noqa: E501
+        :rtype: InterfaceDescription
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def ipv4_addr(self):
+        """Gets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :return: The ipv4_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv4_addr
+
+    @ipv4_addr.setter
+    def ipv4_addr(self, ipv4_addr):
+        """Sets the ipv4_addr of this InterfaceDescription.
+
+        string identifying a Ipv4 address formatted in the \"dotted decimal\" notation as defined in IETF RFC 1166.  # noqa: E501
+
+        :param ipv4_addr: The ipv4_addr of this InterfaceDescription.
+        :type ipv4_addr: str
+        """
+
+        self._ipv4_addr = ipv4_addr
+
+    @property
+    def ipv6_addr(self):
+        """Gets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :return: The ipv6_addr of this InterfaceDescription.
+        :rtype: str
+        """
+        return self._ipv6_addr
+
+    @ipv6_addr.setter
+    def ipv6_addr(self, ipv6_addr):
+        """Sets the ipv6_addr of this InterfaceDescription.
+
+        string identifying a Ipv6 address formatted according to clause 4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of IETF RFC 5952 shall not be used.  # noqa: E501
+
+        :param ipv6_addr: The ipv6_addr of this InterfaceDescription.
+        :type ipv6_addr: str
+        """
+
+        self._ipv6_addr = ipv6_addr
+
+    @property
+    def port(self):
+        """Gets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :return: The port of this InterfaceDescription.
+        :rtype: int
+        """
+        return self._port
+
+    @port.setter
+    def port(self, port):
+        """Sets the port of this InterfaceDescription.
+
+        Unsigned integer with valid values between 0 and 65535.  # noqa: E501
+
+        :param port: The port of this InterfaceDescription.
+        :type port: int
+        """
+        if port is not None and port > 65535:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value less than or equal to `65535`")  # noqa: E501
+        if port is not None and port < 0:  # noqa: E501
+            raise ValueError("Invalid value for `port`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._port = port
+
+    @property
+    def security_methods(self):
+        """Gets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.   # noqa: E501
+
+        :return: The security_methods of this InterfaceDescription.
+        :rtype: List[SecurityMethod]
+        """
+        return self._security_methods
+
+    @security_methods.setter
+    def security_methods(self, security_methods):
+        """Sets the security_methods of this InterfaceDescription.
+
+        Security methods supported by the interface, it take precedence over the security methods provided in AefProfile, for this specific interface.   # noqa: E501
+
+        :param security_methods: The security_methods of this InterfaceDescription.
+        :type security_methods: List[SecurityMethod]
+        """
+        if security_methods is not None and len(security_methods) < 1:
+            raise ValueError("Invalid value for `security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._security_methods = security_methods
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param.py b/services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param.py
new file mode 100644
index 0000000..3cf97a3
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class InvalidParam(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam of this InvalidParam.  # noqa: E501
+        :rtype: InvalidParam
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :return: The param of this InvalidParam.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam.
+
+        Attribute's name encoded as a JSON Pointer, or header's name.  # noqa: E501
+
+        :param param: The param of this InvalidParam.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :return: The reason of this InvalidParam.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam.
+
+        A human-readable reason, e.g. \"must be a positive integer\".  # noqa: E501
+
+        :param reason: The reason of this InvalidParam.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param1.py b/services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param1.py
new file mode 100644
index 0000000..93fbd3a
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/invalid_param1.py
@@ -0,0 +1,96 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class InvalidParam1(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, param=None, reason=None):  # noqa: E501
+        """InvalidParam1 - a model defined in OpenAPI
+
+        :param param: The param of this InvalidParam1.  # noqa: E501
+        :type param: str
+        :param reason: The reason of this InvalidParam1.  # noqa: E501
+        :type reason: str
+        """
+        self.openapi_types = {
+            'param': str,
+            'reason': str
+        }
+
+        self.attribute_map = {
+            'param': 'param',
+            'reason': 'reason'
+        }
+
+        self._param = param
+        self._reason = reason
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'InvalidParam1':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The InvalidParam_1 of this InvalidParam1.  # noqa: E501
+        :rtype: InvalidParam1
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def param(self):
+        """Gets the param of this InvalidParam1.
+
+        If the invalid parameter is an attribute in a JSON body, this IE shall contain the  attribute's name and shall be encoded as a JSON Pointer. If the invalid parameter is  an HTTP header, this IE shall be formatted as the concatenation of the string \"header \"  plus the name of such header. If the invalid parameter is a query parameter, this IE  shall be formatted as the concatenation of the string \"query \" plus the name of such  query parameter. If the invalid parameter is a variable part in the path of a resource  URI, this IE shall contain the name of the variable, including the symbols \"{\" and \"}\"  used in OpenAPI specification as the notation to represent variable path segments.   # noqa: E501
+
+        :return: The param of this InvalidParam1.
+        :rtype: str
+        """
+        return self._param
+
+    @param.setter
+    def param(self, param):
+        """Sets the param of this InvalidParam1.
+
+        If the invalid parameter is an attribute in a JSON body, this IE shall contain the  attribute's name and shall be encoded as a JSON Pointer. If the invalid parameter is  an HTTP header, this IE shall be formatted as the concatenation of the string \"header \"  plus the name of such header. If the invalid parameter is a query parameter, this IE  shall be formatted as the concatenation of the string \"query \" plus the name of such  query parameter. If the invalid parameter is a variable part in the path of a resource  URI, this IE shall contain the name of the variable, including the symbols \"{\" and \"}\"  used in OpenAPI specification as the notation to represent variable path segments.   # noqa: E501
+
+        :param param: The param of this InvalidParam1.
+        :type param: str
+        """
+        if param is None:
+            raise ValueError("Invalid value for `param`, must not be `None`")  # noqa: E501
+
+        self._param = param
+
+    @property
+    def reason(self):
+        """Gets the reason of this InvalidParam1.
+
+        A human-readable reason, e.g. \"must be a positive integer\". In cases involving failed  operations in a PATCH request, the reason string should identify the operation that  failed using the operation's array index to assist in correlation of the invalid  parameter with the failed operation, e.g.\" Replacement value invalid for attribute  (failed operation index= 4)\"   # noqa: E501
+
+        :return: The reason of this InvalidParam1.
+        :rtype: str
+        """
+        return self._reason
+
+    @reason.setter
+    def reason(self, reason):
+        """Sets the reason of this InvalidParam1.
+
+        A human-readable reason, e.g. \"must be a positive integer\". In cases involving failed  operations in a PATCH request, the reason string should identify the operation that  failed using the operation's array index to assist in correlation of the invalid  parameter with the failed operation, e.g.\" Replacement value invalid for attribute  (failed operation index= 4)\"   # noqa: E501
+
+        :param reason: The reason of this InvalidParam1.
+        :type reason: str
+        """
+
+        self._reason = reason
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/nf_type.py b/services/TS29222_CAPIF_Security_API/capif_security/models/nf_type.py
new file mode 100644
index 0000000..78c0598
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/nf_type.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.nf_type_any_of import NFTypeAnyOf
+from capif_security import util
+
+from capif_security.models.nf_type_any_of import NFTypeAnyOf  # noqa: E501
+
+class NFType(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """NFType - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'NFType':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The NFType of this NFType.  # noqa: E501
+        :rtype: NFType
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/nf_type_any_of.py b/services/TS29222_CAPIF_Security_API/capif_security/models/nf_type_any_of.py
new file mode 100644
index 0000000..5638ef9
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/nf_type_any_of.py
@@ -0,0 +1,95 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class NFTypeAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    NRF = "NRF"
+    UDM = "UDM"
+    AMF = "AMF"
+    SMF = "SMF"
+    AUSF = "AUSF"
+    NEF = "NEF"
+    PCF = "PCF"
+    SMSF = "SMSF"
+    NSSF = "NSSF"
+    UDR = "UDR"
+    LMF = "LMF"
+    GMLC = "GMLC"
+    _5G_EIR = "5G_EIR"
+    SEPP = "SEPP"
+    UPF = "UPF"
+    N3IWF = "N3IWF"
+    AF = "AF"
+    UDSF = "UDSF"
+    BSF = "BSF"
+    CHF = "CHF"
+    NWDAF = "NWDAF"
+    PCSCF = "PCSCF"
+    CBCF = "CBCF"
+    HSS = "HSS"
+    UCMF = "UCMF"
+    SOR_AF = "SOR_AF"
+    SPAF = "SPAF"
+    MME = "MME"
+    SCSAS = "SCSAS"
+    SCEF = "SCEF"
+    SCP = "SCP"
+    NSSAAF = "NSSAAF"
+    ICSCF = "ICSCF"
+    SCSCF = "SCSCF"
+    DRA = "DRA"
+    IMS_AS = "IMS_AS"
+    AANF = "AANF"
+    _5G_DDNMF = "5G_DDNMF"
+    NSACF = "NSACF"
+    MFAF = "MFAF"
+    EASDF = "EASDF"
+    DCCF = "DCCF"
+    MB_SMF = "MB_SMF"
+    TSCTSF = "TSCTSF"
+    ADRF = "ADRF"
+    GBA_BSF = "GBA_BSF"
+    CEF = "CEF"
+    MB_UPF = "MB_UPF"
+    NSWOF = "NSWOF"
+    PKMF = "PKMF"
+    MNPF = "MNPF"
+    SMS_GMSC = "SMS_GMSC"
+    SMS_IWMSC = "SMS_IWMSC"
+    MBSF = "MBSF"
+    MBSTF = "MBSTF"
+    def __init__(self):  # noqa: E501
+        """NFTypeAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'NFTypeAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The NFType_anyOf of this NFTypeAnyOf.  # noqa: E501
+        :rtype: NFTypeAnyOf
+        """
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id.py b/services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id.py
new file mode 100644
index 0000000..1a0dfce
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id.py
@@ -0,0 +1,104 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+import re
+from capif_security import util
+
+import re  # noqa: E501
+
+class PlmnId(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, mcc=None, mnc=None):  # noqa: E501
+        """PlmnId - a model defined in OpenAPI
+
+        :param mcc: The mcc of this PlmnId.  # noqa: E501
+        :type mcc: str
+        :param mnc: The mnc of this PlmnId.  # noqa: E501
+        :type mnc: str
+        """
+        self.openapi_types = {
+            'mcc': str,
+            'mnc': str
+        }
+
+        self.attribute_map = {
+            'mcc': 'mcc',
+            'mnc': 'mnc'
+        }
+
+        self._mcc = mcc
+        self._mnc = mnc
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PlmnId':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PlmnId of this PlmnId.  # noqa: E501
+        :rtype: PlmnId
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def mcc(self):
+        """Gets the mcc of this PlmnId.
+
+        Mobile Country Code part of the PLMN, comprising 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.    # noqa: E501
+
+        :return: The mcc of this PlmnId.
+        :rtype: str
+        """
+        return self._mcc
+
+    @mcc.setter
+    def mcc(self, mcc):
+        """Sets the mcc of this PlmnId.
+
+        Mobile Country Code part of the PLMN, comprising 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.    # noqa: E501
+
+        :param mcc: The mcc of this PlmnId.
+        :type mcc: str
+        """
+        if mcc is None:
+            raise ValueError("Invalid value for `mcc`, must not be `None`")  # noqa: E501
+        if mcc is not None and not re.search(r'^\d{3}$', mcc):  # noqa: E501
+            raise ValueError("Invalid value for `mcc`, must be a follow pattern or equal to `/^\d{3}$/`")  # noqa: E501
+
+        self._mcc = mcc
+
+    @property
+    def mnc(self):
+        """Gets the mnc of this PlmnId.
+
+        Mobile Network Code part of the PLMN, comprising 2 or 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.  # noqa: E501
+
+        :return: The mnc of this PlmnId.
+        :rtype: str
+        """
+        return self._mnc
+
+    @mnc.setter
+    def mnc(self, mnc):
+        """Sets the mnc of this PlmnId.
+
+        Mobile Network Code part of the PLMN, comprising 2 or 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.  # noqa: E501
+
+        :param mnc: The mnc of this PlmnId.
+        :type mnc: str
+        """
+        if mnc is None:
+            raise ValueError("Invalid value for `mnc`, must not be `None`")  # noqa: E501
+        if mnc is not None and not re.search(r'^\d{2,3}$', mnc):  # noqa: E501
+            raise ValueError("Invalid value for `mnc`, must be a follow pattern or equal to `/^\d{2,3}$/`")  # noqa: E501
+
+        self._mnc = mnc
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id_nid.py b/services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id_nid.py
new file mode 100644
index 0000000..bf2a0a4
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/plmn_id_nid.py
@@ -0,0 +1,134 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+import re
+from capif_security import util
+
+import re  # noqa: E501
+
+class PlmnIdNid(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, mcc=None, mnc=None, nid=None):  # noqa: E501
+        """PlmnIdNid - a model defined in OpenAPI
+
+        :param mcc: The mcc of this PlmnIdNid.  # noqa: E501
+        :type mcc: str
+        :param mnc: The mnc of this PlmnIdNid.  # noqa: E501
+        :type mnc: str
+        :param nid: The nid of this PlmnIdNid.  # noqa: E501
+        :type nid: str
+        """
+        self.openapi_types = {
+            'mcc': str,
+            'mnc': str,
+            'nid': str
+        }
+
+        self.attribute_map = {
+            'mcc': 'mcc',
+            'mnc': 'mnc',
+            'nid': 'nid'
+        }
+
+        self._mcc = mcc
+        self._mnc = mnc
+        self._nid = nid
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'PlmnIdNid':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The PlmnIdNid of this PlmnIdNid.  # noqa: E501
+        :rtype: PlmnIdNid
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def mcc(self):
+        """Gets the mcc of this PlmnIdNid.
+
+        Mobile Country Code part of the PLMN, comprising 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.    # noqa: E501
+
+        :return: The mcc of this PlmnIdNid.
+        :rtype: str
+        """
+        return self._mcc
+
+    @mcc.setter
+    def mcc(self, mcc):
+        """Sets the mcc of this PlmnIdNid.
+
+        Mobile Country Code part of the PLMN, comprising 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.    # noqa: E501
+
+        :param mcc: The mcc of this PlmnIdNid.
+        :type mcc: str
+        """
+        if mcc is None:
+            raise ValueError("Invalid value for `mcc`, must not be `None`")  # noqa: E501
+        if mcc is not None and not re.search(r'^\d{3}$', mcc):  # noqa: E501
+            raise ValueError("Invalid value for `mcc`, must be a follow pattern or equal to `/^\d{3}$/`")  # noqa: E501
+
+        self._mcc = mcc
+
+    @property
+    def mnc(self):
+        """Gets the mnc of this PlmnIdNid.
+
+        Mobile Network Code part of the PLMN, comprising 2 or 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.  # noqa: E501
+
+        :return: The mnc of this PlmnIdNid.
+        :rtype: str
+        """
+        return self._mnc
+
+    @mnc.setter
+    def mnc(self, mnc):
+        """Sets the mnc of this PlmnIdNid.
+
+        Mobile Network Code part of the PLMN, comprising 2 or 3 digits, as defined in clause 9.3.3.5 of 3GPP TS 38.413.  # noqa: E501
+
+        :param mnc: The mnc of this PlmnIdNid.
+        :type mnc: str
+        """
+        if mnc is None:
+            raise ValueError("Invalid value for `mnc`, must not be `None`")  # noqa: E501
+        if mnc is not None and not re.search(r'^\d{2,3}$', mnc):  # noqa: E501
+            raise ValueError("Invalid value for `mnc`, must be a follow pattern or equal to `/^\d{2,3}$/`")  # noqa: E501
+
+        self._mnc = mnc
+
+    @property
+    def nid(self):
+        """Gets the nid of this PlmnIdNid.
+
+        This represents the Network Identifier, which together with a PLMN ID is used to identify an SNPN (see 3GPP TS 23.003 and 3GPP TS 23.501 clause 5.30.2.1).    # noqa: E501
+
+        :return: The nid of this PlmnIdNid.
+        :rtype: str
+        """
+        return self._nid
+
+    @nid.setter
+    def nid(self, nid):
+        """Sets the nid of this PlmnIdNid.
+
+        This represents the Network Identifier, which together with a PLMN ID is used to identify an SNPN (see 3GPP TS 23.003 and 3GPP TS 23.501 clause 5.30.2.1).    # noqa: E501
+
+        :param nid: The nid of this PlmnIdNid.
+        :type nid: str
+        """
+        if nid is not None and not re.search(r'^[A-Fa-f0-9]{11}$', nid):  # noqa: E501
+            raise ValueError("Invalid value for `nid`, must be a follow pattern or equal to `/^[A-Fa-f0-9]{11}$/`")  # noqa: E501
+
+        self._nid = nid
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/problem_details.py b/services/TS29222_CAPIF_Security_API/capif_security/models/problem_details.py
new file mode 100644
index 0000000..e0708a2
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/problem_details.py
@@ -0,0 +1,270 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.invalid_param import InvalidParam
+import re
+from capif_security import util
+
+from capif_security.models.invalid_param import InvalidParam  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None):  # noqa: E501
+        """ProblemDetails - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails.  # noqa: E501
+        :type invalid_params: List[InvalidParam]
+        :param supported_features: The supported_features of this ProblemDetails.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam],
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails of this ProblemDetails.  # noqa: E501
+        :rtype: ProblemDetails
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :return: The title of this ProblemDetails.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails.
+
+        A short, human-readable summary of the problem type. It should not change from occurrence to occurrence of the problem.  # noqa: E501
+
+        :param title: The title of this ProblemDetails.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :return: The status of this ProblemDetails.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails.
+
+        The HTTP status code for this occurrence of the problem.  # noqa: E501
+
+        :param status: The status of this ProblemDetails.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :return: The cause of this ProblemDetails.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails.
+
+        A machine-readable application error cause specific to this occurrence of the problem. This IE should be present and provide application-related error information, if available.  # noqa: E501
+
+        :param cause: The cause of this ProblemDetails.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :return: The invalid_params of this ProblemDetails.
+        :rtype: List[InvalidParam]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails.
+
+        Description of invalid parameters, for a request rejected due to invalid parameters.  # noqa: E501
+
+        :param invalid_params: The invalid_params of this ProblemDetails.
+        :type invalid_params: List[InvalidParam]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :return: The supported_features of this ProblemDetails.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/problem_details1.py b/services/TS29222_CAPIF_Security_API/capif_security/models/problem_details1.py
new file mode 100644
index 0000000..584e1a8
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/problem_details1.py
@@ -0,0 +1,354 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.access_token_err1 import AccessTokenErr1
+from capif_security.models.access_token_req1 import AccessTokenReq1
+from capif_security.models.invalid_param1 import InvalidParam1
+import re
+from capif_security import util
+
+from capif_security.models.access_token_err1 import AccessTokenErr1  # noqa: E501
+from capif_security.models.access_token_req1 import AccessTokenReq1  # noqa: E501
+from capif_security.models.invalid_param1 import InvalidParam1  # noqa: E501
+import re  # noqa: E501
+
+class ProblemDetails1(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, type=None, title=None, status=None, detail=None, instance=None, cause=None, invalid_params=None, supported_features=None, access_token_error=None, access_token_request=None, nrf_id=None):  # noqa: E501
+        """ProblemDetails1 - a model defined in OpenAPI
+
+        :param type: The type of this ProblemDetails1.  # noqa: E501
+        :type type: str
+        :param title: The title of this ProblemDetails1.  # noqa: E501
+        :type title: str
+        :param status: The status of this ProblemDetails1.  # noqa: E501
+        :type status: int
+        :param detail: The detail of this ProblemDetails1.  # noqa: E501
+        :type detail: str
+        :param instance: The instance of this ProblemDetails1.  # noqa: E501
+        :type instance: str
+        :param cause: The cause of this ProblemDetails1.  # noqa: E501
+        :type cause: str
+        :param invalid_params: The invalid_params of this ProblemDetails1.  # noqa: E501
+        :type invalid_params: List[InvalidParam1]
+        :param supported_features: The supported_features of this ProblemDetails1.  # noqa: E501
+        :type supported_features: str
+        :param access_token_error: The access_token_error of this ProblemDetails1.  # noqa: E501
+        :type access_token_error: AccessTokenErr1
+        :param access_token_request: The access_token_request of this ProblemDetails1.  # noqa: E501
+        :type access_token_request: AccessTokenReq1
+        :param nrf_id: The nrf_id of this ProblemDetails1.  # noqa: E501
+        :type nrf_id: str
+        """
+        self.openapi_types = {
+            'type': str,
+            'title': str,
+            'status': int,
+            'detail': str,
+            'instance': str,
+            'cause': str,
+            'invalid_params': List[InvalidParam1],
+            'supported_features': str,
+            'access_token_error': AccessTokenErr1,
+            'access_token_request': AccessTokenReq1,
+            'nrf_id': str
+        }
+
+        self.attribute_map = {
+            'type': 'type',
+            'title': 'title',
+            'status': 'status',
+            'detail': 'detail',
+            'instance': 'instance',
+            'cause': 'cause',
+            'invalid_params': 'invalidParams',
+            'supported_features': 'supportedFeatures',
+            'access_token_error': 'accessTokenError',
+            'access_token_request': 'accessTokenRequest',
+            'nrf_id': 'nrfId'
+        }
+
+        self._type = type
+        self._title = title
+        self._status = status
+        self._detail = detail
+        self._instance = instance
+        self._cause = cause
+        self._invalid_params = invalid_params
+        self._supported_features = supported_features
+        self._access_token_error = access_token_error
+        self._access_token_request = access_token_request
+        self._nrf_id = nrf_id
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ProblemDetails1':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ProblemDetails_1 of this ProblemDetails1.  # noqa: E501
+        :rtype: ProblemDetails1
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def type(self):
+        """Gets the type of this ProblemDetails1.
+
+        String providing an URI formatted according to RFC 3986.  # noqa: E501
+
+        :return: The type of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._type
+
+    @type.setter
+    def type(self, type):
+        """Sets the type of this ProblemDetails1.
+
+        String providing an URI formatted according to RFC 3986.  # noqa: E501
+
+        :param type: The type of this ProblemDetails1.
+        :type type: str
+        """
+
+        self._type = type
+
+    @property
+    def title(self):
+        """Gets the title of this ProblemDetails1.
+
+
+        :return: The title of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._title
+
+    @title.setter
+    def title(self, title):
+        """Sets the title of this ProblemDetails1.
+
+
+        :param title: The title of this ProblemDetails1.
+        :type title: str
+        """
+
+        self._title = title
+
+    @property
+    def status(self):
+        """Gets the status of this ProblemDetails1.
+
+
+        :return: The status of this ProblemDetails1.
+        :rtype: int
+        """
+        return self._status
+
+    @status.setter
+    def status(self, status):
+        """Sets the status of this ProblemDetails1.
+
+
+        :param status: The status of this ProblemDetails1.
+        :type status: int
+        """
+
+        self._status = status
+
+    @property
+    def detail(self):
+        """Gets the detail of this ProblemDetails1.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :return: The detail of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._detail
+
+    @detail.setter
+    def detail(self, detail):
+        """Sets the detail of this ProblemDetails1.
+
+        A human-readable explanation specific to this occurrence of the problem.  # noqa: E501
+
+        :param detail: The detail of this ProblemDetails1.
+        :type detail: str
+        """
+
+        self._detail = detail
+
+    @property
+    def instance(self):
+        """Gets the instance of this ProblemDetails1.
+
+        String providing an URI formatted according to RFC 3986.  # noqa: E501
+
+        :return: The instance of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._instance
+
+    @instance.setter
+    def instance(self, instance):
+        """Sets the instance of this ProblemDetails1.
+
+        String providing an URI formatted according to RFC 3986.  # noqa: E501
+
+        :param instance: The instance of this ProblemDetails1.
+        :type instance: str
+        """
+
+        self._instance = instance
+
+    @property
+    def cause(self):
+        """Gets the cause of this ProblemDetails1.
+
+        A machine-readable application error cause specific to this occurrence of the problem.  This IE should be present and provide application-related error information, if available.   # noqa: E501
+
+        :return: The cause of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this ProblemDetails1.
+
+        A machine-readable application error cause specific to this occurrence of the problem.  This IE should be present and provide application-related error information, if available.   # noqa: E501
+
+        :param cause: The cause of this ProblemDetails1.
+        :type cause: str
+        """
+
+        self._cause = cause
+
+    @property
+    def invalid_params(self):
+        """Gets the invalid_params of this ProblemDetails1.
+
+
+        :return: The invalid_params of this ProblemDetails1.
+        :rtype: List[InvalidParam1]
+        """
+        return self._invalid_params
+
+    @invalid_params.setter
+    def invalid_params(self, invalid_params):
+        """Sets the invalid_params of this ProblemDetails1.
+
+
+        :param invalid_params: The invalid_params of this ProblemDetails1.
+        :type invalid_params: List[InvalidParam1]
+        """
+        if invalid_params is not None and len(invalid_params) < 1:
+            raise ValueError("Invalid value for `invalid_params`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._invalid_params = invalid_params
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ProblemDetails1.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :return: The supported_features of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ProblemDetails1.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :param supported_features: The supported_features of this ProblemDetails1.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
+
+    @property
+    def access_token_error(self):
+        """Gets the access_token_error of this ProblemDetails1.
+
+
+        :return: The access_token_error of this ProblemDetails1.
+        :rtype: AccessTokenErr1
+        """
+        return self._access_token_error
+
+    @access_token_error.setter
+    def access_token_error(self, access_token_error):
+        """Sets the access_token_error of this ProblemDetails1.
+
+
+        :param access_token_error: The access_token_error of this ProblemDetails1.
+        :type access_token_error: AccessTokenErr1
+        """
+
+        self._access_token_error = access_token_error
+
+    @property
+    def access_token_request(self):
+        """Gets the access_token_request of this ProblemDetails1.
+
+
+        :return: The access_token_request of this ProblemDetails1.
+        :rtype: AccessTokenReq1
+        """
+        return self._access_token_request
+
+    @access_token_request.setter
+    def access_token_request(self, access_token_request):
+        """Sets the access_token_request of this ProblemDetails1.
+
+
+        :param access_token_request: The access_token_request of this ProblemDetails1.
+        :type access_token_request: AccessTokenReq1
+        """
+
+        self._access_token_request = access_token_request
+
+    @property
+    def nrf_id(self):
+        """Gets the nrf_id of this ProblemDetails1.
+
+        Fully Qualified Domain Name  # noqa: E501
+
+        :return: The nrf_id of this ProblemDetails1.
+        :rtype: str
+        """
+        return self._nrf_id
+
+    @nrf_id.setter
+    def nrf_id(self, nrf_id):
+        """Sets the nrf_id of this ProblemDetails1.
+
+        Fully Qualified Domain Name  # noqa: E501
+
+        :param nrf_id: The nrf_id of this ProblemDetails1.
+        :type nrf_id: str
+        """
+        if nrf_id is not None and len(nrf_id) > 253:
+            raise ValueError("Invalid value for `nrf_id`, length must be less than or equal to `253`")  # noqa: E501
+        if nrf_id is not None and len(nrf_id) < 4:
+            raise ValueError("Invalid value for `nrf_id`, length must be greater than or equal to `4`")  # noqa: E501
+        if nrf_id is not None and not re.search(r'^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\.)+[A-Za-z]{2,63}\.?$', nrf_id):  # noqa: E501
+            raise ValueError("Invalid value for `nrf_id`, must be a follow pattern or equal to `/^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\.)+[A-Za-z]{2,63}\.?$/`")  # noqa: E501
+
+        self._nrf_id = nrf_id
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/security_information.py b/services/TS29222_CAPIF_Security_API/capif_security/models/security_information.py
new file mode 100644
index 0000000..07368ef
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/security_information.py
@@ -0,0 +1,239 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.interface_description import InterfaceDescription
+from capif_security.models.security_method import SecurityMethod
+from capif_security import util
+
+from capif_security.models.interface_description import InterfaceDescription  # noqa: E501
+from capif_security.models.security_method import SecurityMethod  # noqa: E501
+
+class SecurityInformation(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, interface_details=None, aef_id=None, api_id=None, pref_security_methods=None, sel_security_method=None, authentication_info=None, authorization_info=None):  # noqa: E501
+        """SecurityInformation - a model defined in OpenAPI
+
+        :param interface_details: The interface_details of this SecurityInformation.  # noqa: E501
+        :type interface_details: InterfaceDescription
+        :param aef_id: The aef_id of this SecurityInformation.  # noqa: E501
+        :type aef_id: str
+        :param api_id: The api_id of this SecurityInformation.  # noqa: E501
+        :type api_id: str
+        :param pref_security_methods: The pref_security_methods of this SecurityInformation.  # noqa: E501
+        :type pref_security_methods: List[SecurityMethod]
+        :param sel_security_method: The sel_security_method of this SecurityInformation.  # noqa: E501
+        :type sel_security_method: SecurityMethod
+        :param authentication_info: The authentication_info of this SecurityInformation.  # noqa: E501
+        :type authentication_info: str
+        :param authorization_info: The authorization_info of this SecurityInformation.  # noqa: E501
+        :type authorization_info: str
+        """
+        self.openapi_types = {
+            'interface_details': InterfaceDescription,
+            'aef_id': str,
+            'api_id': str,
+            'pref_security_methods': List[SecurityMethod],
+            'sel_security_method': SecurityMethod,
+            'authentication_info': str,
+            'authorization_info': str
+        }
+
+        self.attribute_map = {
+            'interface_details': 'interfaceDetails',
+            'aef_id': 'aefId',
+            'api_id': 'apiId',
+            'pref_security_methods': 'prefSecurityMethods',
+            'sel_security_method': 'selSecurityMethod',
+            'authentication_info': 'authenticationInfo',
+            'authorization_info': 'authorizationInfo'
+        }
+
+        self._interface_details = interface_details
+        self._aef_id = aef_id
+        self._api_id = api_id
+        self._pref_security_methods = pref_security_methods
+        self._sel_security_method = sel_security_method
+        self._authentication_info = authentication_info
+        self._authorization_info = authorization_info
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityInformation':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityInformation of this SecurityInformation.  # noqa: E501
+        :rtype: SecurityInformation
+        """
+        print(dikt)
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def interface_details(self):
+        """Gets the interface_details of this SecurityInformation.
+
+
+        :return: The interface_details of this SecurityInformation.
+        :rtype: InterfaceDescription
+        """
+        return self._interface_details
+
+    @interface_details.setter
+    def interface_details(self, interface_details):
+        """Sets the interface_details of this SecurityInformation.
+
+
+        :param interface_details: The interface_details of this SecurityInformation.
+        :type interface_details: InterfaceDescription
+        """
+
+        self._interface_details = interface_details
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this SecurityInformation.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :return: The aef_id of this SecurityInformation.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this SecurityInformation.
+
+        Identifier of the API exposing function  # noqa: E501
+
+        :param aef_id: The aef_id of this SecurityInformation.
+        :type aef_id: str
+        """
+
+        self._aef_id = aef_id
+
+    @property
+    def api_id(self):
+        """Gets the api_id of this SecurityInformation.
+
+        API identifier  # noqa: E501
+
+        :return: The api_id of this SecurityInformation.
+        :rtype: str
+        """
+        return self._api_id
+
+    @api_id.setter
+    def api_id(self, api_id):
+        """Sets the api_id of this SecurityInformation.
+
+        API identifier  # noqa: E501
+
+        :param api_id: The api_id of this SecurityInformation.
+        :type api_id: str
+        """
+
+        self._api_id = api_id
+
+    @property
+    def pref_security_methods(self):
+        """Gets the pref_security_methods of this SecurityInformation.
+
+        Security methods preferred by the API invoker for the API interface.  # noqa: E501
+
+        :return: The pref_security_methods of this SecurityInformation.
+        :rtype: List[SecurityMethod]
+        """
+        return self._pref_security_methods
+
+    @pref_security_methods.setter
+    def pref_security_methods(self, pref_security_methods):
+        """Sets the pref_security_methods of this SecurityInformation.
+
+        Security methods preferred by the API invoker for the API interface.  # noqa: E501
+
+        :param pref_security_methods: The pref_security_methods of this SecurityInformation.
+        :type pref_security_methods: List[SecurityMethod]
+        """
+        if pref_security_methods is None:
+            raise ValueError("Invalid value for `pref_security_methods`, must not be `None`")  # noqa: E501
+        if pref_security_methods is not None and len(pref_security_methods) < 1:
+            raise ValueError("Invalid value for `pref_security_methods`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._pref_security_methods = pref_security_methods
+
+    @property
+    def sel_security_method(self):
+        """Gets the sel_security_method of this SecurityInformation.
+
+
+        :return: The sel_security_method of this SecurityInformation.
+        :rtype: SecurityMethod
+        """
+        return self._sel_security_method
+
+    @sel_security_method.setter
+    def sel_security_method(self, sel_security_method):
+        """Sets the sel_security_method of this SecurityInformation.
+
+
+        :param sel_security_method: The sel_security_method of this SecurityInformation.
+        :type sel_security_method: SecurityMethod
+        """
+
+        self._sel_security_method = sel_security_method
+
+    @property
+    def authentication_info(self):
+        """Gets the authentication_info of this SecurityInformation.
+
+        Authentication related information  # noqa: E501
+
+        :return: The authentication_info of this SecurityInformation.
+        :rtype: str
+        """
+        return self._authentication_info
+
+    @authentication_info.setter
+    def authentication_info(self, authentication_info):
+        """Sets the authentication_info of this SecurityInformation.
+
+        Authentication related information  # noqa: E501
+
+        :param authentication_info: The authentication_info of this SecurityInformation.
+        :type authentication_info: str
+        """
+
+        self._authentication_info = authentication_info
+
+    @property
+    def authorization_info(self):
+        """Gets the authorization_info of this SecurityInformation.
+
+        Authorization related information  # noqa: E501
+
+        :return: The authorization_info of this SecurityInformation.
+        :rtype: str
+        """
+        return self._authorization_info
+
+    @authorization_info.setter
+    def authorization_info(self, authorization_info):
+        """Sets the authorization_info of this SecurityInformation.
+
+        Authorization related information  # noqa: E501
+
+        :param authorization_info: The authorization_info of this SecurityInformation.
+        :type authorization_info: str
+        """
+
+        self._authorization_info = authorization_info
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/security_method.py b/services/TS29222_CAPIF_Security_API/capif_security/models/security_method.py
new file mode 100644
index 0000000..966fcb4
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/security_method.py
@@ -0,0 +1,41 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.security_method_any_of import SecurityMethodAnyOf
+from capif_security import util
+
+from capif_security.models.security_method_any_of import SecurityMethodAnyOf  # noqa: E501
+import sys
+
+class SecurityMethod(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self):  # noqa: E501
+        """SecurityMethod - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethod':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod of this SecurityMethod.  # noqa: E501
+        :rtype: SecurityMethod
+        """
+        print(dikt, file=sys.stderr)
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/security_method_any_of.py b/services/TS29222_CAPIF_Security_API/capif_security/models/security_method_any_of.py
new file mode 100644
index 0000000..0b5c3bf
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/security_method_any_of.py
@@ -0,0 +1,44 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class SecurityMethodAnyOf(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    """
+    allowed enum values
+    """
+    PSK = "PSK"
+    PKI = "PKI"
+    OAUTH = "OAUTH"
+    def __init__(self):  # noqa: E501
+        """SecurityMethodAnyOf - a model defined in OpenAPI
+
+        """
+        self.openapi_types = {
+        }
+
+        self.attribute_map = {
+        }
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityMethodAnyOf':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityMethod_anyOf of this SecurityMethodAnyOf.  # noqa: E501
+        :rtype: SecurityMethodAnyOf
+        """
+        print(dikt)
+        return util.deserialize_model(dikt, cls)
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/security_notification.py b/services/TS29222_CAPIF_Security_API/capif_security/models/security_notification.py
new file mode 100644
index 0000000..4437f65
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/security_notification.py
@@ -0,0 +1,158 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.cause import Cause
+from capif_security import util
+
+from capif_security.models.cause import Cause  # noqa: E501
+
+class SecurityNotification(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, api_invoker_id=None, aef_id=None, api_ids=None, cause=None):  # noqa: E501
+        """SecurityNotification - a model defined in OpenAPI
+
+        :param api_invoker_id: The api_invoker_id of this SecurityNotification.  # noqa: E501
+        :type api_invoker_id: str
+        :param aef_id: The aef_id of this SecurityNotification.  # noqa: E501
+        :type aef_id: str
+        :param api_ids: The api_ids of this SecurityNotification.  # noqa: E501
+        :type api_ids: List[str]
+        :param cause: The cause of this SecurityNotification.  # noqa: E501
+        :type cause: Cause
+        """
+        self.openapi_types = {
+            'api_invoker_id': str,
+            'aef_id': str,
+            'api_ids': List[str],
+            'cause': Cause
+        }
+
+        self.attribute_map = {
+            'api_invoker_id': 'apiInvokerId',
+            'aef_id': 'aefId',
+            'api_ids': 'apiIds',
+            'cause': 'cause'
+        }
+
+        self._api_invoker_id = api_invoker_id
+        self._aef_id = aef_id
+        self._api_ids = api_ids
+        self._cause = cause
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'SecurityNotification':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The SecurityNotification of this SecurityNotification.  # noqa: E501
+        :rtype: SecurityNotification
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def api_invoker_id(self):
+        """Gets the api_invoker_id of this SecurityNotification.
+
+        String identifying the API invoker assigned by the CAPIF core function.  # noqa: E501
+
+        :return: The api_invoker_id of this SecurityNotification.
+        :rtype: str
+        """
+        return self._api_invoker_id
+
+    @api_invoker_id.setter
+    def api_invoker_id(self, api_invoker_id):
+        """Sets the api_invoker_id of this SecurityNotification.
+
+        String identifying the API invoker assigned by the CAPIF core function.  # noqa: E501
+
+        :param api_invoker_id: The api_invoker_id of this SecurityNotification.
+        :type api_invoker_id: str
+        """
+        if api_invoker_id is None:
+            raise ValueError("Invalid value for `api_invoker_id`, must not be `None`")  # noqa: E501
+
+        self._api_invoker_id = api_invoker_id
+
+    @property
+    def aef_id(self):
+        """Gets the aef_id of this SecurityNotification.
+
+        String identifying the AEF.  # noqa: E501
+
+        :return: The aef_id of this SecurityNotification.
+        :rtype: str
+        """
+        return self._aef_id
+
+    @aef_id.setter
+    def aef_id(self, aef_id):
+        """Sets the aef_id of this SecurityNotification.
+
+        String identifying the AEF.  # noqa: E501
+
+        :param aef_id: The aef_id of this SecurityNotification.
+        :type aef_id: str
+        """
+
+        self._aef_id = aef_id
+
+    @property
+    def api_ids(self):
+        """Gets the api_ids of this SecurityNotification.
+
+        Identifier of the service API  # noqa: E501
+
+        :return: The api_ids of this SecurityNotification.
+        :rtype: List[str]
+        """
+        return self._api_ids
+
+    @api_ids.setter
+    def api_ids(self, api_ids):
+        """Sets the api_ids of this SecurityNotification.
+
+        Identifier of the service API  # noqa: E501
+
+        :param api_ids: The api_ids of this SecurityNotification.
+        :type api_ids: List[str]
+        """
+        if api_ids is None:
+            raise ValueError("Invalid value for `api_ids`, must not be `None`")  # noqa: E501
+        if api_ids is not None and len(api_ids) < 1:
+            raise ValueError("Invalid value for `api_ids`, number of items must be greater than or equal to `1`")  # noqa: E501
+
+        self._api_ids = api_ids
+
+    @property
+    def cause(self):
+        """Gets the cause of this SecurityNotification.
+
+
+        :return: The cause of this SecurityNotification.
+        :rtype: Cause
+        """
+        return self._cause
+
+    @cause.setter
+    def cause(self, cause):
+        """Sets the cause of this SecurityNotification.
+
+
+        :param cause: The cause of this SecurityNotification.
+        :type cause: Cause
+        """
+        if cause is None:
+            raise ValueError("Invalid value for `cause`, must not be `None`")  # noqa: E501
+
+        self._cause = cause
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/service_security.py b/services/TS29222_CAPIF_Security_API/capif_security/models/service_security.py
new file mode 100644
index 0000000..47014d3
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/service_security.py
@@ -0,0 +1,186 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security.models.security_information import SecurityInformation
+from capif_security.models.websock_notif_config import WebsockNotifConfig
+import re
+from capif_security import util
+
+from capif_security.models.security_information import SecurityInformation  # noqa: E501
+from capif_security.models.websock_notif_config import WebsockNotifConfig  # noqa: E501
+import re  # noqa: E501
+
+class ServiceSecurity(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, security_info=None, notification_destination=None, request_test_notification=None, websock_notif_config=None, supported_features=None):  # noqa: E501
+        """ServiceSecurity - a model defined in OpenAPI
+
+        :param security_info: The security_info of this ServiceSecurity.  # noqa: E501
+        :type security_info: List[SecurityInformation]
+        :param notification_destination: The notification_destination of this ServiceSecurity.  # noqa: E501
+        :type notification_destination: str
+        :param request_test_notification: The request_test_notification of this ServiceSecurity.  # noqa: E501
+        :type request_test_notification: bool
+        :param websock_notif_config: The websock_notif_config of this ServiceSecurity.  # noqa: E501
+        :type websock_notif_config: WebsockNotifConfig
+        :param supported_features: The supported_features of this ServiceSecurity.  # noqa: E501
+        :type supported_features: str
+        """
+        self.openapi_types = {
+            'security_info': List[SecurityInformation],
+            'notification_destination': str,
+            'request_test_notification': bool,
+            'websock_notif_config': WebsockNotifConfig,
+            'supported_features': str
+        }
+
+        self.attribute_map = {
+            'security_info': 'securityInfo',
+            'notification_destination': 'notificationDestination',
+            'request_test_notification': 'requestTestNotification',
+            'websock_notif_config': 'websockNotifConfig',
+            'supported_features': 'supportedFeatures'
+        }
+
+        self._security_info = security_info
+        self._notification_destination = notification_destination
+        self._request_test_notification = request_test_notification
+        self._websock_notif_config = websock_notif_config
+        self._supported_features = supported_features
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'ServiceSecurity':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The ServiceSecurity of this ServiceSecurity.  # noqa: E501
+        :rtype: ServiceSecurity
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def security_info(self):
+        """Gets the security_info of this ServiceSecurity.
+
+
+        :return: The security_info of this ServiceSecurity.
+        :rtype: List[SecurityInformation]
+        """
+        return self._security_info
+
+    @security_info.setter
+    def security_info(self, security_info):
+        """Sets the security_info of this ServiceSecurity.
+
+
+        :param security_info: The security_info of this ServiceSecurity.
+        :type security_info: List[SecurityInformation]
+        """
+        if security_info is None:
+            raise ValueError("Invalid value for `security_info`, must not be `None`")  # noqa: E501
+
+        self._security_info = security_info
+
+    @property
+    def notification_destination(self):
+        """Gets the notification_destination of this ServiceSecurity.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :return: The notification_destination of this ServiceSecurity.
+        :rtype: str
+        """
+        return self._notification_destination
+
+    @notification_destination.setter
+    def notification_destination(self, notification_destination):
+        """Sets the notification_destination of this ServiceSecurity.
+
+        string providing an URI formatted according to IETF RFC 3986.  # noqa: E501
+
+        :param notification_destination: The notification_destination of this ServiceSecurity.
+        :type notification_destination: str
+        """
+        if notification_destination is None:
+            raise ValueError("Invalid value for `notification_destination`, must not be `None`")  # noqa: E501
+
+        self._notification_destination = notification_destination
+
+    @property
+    def request_test_notification(self):
+        """Gets the request_test_notification of this ServiceSecurity.
+
+        Set to true by API invoker to request the CAPIF core function to send a test notification as defined in in clause 7.6. Set to false or omitted otherwise.   # noqa: E501
+
+        :return: The request_test_notification of this ServiceSecurity.
+        :rtype: bool
+        """
+        return self._request_test_notification
+
+    @request_test_notification.setter
+    def request_test_notification(self, request_test_notification):
+        """Sets the request_test_notification of this ServiceSecurity.
+
+        Set to true by API invoker to request the CAPIF core function to send a test notification as defined in in clause 7.6. Set to false or omitted otherwise.   # noqa: E501
+
+        :param request_test_notification: The request_test_notification of this ServiceSecurity.
+        :type request_test_notification: bool
+        """
+
+        self._request_test_notification = request_test_notification
+
+    @property
+    def websock_notif_config(self):
+        """Gets the websock_notif_config of this ServiceSecurity.
+
+
+        :return: The websock_notif_config of this ServiceSecurity.
+        :rtype: WebsockNotifConfig
+        """
+        return self._websock_notif_config
+
+    @websock_notif_config.setter
+    def websock_notif_config(self, websock_notif_config):
+        """Sets the websock_notif_config of this ServiceSecurity.
+
+
+        :param websock_notif_config: The websock_notif_config of this ServiceSecurity.
+        :type websock_notif_config: WebsockNotifConfig
+        """
+
+        self._websock_notif_config = websock_notif_config
+
+    @property
+    def supported_features(self):
+        """Gets the supported_features of this ServiceSecurity.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :return: The supported_features of this ServiceSecurity.
+        :rtype: str
+        """
+        return self._supported_features
+
+    @supported_features.setter
+    def supported_features(self, supported_features):
+        """Sets the supported_features of this ServiceSecurity.
+
+        A string used to indicate the features supported by an API that is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain a bitmask indicating supported features in  hexadecimal representation Each character in the string shall take a value of \"0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as described in  table 5.2.2-3. The most significant character representing the highest-numbered features shall  appear first in the string, and the character representing features 1 to 4 shall appear last  in the string. The list of features and their numbering (starting with 1) are defined  separately for each API. If the string contains a lower number of characters than there are  defined features for an API, all features that would be represented by characters that are not  present in the string are not supported.   # noqa: E501
+
+        :param supported_features: The supported_features of this ServiceSecurity.
+        :type supported_features: str
+        """
+        if supported_features is not None and not re.search(r'^[A-Fa-f0-9]*$', supported_features):  # noqa: E501
+            raise ValueError("Invalid value for `supported_features`, must be a follow pattern or equal to `/^[A-Fa-f0-9]*$/`")  # noqa: E501
+
+        self._supported_features = supported_features
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/snssai.py b/services/TS29222_CAPIF_Security_API/capif_security/models/snssai.py
new file mode 100644
index 0000000..89e4257
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/snssai.py
@@ -0,0 +1,104 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+import re
+from capif_security import util
+
+import re  # noqa: E501
+
+class Snssai(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, sst=None, sd=None):  # noqa: E501
+        """Snssai - a model defined in OpenAPI
+
+        :param sst: The sst of this Snssai.  # noqa: E501
+        :type sst: int
+        :param sd: The sd of this Snssai.  # noqa: E501
+        :type sd: str
+        """
+        self.openapi_types = {
+            'sst': int,
+            'sd': str
+        }
+
+        self.attribute_map = {
+            'sst': 'sst',
+            'sd': 'sd'
+        }
+
+        self._sst = sst
+        self._sd = sd
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'Snssai':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The Snssai of this Snssai.  # noqa: E501
+        :rtype: Snssai
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def sst(self):
+        """Gets the sst of this Snssai.
+
+        Unsigned integer, within the range 0 to 255, representing the Slice/Service Type.  It indicates the expected Network Slice behaviour in terms of features and services. Values 0 to 127 correspond to the standardized SST range. Values 128 to 255 correspond  to the Operator-specific range. See clause 28.4.2 of 3GPP TS 23.003. Standardized values are defined in clause 5.15.2.2 of 3GPP TS 23.501.    # noqa: E501
+
+        :return: The sst of this Snssai.
+        :rtype: int
+        """
+        return self._sst
+
+    @sst.setter
+    def sst(self, sst):
+        """Sets the sst of this Snssai.
+
+        Unsigned integer, within the range 0 to 255, representing the Slice/Service Type.  It indicates the expected Network Slice behaviour in terms of features and services. Values 0 to 127 correspond to the standardized SST range. Values 128 to 255 correspond  to the Operator-specific range. See clause 28.4.2 of 3GPP TS 23.003. Standardized values are defined in clause 5.15.2.2 of 3GPP TS 23.501.    # noqa: E501
+
+        :param sst: The sst of this Snssai.
+        :type sst: int
+        """
+        if sst is None:
+            raise ValueError("Invalid value for `sst`, must not be `None`")  # noqa: E501
+        if sst is not None and sst > 255:  # noqa: E501
+            raise ValueError("Invalid value for `sst`, must be a value less than or equal to `255`")  # noqa: E501
+        if sst is not None and sst < 0:  # noqa: E501
+            raise ValueError("Invalid value for `sst`, must be a value greater than or equal to `0`")  # noqa: E501
+
+        self._sst = sst
+
+    @property
+    def sd(self):
+        """Gets the sd of this Snssai.
+
+        3-octet string, representing the Slice Differentiator, in hexadecimal representation. Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent 4 bits. The most significant character representing the 4 most significant bits of the SD shall appear first in the string, and the character representing the 4 least significant bit of the SD shall appear last in the string. This is an optional parameter that complements the Slice/Service type(s) to allow to  differentiate amongst multiple Network Slices of the same Slice/Service type. This IE shall be absent if no SD value is associated with the SST.   # noqa: E501
+
+        :return: The sd of this Snssai.
+        :rtype: str
+        """
+        return self._sd
+
+    @sd.setter
+    def sd(self, sd):
+        """Sets the sd of this Snssai.
+
+        3-octet string, representing the Slice Differentiator, in hexadecimal representation. Each character in the string shall take a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall represent 4 bits. The most significant character representing the 4 most significant bits of the SD shall appear first in the string, and the character representing the 4 least significant bit of the SD shall appear last in the string. This is an optional parameter that complements the Slice/Service type(s) to allow to  differentiate amongst multiple Network Slices of the same Slice/Service type. This IE shall be absent if no SD value is associated with the SST.   # noqa: E501
+
+        :param sd: The sd of this Snssai.
+        :type sd: str
+        """
+        if sd is not None and not re.search(r'^[A-Fa-f0-9]{6}$', sd):  # noqa: E501
+            raise ValueError("Invalid value for `sd`, must be a follow pattern or equal to `/^[A-Fa-f0-9]{6}$/`")  # noqa: E501
+
+        self._sd = sd
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/models/websock_notif_config.py b/services/TS29222_CAPIF_Security_API/capif_security/models/websock_notif_config.py
new file mode 100644
index 0000000..434d371
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/models/websock_notif_config.py
@@ -0,0 +1,94 @@
+# coding: utf-8
+
+from __future__ import absolute_import
+from datetime import date, datetime  # noqa: F401
+
+from typing import List, Dict  # noqa: F401
+
+from capif_security.models.base_model_ import Model
+from capif_security import util
+
+
+class WebsockNotifConfig(Model):
+    """NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+
+    Do not edit the class manually.
+    """
+
+    def __init__(self, websocket_uri=None, request_websocket_uri=None):  # noqa: E501
+        """WebsockNotifConfig - a model defined in OpenAPI
+
+        :param websocket_uri: The websocket_uri of this WebsockNotifConfig.  # noqa: E501
+        :type websocket_uri: str
+        :param request_websocket_uri: The request_websocket_uri of this WebsockNotifConfig.  # noqa: E501
+        :type request_websocket_uri: bool
+        """
+        self.openapi_types = {
+            'websocket_uri': str,
+            'request_websocket_uri': bool
+        }
+
+        self.attribute_map = {
+            'websocket_uri': 'websocketUri',
+            'request_websocket_uri': 'requestWebsocketUri'
+        }
+
+        self._websocket_uri = websocket_uri
+        self._request_websocket_uri = request_websocket_uri
+
+    @classmethod
+    def from_dict(cls, dikt) -> 'WebsockNotifConfig':
+        """Returns the dict as a model
+
+        :param dikt: A dict.
+        :type: dict
+        :return: The WebsockNotifConfig of this WebsockNotifConfig.  # noqa: E501
+        :rtype: WebsockNotifConfig
+        """
+        return util.deserialize_model(dikt, cls)
+
+    @property
+    def websocket_uri(self):
+        """Gets the websocket_uri of this WebsockNotifConfig.
+
+        string formatted according to IETF RFC 3986 identifying a referenced resource.  # noqa: E501
+
+        :return: The websocket_uri of this WebsockNotifConfig.
+        :rtype: str
+        """
+        return self._websocket_uri
+
+    @websocket_uri.setter
+    def websocket_uri(self, websocket_uri):
+        """Sets the websocket_uri of this WebsockNotifConfig.
+
+        string formatted according to IETF RFC 3986 identifying a referenced resource.  # noqa: E501
+
+        :param websocket_uri: The websocket_uri of this WebsockNotifConfig.
+        :type websocket_uri: str
+        """
+
+        self._websocket_uri = websocket_uri
+
+    @property
+    def request_websocket_uri(self):
+        """Gets the request_websocket_uri of this WebsockNotifConfig.
+
+        Set by the SCS/AS to indicate that the Websocket delivery is requested.  # noqa: E501
+
+        :return: The request_websocket_uri of this WebsockNotifConfig.
+        :rtype: bool
+        """
+        return self._request_websocket_uri
+
+    @request_websocket_uri.setter
+    def request_websocket_uri(self, request_websocket_uri):
+        """Sets the request_websocket_uri of this WebsockNotifConfig.
+
+        Set by the SCS/AS to indicate that the Websocket delivery is requested.  # noqa: E501
+
+        :param request_websocket_uri: The request_websocket_uri of this WebsockNotifConfig.
+        :type request_websocket_uri: bool
+        """
+
+        self._request_websocket_uri = request_websocket_uri
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/openapi/openapi.yaml b/services/TS29222_CAPIF_Security_API/capif_security/openapi/openapi.yaml
new file mode 100644
index 0000000..321eb2f
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/openapi/openapi.yaml
@@ -0,0 +1,1729 @@
+openapi: 3.0.0
+info:
+  description: "API for CAPIF security management.  \n© 2022, 3GPP Organizational\
+    \ Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).  \nAll rights reserved.\n"
+  title: CAPIF_Security_API
+  version: 1.2.0
+externalDocs:
+  description: 3GPP TS 29.222 V17.5.0 Common API Framework for 3GPP Northbound APIs
+  url: https://www.3gpp.org/ftp/Specs/archive/29_series/29.222/
+servers:
+- url: "{apiRoot}/capif-security/v1"
+  variables:
+    apiRoot:
+      default: https://example.com
+      description: apiRoot as defined in clause 7.5 of 3GPP TS 29.222.
+paths:
+  /securities/{securityId}/token:
+    post:
+      operationId: securities_security_id_token_post
+      parameters:
+      - description: Identifier of an individual API invoker
+        explode: false
+        in: path
+        name: securityId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              $ref: '#/components/schemas/AccessTokenReq'
+        required: true
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/AccessTokenRsp'
+          description: Successful Access Token Request
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/AccessTokenErr'
+          description: Error in the Access Token Request
+        "401":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/AccessTokenErr'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller:  capif_security.controllers.default_controller
+  /trustedInvokers/{apiInvokerId}:
+    delete:
+      operationId: trusted_invokers_api_invoker_id_delete
+      parameters:
+      - description: Identifier of an individual API invoker
+        explode: false
+        in: path
+        name: apiInvokerId
+        required: true
+        schema:
+          type: string
+        style: simple
+      responses:
+        "204":
+          description: No Content (Successful deletion of the existing subscription)
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller:  capif_security.controllers.default_controller
+    get:
+      operationId: trusted_invokers_api_invoker_id_get
+      parameters:
+      - description: Identifier of an individual API invoker
+        explode: false
+        in: path
+        name: apiInvokerId
+        required: true
+        schema:
+          type: string
+        style: simple
+      - description: "When set to 'true', it indicates the CAPIF core function to\
+          \ send the authentication information of the API invoker. Set to false or\
+          \ omitted otherwise.\n"
+        explode: true
+        in: query
+        name: authenticationInfo
+        required: false
+        schema:
+          type: boolean
+        style: form
+      - description: "When set to 'true', it indicates the CAPIF core function to\
+          \ send the authorization information of the API invoker. Set to false or\
+          \ omitted otherwise.\n"
+        explode: true
+        in: query
+        name: authorizationInfo
+        required: false
+        schema:
+          type: boolean
+        style: form
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceSecurity'
+          description: |
+            The security related information of the API Invoker based on the request from the API exposing function.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "406":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Acceptable
+        "414":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: URI Too Long
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller:  capif_security.controllers.default_controller
+    put:
+      callbacks:
+        notificationDestination:
+          '{request.body#/notificationDestination}':
+            post:
+              operationId: notificationDestination_request_bodyNotificationDestinationPost
+              requestBody:
+                content:
+                  application/json:
+                    schema:
+                      $ref: '#/components/schemas/SecurityNotification'
+                required: true
+              responses:
+                "204":
+                  description: No Content (successful notification)
+                "307":
+                  description: Temporary Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "308":
+                  description: Permanent Redirect
+                  headers:
+                    Location:
+                      description: An alternative URI of the resource.
+                      required: true
+                      schema:
+                        type: string
+                "400":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Bad request
+                "401":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unauthorized
+                "403":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Forbidden
+                "404":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Not Found
+                "411":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Length Required
+                "413":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Payload Too Large
+                "415":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Unsupported Media Type
+                "429":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Too Many Requests
+                "500":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Internal Server Error
+                "503":
+                  content:
+                    application/problem+json:
+                      schema:
+                        $ref: '#/components/schemas/ProblemDetails'
+                  description: Service Unavailable
+                default:
+                  description: Generic Error
+              x-callback-request: true
+      operationId: trusted_invokers_api_invoker_id_put
+      parameters:
+      - description: Identifier of an individual API invoker
+        explode: false
+        in: path
+        name: apiInvokerId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/ServiceSecurity'
+        description: create a security context for an API invoker
+        required: true
+      responses:
+        "201":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceSecurity'
+          description: Successful created.
+          headers:
+            Location:
+              description: "Contains the URI of the newly created resource, according\
+                \ to the structure {apiRoot}/capif-security/v1/trustedInvokers/{apiInvokerId}\n"
+              explode: false
+              required: true
+              schema:
+                type: string
+              style: simple
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "414":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: URI Too Long
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller:  capif_security.controllers.default_controller
+  /trustedInvokers/{apiInvokerId}/delete:
+    post:
+      operationId: trusted_invokers_api_invoker_id_delete_post
+      parameters:
+      - description: Identifier of an individual API invoker
+        explode: false
+        in: path
+        name: apiInvokerId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/SecurityNotification'
+        description: Revoke the authorization of the API invoker for APIs.
+        required: true
+      responses:
+        "204":
+          description: Successful revoked.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller:  capif_security.controllers.default_controller
+  /trustedInvokers/{apiInvokerId}/update:
+    post:
+      operationId: trusted_invokers_api_invoker_id_update_post
+      parameters:
+      - description: Identifier of an individual API invoker
+        explode: false
+        in: path
+        name: apiInvokerId
+        required: true
+        schema:
+          type: string
+        style: simple
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/ServiceSecurity'
+        description: Update the security context (e.g. re-negotiate the security methods).
+        required: true
+      responses:
+        "200":
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ServiceSecurity'
+          description: Successful updated.
+        "307":
+          description: Temporary Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "308":
+          description: Permanent Redirect
+          headers:
+            Location:
+              description: An alternative URI of the resource.
+              required: true
+              schema:
+                type: string
+        "400":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Bad request
+        "401":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unauthorized
+        "403":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Forbidden
+        "404":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Not Found
+        "411":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Length Required
+        "413":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Payload Too Large
+        "415":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Unsupported Media Type
+        "429":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Too Many Requests
+        "500":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Internal Server Error
+        "503":
+          content:
+            application/problem+json:
+              schema:
+                $ref: '#/components/schemas/ProblemDetails'
+          description: Service Unavailable
+        default:
+          description: Generic Error
+      x-openapi-router-controller:  capif_security.controllers.default_controller
+components:
+  responses:
+    "307":
+      description: Temporary Redirect
+      headers:
+        Location:
+          description: An alternative URI of the resource.
+          required: true
+          schema:
+            type: string
+    "308":
+      description: Permanent Redirect
+      headers:
+        Location:
+          description: An alternative URI of the resource.
+          required: true
+          schema:
+            type: string
+    "400":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Bad request
+    "401":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Unauthorized
+    "403":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Forbidden
+    "404":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Not Found
+    "406":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Not Acceptable
+    "414":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: URI Too Long
+    "429":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Too Many Requests
+    "500":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Internal Server Error
+    "503":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Service Unavailable
+    default:
+      description: Generic Error
+    "411":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Length Required
+    "413":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Payload Too Large
+    "415":
+      content:
+        application/problem+json:
+          schema:
+            $ref: '#/components/schemas/ProblemDetails'
+      description: Unsupported Media Type
+  schemas:
+    ServiceSecurity:
+      description: "Represents the details of the security method for each service\
+        \ API interface. When included by the API invoker, it indicates the preferred\
+        \ method of security. When included by the CAPIF core function, it indicates\
+        \ the security method to be used for the service API interface.\n"
+      example:
+        notificationDestination: notificationDestination
+        supportedFeatures: supportedFeatures
+        securityInfo:
+        - selSecurityMethod: null
+          authenticationInfo: authenticationInfo
+          authorizationInfo: authorizationInfo
+          interfaceDetails:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          prefSecurityMethods:
+          - null
+          - null
+          aefId: aefId
+          apiId: apiId
+        - selSecurityMethod: null
+          authenticationInfo: authenticationInfo
+          authorizationInfo: authorizationInfo
+          interfaceDetails:
+            ipv6Addr: ipv6Addr
+            securityMethods:
+            - null
+            - null
+            port: 5248
+            ipv4Addr: ipv4Addr
+          prefSecurityMethods:
+          - null
+          - null
+          aefId: aefId
+          apiId: apiId
+        websockNotifConfig:
+          requestWebsocketUri: true
+          websocketUri: websocketUri
+        requestTestNotification: true
+      properties:
+        securityInfo:
+          items:
+            $ref: '#/components/schemas/SecurityInformation'
+          minimum: 1
+          title: securityInfo
+          type: array
+        notificationDestination:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        requestTestNotification:
+          description: |
+            Set to true by API invoker to request the CAPIF core function to send a test notification as defined in in clause 7.6. Set to false or omitted otherwise.
+          title: requestTestNotification
+          type: boolean
+        websockNotifConfig:
+          $ref: '#/components/schemas/WebsockNotifConfig'
+        supportedFeatures:
+          description: "A string used to indicate the features supported by an API\
+            \ that is used as defined in clause  6.6 in 3GPP TS 29.500. The string\
+            \ shall contain a bitmask indicating supported features in  hexadecimal\
+            \ representation Each character in the string shall take a value of \"\
+            0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the\
+            \ support of 4 features as described in  table\_5.2.2-3. The most significant\
+            \ character representing the highest-numbered features shall  appear first\
+            \ in the string, and the character representing features 1 to 4 shall\
+            \ appear last  in the string. The list of features and their numbering\
+            \ (starting with 1) are defined  separately for each API. If the string\
+            \ contains a lower number of characters than there are  defined features\
+            \ for an API, all features that would be represented by characters that\
+            \ are not  present in the string are not supported.\n"
+          pattern: "^[A-Fa-f0-9]*$"
+          title: supportedFeatures
+          type: string
+      required:
+      - notificationDestination
+      - securityInfo
+      title: ServiceSecurity
+      type: object
+    SecurityInformation:
+      description: Represents the interface details and the security method.
+      example:
+        selSecurityMethod: null
+        authenticationInfo: authenticationInfo
+        authorizationInfo: authorizationInfo
+        interfaceDetails:
+          ipv6Addr: ipv6Addr
+          securityMethods:
+          - null
+          - null
+          port: 5248
+          ipv4Addr: ipv4Addr
+        prefSecurityMethods:
+        - null
+        - null
+        aefId: aefId
+        apiId: apiId
+      oneOf:
+        - required:
+          - interfaceDetails
+        - required:
+          - aefId
+      properties:
+        interfaceDetails:
+          $ref: '#/components/schemas/InterfaceDescription'
+        aefId:
+          description: Identifier of the API exposing function
+          title: aefId
+          type: string
+        apiId:
+          description: API identifier
+          title: apiId
+          type: string
+        prefSecurityMethods:
+          description: Security methods preferred by the API invoker for the API interface.
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: prefSecurityMethods
+          type: array
+        selSecurityMethod:
+          $ref: '#/components/schemas/SecurityMethod'
+        authenticationInfo:
+          description: Authentication related information
+          title: authenticationInfo
+          type: string
+        authorizationInfo:
+          description: Authorization related information
+          title: authorizationInfo
+          type: string
+      required:
+      - prefSecurityMethods
+      title: SecurityInformation
+      type: object
+    SecurityNotification:
+      description: Represents revoked authorization notification details.
+      example:
+        apiInvokerId: apiInvokerId
+        cause: null
+        aefId: aefId
+        apiIds:
+        - apiIds
+        - apiIds
+      properties:
+        apiInvokerId:
+          description: String identifying the API invoker assigned by the CAPIF core
+            function.
+          title: apiInvokerId
+          type: string
+        aefId:
+          description: String identifying the AEF.
+          title: aefId
+          type: string
+        apiIds:
+          description: Identifier of the service API
+          items:
+            type: string
+          minItems: 1
+          title: apiIds
+          type: array
+        cause:
+          $ref: '#/components/schemas/Cause'
+      required:
+      - apiIds
+      - apiInvokerId
+      - cause
+      title: SecurityNotification
+      type: object
+    AccessTokenReq:
+      type: object
+      description: Represents the access token request information.
+      format: x-www-form-urlencoded
+      properties:
+        grant_type:
+          # enum:
+          # - client_credentials
+          type: string
+        client_id:
+          type: string
+        client_secret:
+          type: string
+        scope:
+          type: string
+      required:
+      - client_id
+      - grant_type
+      - scope
+    AccessTokenRsp:
+      description: Represents the access token response information.
+      example:
+        access_token: access_token
+        scope: scope
+        token_type: Bearer
+        expires_in: 0
+      properties:
+        access_token:
+          description: |
+            JWS Compact Serialized representation of JWS signed JSON object (AccessTokenClaims)
+          title: access_token
+          type: string
+        token_type:
+          enum:
+          - Bearer
+          title: token_type
+          type: string
+        expires_in:
+          description: Unsigned integer identifying a period of time in units of seconds.
+          minimum: 0
+          title: expires_in
+          type: integer
+        scope:
+          title: scope
+          type: string
+      required:
+      - access_token
+      - expires_in
+      - token_type
+      title: AccessTokenRsp
+      type: object
+    AccessTokenClaims:
+      description: Represents the claims data structure for the access token.
+      properties:
+        iss:
+          type: string
+        scope:
+          type: string
+        exp:
+          description: Unsigned integer identifying a period of time in units of seconds.
+          minimum: 0
+          title: expires_in
+          type: integer
+      required:
+      - exp
+      - iss
+      - scope
+      type: object
+    AccessTokenErr:
+      description: Represents an error in the access token request.
+      properties:
+        error:
+          enum:
+          - invalid_request
+          - invalid_client
+          - invalid_grant
+          - unauthorized_client
+          - unsupported_grant_type
+          - invalid_scope
+          title: error
+          type: string
+        error_description:
+          title: error_description
+          type: string
+        error_uri:
+          title: error_uri
+          type: string
+      required:
+      - error
+      title: AccessTokenErr
+      type: object
+    Cause:
+      anyOf:
+      - $ref: '#/components/schemas/Cause_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: "Possible values are:\n- OVERLIMIT_USAGE: The revocation of the\
+        \ authorization of the API invoker is due to the overlimit usage of the service\
+        \ API\n- UNEXPECTED_REASON: The revocation of the authorization of the API\
+        \ invoker is due to unexpected reason.\n"
+      title: Cause
+    ProblemDetails:
+      description: Represents additional information and details on an error response.
+      properties:
+        type:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        title:
+          description: "A short, human-readable summary of the problem type. It should\
+            \ not change from occurrence to occurrence of the problem."
+          title: title
+          type: string
+        status:
+          description: The HTTP status code for this occurrence of the problem.
+          title: status
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          title: detail
+          type: string
+        instance:
+          description: string providing an URI formatted according to IETF RFC 3986.
+          title: type
+          type: string
+        cause:
+          description: "A machine-readable application error cause specific to this\
+            \ occurrence of the problem. This IE should be present and provide application-related\
+            \ error information, if available."
+          title: cause
+          type: string
+        invalidParams:
+          description: "Description of invalid parameters, for a request rejected\
+            \ due to invalid parameters."
+          items:
+            $ref: '#/components/schemas/InvalidParam'
+          minItems: 1
+          title: invalidParams
+          type: array
+        supportedFeatures:
+          description: "A string used to indicate the features supported by an API\
+            \ that is used as defined in clause  6.6 in 3GPP TS 29.500. The string\
+            \ shall contain a bitmask indicating supported features in  hexadecimal\
+            \ representation Each character in the string shall take a value of \"\
+            0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the\
+            \ support of 4 features as described in  table\_5.2.2-3. The most significant\
+            \ character representing the highest-numbered features shall  appear first\
+            \ in the string, and the character representing features 1 to 4 shall\
+            \ appear last  in the string. The list of features and their numbering\
+            \ (starting with 1) are defined  separately for each API. If the string\
+            \ contains a lower number of characters than there are  defined features\
+            \ for an API, all features that would be represented by characters that\
+            \ are not  present in the string are not supported.\n"
+          pattern: "^[A-Fa-f0-9]*$"
+          title: supportedFeatures
+          type: string
+      title: ProblemDetails
+      type: object
+    Uri:
+      description: string providing an URI formatted according to IETF RFC 3986.
+      title: type
+      type: string
+    InvalidParam:
+      description: "Represents the description of invalid parameters, for a request\
+        \ rejected due to invalid parameters."
+      properties:
+        param:
+          description: "Attribute's name encoded as a JSON Pointer, or header's name."
+          title: param
+          type: string
+        reason:
+          description: "A human-readable reason, e.g. \"must be a positive integer\"\
+            ."
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam
+      type: object
+    ProblemDetails_1:
+      description: Provides additional information in an error response.
+      properties:
+        type:
+          description: String providing an URI formatted according to RFC 3986.
+          title: Uri_1
+          type: string
+        title:
+          type: string
+        status:
+          type: integer
+        detail:
+          description: A human-readable explanation specific to this occurrence of
+            the problem.
+          type: string
+        instance:
+          description: String providing an URI formatted according to RFC 3986.
+          title: Uri_1
+          type: string
+        cause:
+          description: "A machine-readable application error cause specific to this\
+            \ occurrence of the problem.  This IE should be present and provide application-related\
+            \ error information, if available.\n"
+          type: string
+        invalidParams:
+          items:
+            $ref: '#/components/schemas/InvalidParam_1'
+          minItems: 1
+          type: array
+        supportedFeatures:
+          description: "A string used to indicate the features supported by an API\
+            \ that is used as defined in clause  6.6 in 3GPP TS 29.500. The string\
+            \ shall contain a bitmask indicating supported features in  hexadecimal\
+            \ representation Each character in the string shall take a value of \"\
+            0\" to \"9\",  \"a\" to \"f\" or \"A\" to \"F\" and shall represent the\
+            \ support of 4 features as described in  table\_5.2.2-3. The most significant\
+            \ character representing the highest-numbered features shall  appear first\
+            \ in the string, and the character representing features 1 to 4 shall\
+            \ appear last  in the string. The list of features and their numbering\
+            \ (starting with 1) are defined  separately for each API. If the string\
+            \ contains a lower number of characters than there are  defined features\
+            \ for an API, all features that would be represented by characters that\
+            \ are not  present in the string are not supported.\n"
+          pattern: "^[A-Fa-f0-9]*$"
+          title: supportedFeatures
+          type: string
+        accessTokenError:
+          $ref: '#/components/schemas/AccessTokenErr_1'
+        accessTokenRequest:
+          $ref: '#/components/schemas/AccessTokenReq_1'
+        nrfId:
+          description: Fully Qualified Domain Name
+          maxLength: 253
+          minLength: 4
+          pattern: "^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\\.)+[A-Za-z]{2,63}\\\
+            .?$"
+          title: Fqdn
+          type: string
+      type: object
+    Uri_1:
+      description: String providing an URI formatted according to RFC 3986.
+      title: Uri_1
+      type: string
+    InvalidParam_1:
+      description: It contains an invalid parameter and a related description.
+      properties:
+        param:
+          description: "If the invalid parameter is an attribute in a JSON body, this\
+            \ IE shall contain the  attribute's name and shall be encoded as a JSON\
+            \ Pointer. If the invalid parameter is  an HTTP header, this IE shall\
+            \ be formatted as the concatenation of the string \"header \"  plus the\
+            \ name of such header. If the invalid parameter is a query parameter,\
+            \ this IE  shall be formatted as the concatenation of the string \"query\
+            \ \" plus the name of such  query parameter. If the invalid parameter\
+            \ is a variable part in the path of a resource  URI, this IE shall contain\
+            \ the name of the variable, including the symbols \"{\" and \"}\"  used\
+            \ in OpenAPI specification as the notation to represent variable path\
+            \ segments.\n"
+          title: param
+          type: string
+        reason:
+          description: "A human-readable reason, e.g. \"must be a positive integer\"\
+            . In cases involving failed  operations in a PATCH request, the reason\
+            \ string should identify the operation that  failed using the operation's\
+            \ array index to assist in correlation of the invalid  parameter with\
+            \ the failed operation, e.g.\" Replacement value invalid for attribute\
+            \  (failed operation index= 4)\"\n"
+          title: reason
+          type: string
+      required:
+      - param
+      title: InvalidParam_1
+      type: object
+    SupportedFeatures:
+      description: "A string used to indicate the features supported by an API that\
+        \ is used as defined in clause  6.6 in 3GPP TS 29.500. The string shall contain\
+        \ a bitmask indicating supported features in  hexadecimal representation Each\
+        \ character in the string shall take a value of \"0\" to \"9\",  \"a\" to\
+        \ \"f\" or \"A\" to \"F\" and shall represent the support of 4 features as\
+        \ described in  table\_5.2.2-3. The most significant character representing\
+        \ the highest-numbered features shall  appear first in the string, and the\
+        \ character representing features 1 to 4 shall appear last  in the string.\
+        \ The list of features and their numbering (starting with 1) are defined \
+        \ separately for each API. If the string contains a lower number of characters\
+        \ than there are  defined features for an API, all features that would be\
+        \ represented by characters that are not  present in the string are not supported.\n"
+      pattern: "^[A-Fa-f0-9]*$"
+      title: supportedFeatures
+      type: string
+    Fqdn:
+      description: Fully Qualified Domain Name
+      maxLength: 253
+      minLength: 4
+      pattern: "^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\\.)+[A-Za-z]{2,63}\\\
+        .?$"
+      title: Fqdn
+      type: string
+    WebsockNotifConfig:
+      description: Represents the configuration information for the delivery of notifications
+        over Websockets.
+      example:
+        requestWebsocketUri: true
+        websocketUri: websocketUri
+      properties:
+        websocketUri:
+          description: string formatted according to IETF RFC 3986 identifying a referenced
+            resource.
+          title: Link
+          type: string
+        requestWebsocketUri:
+          description: Set by the SCS/AS to indicate that the Websocket delivery is
+            requested.
+          title: requestWebsocketUri
+          type: boolean
+      title: WebsockNotifConfig
+      type: object
+    Link:
+      description: string formatted according to IETF RFC 3986 identifying a referenced
+        resource.
+      title: Link
+      type: string
+    InterfaceDescription:
+      description: Represents the description of an API's interface.
+      example:
+        ipv6Addr: ipv6Addr
+        securityMethods:
+        - null
+        - null
+        port: 5248
+        ipv4Addr: ipv4Addr
+      # oneOf:
+      #   - required:
+      #     - ipv4Addr
+      #   - required:
+      #     - ipv6Addr
+      properties:
+        ipv4Addr:
+          description: string identifying a Ipv4 address formatted in the "dotted
+            decimal" notation as defined in IETF RFC 1166.
+          title: Ipv4Addr
+          type: string
+        ipv6Addr:
+          description: string identifying a Ipv6 address formatted according to clause
+            4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5
+            of IETF RFC 5952 shall not be used.
+          title: Ipv6Addr
+          type: string
+        port:
+          description: Unsigned integer with valid values between 0 and 65535.
+          maximum: 65535
+          minimum: 0
+          title: Port
+          type: integer
+        securityMethods:
+          description: "Security methods supported by the interface, it take precedence\
+            \ over the security methods provided in AefProfile, for this specific\
+            \ interface.\n"
+          items:
+            $ref: '#/components/schemas/SecurityMethod'
+          minItems: 1
+          title: securityMethods
+          type: array
+      title: InterfaceDescription
+      type: object
+    SecurityMethod:
+      anyOf:
+      - $ref: '#/components/schemas/SecurityMethod_anyOf'
+      - description: |
+          This string provides forward-compatibility with future extensions to the enumeration but is not used to encode content defined in the present version of this API.
+        type: string
+      description: "Possible values are:\n- PSK: Security method 1 (Using TLS-PSK)\
+        \ as described in 3GPP TS 33.122\n- PKI: Security method 2 (Using PKI) as\
+        \ described in 3GPP TS 33.122\n- OAUTH: Security method 3 (TLS with OAuth\
+        \ token) as described in 3GPP TS 33.122\n"
+      title: SecurityMethod
+    DurationSec:
+      description: Unsigned integer identifying a period of time in units of seconds.
+      minimum: 0
+      title: expires_in
+      type: integer
+    AccessTokenErr_1:
+      description: Error returned in the access token response message
+      properties:
+        error:
+          enum:
+          - invalid_request
+          - invalid_client
+          - invalid_grant
+          - unauthorized_client
+          - unsupported_grant_type
+          - invalid_scope
+          title: error
+          type: string
+        error_description:
+          title: error_description
+          type: string
+        error_uri:
+          title: error_uri
+          type: string
+      required:
+      - error
+      title: AccessTokenErr_1
+      type: object
+    AccessTokenReq_1:
+      description: Contains information related to the access token request
+      properties:
+        grant_type:
+          # enum:
+          # - client_credentials
+          title: grant_type
+          type: string
+        nfInstanceId:
+          description: "String uniquely identifying a NF instance. The format of the\
+            \ NF Instance ID shall be a  Universally Unique Identifier (UUID) version\
+            \ 4, as described in IETF RFC 4122. \n"
+          format: uuid
+          title: NfInstanceId
+          type: string
+        nfType:
+          $ref: '#/components/schemas/NFType'
+        targetNfType:
+          $ref: '#/components/schemas/NFType'
+        scope:
+          pattern: "^([a-zA-Z0-9_:-]+)( [a-zA-Z0-9_:-]+)*$"
+          title: scope
+          type: string
+        targetNfInstanceId:
+          description: "String uniquely identifying a NF instance. The format of the\
+            \ NF Instance ID shall be a  Universally Unique Identifier (UUID) version\
+            \ 4, as described in IETF RFC 4122. \n"
+          format: uuid
+          title: NfInstanceId
+          type: string
+        requesterPlmn:
+          $ref: '#/components/schemas/PlmnId'
+        requesterPlmnList:
+          items:
+            $ref: '#/components/schemas/PlmnId'
+          minItems: 2
+          title: requesterPlmnList
+          type: array
+        requesterSnssaiList:
+          items:
+            $ref: '#/components/schemas/Snssai'
+          minItems: 1
+          title: requesterSnssaiList
+          type: array
+        requesterFqdn:
+          description: Fully Qualified Domain Name
+          maxLength: 253
+          minLength: 4
+          pattern: "^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\\.)+[A-Za-z]{2,63}\\\
+            .?$"
+          title: Fqdn
+          type: string
+        requesterSnpnList:
+          items:
+            $ref: '#/components/schemas/PlmnIdNid'
+          minItems: 1
+          title: requesterSnpnList
+          type: array
+        targetPlmn:
+          $ref: '#/components/schemas/PlmnId'
+        targetSnssaiList:
+          items:
+            $ref: '#/components/schemas/Snssai'
+          minItems: 1
+          title: targetSnssaiList
+          type: array
+        targetNsiList:
+          items:
+            type: string
+          minItems: 1
+          title: targetNsiList
+          type: array
+        targetNfSetId:
+          description: "NF Set Identifier (see clause 28.12 of 3GPP TS 23.003), formatted\
+            \ as the following string \"set<Set ID>.<nftype>set.5gc.mnc<MNC>.mcc<MCC>\"\
+            , or  \"set<SetID>.<NFType>set.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\" with \
+            \ <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)\
+            \  <MNC> encoding the Mobile Network Code part of the PLMN, comprising\
+            \ 3 digits. \n  If there are only 2 significant digits in the MNC, one\
+            \ \"0\" digit shall be inserted \n  at the left side to fill the 3 digits\
+            \ coding of MNC.  Pattern: '^[0-9]{3}$'\n<NFType> encoded as a value defined\
+            \ in Table 6.1.6.3.3-1 of 3GPP TS 29.510 but \n  with lower case characters\
+            \ <Set ID> encoded as a string of characters consisting of \n  alphabetic\
+            \ characters (A-Z and a-z), digits (0-9) and/or the hyphen (-) and that\
+            \ \n  shall end with either an alphabetic character or a digit. \n"
+          title: NfSetId
+          type: string
+        targetNfServiceSetId:
+          description: "NF Service Set Identifier (see clause 28.12 of 3GPP TS 23.003)\
+            \ formatted as the following  string \"set<Set ID>.sn<Service Name>.nfi<NF\
+            \ Instance ID>.5gc.mnc<MNC>.mcc<MCC>\", or  \"set<SetID>.sn<ServiceName>.nfi<NFInstanceID>.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\"\
+            \ with  <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)\
+            \   <MNC> encoding the Mobile Network Code part of the PLMN, comprising\
+            \ 3 digits. \n  If there are only 2 significant digits in the MNC, one\
+            \ \"0\" digit shall be inserted \n  at the left side to fill the 3 digits\
+            \ coding of MNC.  Pattern: '^[0-9]{3}$'\n<NID> encoded as defined in clause\_\
+            5.4.2 (\"Nid\" data type definition)  <NFInstanceId> encoded as defined\
+            \ in clause 5.3.2  <ServiceName> encoded as defined in 3GPP TS 29.510\
+            \  <Set ID> encoded as a string of characters consisting of alphabetic\
+            \ \n  characters (A-Z and a-z), digits (0-9) and/or the hyphen (-) and\
+            \ that shall end \n  with either an alphabetic character or a digit.\n"
+          title: NfServiceSetId
+          type: string
+        hnrfAccessTokenUri:
+          description: String providing an URI formatted according to RFC 3986.
+          title: Uri_1
+          type: string
+        sourceNfInstanceId:
+          description: "String uniquely identifying a NF instance. The format of the\
+            \ NF Instance ID shall be a  Universally Unique Identifier (UUID) version\
+            \ 4, as described in IETF RFC 4122. \n"
+          format: uuid
+          title: NfInstanceId
+          type: string
+      required:
+      - grant_type
+      - nfInstanceId
+      - scope
+      title: AccessTokenReq_1
+      type: object
+    Ipv4Addr:
+      description: string identifying a Ipv4 address formatted in the "dotted decimal"
+        notation as defined in IETF RFC 1166.
+      title: Ipv4Addr
+      type: string
+    Ipv6Addr:
+      description: string identifying a Ipv6 address formatted according to clause
+        4 in IETF RFC 5952. The mixed Ipv4 Ipv6 notation according to clause 5 of
+        IETF RFC 5952 shall not be used.
+      title: Ipv6Addr
+      type: string
+    Port:
+      description: Unsigned integer with valid values between 0 and 65535.
+      maximum: 65535
+      minimum: 0
+      title: Port
+      type: integer
+    NfInstanceId:
+      description: "String uniquely identifying a NF instance. The format of the NF\
+        \ Instance ID shall be a  Universally Unique Identifier (UUID) version 4,\
+        \ as described in IETF RFC 4122. \n"
+      format: uuid
+      title: NfInstanceId
+      type: string
+    NFType:
+      anyOf:
+      - $ref: '#/components/schemas/NFType_anyOf'
+      - type: string
+      description: NF types known to NRF
+      title: NFType
+    PlmnId:
+      description: "When PlmnId needs to be converted to string (e.g. when used in\
+        \ maps as key), the string  shall be composed of three digits \"mcc\" followed\
+        \ by \"-\" and two or three digits \"mnc\".\n"
+      properties:
+        mcc:
+          description: "Mobile Country Code part of the PLMN, comprising 3 digits,\
+            \ as defined in clause 9.3.3.5 of 3GPP TS 38.413. \n"
+          pattern: "^\\d{3}$"
+          title: Mcc
+          type: string
+        mnc:
+          description: "Mobile Network Code part of the PLMN, comprising 2 or 3 digits,\
+            \ as defined in clause 9.3.3.5 of 3GPP TS 38.413."
+          pattern: "^\\d{2,3}$"
+          title: Mnc
+          type: string
+      required:
+      - mcc
+      - mnc
+      title: PlmnId
+      type: object
+    Mcc:
+      description: "Mobile Country Code part of the PLMN, comprising 3 digits, as\
+        \ defined in clause 9.3.3.5 of 3GPP TS 38.413. \n"
+      pattern: "^\\d{3}$"
+      title: Mcc
+      type: string
+    Mnc:
+      description: "Mobile Network Code part of the PLMN, comprising 2 or 3 digits,\
+        \ as defined in clause 9.3.3.5 of 3GPP TS 38.413."
+      pattern: "^\\d{2,3}$"
+      title: Mnc
+      type: string
+    Snssai:
+      description: "When Snssai needs to be converted to string (e.g. when used in\
+        \ maps as key), the string shall be composed of one to three digits \"sst\"\
+        \ optionally followed by \"-\" and 6 hexadecimal digits \"sd\".\n"
+      properties:
+        sst:
+          description: "Unsigned integer, within the range 0 to 255, representing\
+            \ the Slice/Service Type.  It indicates the expected Network Slice behaviour\
+            \ in terms of features and services. Values 0 to 127 correspond to the\
+            \ standardized SST range. Values 128 to 255 correspond  to the Operator-specific\
+            \ range. See clause 28.4.2 of 3GPP TS 23.003. Standardized values are\
+            \ defined in clause 5.15.2.2 of 3GPP TS 23.501. \n"
+          maximum: 255
+          minimum: 0
+          title: sst
+          type: integer
+        sd:
+          description: "3-octet string, representing the Slice Differentiator, in\
+            \ hexadecimal representation. Each character in the string shall take\
+            \ a value of \"0\" to \"9\", \"a\" to \"f\" or \"A\" to \"F\" and shall\
+            \ represent 4 bits. The most significant character representing the 4\
+            \ most significant bits of the SD shall appear first in the string, and\
+            \ the character representing the 4 least significant bit of the SD shall\
+            \ appear last in the string. This is an optional parameter that complements\
+            \ the Slice/Service type(s) to allow to  differentiate amongst multiple\
+            \ Network Slices of the same Slice/Service type. This IE shall be absent\
+            \ if no SD value is associated with the SST.\n"
+          pattern: "^[A-Fa-f0-9]{6}$"
+          title: sd
+          type: string
+      required:
+      - sst
+      title: Snssai
+      type: object
+    PlmnIdNid:
+      description: "Contains the serving core network operator PLMN ID and, for an\
+        \ SNPN, the NID that together with the PLMN ID identifies the SNPN.\n"
+      properties:
+        mcc:
+          description: "Mobile Country Code part of the PLMN, comprising 3 digits,\
+            \ as defined in clause 9.3.3.5 of 3GPP TS 38.413. \n"
+          pattern: "^\\d{3}$"
+          title: Mcc
+          type: string
+        mnc:
+          description: "Mobile Network Code part of the PLMN, comprising 2 or 3 digits,\
+            \ as defined in clause 9.3.3.5 of 3GPP TS 38.413."
+          pattern: "^\\d{2,3}$"
+          title: Mnc
+          type: string
+        nid:
+          description: "This represents the Network Identifier, which together with\
+            \ a PLMN ID is used to identify an SNPN (see 3GPP TS 23.003 and 3GPP TS\
+            \ 23.501 clause 5.30.2.1). \n"
+          pattern: "^[A-Fa-f0-9]{11}$"
+          title: Nid
+          type: string
+      required:
+      - mcc
+      - mnc
+      title: PlmnIdNid
+      type: object
+    Nid:
+      description: "This represents the Network Identifier, which together with a\
+        \ PLMN ID is used to identify an SNPN (see 3GPP TS 23.003 and 3GPP TS 23.501\
+        \ clause 5.30.2.1). \n"
+      pattern: "^[A-Fa-f0-9]{11}$"
+      title: Nid
+      type: string
+    NfSetId:
+      description: "NF Set Identifier (see clause 28.12 of 3GPP TS 23.003), formatted\
+        \ as the following string \"set<Set ID>.<nftype>set.5gc.mnc<MNC>.mcc<MCC>\"\
+        , or  \"set<SetID>.<NFType>set.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\" with  <MCC>\
+        \ encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)  <MNC>\
+        \ encoding the Mobile Network Code part of the PLMN, comprising 3 digits.\
+        \ \n  If there are only 2 significant digits in the MNC, one \"0\" digit shall\
+        \ be inserted \n  at the left side to fill the 3 digits coding of MNC.  Pattern:\
+        \ '^[0-9]{3}$'\n<NFType> encoded as a value defined in Table 6.1.6.3.3-1 of\
+        \ 3GPP TS 29.510 but \n  with lower case characters <Set ID> encoded as a\
+        \ string of characters consisting of \n  alphabetic characters (A-Z and a-z),\
+        \ digits (0-9) and/or the hyphen (-) and that \n  shall end with either an\
+        \ alphabetic character or a digit. \n"
+      title: NfSetId
+      type: string
+    NfServiceSetId:
+      description: "NF Service Set Identifier (see clause 28.12 of 3GPP TS 23.003)\
+        \ formatted as the following  string \"set<Set ID>.sn<Service Name>.nfi<NF\
+        \ Instance ID>.5gc.mnc<MNC>.mcc<MCC>\", or  \"set<SetID>.sn<ServiceName>.nfi<NFInstanceID>.5gc.nid<NID>.mnc<MNC>.mcc<MCC>\"\
+        \ with  <MCC> encoded as defined in clause 5.4.2 (\"Mcc\" data type definition)\
+        \   <MNC> encoding the Mobile Network Code part of the PLMN, comprising 3\
+        \ digits. \n  If there are only 2 significant digits in the MNC, one \"0\"\
+        \ digit shall be inserted \n  at the left side to fill the 3 digits coding\
+        \ of MNC.  Pattern: '^[0-9]{3}$'\n<NID> encoded as defined in clause\_5.4.2\
+        \ (\"Nid\" data type definition)  <NFInstanceId> encoded as defined in clause\
+        \ 5.3.2  <ServiceName> encoded as defined in 3GPP TS 29.510  <Set ID> encoded\
+        \ as a string of characters consisting of alphabetic \n  characters (A-Z and\
+        \ a-z), digits (0-9) and/or the hyphen (-) and that shall end \n  with either\
+        \ an alphabetic character or a digit.\n"
+      title: NfServiceSetId
+      type: string
+    Cause_anyOf:
+      enum:
+      - OVERLIMIT_USAGE
+      - UNEXPECTED_REASON
+      title: Cause_anyOf
+      type: string
+    SecurityMethod_anyOf:
+      enum:
+      - PSK
+      - PKI
+      - OAUTH
+      title: SecurityMethod_anyOf
+      type: string
+    NFType_anyOf:
+      enum:
+      - NRF
+      - UDM
+      - AMF
+      - SMF
+      - AUSF
+      - NEF
+      - PCF
+      - SMSF
+      - NSSF
+      - UDR
+      - LMF
+      - GMLC
+      - 5G_EIR
+      - SEPP
+      - UPF
+      - N3IWF
+      - AF
+      - UDSF
+      - BSF
+      - CHF
+      - NWDAF
+      - PCSCF
+      - CBCF
+      - HSS
+      - UCMF
+      - SOR_AF
+      - SPAF
+      - MME
+      - SCSAS
+      - SCEF
+      - SCP
+      - NSSAAF
+      - ICSCF
+      - SCSCF
+      - DRA
+      - IMS_AS
+      - AANF
+      - 5G_DDNMF
+      - NSACF
+      - MFAF
+      - EASDF
+      - DCCF
+      - MB_SMF
+      - TSCTSF
+      - ADRF
+      - GBA_BSF
+      - CEF
+      - MB_UPF
+      - NSWOF
+      - PKMF
+      - MNPF
+      - SMS_GMSC
+      - SMS_IWMSC
+      - MBSF
+      - MBSTF
+      title: NFType_anyOf
+      type: string
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/typing_utils.py b/services/TS29222_CAPIF_Security_API/capif_security/typing_utils.py
new file mode 100644
index 0000000..0563f81
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/typing_utils.py
@@ -0,0 +1,32 @@
+# coding: utf-8
+
+import sys
+
+if sys.version_info < (3, 7):
+    import typing
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return type(klass) == typing.GenericMeta
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__extra__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__extra__ == list
+
+else:
+
+    def is_generic(klass):
+        """ Determine whether klass is a generic class """
+        return hasattr(klass, '__origin__')
+
+    def is_dict(klass):
+        """ Determine whether klass is a Dict """
+        return klass.__origin__ == dict
+
+    def is_list(klass):
+        """ Determine whether klass is a List """
+        return klass.__origin__ == list
diff --git a/services/TS29222_CAPIF_Security_API/capif_security/util.py b/services/TS29222_CAPIF_Security_API/capif_security/util.py
new file mode 100644
index 0000000..873c290
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/capif_security/util.py
@@ -0,0 +1,186 @@
+import datetime
+
+import six
+import typing
+from capif_security import typing_utils
+
+
+def clean_empty(d):
+    if isinstance(d, dict):
+        return {
+            k: v
+            for k, v in ((k, clean_empty(v)) for k, v in d.items())
+            if v
+        }
+    if isinstance(d, list):
+        return [v for v in map(clean_empty, d) if v]
+    return d
+
+def dict_to_camel_case(my_dict):
+
+
+        result = {}
+
+        for attr, value in my_dict.items():
+
+            my_key = ''.join(word.title() for word in attr.split('_'))
+            my_key= ''.join([my_key[0].lower(), my_key[1:]])
+
+            if isinstance(value, list):
+                result[my_key] = list(map(
+                    lambda x: dict_to_camel_case(x) if isinstance(x, dict) else x, value ))
+
+            elif hasattr(value, "to_dict"):
+                result[my_key] = dict_to_camel_case(value)
+
+            elif isinstance(value, dict):
+                value = dict_to_camel_case(value)
+                result[my_key] = value
+            else:
+                result[my_key] = value
+
+        return result
+
+
+
+def _deserialize(data, klass):
+    """Deserializes dict, list, str into an object.
+
+    :param data: dict, list or str.
+    :param klass: class literal, or string of class name.
+
+    :return: object.
+    """
+    if data is None:
+        return None
+
+    if klass in six.integer_types or klass in (float, str, bool, bytearray):
+        return _deserialize_primitive(data, klass)
+    elif klass == object:
+        return _deserialize_object(data)
+    elif klass == datetime.date:
+        return deserialize_date(data)
+    elif klass == datetime.datetime:
+        return deserialize_datetime(data)
+    elif typing_utils.is_generic(klass):
+        if typing_utils.is_list(klass):
+            return _deserialize_list(data, klass.__args__[0])
+        if typing_utils.is_dict(klass):
+            return _deserialize_dict(data, klass.__args__[1])
+    else:
+        return deserialize_model(data, klass)
+
+
+def _deserialize_primitive(data, klass):
+    """Deserializes to primitive type.
+
+    :param data: data to deserialize.
+    :param klass: class literal.
+
+    :return: int, long, float, str, bool.
+    :rtype: int | long | float | str | bool
+    """
+    try:
+        value = klass(data)
+    except UnicodeEncodeError:
+        value = six.u(data)
+    except TypeError:
+        value = data
+    return value
+
+
+def _deserialize_object(value):
+    """Return an original value.
+
+    :return: object.
+    """
+    return value
+
+
+def deserialize_date(string):
+    """Deserializes string to date.
+
+    :param string: str.
+    :type string: str
+    :return: date.
+    :rtype: date
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string).date()
+    except ImportError:
+        return string
+
+
+def deserialize_datetime(string):
+    """Deserializes string to datetime.
+
+    The string should be in iso8601 datetime format.
+
+    :param string: str.
+    :type string: str
+    :return: datetime.
+    :rtype: datetime
+    """
+    if string is None:
+      return None
+    
+    try:
+        from dateutil.parser import parse
+        return parse(string)
+    except ImportError:
+        return string
+
+
+def deserialize_model(data, klass):
+    """Deserializes list or dict to model.
+
+    :param data: dict, list.
+    :type data: dict | list
+    :param klass: class literal.
+    :return: model object.
+    """
+    instance = klass()
+
+    if not instance.openapi_types:
+        return data
+
+    for attr, attr_type in six.iteritems(instance.openapi_types):
+        if data is not None \
+                and instance.attribute_map[attr] in data \
+                and isinstance(data, (list, dict)):
+            value = data[instance.attribute_map[attr]]
+            setattr(instance, attr, _deserialize(value, attr_type))
+
+    return instance
+
+
+def _deserialize_list(data, boxed_type):
+    """Deserializes a list and its elements.
+
+    :param data: list to deserialize.
+    :type data: list
+    :param boxed_type: class literal.
+
+    :return: deserialized list.
+    :rtype: list
+    """
+    return [_deserialize(sub_data, boxed_type)
+            for sub_data in data]
+
+
+def _deserialize_dict(data, boxed_type):
+    """Deserializes a dict and its elements.
+
+    :param data: dict to deserialize.
+    :type data: dict
+    :param boxed_type: class literal.
+
+    :return: deserialized dict.
+    :rtype: dict
+    """
+    return {k: _deserialize(v, boxed_type)
+            for k, v in six.iteritems(data)}
diff --git a/services/TS29222_CAPIF_Security_API/config.yaml b/services/TS29222_CAPIF_Security_API/config.yaml
new file mode 100644
index 0000000..2a6bb81
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/config.yaml
@@ -0,0 +1,22 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif',
+  'col': 'security',
+  'capif_service_col': 'serviceapidescriptions',
+  'certs_col': "certs",
+  'capif_invokers' : 'invokerdetails',
+  'host': 'mongo',
+  'port': "27017"
+}
+
+monitoring: {
+  "fluent_bit_host": fluent-bit,
+  "fluent_bit_port": 24224,
+  "opentelemetry_url": "otel-collector",
+  "opentelemetry_port": "55680",
+  "opentelemetry_max_queue_size": 8192,
+  "opentelemetry_schedule_delay_millis": 20000,
+  "opentelemetry_max_export_batch_size": 2048,
+  "opentelemetry_export_timeout_millis": 60000
+}
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/git_push.sh b/services/TS29222_CAPIF_Security_API/git_push.sh
new file mode 100644
index 0000000..9405f72
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/git_push.sh
@@ -0,0 +1,57 @@
+#!/bin/sh
+# ref: https://help.github.com/articles/adding-an-existing-project-to-github-using-the-command-line/
+#
+# Usage example: /bin/sh ./git_push.sh wing328 openapi-pestore-perl "minor update" "gitlab.com"
+
+git_user_id=$1
+git_repo_id=$2
+release_note=$3
+git_host=$4
+
+if [ "$git_host" = "" ]; then
+    git_host="github.com"
+    echo "[INFO] No command line input provided. Set \$git_host to $git_host"
+fi
+
+if [ "$git_user_id" = "" ]; then
+    git_user_id="GIT_USER_ID"
+    echo "[INFO] No command line input provided. Set \$git_user_id to $git_user_id"
+fi
+
+if [ "$git_repo_id" = "" ]; then
+    git_repo_id="GIT_REPO_ID"
+    echo "[INFO] No command line input provided. Set \$git_repo_id to $git_repo_id"
+fi
+
+if [ "$release_note" = "" ]; then
+    release_note="Minor update"
+    echo "[INFO] No command line input provided. Set \$release_note to $release_note"
+fi
+
+# Initialize the local directory as a Git repository
+git init
+
+# Adds the files in the local repository and stages them for commit.
+git add .
+
+# Commits the tracked changes and prepares them to be pushed to a remote repository.
+git commit -m "$release_note"
+
+# Sets the new remote
+git_remote=`git remote`
+if [ "$git_remote" = "" ]; then # git remote not defined
+
+    if [ "$GIT_TOKEN" = "" ]; then
+        echo "[INFO] \$GIT_TOKEN (environment variable) is not set. Using the git credential in your environment."
+        git remote add origin https://${git_host}/${git_user_id}/${git_repo_id}.git
+    else
+        git remote add origin https://${git_user_id}:${GIT_TOKEN}@${git_host}/${git_user_id}/${git_repo_id}.git
+    fi
+
+fi
+
+git pull origin master
+
+# Pushes (Forces) the changes in the local repository up to the remote repository
+echo "Git pushing to https://${git_host}/${git_user_id}/${git_repo_id}.git"
+git push origin master 2>&1 | grep -v 'To https'
diff --git a/services/TS29222_CAPIF_Security_API/main.py b/services/TS29222_CAPIF_Security_API/main.py
new file mode 100644
index 0000000..d770937
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/main.py
@@ -0,0 +1,61 @@
+
+from capif_security.models import ServiceSecurity
+
+
+json_data = {
+    "securityInfo": [
+      {
+        "interfaceDetails": {
+          "ipv4Addr": "string",
+          "ipv6Addr": "string",
+          "port": 65535,
+          "securityMethods": [
+            "PSK",
+            "PKI"
+          ]
+        },
+        "aefId": "string",
+        "apiId": "string",
+        "prefSecurityMethods": [
+          "PSK",
+          "PKI"
+        ],
+        "selSecurityMethod": "PSK",
+        "authenticationInfo": "string",
+        "authorizationInfo": "string"
+      },
+      {
+        "interfaceDetails": {
+          "ipv4Addr": "string",
+          "ipv6Addr": "string",
+          "port": 65535,
+          "securityMethods": [
+            "PSK",
+            "string"
+          ]
+        },
+        "aefId": "string",
+        "apiId": "string",
+        "prefSecurityMethods": [
+          "PSK",
+          "string"
+        ],
+        "selSecurityMethod": "PSK",
+        "authenticationInfo": "string",
+        "authorizationInfo": "string"
+      }
+    ],
+    "notificationDestination": "string",
+    "requestTestNotification": True,
+    "websockNotifConfig": {
+      "websocketUri": "string",
+      "requestWebsocketUri": True
+    },
+    "supportedFeatures": "fff"
+  }
+
+#print(json_data)
+
+my_ser = ServiceSecurity.from_dict(json_data)
+
+print(my_ser)
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/requirements.txt b/services/TS29222_CAPIF_Security_API/requirements.txt
new file mode 100644
index 0000000..220adaf
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/requirements.txt
@@ -0,0 +1,22 @@
+connexion[swagger-ui] == 2.14.2; python_version>="3.6"
+swagger-ui-bundle >= 0.0.2
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask == 2.0.3
+pymongo == 4.0.1
+flask_jwt_extended == 4.4.4
+pyopenssl == 23.0.0
+rfc3987 == 1.3.8
+redis ==  4.5.4
+flask_executor == 1.0.0
+opentelemetry-instrumentation == 0.38b0
+opentelemetry-instrumentation-flask == 0.38b0
+opentelemetry-instrumentation-redis == 0.38b0
+opentelemetry-instrumentation-pymongo == 0.38b0
+opentelemetry-exporter-otlp == 1.17.0
+opentelemetry-exporter-jaeger==1.17.0
+fluent == 0.10.0
+fluent-logger == 0.10.0
+opentelemetry-api == 1.17.0
+opentelemetry-sdk == 1.17.0
+flask_executor == 1.0.0
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/security_prepare.sh b/services/TS29222_CAPIF_Security_API/security_prepare.sh
new file mode 100644
index 0000000..c28b389
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/security_prepare.sh
@@ -0,0 +1,19 @@
+#!/bin/bash
+
+VAULT_ADDR="http://$VAULT_HOSTNAME:$VAULT_PORT"
+VAULT_TOKEN=$VAULT_ACCESS_TOKEN
+
+
+
+curl  -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/server_cert/private" 2>/dev/null | jq -r '.data.data.key' -j > /usr/src/app/capif_security/server.key
+
+
+cd /usr/src/app/
+python3 -m capif_security
\ No newline at end of file
diff --git a/services/TS29222_CAPIF_Security_API/setup.py b/services/TS29222_CAPIF_Security_API/setup.py
new file mode 100644
index 0000000..d763e2e
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/setup.py
@@ -0,0 +1,39 @@
+# coding: utf-8
+
+import sys
+from setuptools import setup, find_packages
+
+NAME = "capif_security"
+VERSION = "1.0.0"
+
+# To install the library, run the following
+#
+# python setup.py install
+#
+# prerequisite: setuptools
+# http://pypi.python.org/pypi/setuptools
+
+REQUIRES = [
+    "connexion>=2.0.2",
+    "swagger-ui-bundle>=0.0.2",
+    "python_dateutil>=2.6.0"
+]
+
+setup(
+    name=NAME,
+    version=VERSION,
+    description="CAPIF_Security_API",
+    author_email="",
+    url="",
+    keywords=["OpenAPI", "CAPIF_Security_API"],
+    install_requires=REQUIRES,
+    packages=find_packages(),
+    package_data={'': ['openapi/openapi.yaml']},
+    include_package_data=True,
+    entry_points={
+        'console_scripts': ['capif_security=capif_security.__main__:main']},
+    long_description="""\
+    API for CAPIF security management. © 2021, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC). All rights reserved. 
+    """
+)
+
diff --git a/services/TS29222_CAPIF_Security_API/test-requirements.txt b/services/TS29222_CAPIF_Security_API/test-requirements.txt
new file mode 100644
index 0000000..0970f28
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/test-requirements.txt
@@ -0,0 +1,4 @@
+pytest~=4.6.7 # needed for python 2.7+3.4
+pytest-cov>=2.8.1
+pytest-randomly==1.2.3 # needed for python 2.7+3.4
+Flask-Testing==0.8.0
diff --git a/services/TS29222_CAPIF_Security_API/tox.ini b/services/TS29222_CAPIF_Security_API/tox.ini
new file mode 100644
index 0000000..f9b3b3b
--- /dev/null
+++ b/services/TS29222_CAPIF_Security_API/tox.ini
@@ -0,0 +1,11 @@
+[tox]
+envlist = py3
+skipsdist=True
+
+[testenv]
+deps=-r{toxinidir}/requirements.txt
+     -r{toxinidir}/test-requirements.txt
+	 {toxinidir}
+
+commands=
+   pytest --cov=capif_security
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/Dockerfile b/services/capif-client/CAPIFInvokerGUI/invoker_gui/Dockerfile
new file mode 100644
index 0000000..8357bf9
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/Dockerfile
@@ -0,0 +1,13 @@
+FROM python:3.8
+ENV PYTHONUNBUFFERED 1
+
+RUN apt-get update && apt-get install -y jq && apt-get clean
+RUN apt-get install -y iputils-ping
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+ADD requirements.txt /usr/src/app/
+RUN pip install -r requirements.txt
+ADD . /usr/src/app/
+
+CMD ["sh", "prepare.sh"]
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/__init__.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/capif_registration.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/capif_registration.json
new file mode 100644
index 0000000..498f284
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/capif_registration.json
@@ -0,0 +1,17 @@
+{
+  "folder_to_store_certificates": "/usr/src/app/capif_onboarding",
+  "capif_host": "capifcore",
+  "capif_http_port": "8080",
+  "capif_https_port": "443",
+  "capif_netapp_username": "test_netapp_23",
+  "capif_netapp_password": "test_netapp_password",
+  "capif_callback_url": "http://192.168.1.11:5000",
+  "description": ",test_app_description",
+  "csr_common_name": "test_app_common_name",
+  "csr_organizational_unit": "test_app_ou",
+  "csr_organization": "test_app_o",
+  "crs_locality": "Madrid",
+  "csr_state_or_province_name": "Madrid",
+  "csr_country_name": "ES",
+  "csr_email_address": "test@example.com"
+}
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/credentials.properties b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/credentials.properties
new file mode 100755
index 0000000..0c39e2c
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/credentials.properties
@@ -0,0 +1,14 @@
+[credentials]
+invoker_username = customnetapp
+invoker_password = pass123
+invoker_role = invoker
+invoker_description = Dummy NetApp
+invoker_cn = invoker
+#capif_ip = capicore
+#capif_port = 8080
+capif_callback_ip = host.docker.internal
+capif_callback_port = 8086
+nef_ip = host.docker.internal
+nef_port = 8888
+nef_callback_ip = host.docker.internal
+nef_callback_port = 8085
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/demo_values.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/demo_values.json
new file mode 100644
index 0000000..3a8a2ab
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/demo_values.json
@@ -0,0 +1 @@
+{"netappID": "93caff2e486955", "ccf_onboarding_url": "api-invoker-management/v1/onboardedInvokers", "ccf_discover_url": "service-apis/v1/allServiceAPIs?api-invoker-id=", "capif_access_token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTY4OTU4NzA1OCwianRpIjoiMDViOGMwYWMtYmU4OC00OWViLWFhNWItZTA0ZDM4NWJlYWFkIiwidHlwZSI6ImFjY2VzcyIsInN1YiI6ImN1c3RvbW5ldGFwcCBpbnZva2VyIiwibmJmIjoxNjg5NTg3MDU4LCJleHAiOjE2ODk1ODc5NTh9.k8ZXlgS0CJS-aDJCHgUv0oA4B6CLBjYpp5z3qIrzsvgr20wflpKXiO03c6U3G87T33ocEPR6BWG-ZhpQ1bfml2CKU16gef4nIDIgOKh17yBF0M1eW-gULBZL9exJQIpDWJXQK9oZOrkyHjgN89ieXlVYW9hKaGQfRl_B_HZL0hllWq6E9uE7kHG-VJTEmLJTEyP6uqmfIPLz2znHeTk8eP7IB_vxeIh-7Fr6LcyziDoxMskPDqxzg_6oLyd7biH9qZyWQYvtrEPsh_kJdK5Yc7vK1Kuh01uY9JRk9E97sXU8x0yBjejHgDn9K7_kH1gugPo7eP6nEPvm3BROWHFUmw", "api_id_0": "1d3c0c7803e650264ba30963b96549", "api_name_0": "/nef/api/v1/3gpp-as-session-with-qos/", "aef_id_0": "8cadd2bf35c6adf24bda897b4e8e99", "demo_ipv4_addr_0": "3gppnef", "demo_port_0": 8090, "demo_url_0": "/nef/api/v1/3gpp-as-session-with-qos/v1/{scsAsId}/subscriptions", "netapp_service_token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTY4OTU4ODEwOCwianRpIjoiY2NiNDNkNzktNTRjYS00NDI4LTg1OGMtN2MyNDI1MzhiZjU5IiwidHlwZSI6ImFjY2VzcyIsInN1YiI6IjIwZjAxMTY0OTRkNTA0MjhmZTI2ZDdhNjNkYjNlNSIsIm5iZiI6MTY4OTU4ODEwOCwiZXhwIjoxNjg5NTg4NzA4LCJpc3MiOiIyMGYwMTE2NDk0ZDUwNDI4ZmUyNmQ3YTYzZGIzZTUiLCJzY29wZSI6IjNncHAjOGNhZGQyYmYzNWM2YWRmMjRiZGE4OTdiNGU4ZTk5Oi9uZWYvYXBpL3YxLzNncHAtYXMtc2Vzc2lvbi13aXRoLXFvcy8ifQ.PTdAWSGCqEdxroxd1qF_cNA_JRohvNlgw_A49CyaUVqEKrky2_LnVtRll_KOHPGgGcIa8g_vqdM6We71CGx7w_KQPuSccb_wUkPQ5U2kfDT2-dkBZX8le_M1aQ9346tl3iQHqPsoMv3KdiD6mNSbO8f7vlRbQ1o7HQLtLaULB_0xbFr1iJAWdwO6Dm0KOKP_rM6kC5gKyVaLzUPUQBHGQwncQWlKp1Cey3G2cW5Aw_O6kF8mt1R1wgNCedU77JUmW3-ptc1kWmWlSo3UypYNm-XRAMWh44yYnGok5gE1tf451cRc5s9Hfl6Ya2fYYBI1by9x1S_zGlxi6f_OV9z4zg", "api_id_1": "cbc42102826d69a35de147c790a983", "api_name_1": "/nef/api/v1/3gpp-as-session-with-qos/", "aef_id_1": "1f1883a784c43f47aa4fae1dc4821f", "demo_ipv4_addr_1": "127.0.0.1", "demo_port_1": 8090, "demo_url_1": "/{scsAsId}/subscriptions", "demo_resource_id": ""}
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/events.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/events.json
new file mode 100644
index 0000000..3d10920
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/events.json
@@ -0,0 +1,6 @@
+{
+    "events": [
+      "SERVICE_API_AVAILABLE"
+    ],
+    "notificationDestination": "http://192.168.1.11:8080/capifcallbacks"
+  }
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/invoker_details.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/invoker_details.json
new file mode 100755
index 0000000..d94aa7f
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/invoker_details.json
@@ -0,0 +1,13 @@
+{
+  "notificationDestination" : "http://X:Y/netapp_callback",
+  "supportedFeatures" : "fffffff",
+  "apiInvokerInformation" : "dummy",
+  "websockNotifConfig" : {
+    "requestWebsocketUri" : true,
+    "websocketUri" : "websocketUri"
+  },
+  "onboardingInformation" : {
+    "apiInvokerPublicKey" : ""
+  },
+  "requestTestNotification" : true
+}
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/security_info.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/security_info.json
new file mode 100755
index 0000000..c1b0867
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/security_info.json
@@ -0,0 +1,18 @@
+{
+    "securityInfo": [
+      {
+        "prefSecurityMethods": [
+          "OAUTH"
+        ],
+        "authenticationInfo": "string",
+        "authorizationInfo": "string"
+      }
+    ],
+    "notificationDestination": "https://mynotificationdest.com",
+    "requestTestNotification": true,
+    "websockNotifConfig": {
+      "websocketUri": "string",
+      "requestWebsocketUri": true
+    },
+    "supportedFeatures": "fff"
+  }
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/service_request_body.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/service_request_body.json
new file mode 100644
index 0000000..189c49e
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/service_request_body.json
@@ -0,0 +1,32 @@
+{
+  "ipv4Addr": "10.0.0.3",
+  "notificationDestination": "http://invoker_gui:9091/nefcallbacks",
+  "snssai": {
+ "sst": 1,
+ "sd": "000001"
+ },
+"dnn": "province1.mnc01.mcc202.gprs",
+"qosReference": 82,
+  "altQoSReferences": [
+0
+ ],
+"usageThreshold": {
+"duration": 0,
+ "totalVolume": 0,
+"downlinkVolume": 0,
+ "uplinkVolume": 0
+ },
+"qosMonInfo": {
+"reqQosMonParams": [
+"DOWNLINK"
+],
+"repFreqs": [
+"EVENT_TRIGGERED"
+],
+ "latThreshDl": 0,
+"latThreshUl": 0,
+ "latThreshRp": 0,
+"waitTime": 0,
+ "repPeriod": 0
+}
+}
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/token_request.json b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/token_request.json
new file mode 100755
index 0000000..5408b74
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/config_files/token_request.json
@@ -0,0 +1,6 @@
+{
+    "grant_type": "client_credentials",
+    "client_id": "",
+    "client_secret": "string",
+    "scope": ""
+}
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_delete.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_delete.py
new file mode 100644
index 0000000..297f88e
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_delete.py
@@ -0,0 +1,71 @@
+from dis import dis
+import requests
+import json
+import configparser
+import os
+from termcolor import colored
+
+
+class RemoveInvoker():
+
+
+    def __offboard_netapp_to_capif(self, capif_ip,  invoker_id, log_level):
+
+        print(colored("Removing netapp from CAPIF","yellow"))
+        url = 'https://{}/api-invoker-management/v1/onboardedInvokers/{}'.format(capif_ip, invoker_id)
+
+        headers = {
+            'Content-Type': 'application/json'
+        }
+
+        try:
+
+            if log_level == "debug":
+                print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                print(colored(f"Request: to {url}","blue"))
+                print(colored(f"Request Headers: {headers}", "blue"))
+                print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+            response = requests.request("DELETE", url, headers=headers, cert=(
+                'capif_ops/certs/dummy.crt', 'capif_ops/certs/invoker_private_key.key'), verify='capif_ops/certs/ca.crt')
+            response.raise_for_status()
+
+            if log_level == "debug":
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                print(colored(f"Response to: {response.url}","green"))
+                print(colored(f"Response Headers: {response.headers}","green"))
+                print(colored(f"Response: {response.json()}","green"))
+                print(colored(f"Response Status code: {response.status_code}","green"))
+                print(colored("Success onboard invoker","green"))
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+
+        except requests.exceptions.HTTPError as err:
+            raise Exception(err.response.text, err.response.status_code)
+
+
+
+    def execute_remove_invoker(self, log_level):
+
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        try:
+
+            self.__offboard_netapp_to_capif(capif_ip, demo_values["invokerID"], log_level)
+
+            print("ApiInvokerID: {}\n".format(demo_values["invokerID"]))
+            demo_values.pop("invokerID")
+            demo_values.pop("pub_key")
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 403:
+                print("Invoker already registered.")
+                print("Chanage invoker public key in invoker_details.json\n")
+            else:
+                print(e)
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_discover_service.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_discover_service.py
new file mode 100644
index 0000000..7b608ac
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_discover_service.py
@@ -0,0 +1,96 @@
+from dis import dis
+import requests
+import json
+import configparser
+import redis
+import os
+from termcolor import colored
+
+
+class DiscoverService():
+
+    def __discover_service_apis(self, capif_ip, api_invoker_id, jwt_token, ccf_url, log_level):
+
+        print(colored("Discover Service", "yellow"))
+        url = "https://{}/{}{}".format(capif_ip, ccf_url, api_invoker_id)
+
+        payload = {}
+        files = {}
+        headers = {
+            'Content-Type': 'application/json'
+        }
+
+        try:
+
+            if log_level == "debug":
+                print(colored("''''''''''REQUEST'''''''''''''''''", "blue"))
+                print(colored(f"Request: to {url}", "blue"))
+                print(colored(f"Request Headers: {headers}", "blue"))
+                print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+            response = requests.request("GET", url, headers=headers, data=payload, files=files, cert=(
+                'capif_ops/certs/dummy.crt', 'capif_ops/certs/invoker_private_key.key'), verify='capif_ops/certs/ca.crt')
+            response.raise_for_status()
+            response_payload = json.loads(response.text)
+
+            if log_level == "debug":
+                print(colored("''''''''''RESPONSE'''''''''''''''''", "green"))
+                print(colored(f"Response to: {response.url}", "green"))
+                print(colored(f"Response Headers: {response.headers}", "green"))
+                print(colored(f"Response: {response.json()}", "green"))
+                print(
+                    colored(f"Response Status code: {response.status_code}", "green"))
+                print(colored("''''''''''RESPONSE'''''''''''''''''", "green"))
+
+            return response_payload
+        except requests.exceptions.HTTPError as err:
+            print(err.response.text)
+            message = json.loads(err.response.text)
+            status = err.response.status_code
+            raise Exception(message, status)
+
+    def execute_discover_service(self, log_level):
+
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+
+        try:
+            if 'invokerID' in demo_values:
+                invokerID = demo_values['invokerID']
+                capif_access_token = demo_values['capif_access_token']
+                ccf_discover_url = demo_values['ccf_discover_url']
+                discovered_apis = self.__discover_service_apis(
+                    capif_ip, invokerID, capif_access_token, ccf_discover_url, log_level)
+                print(colored(json.dumps(discovered_apis, indent=2), "yellow"))
+
+                count = 0
+                api_list = discovered_apis["serviceAPIDescriptions"]
+                for api in api_list:
+                    getAEF_profiles = api["aefProfiles"][0]
+                    getAEF_interfaces = getAEF_profiles["interfaceDescriptions"][0]
+                    getAEF_versions = getAEF_profiles["versions"][0]
+                    getAEF_resources = getAEF_versions["resources"][0]
+                    demo_values[f'api_id_{count}'] = api["apiId"]
+                    demo_values[f'api_name_{count}'] = api["apiName"]
+                    demo_values[f'aef_id_{count}'] = getAEF_profiles["aefId"]
+                    demo_values[f'demo_ipv4_addr_{count}'] = getAEF_interfaces["ipv4Addr"]
+                    demo_values[f'demo_port_{count}'] = getAEF_interfaces["port"]
+                    demo_values[f'demo_url_{count}'] = api["apiName"] + getAEF_versions["apiVersion"]+ getAEF_resources['uri']
+                    count += 1
+
+                print(colored("Discovered APIs", "yellow"))
+                with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                    json.dump(demo_values, outfile)
+
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 401:
+                print("API Invoker is not authorized")
+            elif status_code == 403:
+                print("API Invoker does not exist. API Invoker id not found")
+            else:
+                print(e)
+
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_auth.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_auth.py
new file mode 100644
index 0000000..dde3694
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_auth.py
@@ -0,0 +1,71 @@
+import requests
+import json
+import configparser
+import os
+from termcolor import colored
+
+class PreviousAuth():
+
+    def __get_capif_auth(self, capif_ip, capif_port, username, password):
+
+            #print("Geting Auth to exposer")
+            #url = "http://{}:{}/getauth".format(capif_ip, capif_port)
+            url = "https://register:8084/getauth".format(capif_port)
+            #url = "http://{}:{}/getauth".format(capif_ip, capif_port)
+
+            payload = dict()
+            payload['username'] = username
+            payload['password'] = password
+
+            headers = {
+                'Content-Type': 'application/json'
+            }
+
+            try:
+                response = requests.request("POST", url, headers=headers, data=json.dumps(payload), verify=False)
+
+                response.raise_for_status()
+                response_payload = json.loads(response.text)
+
+                return response_payload['access_token']
+
+            except requests.exceptions.HTTPError as err:
+                raise Exception(err.response.text, err.response.status_code)
+
+
+    def execute_get_auth(self, log_level):
+
+        config = configparser.ConfigParser()
+        config.read('capif_ops/config_files/credentials.properties')
+
+        username = config.get("credentials", "invoker_username")
+        password = config.get("credentials", "invoker_password")
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+        capif_port = os.getenv('CAPIF_PORT')
+
+        if os.path.exists("capif_ops/config_files/demo_values.json"):
+            #os.remove("capif_ops/config_files/demo_values.json")
+            with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+                demo_values = json.load(demo_file)
+        else:
+            demo_values = {}
+
+        #First we need register exposer in CAPIF
+        try:
+            if 'netappID' in demo_values:
+                access_token = self.__get_capif_auth(capif_ip, capif_port, username, password)
+                demo_values['capif_access_token'] = access_token
+
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+
+            print("Invoker auth Success!")
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 409:
+                print("User already registed. Continue with token request\n")
+            else:
+                print(e)
+
+        return True
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_security_auth.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_security_auth.py
new file mode 100644
index 0000000..74b026f
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_get_security_auth.py
@@ -0,0 +1,90 @@
+from dis import dis
+from email import charset
+import requests
+import json
+import configparser
+import redis
+import os
+from termcolor import colored
+
+
+class InvokerGetSecurityAuth():
+
+    def __get_security_token(self, capif_ip, api_invoker_id, jwt_token, ccf_url, aef_id, api_name, log_level):
+
+    
+        url = "https://{}/capif-security/v1/securities/{}/token".format(capif_ip, api_invoker_id)
+
+        with open('capif_ops/config_files/token_request.json', "rb") as f:
+            payload = json.load(f)
+
+        payload["client_id"] = api_invoker_id
+        payload["scope"] = "3gpp#"+aef_id+":"+api_name
+
+        headers = {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        }
+
+        
+        payload_dict = json.dumps(payload, indent=2)
+
+        print(colored(f"Request Body: {payload_dict}", "yellow"))
+
+        try:
+
+            if log_level == "debug":
+                print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                print(colored(f"Request: to {url}","blue"))
+                print(colored(f"Request Headers: {headers}", "blue"))
+                print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+            response = requests.post(url, headers=headers, data=payload, cert=('capif_ops/certs/dummy.crt', 'capif_ops/certs/invoker_private_key.key'), verify='capif_ops/certs/ca.crt')
+            print(response.request.body)
+            response.raise_for_status()
+            response_payload = json.loads(response.text)
+
+            if log_level == "debug":
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                print(colored(f"Response to: {response.url}","green"))
+                print(colored(f"Response Headers: {response.headers}","green"))
+                print(colored(f"Response: {response.json()}","green"))
+                print(colored(f"Response Status code: {response.status_code}","green"))
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+
+            return response_payload
+        except requests.exceptions.HTTPError as err:
+            print(err.response.text)
+            message = json.loads(err.response.text)
+            status = err.response.status_code
+            raise Exception(message, status)
+
+    def execute_get_security_auth(self, log_level):
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        config = configparser.ConfigParser()
+        config.read('credentials.properties')
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+        invokerID = demo_values['invokerID']
+        capif_access_token = demo_values['capif_access_token']
+        ccf_discover_url = demo_values['ccf_discover_url']
+
+        try:
+            if 'aef_id_0' in demo_values and 'api_name_0' in demo_values:
+                token = self.__get_security_token(capif_ip, invokerID, capif_access_token, ccf_discover_url, demo_values['aef_id_0'], demo_values['api_name_0'],log_level)
+                print(colored(json.dumps(token, indent=2),"yellow"))
+                demo_values["netapp_service_token"] = token["access_token"]
+                print(colored("Obtained Security Token","yellow"))
+
+                with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                    json.dump(demo_values, outfile)
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 401:
+                print("API Invoker is not authorized")
+            elif status_code == 403:
+                print("API Invoker does not exist. API Invoker id not found")
+            else:
+                print(e)
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_previous_register.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_previous_register.py
new file mode 100644
index 0000000..6a77264
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_previous_register.py
@@ -0,0 +1,134 @@
+import requests
+import json
+import configparser
+import os
+from termcolor import colored
+
+class PreviousRegister():
+
+    def __register_invoker_to_capif(self, capif_ip, capif_port, username, password, role, description, cn):
+
+            #print(colored("Registering exposer to CAPIF","yellow"))
+            url = "https://register:8084/register".format(capif_port)
+            #url = "http://{}:{}/register".format(capif_ip, capif_port)
+
+            payload = dict()
+            payload['username'] = username
+            payload['password'] = password
+            payload['role'] = role
+            payload['description'] = description
+            payload['cn'] = cn
+
+            headers = {
+                'Content-Type': 'application/json'
+            }
+
+            try:
+                # print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                # print(colored(f"Request: to {url}","blue"))
+                # print(colored(f"Request Headers: {headers}", "blue"))
+                # print(colored(f"Request Body: {json.dumps(payload)}", "blue"))
+                # print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+                response = requests.request("POST", url, headers=headers, data=json.dumps(payload), verify=False)
+                response.raise_for_status()
+                response_payload = json.loads(response.text)
+
+                # print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                # print(colored(f"Response to: {response.url}","green"))
+                # print(colored(f"Response Headers: {response.headers}","green"))
+                # print(colored(f"Response: {response.json()}","green"))
+                # print(colored(f"Response Status code: {response.status_code}","green"))
+                # print(colored("Success to register new exposer","green"))
+                # print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                return response_payload['id'], response_payload['ccf_onboarding_url'], response_payload['ccf_discover_url'],
+            except requests.exceptions.HTTPError as err:
+                raise Exception(err.response.status_code)
+
+
+    def __get_capif_auth(self, capif_ip, capif_port, username, password):
+
+            #print("Geting Auth to exposer")
+            url = "https://register:8084/getauth".format(capif_port)
+            #url = "http://{}:{}/getauth".format(capif_ip, capif_port)
+
+            payload = dict()
+            payload['username'] = username
+            payload['password'] = password
+
+            headers = {
+                'Content-Type': 'application/json'
+            }
+
+            try:
+                # print("''''''''''REQUEST'''''''''''''''''")
+                # print("Request: to ",url) 
+                # print("Request Headers: ",  headers) 
+                # print("Request Body: ", json.dumps(payload))
+                # print("''''''''''REQUEST'''''''''''''''''")
+
+                response = requests.request("POST", url, headers=headers, data=json.dumps(payload), verify = False)
+
+                response.raise_for_status()
+                response_payload = json.loads(response.text)
+
+                # print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                # print(colored(f"Response to: {response.url}","green"))
+                # print(colored(f"Response Headers: {response.headers}","green"))
+                # print(colored(f"Response: {response.json()}","green"))
+                # print(colored(f"Response Status code: {response.status_code}","green"))
+                # print(colored("Get AUTH Success. Received access token", "green"))
+                # print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                return response_payload['access_token']
+
+            except requests.exceptions.HTTPError as err:
+                raise Exception(err.response.text, err.response.status_code)
+
+
+    def execute_previous_register_invoker(self):
+
+        config = configparser.ConfigParser()
+        config.read('capif_ops/config_files/credentials.properties')
+
+        username = config.get("credentials", "invoker_username")
+        password = config.get("credentials", "invoker_password")
+        role = config.get("credentials", "invoker_role")
+        description = config.get("credentials", "invoker_description")
+        cn = config.get("credentials", "invoker_cn")
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+        capif_port = os.getenv('CAPIF_PORT')
+
+        if os.path.exists("capif_ops/config_files/demo_values.json"):
+            #os.remove("capif_ops/config_files/demo_values.json")
+            with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+                demo_values = json.load(demo_file)
+        else:
+            demo_values = {}
+
+        #First we need register exposer in CAPIF
+        try:
+            netappID, ccf_onboarding_url, ccf_discover_url = self.__register_invoker_to_capif(capif_ip, capif_port, username, password, role, description, cn)
+            demo_values['netappID'] = netappID
+            demo_values['ccf_onboarding_url'] = ccf_onboarding_url
+            demo_values['ccf_discover_url'] = ccf_discover_url
+            #print(colored(f"NetAppID: {netappID}\n","yellow"))
+            #print("provider ID: {}".format(providerID))
+
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+
+            if 'netappID' in demo_values:
+                access_token = self.__get_capif_auth(capif_ip, capif_port, username, password)
+                demo_values['capif_access_token'] = access_token
+
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 409:
+                print()
+            else:
+                print(e)
+
+        return True
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_register_to_capif.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_register_to_capif.py
new file mode 100644
index 0000000..49be731
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_register_to_capif.py
@@ -0,0 +1,134 @@
+from dis import dis
+import requests
+import json
+import configparser
+import redis
+import os
+from termcolor import colored
+
+
+from OpenSSL.SSL import FILETYPE_PEM
+from OpenSSL.crypto import (dump_certificate_request, dump_privatekey, load_publickey, PKey, TYPE_RSA, X509Req, dump_publickey)
+
+
+class RegisterInvoker():
+    def __create_csr(self,  name):
+
+        # create public/private key
+        key = PKey()
+        key.generate_key(TYPE_RSA, 2048)
+
+        # Generate CSR
+        req = X509Req()
+        req.get_subject().CN = name
+        req.get_subject().O = 'Telefonica I+D'
+        req.get_subject().OU = 'Innovation'
+        req.get_subject().L = 'Madrid'
+        req.get_subject().ST = 'Madrid'
+        req.get_subject().C = 'ES'
+        req.get_subject().emailAddress = 'inno@tid.es'
+        req.set_pubkey(key)
+        req.sign(key, 'sha256')
+
+        csr_request = dump_certificate_request(FILETYPE_PEM, req)
+
+        private_key = dump_privatekey(FILETYPE_PEM, key)
+
+        return csr_request, private_key
+
+
+
+
+    def __onboard_netapp_to_capif(self, capif_ip, capif_callback_ip, capif_callback_port, jwt_token, ccf_url, log_level):
+
+        print(colored("Onboarding netapp to CAPIF","yellow"))
+        url = 'https://{}/{}'.format(capif_ip, ccf_url)
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        csr_request, private_key = self.__create_csr("invoker")
+
+        if 'pub_key' not in demo_values:
+            private_key_file = open("capif_ops/certs/invoker_private_key.key", 'wb+')
+            private_key_file.write(bytes(private_key))
+
+        json_file = open('capif_ops/config_files/invoker_details.json', 'rb')
+        payload_dict = json.load(json_file)
+        if 'pub_key' not in demo_values:
+            payload_dict['onboardingInformation']['apiInvokerPublicKey'] = csr_request.decode("utf-8")
+        else:
+            payload_dict['onboardingInformation']['apiInvokerPublicKey'] = demo_values['pub_key']
+        payload_dict['notificationDestination'] = payload_dict['notificationDestination'].replace("X", capif_callback_ip)
+        payload_dict['notificationDestination'] = payload_dict['notificationDestination'].replace("Y", capif_callback_port)
+        payload = json.dumps(payload_dict, indent=2)
+
+        print(colored(f"Request Body: {payload}", "yellow"))
+
+        headers = {
+            'Authorization': 'Bearer {}'.format(jwt_token),
+            'Content-Type': 'application/json'
+        }
+
+        try:
+
+            if log_level == "debug":
+                print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                print(colored(f"Request: to {url}","blue"))
+                print(colored(f"Request Headers: {headers}", "blue"))
+                print(colored(f"Request Body: {json.dumps(payload)}", "blue"))
+                print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+            response = requests.request("POST", url, headers=headers, data=payload, verify='capif_ops/certs/ca.crt')
+            response.raise_for_status()
+            response_payload = json.loads(response.text)
+            certification_file = open('capif_ops/certs/dummy.crt', 'wb')
+            certification_file.write(bytes(response_payload['onboardingInformation']['apiInvokerCertificate'], 'utf-8'))
+            certification_file.close()
+
+            if log_level == "debug":
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                print(colored(f"Response to: {response.url}","green"))
+                print(colored(f"Response Headers: {response.headers}","green"))
+                print(colored(f"Response: {response.json()}","green"))
+                print(colored(f"Response Status code: {response.status_code}","green"))
+                print(colored("Success onboard invoker","green"))
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+            return response_payload['apiInvokerId'],  payload_dict['onboardingInformation']['apiInvokerPublicKey']
+        except requests.exceptions.HTTPError as err:
+            raise Exception(err.response.text, err.response.status_code)
+
+
+
+
+
+    def execute_register_invoker(self, log_level):
+
+        config = configparser.ConfigParser()
+        config.read('capif_ops/config_files/credentials.properties')
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+
+        capif_callback_ip = config.get("credentials", "capif_callback_ip")
+        capif_callback_port = config.get("credentials", "capif_callback_port")
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        try:
+            capif_access_token = demo_values['capif_access_token']
+            ccf_onboarding_url = demo_values['ccf_onboarding_url']
+            invokerID, pub_key = self.__onboard_netapp_to_capif(capif_ip, capif_callback_ip, capif_callback_port, capif_access_token, ccf_onboarding_url, log_level)
+            demo_values['invokerID'] = invokerID
+            demo_values['pub_key'] = pub_key
+            print("ApiInvokerID: {}\n".format(invokerID))
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 403:
+                print("Invoker already registered.")
+                print("Chanage invoker public key in invoker_details.json\n")
+            else:
+                print(e)
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_remove_security_context.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_remove_security_context.py
new file mode 100644
index 0000000..18bb3f3
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_remove_security_context.py
@@ -0,0 +1,82 @@
+from dis import dis
+from email import charset
+import requests
+import json
+import configparser
+import redis
+import os
+from termcolor import colored
+
+
+class InvokerRemoveSecurityContext():
+
+    def __remove_security_service(self, capif_ip, api_invoker_id, jwt_token, ccf_url, demo_values, log_level):
+
+
+        url = "https://{}/capif-security/v1/trustedInvokers/{}".format(capif_ip, api_invoker_id)
+
+        headers = {
+            'Content-Type': 'application/json'
+        }
+
+        try:
+
+            if log_level == "debug":
+                print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                print(colored(f"Request: to {url}","blue"))
+                print(colored(f"Request Headers: {headers}", "blue"))
+                print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+            response = requests.delete(url, cert=('capif_ops/certs/dummy.crt', 'capif_ops/certs/invoker_private_key.key'), verify='capif_ops/certs/ca.crt')
+            response.raise_for_status()
+
+            if log_level == "debug":
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                print(colored(f"Response to: {response.url}","green"))
+                print(colored(f"Response Headers: {response.headers}","green"))
+                print(colored(f"Response: {response.json()}","green"))
+                print(colored(f"Response Status code: {response.status_code}","green"))
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+
+            return 
+        except requests.exceptions.HTTPError as err:
+            print(err.response.text)
+            message = json.loads(err.response.text)
+            status = err.response.status_code
+            raise Exception(message, status)
+
+    def execute_remove_security_context(self, log_level):
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        config = configparser.ConfigParser()
+        config.read('credentials.properties')
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+        invokerID = ""
+        capif_access_token = ""
+        ccf_discover_url = ""
+
+        try:
+
+            invokerID = demo_values['invokerID']
+            capif_access_token = demo_values['capif_access_token']
+            ccf_discover_url = demo_values['ccf_discover_url']
+            security_information = self.__remove_security_service(capif_ip, invokerID, capif_access_token, ccf_discover_url, demo_values,log_level)
+            print(colored(json.dumps(security_information, indent=2),"yellow"))
+            print(colored("Register Security context","yellow"))
+
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+
+
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 401:
+                print("API Invoker is not authorized")
+            elif status_code == 403:
+                print("API Invoker does not exist. API Invoker id not found")
+            else:
+                print(e)
+
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_secutiry_context.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_secutiry_context.py
new file mode 100644
index 0000000..a26988f
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_secutiry_context.py
@@ -0,0 +1,96 @@
+from dis import dis
+from email import charset
+import requests
+import json
+import configparser
+import redis
+import os
+from termcolor import colored
+
+
+class InvokerSecurityContext():
+
+    def __register_security_service(self, capif_ip, api_invoker_id, jwt_token, ccf_url, demo_values, log_level):
+
+
+        url = "https://{}/capif-security/v1/trustedInvokers/{}".format(capif_ip, api_invoker_id)
+
+        with open('capif_ops/config_files/security_info.json', "rb") as f:
+            payload = json.load(f)
+
+        count = 0
+        for profile in payload["securityInfo"]:
+            profile["aefId"] = demo_values[f"aef_id_{count}"]
+            profile["apiId"] = demo_values[f"api_id_{count}"]
+            count += 1
+
+        headers = {
+            'Content-Type': 'application/json'
+        }
+
+        # payload_dict = json.dumps(payload, indent=2)
+
+        # print(colored(f"Request Body: {payload_dict}", "yellow"))
+
+        try:
+
+            if log_level == "debug":
+                print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                print(colored(f"Request: to {url}","blue"))
+                print(colored(f"Request Headers: {headers}", "blue"))
+                print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+
+            response = requests.put(url, json=payload, cert=('capif_ops/certs/dummy.crt', 'capif_ops/certs/invoker_private_key.key'), verify='capif_ops/certs/ca.crt')
+            response.raise_for_status()
+            response_payload = response.json()
+
+            if log_level == "debug":
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                print(colored(f"Response to: {response.url}","green"))
+                print(colored(f"Response Headers: {response.headers}","green"))
+                print(colored(f"Response: {response.json()}","green"))
+                print(colored(f"Response Status code: {response.status_code}","green"))
+                print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+
+            return response_payload
+        except requests.exceptions.HTTPError as err:
+            print(err.response.text)
+            message = json.loads(err.response.text)
+            status = err.response.status_code
+            raise Exception(message, status)
+
+    def execute_register_security_context(self, log_level):
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        config = configparser.ConfigParser()
+        config.read('credentials.properties')
+
+        capif_ip = os.getenv('CAPIF_HOSTNAME')
+        invokerID = ""
+        capif_access_token = ""
+        ccf_discover_url = ""
+
+        try:
+
+            invokerID = demo_values['invokerID']
+            capif_access_token = demo_values['capif_access_token']
+            ccf_discover_url = demo_values['ccf_discover_url']
+            security_information = self.__register_security_service(capif_ip, invokerID, capif_access_token, ccf_discover_url, demo_values,log_level)
+            print(colored(json.dumps(security_information, indent=2),"yellow"))
+            print(colored("Register Security context","yellow"))
+
+            with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                json.dump(demo_values, outfile)
+
+
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 401:
+                print("API Invoker is not authorized")
+            elif status_code == 403:
+                print("API Invoker does not exist. API Invoker id not found")
+            else:
+                print(e)
+
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_to_service.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_to_service.py
new file mode 100644
index 0000000..bc54ad7
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/invoker_to_service.py
@@ -0,0 +1,168 @@
+from dis import dis
+import requests
+import json
+import configparser
+import redis
+import os
+import argparse
+import re
+from termcolor import colored
+
+# Get environment variables
+
+
+class InvokerToService():
+    def __demo_to_aef(self, operation, demo_ip, demo_port, demo_url, jwt_token, name, log_level):
+
+        #def register_netapp_to_nef(nef_ip, nef_port):
+        access_token_url = "https://{}:{}/api/v1/login/access-token".format(demo_ip, demo_port)
+
+        access_payload = {
+        "username": "admin@my-email.com",
+        "password": "pass"
+        }
+
+        response = requests.request('POST', access_token_url, data=access_payload, verify=False)
+        parsed = json.loads(response.text)
+
+        access_token = parsed['access_token']
+
+        print(colored("Using AEF Service API","yellow"))
+        url = "https://{}:{}{}".format(demo_ip, demo_port, demo_url)
+        #url = "http://python_aef:8086/hello"
+
+
+      
+        json_file = open('capif_ops/config_files/service_request_body.json', 'rb')
+        payload_dict = json.load(json_file)
+        payload = json.dumps(payload_dict, indent=2)
+
+        files = {}
+        headers = {
+            'Content-Type': 'application/json',
+            'Authorization': 'Bearer '+ access_token + "," +jwt_token
+        }
+
+        if operation == "create":
+            print(colored(f"Request Body: {payload}", "yellow"))
+            try:
+                if log_level == "debug":
+                    print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                    print(colored(f"Request: to {url}","blue"))
+                    print(colored(f"Request Headers: {headers}", "blue"))
+                    print(colored(f"Request Body: {json.dumps(payload, indent=2)}", "blue"))
+                    print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+                response = requests.request("POST", url, headers=headers, data=payload, files=files, verify=False)
+                response.raise_for_status()
+                response_payload = json.loads(response.text)
+
+                if log_level == "debug":
+                    print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                    print(colored(f"Response to: {response.url}","green"))
+                    print(colored(f"Response Headers: {response.headers}","green"))
+                    print(colored(f"Response: {response.json()}","green"))
+                    print(colored(f"Response Status code: {response.status_code}","green"))
+                    print(colored("Success to invoke service","green"))
+                    print(colored(response_payload,"green"))
+                    print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+
+                link_created_resource = response_payload["link"]
+                resource_id = link_created_resource.rsplit('/', 1)[-1]
+                if resource_id:
+                    with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+                        demo_values = json.load(demo_file)
+                    demo_values["demo_resource_id"] = resource_id
+                    with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                        json.dump(demo_values, outfile)
+
+                return response_payload
+            except requests.exceptions.HTTPError as err:
+                print(err.response.text)
+                message = json.loads(err.response.text)
+                status = err.response.status_code
+                raise Exception(message, status)
+            
+        elif operation == "delete":
+            with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+                        demo_values = json.load(demo_file)
+            resource_id = demo_values["demo_resource_id"]
+            if resource_id == "":
+                print("Not found resource to delete")
+                return 
+
+            url = url + "/" + resource_id
+            try:
+                if log_level == "debug":
+                    print(colored("''''''''''REQUEST'''''''''''''''''","blue"))
+                    print(colored(f"Request: to {url}","blue"))
+                    print(colored(f"Request Headers: {headers}", "blue"))
+                    print(colored(f"''''''''''REQUEST'''''''''''''''''", "blue"))
+                response = requests.request("DELETE", url, headers=headers, verify=False)
+                response.raise_for_status()
+                response_payload = json.loads(response.text)
+
+                if log_level == "debug":
+                    print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+                    print(colored(f"Response to: {response.url}","green"))
+                    print(colored(f"Response Headers: {response.headers}","green"))
+                    print(colored(f"Response: {response.json()}","green"))
+                    print(colored(f"Response Status code: {response.status_code}","green"))
+                    print(colored("Success to invoke service","green"))
+                    print(colored(response_payload,"green"))
+                    print(colored("''''''''''RESPONSE'''''''''''''''''","green"))
+
+                demo_values["demo_resource_id"] = ""
+                with open('capif_ops/config_files/demo_values.json', 'w') as outfile:
+                    json.dump(demo_values, outfile)
+
+                return response_payload
+            except requests.exceptions.HTTPError as err:
+                print(err.response.text)
+                message = json.loads(err.response.text)
+                status = err.response.status_code
+                raise Exception(message, status)
+
+        else:
+            print("You must spicify if you want create or delete resource")
+
+
+    def execute_invoker_to_service(self, input):
+
+        # parser = argparse.ArgumentParser()
+        # parser.add_argument('--name', metavar= "name", type=str, default="Evolve5G", help="Name to send to the aef service")
+        # args = parser.parse_args()
+        input_name = "prueba"
+        operation = ""
+        log_level = ""
+        params = input.split()
+        if len(params) > 0:
+            operation = params[0]
+            if len(params) > 1:
+                log_level = params[1]
+
+        with open('capif_ops/config_files/demo_values.json', 'r') as demo_file:
+            demo_values = json.load(demo_file)
+
+        try:
+            if 'netapp_service_token' in demo_values:
+
+                print(colored("Doing test","yellow"))
+                jwt_token = demo_values['netapp_service_token']
+                invokerID = demo_values['invokerID']
+                demo_ip = demo_values['demo_ipv4_addr_0']
+                #demo_port = demo_values['demo_port_0']
+                demo_port = 4443
+                demo_url = demo_values['demo_url_0']
+                demo_url = re.sub(r'\{scsAsId\}', 'myNetapp', demo_url)
+
+                result = self.__demo_to_aef(operation, demo_ip, demo_port, demo_url, jwt_token, input_name, log_level)
+                print(colored(f"Response: {json.dumps(result, indent=2)}", "yellow"))
+                print(colored("Success","yellow"))
+        except Exception as e:
+            status_code = e.args[0]
+            if status_code == 401:
+                print("API Invoker is not authorized")
+            elif status_code == 403:
+                print("API Invoker does not exist. API Invoker id not found")
+            else:
+                print(e)
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/__init__.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/callback.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/callback.py
new file mode 100644
index 0000000..682d358
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/capif_ops/nef_calback_server/callback.py
@@ -0,0 +1,26 @@
+#!/usr/bin/env python3
+
+from flask import Flask, jsonify, request
+# import redis
+# from redis.commands.json.path import Path
+import secrets
+from werkzeug import serving
+import os
+
+
+
+app = Flask(__name__)
+
+COUNTER = 0
+
+@app.route("/nefcallbacks", methods=["POST"])
+def nefcallback():
+    global COUNTER 
+    COUNTER += 1
+    print(f"Notification received from NEF: {COUNTER}")
+
+    return jsonify(message="Receive message"), 200
+
+
+if __name__ == '__main__':
+    serving.run_simple('0.0.0.0', 8080, app)
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/main.py b/services/capif-client/CAPIFInvokerGUI/invoker_gui/main.py
new file mode 100644
index 0000000..bed7c8b
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/main.py
@@ -0,0 +1,98 @@
+
+from cmd import Cmd
+from capif_ops.invoker_previous_register import PreviousRegister
+from capif_ops.invoker_register_to_capif import RegisterInvoker
+from capif_ops.invoker_discover_service import  DiscoverService
+from capif_ops.invoker_secutiry_context import InvokerSecurityContext
+from capif_ops.invoker_get_security_auth import InvokerGetSecurityAuth
+from capif_ops.invoker_delete import RemoveInvoker
+from capif_ops.invoker_get_auth import PreviousAuth
+from capif_ops.invoker_remove_security_context import InvokerRemoveSecurityContext
+from capif_ops.invoker_to_service import InvokerToService
+import shlex
+import subprocess
+from art import *
+
+prev_register = PreviousRegister()
+regiter_capif = RegisterInvoker()
+discover_service = DiscoverService()
+register_security_context = InvokerSecurityContext()
+security_context_auth = InvokerGetSecurityAuth()
+remove_invoker = RemoveInvoker()
+invoker_auth = PreviousAuth()
+remove_security_service = InvokerRemoveSecurityContext()
+invoker_service = InvokerToService()
+
+
+
+class CAPIFProvider(Cmd):
+
+  def __init__(self):
+        Cmd.__init__(self)
+        self.prompt = "> "
+        self.intro = tprint("Welcome  to  Invoker  Console")
+
+  def emptyline(self):
+        """Do nothing on empty input line"""
+        pass
+
+  def preloop(self):
+    state = prev_register.execute_previous_register_invoker()
+    self.previous_register_state = state
+
+  def precmd(self, line):
+
+    line = line.lower()
+    args = shlex.split(line)
+
+    if len(args) >= 1 and args[0] in ["goodbye"]:
+        print("The first argument is username")
+        return ""
+
+    elif len(args) >= 1 and args[0] not in ["->", "wall", "follows", "exit", "help"]:
+        pass
+
+    return line
+
+  def do_register_invoker(self, input):
+    'Register invoker to CAPIF'
+    regiter_capif.execute_register_invoker(input)
+
+  def do_discover_service(self, input):
+    'Discover all services published in CAPIF'
+    discover_service.execute_discover_service(input)
+
+  def do_register_security_context(self, input):
+    'Create security context to use services'
+    register_security_context.execute_register_security_context(input)
+
+  def do_get_security_auth(self, input):
+    "If you select Oauth as security method use this command to obtain jwt token to access service"
+    security_context_auth.execute_get_security_auth(input)
+
+  def do_get_auth(self, input):
+    'Get jwt token to register invoker in CAPIF (Optional, only if token expires)'
+    invoker_auth.execute_get_auth(input)
+
+  def do_remove_security_context(self, input):
+    print("Not implemented yet")
+    #remove_security_service.execute_remove_security_context(input)
+
+  def do_remove_invoker(self, input):
+    "Remove invoker from CAPIF"
+    remove_invoker.execute_remove_invoker(input)
+
+  def do_call_service(self, input):
+    "Test invocation os service API"
+    invoker_service.execute_invoker_to_service(input)
+
+  def do_exit(self, input):
+    print('\nExiting...')
+    return True
+
+
+if __name__ == '__main__':
+    try:
+        CAPIFProvider().cmdloop()
+    except KeyboardInterrupt:
+        print('\nExiting...')
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/prepare.sh b/services/capif-client/CAPIFInvokerGUI/invoker_gui/prepare.sh
new file mode 100755
index 0000000..ca0305a
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/prepare.sh
@@ -0,0 +1,11 @@
+VAULT_ADDR="http://$VAULT_HOSTNAME:$VAULT_PORT"
+VAULT_TOKEN=$VAULT_ACCESS_TOKEN
+
+curl  -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/ca" 2>/dev/null | jq -r '.data.data.ca' -j > ./capif_ops/certs/ca.crt
\ No newline at end of file
diff --git a/services/capif-client/CAPIFInvokerGUI/invoker_gui/requirements.txt b/services/capif-client/CAPIFInvokerGUI/invoker_gui/requirements.txt
new file mode 100755
index 0000000..a9e6ede
--- /dev/null
+++ b/services/capif-client/CAPIFInvokerGUI/invoker_gui/requirements.txt
@@ -0,0 +1,13 @@
+requests == 2.26.0
+evolved5g >= 0.8.9
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask
+watchdog
+redis
+configparser
+redis
+pyopenssl
+pyjwt
+art
+termcolor
\ No newline at end of file
diff --git a/services/capif-client/Dockerfile b/services/capif-client/Dockerfile
new file mode 100644
index 0000000..ad7e503
--- /dev/null
+++ b/services/capif-client/Dockerfile
@@ -0,0 +1,5 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/client:3.1.3
+
+COPY ./CAPIFInvokerGUI .
+RUN pip3 install -r ./invoker_gui/requirements.txt
+CMD ["sleep", "infinity"]
\ No newline at end of file
diff --git a/services/check_services_are_running.sh b/services/check_services_are_running.sh
new file mode 100755
index 0000000..53e8e6d
--- /dev/null
+++ b/services/check_services_are_running.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+running="$(docker-compose -f docker-compose-capif.yml ps --services --all --filter "status=running")"
+services="$(docker-compose -f docker-compose-capif.yml ps --services --all)"
+if [ "$running" != "$services" ]; then
+    echo "Following services are not running:"
+    # Bash specific
+    comm -13 <(sort <<<"$running") <(sort <<<"$services")
+    exit 1
+else
+    echo "All services are running"
+    exit 0
+fi
diff --git a/services/clean_capif_docker_services.sh b/services/clean_capif_docker_services.sh
new file mode 100755
index 0000000..af3c313
--- /dev/null
+++ b/services/clean_capif_docker_services.sh
@@ -0,0 +1,40 @@
+
+# docker-compose -f "docker-compose-capif.yml" down  --rmi all --remove-orphans
+# docker network rm capif-network
+
+# status=$?
+# if [ $status -eq 0 ]; then
+#     echo "*** All Capif services are cleaned ***"
+# else
+#     echo "*** Some Capif services failed on clean ***"
+# fi
+
+# exit $status
+
+#!/bin/bash
+
+# Verificar el parámetro proporcionado
+if [[ $# -eq 0 || "$1" == "capif" ]]; then
+  FILES=("docker-compose-capif.yml")
+elif [[ "$1" == "all" ]]; then
+  FILES=("docker-compose-capif.yml" "docker-compose-vault.yml" "docker-compose-register.yml" "../monitoring/docker-compose.yml" "docker-compose-backoffice.yml")
+else
+  echo "Parámetro inválido. Uso: ./script.sh [capif|all]"
+  exit 1
+fi
+
+# Recorrer los archivos Docker Compose y ejecutar docker-compose down
+for FILE in "${FILES[@]}"; do
+  echo "Ejecutando 'docker-compose down' para el archivo $FILE"
+  docker-compose -f "$FILE" down --rmi all
+  status=$?
+    if [ $status -eq 0 ]; then
+        echo "*** Removed Service from $FILE ***"
+    else
+        echo "*** Some services of $FILE failed on clean ***"
+    fi
+done
+
+docker network rm capif-network
+
+echo "Operación completada."
diff --git a/services/docker-compose-capif.yml b/services/docker-compose-capif.yml
new file mode 100644
index 0000000..d552105
--- /dev/null
+++ b/services/docker-compose-capif.yml
@@ -0,0 +1,259 @@
+version: '3.7'
+
+services:
+  redis:
+    image: "redis:alpine"
+    command: redis-server
+    ports:
+      - "6379:6379"
+    volumes:
+      - $PWD/redis-data:/var/lib/redis
+      - $PWD/redis.conf:/usr/local/etc/redis/redis.conf
+    environment:
+      - REDIS_REPLICATION_MODE=master
+
+  access-control-policy:
+    build: TS29222_CAPIF_Access_Control_Policy_API
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Access_Control_Policy_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    environment:
+      - CONTAINER_NAME=access-control-policy
+      - MONITORING=${MONITORING}
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/access-control-policy:3.1.3
+    depends_on:
+      - redis
+      - nginx
+    
+
+  api-invoker-management:
+    build:
+      context: ./TS29222_CAPIF_API_Invoker_Management_API
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_API_Invoker_Management_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+      - vault:host-gateway
+    environment:
+      - CONTAINER_NAME=api-invoker-management
+      - MONITORING=${MONITORING}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/api-invoker-management-api:3.1.3
+    depends_on:
+    - redis
+    - nginx
+
+  api-provider-management:
+    build: TS29222_CAPIF_API_Provider_Management_API/.
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_API_Provider_Management_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+      - vault:host-gateway
+    image: public.ecr.aws/o2v4a8t6/opencapif/api-provider-management-api:3.1.3
+    environment:
+      - CONTAINER_NAME=api-provider-management
+      - MONITORING=${MONITORING}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    depends_on:
+      - redis
+      - nginx
+
+  logs:
+    build:
+      context: ./TS29222_CAPIF_Auditing_API
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Auditing_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/auditing-api:3.1.3
+    environment:
+      - CONTAINER_NAME=api-auditing
+      - MONITORING=${MONITORING}
+    depends_on:
+      - mongo
+
+  service-apis:
+    build:
+      context: ./TS29222_CAPIF_Discover_Service_API
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Discover_Service_API:/usr/src/app
+    restart: unless-stopped
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    image: public.ecr.aws/o2v4a8t6/opencapif/discover-service-api:3.1.3
+    environment:
+      - CONTAINER_NAME=services-apis
+      - MONITORING=${MONITORING}
+    depends_on:
+    - mongo
+
+  capif-events:
+    build: TS29222_CAPIF_Events_API/.
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Events_API:/usr/src/app
+    image: public.ecr.aws/o2v4a8t6/opencapif/events-api:3.1.3
+    environment:
+      - CONTAINER_NAME=api-events
+      - MONITORING=${MONITORING}
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    depends_on:
+      - redis
+      - mongo
+
+  api-invocation-logs:
+    build:
+      context: ./TS29222_CAPIF_Logging_API_Invocation_API
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Logging_API_Invocation_API:/usr/src/app
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/api-invocation-logs-api:3.1.3
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    environment:
+      - CAPIF_HOSTNAME=${CAPIF_HOSTNAME}
+      - CONTAINER_NAME=api-invocation-logs
+      - MONITORING=${MONITORING}
+    depends_on:
+      - mongo
+
+  published-apis:
+    build: TS29222_CAPIF_Publish_Service_API/.
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Publish_Service_API:/usr/src/app
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/publish-service-api:3.1.3
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    environment:
+      - CONTAINER_NAME=api-publish-apis
+      - MONITORING=${MONITORING}
+    depends_on:
+      - redis
+      - mongo
+
+  capif-routing-info:
+    build: TS29222_CAPIF_Routing_Info_API/.
+    expose:
+      - "8080"
+    image: public.ecr.aws/o2v4a8t6/opencapif/routing-info-api:3.1.3
+
+  capif-security:
+    build: TS29222_CAPIF_Security_API/.
+    expose:
+      - "8080"
+    volumes:
+      - ./TS29222_CAPIF_Security_API:/usr/src/app
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/security-api:3.1.3
+    environment:
+      - CAPIF_HOSTNAME=${CAPIF_HOSTNAME}
+      - CONTAINER_NAME=api-security
+      - MONITORING=${MONITORING}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+      - vault:host-gateway
+    depends_on:
+      - redis
+      - nginx
+
+  mongo:
+    image: mongo:6.0.2
+    logging:
+      driver: 'none'
+    restart: unless-stopped
+    environment:
+      MONGO_INITDB_ROOT_USERNAME: root
+      MONGO_INITDB_ROOT_PASSWORD: example
+  
+  mongo-express:
+    image: mongo-express:1.0.0-alpha.4
+    logging:
+      driver: 'none'
+    restart: unless-stopped
+    ports:
+      - 8082:8081
+    environment:
+      ME_CONFIG_MONGODB_ADMINUSERNAME: root
+      ME_CONFIG_MONGODB_ADMINPASSWORD: example
+      ME_CONFIG_MONGODB_URL: mongodb://root:example@mongo:27017/
+    depends_on:
+      - mongo
+
+  nginx:
+    build:
+      context: ./nginx
+    ports:
+      - "8080:8080"
+      - "443:443"
+    image: public.ecr.aws/o2v4a8t6/opencapif/nginx:3.1.3
+    environment:
+      - CAPIF_HOSTNAME=${CAPIF_HOSTNAME}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    hostname: ${CAPIF_HOSTNAME}
+    volumes:
+      - ./nginx/certs:/etc/nginx/certs
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - vault:host-gateway
+    restart: unless-stopped
+    depends_on:
+      - redis
+      - service-apis
+      - api-invocation-logs
+      - published-apis
+      - capif-events
+      - logs
+
+networks:
+  default:
+    name: capif-network
+    external: true
diff --git a/services/docker-compose-register.yml b/services/docker-compose-register.yml
new file mode 100644
index 0000000..173d661
--- /dev/null
+++ b/services/docker-compose-register.yml
@@ -0,0 +1,51 @@
+version: '3.7'
+
+services:
+  register:
+    build:
+      context: ./register
+    ports:
+      - 8084:8080
+    volumes:
+      - ./register:/usr/src/app
+    environment:
+      - CAPIF_PRIV_KEY=${CAPIF_PRIV_KEY}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - vault:host-gateway
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/jwtauth:3.1.3
+    depends_on:
+       - mongo_register
+
+  mongo_register:
+    image: mongo:6.0.2
+    restart: unless-stopped
+    environment:
+      MONGO_INITDB_ROOT_USERNAME: root
+      MONGO_INITDB_ROOT_PASSWORD: example
+
+  mongo_register_express:
+    image: mongo-express:1.0.0-alpha.4
+    logging:
+      driver: 'none'
+    restart: unless-stopped
+    ports:
+      - 8083:8081
+    environment:
+      ME_CONFIG_MONGODB_ADMINUSERNAME: root
+      ME_CONFIG_MONGODB_ADMINPASSWORD: example
+      ME_CONFIG_MONGODB_URL: mongodb://root:example@mongo_register:27017/
+    depends_on:
+      - mongo_register
+
+networks:
+  default:
+    name: capif-network
+    external: true
+
+
+
diff --git a/services/docker-compose-vault.yml b/services/docker-compose-vault.yml
new file mode 100644
index 0000000..e0bb7bc
--- /dev/null
+++ b/services/docker-compose-vault.yml
@@ -0,0 +1,16 @@
+version: '3.7'
+services:
+  vault:
+    build:
+      context: ./vault
+    restart: unless-stopped
+    ports:
+      - 8200:8200
+    cap_add:
+      - IPC_LOCK
+    environment:
+      - VAULT_DEV_ROOT_TOKEN_ID=dev-only-token
+      - VAULT_DEV_LISTEN_ADDRESS=0.0.0.0:8200
+    volumes:
+      - ./vault/data:/vault/data
+      - ./vault/config:/vault/config
diff --git a/services/docker-compose/docker-compose-capif.yml b/services/docker-compose/docker-compose-capif.yml
new file mode 100644
index 0000000..0095d9a
--- /dev/null
+++ b/services/docker-compose/docker-compose-capif.yml
@@ -0,0 +1,246 @@
+version: '3.7'
+
+services:
+  redis:
+    image: "redis:alpine"
+    command: redis-server
+    ports:
+      - "6379:6379"
+    volumes:
+      - $PWD/redis-data:/var/lib/redis
+      - $PWD/redis.conf:/usr/local/etc/redis/redis.conf
+    environment:
+      - REDIS_REPLICATION_MODE=master
+
+  access-control-policy:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Access_Control_Policy_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    environment:
+      - CONTAINER_NAME=access-control-policy
+      - MONITORING=${MONITORING}
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/access-control-policy:v3.1.4
+    depends_on:
+      - redis
+      - nginx
+    
+
+  api-invoker-management:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_API_Invoker_Management_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+      - vault:host-gateway
+    environment:
+      - CONTAINER_NAME=api-invoker-management
+      - MONITORING=${MONITORING}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/api-invoker-management-api:v3.1.4
+    depends_on:
+    - redis
+    - nginx
+
+  api-provider-management:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_API_Provider_Management_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+      - vault:host-gateway
+    image: public.ecr.aws/o2v4a8t6/opencapif/api-provider-management-api:v3.1.4
+    environment:
+      - CONTAINER_NAME=api-provider-management
+      - MONITORING=${MONITORING}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    depends_on:
+      - redis
+      - nginx
+
+  logs:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Auditing_API:/usr/src/app
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/auditing-api:v3.1.4
+    environment:
+      - CONTAINER_NAME=api-auditing
+      - MONITORING=${MONITORING}
+    depends_on:
+      - mongo
+
+  service-apis:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Discover_Service_API:/usr/src/app
+    restart: unless-stopped
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    image: public.ecr.aws/o2v4a8t6/opencapif/discover-service-api:v3.1.4
+    environment:
+      - CONTAINER_NAME=services-apis
+      - MONITORING=${MONITORING}
+    depends_on:
+    - mongo
+
+  capif-events:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Events_API:/usr/src/app
+    image: public.ecr.aws/o2v4a8t6/opencapif/events-api:v3.1.4
+    environment:
+      - CONTAINER_NAME=api-events
+      - MONITORING=${MONITORING}
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    depends_on:
+      - redis
+      - mongo
+
+  api-invocation-logs:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Logging_API_Invocation_API:/usr/src/app
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/api-invocation-logs-api:v3.1.4
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    environment:
+      - CAPIF_HOSTNAME=${CAPIF_HOSTNAME}
+      - CONTAINER_NAME=api-invocation-logs
+      - MONITORING=${MONITORING}
+    depends_on:
+      - mongo
+
+  published-apis:
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Publish_Service_API:/usr/src/app
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/publish-service-api:v3.1.4
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+    environment:
+      - CONTAINER_NAME=api-publish-apis
+      - MONITORING=${MONITORING}
+    depends_on:
+      - redis
+      - mongo
+
+  capif-routing-info:
+    expose:
+      - "8080"
+    image: public.ecr.aws/o2v4a8t6/opencapif/routing-info-api:v3.1.4
+
+  capif-security:
+    build: ../TS29222_CAPIF_Security_API/.
+    expose:
+      - "8080"
+    volumes:
+      - ../TS29222_CAPIF_Security_API:/usr/src/app
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/security-api:v3.1.4
+    environment:
+      - CAPIF_HOSTNAME=${CAPIF_HOSTNAME}
+      - CONTAINER_NAME=api-security
+      - MONITORING=${MONITORING}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - fluent-bit:host-gateway
+      - otel-collector:host-gateway
+      - vault:host-gateway
+    depends_on:
+      - redis
+      - nginx
+
+  mongo:
+    image: mongo:6.0.2
+    logging:
+      driver: 'none'
+    restart: unless-stopped
+    ports:
+      - 27017:27017
+    environment:
+      MONGO_INITDB_ROOT_USERNAME: root
+      MONGO_INITDB_ROOT_PASSWORD: example
+  
+  mongo-express:
+    image: mongo-express:1.0.0-alpha.4
+    logging:
+      driver: 'none'
+    restart: unless-stopped
+    ports:
+      - 8082:8081
+    environment:
+      ME_CONFIG_MONGODB_ADMINUSERNAME: root
+      ME_CONFIG_MONGODB_ADMINPASSWORD: example
+      ME_CONFIG_MONGODB_URL: mongodb://root:example@mongo:27017/
+    depends_on:
+      - mongo
+
+  nginx:
+    ports:
+      - "8080:8080"
+      - "443:443"
+    image: public.ecr.aws/o2v4a8t6/opencapif/nginx:v3.1.4
+    environment:
+      - CAPIF_HOSTNAME=${CAPIF_HOSTNAME}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    hostname: ${CAPIF_HOSTNAME}
+    volumes:
+      - ./nginx/certs:/etc/nginx/certs
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - vault:host-gateway
+    restart: unless-stopped
+    depends_on:
+      - redis
+      - service-apis
+      - api-invocation-logs
+      - published-apis
+      - capif-events
+      - logs
+
+networks:
+  default:
+    name: capif-network
+    external: true
diff --git a/services/docker-compose/docker-compose-montoring.yml b/services/docker-compose/docker-compose-montoring.yml
new file mode 100644
index 0000000..01dc06b
--- /dev/null
+++ b/services/docker-compose/docker-compose-montoring.yml
@@ -0,0 +1,110 @@
+version: '3'
+services:
+  prometheus:
+    image: prom/prometheus:latest
+    container_name: prometheus
+    user: "${DUID}:${DGID}"
+    volumes:
+      - ./prometheus/prometheus.yml:/etc/prometheus/prometheus.yml
+      - ./prometheus/prometheus_db:/var/lib/prometheus
+      - ./prometheus/prometheus_db:/prometheus
+      - ./prometheus/prometheus_db:/etc/prometheus
+      - ./prometheus/alert.rules:/etc/prometheus/alert.rules
+    command:
+      - '--config.file=/etc/prometheus/prometheus.yml'
+      - '--web.route-prefix=/'
+      - '--storage.tsdb.retention.time=200h'
+      - '--web.enable-lifecycle'
+    restart: unless-stopped
+    ports:
+      - '9090:9090'
+
+  # cadvisor collects metrics about running containers
+  cadvisor:
+    image: gcr.io/cadvisor/cadvisor:v0.47.2
+    container_name: cadvisor
+    ports:
+    - 8090:8080
+    volumes:
+    - /:/rootfs:ro
+    - /var/run:/var/run:rw
+    - /sys:/sys:ro
+    - /var/lib/docker/:/var/lib/docker:ro
+    - /var/run/docker.sock:/var/run/docker.sock:rw
+
+  grafana:
+    image: grafana/grafana
+    user: "${DUID}:${DGID}"
+    environment:
+      - GF_SECURITY_ADMIN_PASSWORD=secure_pass
+      - GF_PATHS_PROVISIONING=/etc/grafana/provisioning
+      - GF_AUTH_ANONYMOUS_ENABLED=true
+      - GF_AUTH_ANONYMOUS_ORG_ROLE=Admin
+    volumes:
+      - ./grafana/grafana_config/grafana.ini:/etc/grafana/grafana.ini
+      - ./grafana/grafana_db:/var/lib/grafana
+      - ./grafana/grafana_provisioning/grafana-datasources.yaml:/etc/grafana/provisioning/datasources/datasources.yaml
+      - ./grafana/grafana_provisioning/grafana-default-provisioning.yaml:/etc/grafana/provisioning/dashboards/default.yaml
+      - ./grafana/grafana_dashboards/Docker-monitoring.json:/var/lib/grafana/dashboards/Docker-monitoring.json
+      - ./grafana/grafana_dashboards/Loki-Logs.json:/var/lib/grafana/dashboards/Loki-Logs.json
+
+    depends_on:
+      - prometheus
+    ports:
+      - '3000:3000'
+
+  # loki save and analyze logs
+  loki:
+    image: grafana/loki:2.8.0
+    ports:
+      - "3100:3100"
+    command: -config.file=/etc/loki/local-config.yaml
+
+  # promtail send docker logs to loki
+  promtail:
+    image: grafana/promtail:2.8.0
+    volumes:
+      - /var/log:/var/log
+    command: -config.file=/etc/promtail/config.yml
+
+  # grafana image renderer
+  renderer:
+    image: grafana/grafana-image-renderer:latest
+    container_name: grafana-image-renderer
+    expose:
+      - "8081"
+    environment:
+      ENABLE_METRICS: "true"
+
+  # fluent-bit send logs to loki
+  fluent-bit:
+    image: grafana/fluent-bit-plugin-loki:main
+    container_name: fluent-bit
+    environment:
+      - LOKI_URL=http://loki:3100/loki/api/v1/push
+    volumes:
+      - ./fluent_bit/fluent-bit.conf:/fluent-bit/etc/fluent-bit.conf
+    ports:
+      - "24224:24224"
+      - "24224:24224/udp"
+
+  # opentelemetry collector
+  otel-collector:
+    image: otel/opentelemetry-collector:latest
+    ports:
+      - 55680:55680
+      - 4317:4317
+    volumes:
+      - ./otlp_collector/otel-config.yaml:/etc/otel-collector-config.yaml
+    command: ["--config", "/etc/otel-collector-config.yaml"]
+
+  # tempo is a distributed tracing backend
+  tempo:
+    image: grafana/tempo:latest
+    command: [ "-config.file=/etc/tempo.yaml" ]
+    volumes:
+      - ./tempo/tempo.yaml:/etc/tempo.yaml
+      - ./tempo/tempo-data:/tmp/tempo
+    ports:
+      - 3102:3100
+
diff --git a/services/docker-compose/docker-compose-register.yml b/services/docker-compose/docker-compose-register.yml
new file mode 100644
index 0000000..acd06ca
--- /dev/null
+++ b/services/docker-compose/docker-compose-register.yml
@@ -0,0 +1,37 @@
+version: '3.7'
+
+services:
+  register:
+    ports:
+      - 8084:8080
+    volumes:
+      - ../register:/usr/src/app
+    environment:
+      - CAPIF_PRIV_KEY=${CAPIF_PRIV_KEY}
+      - VAULT_HOSTNAME=vault
+      - VAULT_ACCESS_TOKEN=dev-only-token
+      - VAULT_PORT=8200
+    extra_hosts:
+      - host.docker.internal:host-gateway
+      - vault:host-gateway
+    restart: unless-stopped
+    image: public.ecr.aws/o2v4a8t6/opencapif/register:v3.1.4
+    depends_on:
+       - mongo_register
+
+  mongo_register:
+    image: mongo:6.0.2
+    restart: unless-stopped
+    ports:
+      - 28017:27017
+    environment:
+      MONGO_INITDB_ROOT_USERNAME: root
+      MONGO_INITDB_ROOT_PASSWORD: example
+
+networks:
+  default:
+    name: capif-network
+    external: true
+
+
+
diff --git a/services/docker-compose/docker-compose-vault.yml b/services/docker-compose/docker-compose-vault.yml
new file mode 100644
index 0000000..cd11e0a
--- /dev/null
+++ b/services/docker-compose/docker-compose-vault.yml
@@ -0,0 +1,16 @@
+version: '3.7'
+services:
+  vault:
+    build:
+      context: ../vault
+    restart: unless-stopped
+    ports:
+      - 8200:8200
+    cap_add:
+      - IPC_LOCK
+    environment:
+      - VAULT_DEV_ROOT_TOKEN_ID=dev-only-token
+      - VAULT_DEV_LISTEN_ADDRESS=0.0.0.0:8200
+    volumes:
+      - ./vault/data:/vault/data
+      - ./vault/config:/vault/config
diff --git a/services/docker-compose/run.sh b/services/docker-compose/run.sh
new file mode 100755
index 0000000..0bde6db
--- /dev/null
+++ b/services/docker-compose/run.sh
@@ -0,0 +1,91 @@
+#!/bin/bash
+
+HOSTNAME=capifcore
+MONITORING_STATE=false
+DEPLOY=all
+
+#Needed to avoid write permissions on bind volumes with prometheus and grafana
+DUID=$(id -u)
+DGID=$(id -g)
+
+# Get docker compose version
+docker_version=$(docker compose version --short | cut -d',' -f1)
+IFS='.' read -ra version_components <<< "$docker_version"
+
+if [ "${version_components[0]}" -ge 2 ] && [ "${version_components[1]}" -ge 10 ]; then
+  echo "Docker compose version it greater than 2.10"
+else
+  echo "Docker compose version is not valid. Should be greater than 2.10"
+  exit 1
+fi
+
+# Read params
+while getopts ":h:m:" opt; do
+  case $opt in
+    h)
+      HOSTNAME="$OPTARG"
+      ;;
+    m)
+      MONITORING_STATE="$OPTARG"
+      ;;    
+    \?)
+      echo "Opción no válida: -$OPTARG" >&2
+      exit 1
+      ;;
+    :)
+      echo "La opción -$OPTARG requiere un argumento." >&2
+      exit 1
+      ;;
+  esac
+done
+
+echo Nginx hostname will be $HOSTNAME, deploy $DEPLOY, monitoring $MONITORING_STATE
+
+if [ "$MONITORING_STATE" == "true" ] ; then
+    echo '***Monitoring set as true***'
+    echo '***Creating Monitoging stack***'
+
+    DUID=$DUID DGID=$DGID docker compose -f "./docker-compose-monitoring.yml" up --detach
+    status=$?
+    if [ $status -eq 0 ]; then
+        echo "*** Monitoring Stack Runing ***"
+    else
+        echo "*** Monitoring Stack failed to start ***"
+        exit $status
+    fi
+fi
+
+docker network create capif-network
+
+docker compose -f "./docker-compose-vault.yml"  up --detach --build
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Vault Service Runing ***"
+else
+    echo "*** Vault failed to start ***"
+    exit $status
+fi
+
+CAPIF_HOSTNAME=$HOSTNAME MONITORING=$MONITORING_STATE docker compose -f "./docker-compose-capif.yml" up --detach --build
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** All Capif services are running ***"
+else
+    echo "*** Some Capif services failed to start ***"
+    exit $status
+fi
+
+
+CAPIF_PRIV_KEY_BASE_64=$(echo "$(cat nginx/certs/server.key)")
+CAPIF_PRIV_KEY=$CAPIF_PRIV_KEY_BASE_64 docker compose -f "./docker-compose-register.yml"  up --detach --build
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Register Service are running ***"
+else
+    echo "*** Register Service failed to start ***"
+fi
+
+exit $status
diff --git a/services/docker-compose/stop.sh b/services/docker-compose/stop.sh
new file mode 100755
index 0000000..4a64354
--- /dev/null
+++ b/services/docker-compose/stop.sh
@@ -0,0 +1,98 @@
+#!/bin/bash
+
+HOSTNAME=capifcore
+MONITORING_STATE=false
+DEPLOY=all
+DEPLOY_BACKOFFICE=${DEPLOY_BACKOFFICE:-false}
+
+# Get docker compose version
+docker_version=$(docker compose version --short | cut -d',' -f1)
+IFS='.' read -ra version_components <<< "$docker_version"
+
+if [ "${version_components[0]}" -ge 2 ] && [ "${version_components[1]}" -ge 10 ]; then
+  echo "Docker compose version it greater than 2.10"
+else
+  echo "Docker compose version is not valid. Should be greater than 2.10"
+  exit 1
+fi
+
+# Read params
+while getopts ":h:m:" opt; do
+  case $opt in
+    h)
+      HOSTNAME="$OPTARG"
+      ;;
+    m)
+      MONITORING_STATE="$OPTARG"
+      ;;    
+    \?)
+      echo "Opción no válida: -$OPTARG" >&2
+      exit 1
+      ;;
+    :)
+      echo "La opción -$OPTARG requiere un argumento." >&2
+      exit 1
+      ;;
+  esac
+done
+
+if [ "$MONITORING_STATE" = true ] ; then
+    docker compose -f "./docker-compose-monitoring.yml" down 
+    status=$?
+    if [ $status -eq 0 ]; then
+        echo "*** Monitoring Stack Stopped ***"
+    else
+        echo "*** Monitoring Stack failed to stopt ***"
+        exit $status
+    fi
+fi
+
+docker compose -f "./docker-compose-vault.yml"  down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Vault Service Stopped ***"
+else
+    echo "*** Vault failed to stop ***"
+    exit $status
+fi
+
+
+
+CAPIF_HOSTNAME=$HOSTNAME MONITORING=$MONITORING_STATE docker compose -f "./docker-compose-capif.yml" down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** All Capif services are stopped ***"
+else
+    echo "*** Some Capif services failed to stop ***"
+    exit $status
+fi
+
+
+CAPIF_PRIV_KEY_BASE_64=$(echo "$(cat nginx/certs/server.key)")
+CAPIF_PRIV_KEY=$CAPIF_PRIV_KEY_BASE_64 docker compose -f "./docker-compose-register.yml" down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Register Service are stopped ***"
+else
+    echo "*** Register Service failed to stop ***"
+fi
+
+
+if [ $DEPLOY_BACKOFFICE = "false" ]; then
+    exit $status
+fi
+
+
+docker compose -f "./docker-compose-backoffice.yml"  down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Backoffice Service are stopped ***"
+else
+    echo "*** Backoffice Service failed to stop ***"
+fi
+
+exit $status
diff --git a/services/nginx/Dockerfile b/services/nginx/Dockerfile
new file mode 100644
index 0000000..7a10574
--- /dev/null
+++ b/services/nginx/Dockerfile
@@ -0,0 +1,16 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/nginx:base_1.23.1
+RUN apt-get update && apt-get install -y jq && apt-get clean
+RUN apt-get install -y openssl
+RUN apt-get install -y curl=7.74.0-1.3+deb11u3
+RUN apt-get -y install redis
+
+
+RUN mkdir -p /etc/nginx/certs
+
+COPY ./certs/sign_req_body_tmp.json /etc/nginx/certs/sign_req_body_tmp.json
+COPY ./nginx.conf /etc/nginx/nginx.conf
+COPY ./nginx_prepare.sh .
+
+RUN chmod a+x nginx_prepare.sh
+
+CMD ["sh", "nginx_prepare.sh"]
diff --git a/services/nginx/certs/sign_req_body_tmp.json b/services/nginx/certs/sign_req_body_tmp.json
new file mode 100644
index 0000000..9327bf0
--- /dev/null
+++ b/services/nginx/certs/sign_req_body_tmp.json
@@ -0,0 +1,5 @@
+{
+  "csr": "CERT",
+  "mode": "server",
+  "filename": "ccf"
+}
diff --git a/services/nginx/nginx.conf b/services/nginx/nginx.conf
new file mode 100644
index 0000000..d30ded7
--- /dev/null
+++ b/services/nginx/nginx.conf
@@ -0,0 +1,169 @@
+worker_processes  auto;
+
+error_log  /var/log/nginx/error.log debug;
+pid        /tmp/nginx.pid;
+
+events {
+    worker_connections   1024;
+}
+
+http {
+        map  $ssl_client_s_dn  $ssl_client_s_dn_cn {
+          default "";
+          ~(^|,)CN=(?<CN>[^,]+) $CN;
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $invoker_error_message {
+          default 'SUCCESS';
+          "~*(PUT|DELETE):.*:(?!(INV|superadmin))(.*)"   '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be invoker"}';
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $provider_error_message {
+          default 'SUCCESS';
+          "~*(PUT|DELETE|PATCH):.*:(?!(AMF|superadmin))(.*)"   '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be amf"}';
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $publish_error_message {
+          default 'SUCCESS';
+          "~*.*:.*:(?!(APF|ccf|superadmin))(.*)"           '{"status":401, "title":"Unauthorized" ,"detail":"User not authorized", "cause":"Certificate not authorized"}';
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $acl_error_message {
+          default 'SUCCESS';
+          "~*.*:.*:(?!(AEF|ccf|superadmin))(.*)"           '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"Certificate not authorized"}';
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $discover_error_message {
+          default 'SUCCESS';
+          "~*.*:.*:(?!(INV|ccf|superadmin))(.*)"           '{"status":401, "title":"Unauthorized" ,"detail":"User not authorized", "cause":"Certificate not authorized"}';
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $security_error_message {
+          default 'SUCCESS';
+          "~*DELETE:.*:(?!(AEF|superadmin))(.*)"           '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be aef"}';
+          "~*PUT:.*:(?!(INV|superadmin))(.*)"          '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be invoker"}';
+          "~*GET:.*:(?!(AEF|superadmin))(.*)"              '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be aef"}';
+          "~*POST:.*/update:(?!(INV|superadmin))(.*)"  '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be invoker"}';
+          "~*POST:.*/delete:(?!(AEF|superadmin))(.*)"      '{"status":401, "title":"Unauthorized" ,"detail":"Role not authorized for this API route", "cause":"User role must be aef"}';
+          "~*POST:.*/token:(?!(INV|superadmin))(.*)"   '{"error":"unauthorized_client", "error_description":"Role not authorized for this API route"}';
+        }
+        map "$request_method:$uri:$ssl_client_s_dn_cn" $events_error_message {
+          default 'SUCCESS';
+          "~*.*:.*:ccf"           '{"status":401, "title":"Unauthorized" ,"detail":"User not authorized", "cause":"Certificate not authorized"}';
+        }
+
+        server {
+              listen      8080;
+
+              location /test {
+                add_header Content-Type 'application/json';
+                return 200  '{ "message": "Endpoint for testing purpouse" }';
+              }
+
+        }
+
+        server {
+              listen      443 ssl;
+              # server_name capifcore;
+              # server_name openshift.evolved-5g.eu;
+
+              ssl_certificate      /etc/nginx/certs/server.crt;
+              ssl_certificate_key  /etc/nginx/certs/server.key;
+              ssl_client_certificate  /etc/nginx/certs/ca.crt;
+              ssl_verify_client       optional;
+              ssl_verify_depth        2;
+
+              location / {
+                  proxy_pass $scheme://$http_host/api-invoker-management/v1/ui/;
+              }
+
+              location /api-invoker-management {
+                if ( $invoker_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $invoker_error_message;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://api-invoker-management:8080;
+              }
+
+              location /api-provider-management {
+                if ( $provider_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $provider_error_message;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://api-provider-management:8080;
+              }
+
+              location /service-apis {
+                if ($ssl_client_verify != SUCCESS) {
+                    return 403;
+                }
+                if ( $discover_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $discover_error_message;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://service-apis:8080;
+              }
+
+              location /published-apis {
+                if ($ssl_client_verify != SUCCESS) {
+                    return 403;
+                }
+                if ( $publish_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $publish_error_message;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://published-apis:8080;
+              }
+
+              location /api-invocation-logs {
+                if ($ssl_client_verify != SUCCESS) {
+                    return 403;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://api-invocation-logs:8080;
+              }
+
+              location /logs {
+                if ($ssl_client_verify != SUCCESS) {
+                    return 403;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://logs:8080;
+              }
+
+              location /capif-security {
+                if ($ssl_client_verify != SUCCESS) {
+                    return 403;
+                }
+                if ( $security_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $security_error_message;
+                }
+
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://capif-security:8080;
+              }
+
+              location /capif-events {
+                if ($ssl_client_verify != SUCCESS) {
+                    return 403;
+                }
+                if ( $events_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $events_error_message;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://capif-events:8080;
+              }
+
+              location /access-control-policy {
+                if ( $acl_error_message != SUCCESS ) {
+                  add_header Content-Type 'application/problem+json';
+                  return 401 $acl_error_message;
+                }
+                proxy_set_header X-SSL-Client-Cert $ssl_client_cert;
+                proxy_pass http://access-control-policy:8080;
+              }
+
+        }
+}
+
+daemon off;
\ No newline at end of file
diff --git a/services/nginx/nginx_prepare.sh b/services/nginx/nginx_prepare.sh
new file mode 100644
index 0000000..081b2c9
--- /dev/null
+++ b/services/nginx/nginx_prepare.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+CERTS_FOLDER="/etc/nginx/certs"
+cd $CERTS_FOLDER
+
+VAULT_ADDR="http://$VAULT_HOSTNAME:$VAULT_PORT"
+VAULT_TOKEN=$VAULT_ACCESS_TOKEN
+
+curl  -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/ca" 2>/dev/null | jq -r '.data.data.ca' -j > $CERTS_FOLDER/ca.crt
+
+openssl verify -CAfile $CERTS_FOLDER/ca.crt $CERTS_FOLDER/ca.crt
+
+curl  -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/server_cert" 2>/dev/null | jq -r '.data.data.cert' -j > $CERTS_FOLDER/server.crt
+
+curl  -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/server_cert/private" 2>/dev/null | jq -r '.data.data.key' -j > $CERTS_FOLDER/server.key
+
+
+nginx
\ No newline at end of file
diff --git a/services/register/.gitignore b/services/register/.gitignore
new file mode 100644
index 0000000..43995bd
--- /dev/null
+++ b/services/register/.gitignore
@@ -0,0 +1,66 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+env/
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*,cover
+.hypothesis/
+venv/
+.venv/
+.python-version
+.pytest_cache
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+#Ipython Notebook
+.ipynb_checkpoints
diff --git a/services/register/Dockerfile b/services/register/Dockerfile
new file mode 100644
index 0000000..75357cd
--- /dev/null
+++ b/services/register/Dockerfile
@@ -0,0 +1,18 @@
+FROM public.ecr.aws/o2v4a8t6/opencapif/python:3-alpine
+
+RUN mkdir -p /usr/src/app
+WORKDIR /usr/src/app
+
+COPY requirements.txt /usr/src/app/requirements.txt
+
+RUN apk add -U --no-cache gcc build-base linux-headers ca-certificates libffi-dev libressl-dev libxslt-dev
+RUN pip3 install --no-cache-dir -r requirements.txt
+RUN apk add openssl jq curl redis
+
+#ENV CAPIF_PRIV_KEY = $CAPIF_PRIV_KEY
+
+COPY . /usr/src/app
+
+EXPOSE 8080
+
+CMD ["sh", "register_prepare.sh"]
diff --git a/services/register/config.yaml b/services/register/config.yaml
new file mode 100644
index 0000000..2ac53bd
--- /dev/null
+++ b/services/register/config.yaml
@@ -0,0 +1,14 @@
+mongo: {
+  'user': 'root',
+  'password': 'example',
+  'db': 'capif_users',
+  'col': 'user',
+  'host': 'mongo_register',
+  'port': '27017'
+}
+ca_factory: {
+  "url": "vault",
+  "port": "8200",
+  "token": "dev-only-token"
+}
+
diff --git a/services/register/register_prepare.sh b/services/register/register_prepare.sh
new file mode 100644
index 0000000..de69be7
--- /dev/null
+++ b/services/register/register_prepare.sh
@@ -0,0 +1,55 @@
+#!/bin/bash
+CERTS_FOLDER="/usr/src/app/register_service"
+cd $CERTS_FOLDER
+
+VAULT_ADDR="http://$VAULT_HOSTNAME:$VAULT_PORT"
+VAULT_TOKEN=$VAULT_ACCESS_TOKEN
+
+curl  -k -retry 30 \
+    --retry-all-errors \
+    --connect-timeout 5 \
+    --max-time 10 \
+    --retry-delay 10 \
+    --retry-max-time 300 \
+    --header "X-Vault-Token: $VAULT_TOKEN" \
+    --request GET "$VAULT_ADDR/v1/secret/data/server_cert/private" 2>/dev/null | jq -r '.data.data.key' -j > $CERTS_FOLDER/server.key
+
+openssl req -x509 \
+            -sha256 -days 356 \
+            -nodes \
+            -newkey rsa:2048 \
+            -subj "/CN=register/C=ES/L=Madrid" \
+            -keyout /usr/src/app/register_service/registerCA.key -out /usr/src/app/register_service/registerCA.crt
+
+openssl genrsa -out /usr/src/app/register_service/register_key.key 2048
+
+COUNTRY="ES"                # 2 letter country-code
+STATE="Madrid"            # state or province name
+LOCALITY="Madrid"        # Locality Name (e.g. city)
+ORGNAME="Telefonica I+D" # Organization Name (eg, company)
+ORGUNIT="Innovation"                  # Organizational Unit Name (eg. section)
+COMMONNAME="register"
+EMAIL="inno@tid.es"    # certificate's email address
+# optional extra details
+CHALLENGE=""                # challenge password
+COMPANY=""                  # company name
+
+# DAYS="-days 365"
+
+# create the certificate request
+cat <<__EOF__ | openssl req -new $DAYS -key /usr/src/app/register_service/register_key.key -out /usr/src/app/register_service/register.csr
+$COUNTRY
+$STATE
+$LOCALITY
+$ORGNAME
+$ORGUNIT
+$COMMONNAME
+$EMAIL
+$CHALLENGE
+$COMPANY
+__EOF__
+
+openssl x509 -req -in /usr/src/app/register_service/register.csr -CA /usr/src/app/register_service/registerCA.crt -CAkey /usr/src/app/register_service/registerCA.key  -CAcreateserial -out /usr/src/app/register_service/register_cert.crt -days 365 -sha256
+
+cd /usr/src/app/
+python3 -m register_service
\ No newline at end of file
diff --git a/services/register/register_service/__init__.py b/services/register/register_service/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/services/register/register_service/__main__.py b/services/register/register_service/__main__.py
new file mode 100644
index 0000000..5225f78
--- /dev/null
+++ b/services/register/register_service/__main__.py
@@ -0,0 +1,27 @@
+
+import os
+import base64
+from flask import Flask
+from .controllers.register_controller import register_routes
+from flask_jwt_extended import JWTManager
+
+app = Flask(__name__)
+
+jwt = JWTManager(app)
+
+with open("/usr/src/app/register_service/server.key", "rb") as key_file:
+            key_data = key_file.read()
+
+
+app.config['JWT_ALGORITHM'] = 'RS256'
+app.config['JWT_PRIVATE_KEY'] = key_data
+
+app.register_blueprint(register_routes)
+
+
+#----------------------------------------
+# launch
+#----------------------------------------
+
+if __name__ == "__main__":
+	app.run(debug=True, host = '0.0.0.0', port=8080, ssl_context= ("/usr/src/app/register_service/register_cert.crt", "/usr/src/app/register_service/register_key.key"))
diff --git a/services/register/register_service/config.py b/services/register/register_service/config.py
new file mode 100644
index 0000000..d04bd1a
--- /dev/null
+++ b/services/register/register_service/config.py
@@ -0,0 +1,20 @@
+import yaml
+import os
+
+#Config class to get config
+class Config:
+	def __init__(self):
+		self.cached = 0
+		self.file="./config.yaml"
+		self.my_config = {}
+
+		stamp = os.stat(self.file).st_mtime
+		if stamp != self.cached:
+			self.cached = stamp
+			f = open(self.file)
+			self.my_config = yaml.safe_load(f)
+			f.close()
+
+	def get_config(self):
+		return self.my_config
+
diff --git a/services/register/register_service/controllers/register_controller.py b/services/register/register_service/controllers/register_controller.py
new file mode 100644
index 0000000..71af562
--- /dev/null
+++ b/services/register/register_service/controllers/register_controller.py
@@ -0,0 +1,39 @@
+#!/usr/bin/env python3
+
+from flask import Flask, jsonify, request, Blueprint
+from flask_jwt_extended import JWTManager, jwt_required, create_access_token
+from pymongo import MongoClient
+from ..core.register_operations import RegisterOperations
+import secrets
+
+
+register_routes = Blueprint("register_routes", __name__)
+register_operation = RegisterOperations()
+
+@register_routes.route("/register", methods=["POST"])
+def register():
+    username = request.json["username"]
+    password = request.json["password"]
+    description = request.json["description"]
+    role = request.json["role"]
+    cn = request.json["cn"]
+    if role != "invoker" and role != "provider":
+        return jsonify(message="Role must be invoker or provider"), 400
+
+
+    return register_operation.register_user(username, password, description, cn, role)
+
+
+@register_routes.route("/getauth", methods=["POST"])
+def getauth():
+    username = request.json["username"]
+    password = request.json["password"]
+
+    return register_operation.get_auth(username, password)
+
+@register_routes.route("/remove", methods=["DELETE"])
+def remove():
+    username = request.json["username"]
+    password = request.json["password"]
+
+    return register_operation.remove_user(username, password)
diff --git a/services/register/register_service/core/register_operations.py b/services/register/register_service/core/register_operations.py
new file mode 100644
index 0000000..f929820
--- /dev/null
+++ b/services/register/register_service/core/register_operations.py
@@ -0,0 +1,71 @@
+from flask import Flask, jsonify, request, current_app
+from flask_jwt_extended import create_access_token
+from ..db.db import MongoDatabse
+from ..config import Config
+import secrets
+import requests
+import json
+import sys
+
+class RegisterOperations:
+
+    def __init__(self):
+        self.db = MongoDatabse()
+        self.mimetype = 'application/json'
+        self.config = Config().get_config()
+
+    def register_user(self, username, password, description, cn, role):
+
+        mycol = self.db.get_col_by_name(self.db.capif_users)
+        exist_user = mycol.find_one({"username": username})
+        if exist_user:
+            return jsonify("user already exists"), 409
+
+        user_info = dict(_id=secrets.token_hex(7), username=username, password=password, role=role, description=description, cn=cn, list_invokers=[], list_providers=[])
+        obj = mycol.insert_one(user_info)
+
+        if role == "invoker":
+            return jsonify(message="invoker registered successfully",
+                        id=obj.inserted_id,
+                        ccf_onboarding_url="api-invoker-management/v1/onboardedInvokers",
+                        ccf_discover_url="service-apis/v1/allServiceAPIs?api-invoker-id="), 201
+        else:
+            return jsonify(message="provider" + " registered successfully",
+                    id=obj.inserted_id,
+                    ccf_api_onboarding_url="api-provider-management/v1/registrations",
+                    ccf_publish_url="published-apis/v1/<apfId>/service-apis"), 201
+
+
+    def get_auth(self, username, password):
+
+        mycol = self.db.get_col_by_name(self.db.capif_users)
+
+        try:
+
+            exist_user = mycol.find_one({"username": username, "password": password})
+
+            if exist_user is None:
+                return jsonify("Not exister user with this credentials"), 400
+
+            access_token = create_access_token(identity=(username + " " + exist_user["role"]))
+            url = f"http://{self.config['ca_factory']['url']}:{self.config['ca_factory']['port']}/v1/secret/data/ca"
+            headers = {
+
+                    'X-Vault-Token': self.config['ca_factory']['token']
+            }
+            response = requests.request("GET", url, headers=headers, verify = False)
+            response_payload = json.loads(response.text)
+            return jsonify(message="Token and CA root returned successfully", access_token=access_token, ca_root=response_payload['data']['data']['ca']), 200
+
+        except Exception as e:
+            return jsonify(message=f"Errors when try getting auth: {e}"), 500
+
+    def remove_user(self, username, password):
+        mycol = self.db.get_col_by_name(self.db.capif_users)
+
+        try:
+            mycol.delete_one({"username": username, "password": password})
+            return jsonify(message="User removed successfully"), 204
+        except Exception as e:
+            return jsonify(message=f"Errors when try remove user: {e}"), 500
+
diff --git a/services/register/register_service/db/db.py b/services/register/register_service/db/db.py
new file mode 100644
index 0000000..0b08933
--- /dev/null
+++ b/services/register/register_service/db/db.py
@@ -0,0 +1,38 @@
+import atexit
+import time
+from pymongo import MongoClient
+from pymongo.errors import AutoReconnect
+from ..config import Config
+from bson.codec_options import CodecOptions
+
+
+class MongoDatabse():
+
+    def __init__(self):
+        self.config = Config().get_config()
+        self.db = self.__connect()
+        self.capif_users = self.config['mongo']['col']
+
+
+    def get_col_by_name(self, name):
+        return self.db[name]
+
+    def __connect(self, max_retries=3, retry_delay=1):
+        retries = 0
+        while retries < max_retries:
+            try:
+                uri = f"mongodb://{self.config['mongo']['user']}:{self.config['mongo']['password']}@" \
+                      f"{self.config['mongo']['host']}:{self.config['mongo']['port']}"
+                client = MongoClient(uri)
+                mydb = client[self.config['mongo']['db']]
+                mydb.command("ping")
+                return mydb
+            except AutoReconnect:
+                retries += 1
+                print(f"Reconnecting... Retry {retries} of {max_retries}")
+                time.sleep(retry_delay)
+        return None
+
+    def close_connection(self):
+        if self.db.client:
+            self.db.client.close()
diff --git a/services/register/requirements.txt b/services/register/requirements.txt
new file mode 100644
index 0000000..c5a4f37
--- /dev/null
+++ b/services/register/requirements.txt
@@ -0,0 +1,8 @@
+python_dateutil >= 2.6.0
+setuptools >= 21.0.0
+Flask >= 2.0.3
+pymongo == 4.0.1
+flask_jwt_extended
+pyopenssl
+pyyaml
+requests
diff --git a/services/run.sh b/services/run.sh
new file mode 100755
index 0000000..11a89c8
--- /dev/null
+++ b/services/run.sh
@@ -0,0 +1,91 @@
+#!/bin/bash
+
+HOSTNAME=capifcore
+MONITORING_STATE=false
+DEPLOY=all
+
+#Needed to avoid write permissions on bind volumes with prometheus and grafana
+DUID=$(id -u)
+DGID=$(id -g)
+
+# Get docker compose version
+docker_version=$(docker compose version --short | cut -d',' -f1)
+IFS='.' read -ra version_components <<< "$docker_version"
+
+if [ "${version_components[0]}" -ge 2 ] && [ "${version_components[1]}" -ge 10 ]; then
+  echo "Docker compose version it greater than 2.10"
+else
+  echo "Docker compose version is not valid. Should be greater than 2.10"
+  exit 1
+fi
+
+# Read params
+while getopts ":h:m:" opt; do
+  case $opt in
+    h)
+      HOSTNAME="$OPTARG"
+      ;;
+    m)
+      MONITORING_STATE="$OPTARG"
+      ;;    
+    \?)
+      echo "Opción no válida: -$OPTARG" >&2
+      exit 1
+      ;;
+    :)
+      echo "La opción -$OPTARG requiere un argumento." >&2
+      exit 1
+      ;;
+  esac
+done
+
+echo Nginx hostname will be $HOSTNAME, deploy $DEPLOY, monitoring $MONITORING_STATE
+
+if [ "$MONITORING_STATE" == "true" ] ; then
+    echo '***Monitoring set as true***'
+    echo '***Creating Monitoging stack***'
+
+    DUID=$DUID DGID=$DGID docker compose -f "../monitoring/docker-compose.yml" up --detach
+    status=$?
+    if [ $status -eq 0 ]; then
+        echo "*** Monitoring Stack Runing ***"
+    else
+        echo "*** Monitoring Stack failed to start ***"
+        exit $status
+    fi
+fi
+
+docker network create capif-network
+
+docker compose -f "docker-compose-vault.yml"  up --detach --build
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Vault Service Runing ***"
+else
+    echo "*** Vault failed to start ***"
+    exit $status
+fi
+
+CAPIF_HOSTNAME=$HOSTNAME MONITORING=$MONITORING_STATE docker compose -f "docker-compose-capif.yml" up --detach --build
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** All Capif services are running ***"
+else
+    echo "*** Some Capif services failed to start ***"
+    exit $status
+fi
+
+
+CAPIF_PRIV_KEY_BASE_64=$(echo "$(cat nginx/certs/server.key)")
+CAPIF_PRIV_KEY=$CAPIF_PRIV_KEY_BASE_64 docker compose -f "docker-compose-register.yml"  up --detach --build
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Register Service are running ***"
+else
+    echo "*** Register Service failed to start ***"
+fi
+
+exit $status
diff --git a/services/runCapifTests.sh b/services/runCapifTests.sh
new file mode 100755
index 0000000..b73893a
--- /dev/null
+++ b/services/runCapifTests.sh
@@ -0,0 +1,52 @@
+#!/bin/bash
+
+DOCKER_ROBOT_IMAGE=dockerhub.hi.inet/5ghacking/5gnow-robot-test-image
+DOCKER_ROBOT_IMAGE_VERSION=4.0
+cd ..
+REPOSITORY_BASE_FOLDER=${PWD}
+TEST_FOLDER=$REPOSITORY_BASE_FOLDER/tests
+RESULT_FOLDER=$REPOSITORY_BASE_FOLDER/results
+ROBOT_DOCKER_FILE_FOLDER=$REPOSITORY_BASE_FOLDER/tools/robot
+
+# nginx Hostname and http port (80 by default) to reach for tests
+CAPIF_HOSTNAME=capifcore
+CAPIF_HTTP_PORT=8080
+CAPIF_HTTPS_PORT=443
+
+echo "HOSTNAME = $CAPIF_HOSTNAME"
+echo "CAPIF_HTTP_PORT = $CAPIF_HTTP_PORT"
+echo "CAPIF_HTTPS_PORT = $CAPIF_HTTPS_PORT"
+
+docker >/dev/null 2>/dev/null
+if [[ $? -ne 0 ]]
+then
+    echo "Docker maybe is not installed. Please check if docker CLI is present."
+    exit -1
+fi
+
+docker images|grep -Eq '^'$DOCKER_ROBOT_IMAGE'[ ]+[ ]'$DOCKER_ROBOT_IMAGE_VERSION''
+if [[ $? -ne 0 ]]
+then
+    read -p "Robot image is not present. To continue, Do you want to build it? (y/n)" build_robot_image
+    if [[ $build_robot_image == "y" ]]
+    then
+        echo "Building Robot docker image."
+        cd $ROBOT_DOCKER_FILE_FOLDER
+        docker build --no-cache -t $DOCKER_ROBOT_IMAGE:$DOCKER_ROBOT_IMAGE_VERSION .
+        cd $REPOSITORY_BASE_FOLDER
+    else
+        exit -2
+    fi
+fi
+
+mkdir -p $RESULT_FOLDER
+
+docker run -ti --rm --network="host" \
+    --add-host host.docker.internal:host-gateway \
+    --add-host vault:host-gateway \
+    --add-host register:host-gateway \
+    -v $TEST_FOLDER:/opt/robot-tests/tests \
+    -v $RESULT_FOLDER:/opt/robot-tests/results ${DOCKER_ROBOT_IMAGE}:${DOCKER_ROBOT_IMAGE_VERSION}  \
+    --variable CAPIF_HOSTNAME:$CAPIF_HOSTNAME \
+    --variable CAPIF_HTTP_PORT:$CAPIF_HTTP_PORT \
+    --variable CAPIF_HTTPS_PORT:$CAPIF_HTTPS_PORT $@
diff --git a/services/stop.sh b/services/stop.sh
new file mode 100755
index 0000000..a45576d
--- /dev/null
+++ b/services/stop.sh
@@ -0,0 +1,98 @@
+#!/bin/bash
+
+HOSTNAME=capifcore
+MONITORING_STATE=false
+DEPLOY=all
+DEPLOY_BACKOFFICE=${DEPLOY_BACKOFFICE:-false}
+
+# Get docker compose version
+docker_version=$(docker compose version --short | cut -d',' -f1)
+IFS='.' read -ra version_components <<< "$docker_version"
+
+if [ "${version_components[0]}" -ge 2 ] && [ "${version_components[1]}" -ge 10 ]; then
+  echo "Docker compose version it greater than 2.10"
+else
+  echo "Docker compose version is not valid. Should be greater than 2.10"
+  exit 1
+fi
+
+# Read params
+while getopts ":h:m:" opt; do
+  case $opt in
+    h)
+      HOSTNAME="$OPTARG"
+      ;;
+    m)
+      MONITORING_STATE="$OPTARG"
+      ;;    
+    \?)
+      echo "Opción no válida: -$OPTARG" >&2
+      exit 1
+      ;;
+    :)
+      echo "La opción -$OPTARG requiere un argumento." >&2
+      exit 1
+      ;;
+  esac
+done
+
+if [ "$MONITORING_STATE" = true ] ; then
+    docker compose -f "../monitoring/docker-compose.yml" down 
+    status=$?
+    if [ $status -eq 0 ]; then
+        echo "*** Monitoring Stack Stopped ***"
+    else
+        echo "*** Monitoring Stack failed to stopt ***"
+        exit $status
+    fi
+fi
+
+docker compose -f "docker-compose-vault.yml"  down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Vault Service Stopped ***"
+else
+    echo "*** Vault failed to stop ***"
+    exit $status
+fi
+
+
+
+CAPIF_HOSTNAME=$HOSTNAME MONITORING=$MONITORING_STATE docker compose -f "docker-compose-capif.yml" down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** All Capif services are stopped ***"
+else
+    echo "*** Some Capif services failed to stop ***"
+    exit $status
+fi
+
+
+CAPIF_PRIV_KEY_BASE_64=$(echo "$(cat nginx/certs/server.key)")
+CAPIF_PRIV_KEY=$CAPIF_PRIV_KEY_BASE_64 docker compose -f "docker-compose-register.yml" down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Register Service are stopped ***"
+else
+    echo "*** Register Service failed to stop ***"
+fi
+
+
+if [ $DEPLOY_BACKOFFICE = "false" ]; then
+    exit $status
+fi
+
+
+docker compose -f "docker-compose-backoffice.yml"  down
+
+status=$?
+if [ $status -eq 0 ]; then
+    echo "*** Backoffice Service are stopped ***"
+else
+    echo "*** Backoffice Service failed to stop ***"
+fi
+
+exit $status
diff --git a/services/vault/Dockerfile b/services/vault/Dockerfile
new file mode 100644
index 0000000..0eced91
--- /dev/null
+++ b/services/vault/Dockerfile
@@ -0,0 +1,12 @@
+FROM vault:1.13.2
+
+# Instalar paquetes adicionales
+RUN apk add --no-cache jq openssl
+
+# Copiar archivos adicionales (si los tienes)
+COPY ./vault_prepare_certs.sh /vault_prepare_certs.sh
+
+RUN chmod a+x /vault_prepare_certs.sh
+
+
+CMD sh -c "vault server -dev / & sleep 5 && /vault_prepare_certs.sh && tail -f /dev/null"
diff --git a/services/vault/vault_prepare_certs.sh b/services/vault/vault_prepare_certs.sh
new file mode 100644
index 0000000..dbec8fd
--- /dev/null
+++ b/services/vault/vault_prepare_certs.sh
@@ -0,0 +1,138 @@
+#!/bin/sh
+
+# Establecer las variables de entorno de Vault
+
+export VAULT_ADDR='http://0.0.0.0:8200'
+export VAULT_TOKEN="dev-only-token"
+
+vault secrets enable pki
+
+# Generar una CA en Vault
+vault secrets tune -max-lease-ttl=87600h pki
+
+vault write -field=certificate pki/root/generate/internal \
+     common_name="capif" \
+     issuer_name="root-2023" \
+     ttl=87600h > root_2023_ca.crt
+
+vault write pki/config/urls \
+     issuing_certificates="$VAULT_ADDR/v1/pki/ca" \
+     crl_distribution_points="$VAULT_ADDR/v1/pki/crl"
+
+# # Generar una CA intermedia en Vault
+vault secrets enable -path=pki_int pki
+
+vault secrets tune -max-lease-ttl=43800h pki_int
+
+vault write -format=json pki_int/intermediate/generate/internal \
+     common_name="capif Intermediate Authority" \
+     issuer_name="capif-intermediate" \
+    | jq -r '.data.csr' > pki_intermediate.csr
+
+# Firmar la CA intermedia con la CA raíz
+vault write -format=json pki/root/sign-intermediate \
+     issuer_ref="root-2023" \
+     csr=@pki_intermediate.csr \
+     format=pem_bundle ttl="43800h" \
+     | jq -r '.data.certificate' > capif_intermediate.cert.pem
+
+# Configurar la CA intermedia en Vault
+vault write pki_int/intermediate/set-signed certificate=@capif_intermediate.cert.pem
+
+#Crear rol en Vault
+vault write pki_int/roles/my-ca use_csr_common_name=false require_cn=true use_csr_sans=false allowed_domains=capifcore allow_any_name=true allow_bare_domains=true allow_glob_domains=true allow_subdomains=true max_ttl=4300h ttl=4300h
+
+# Emitir un certificado firmado por la CA intermedia
+# vault write -format=json pki_int/issue/my-ca \
+#   common_name="capifcore" \
+#   format=pem_bundle ttl="438h" \
+#   | jq -r '.data.certificate' > ccf_cert.crt.pem \
+#   && jq -r '.data.issuing_ca' > root_ca.crt.pem \
+#   && jq -r '.data.private_key' > private_key.pem
+
+#   vault write -format=json pki_int/issue/my-ca \
+#   common_name="capifcore" \
+#   format=pem_bundle ttl="438h" \
+#   | jq -r '.data.private_key as $private_key | .data.issuing_ca as $issuing_ca | .data.certificate as $certificate | [$private_key, $issuing_ca, $certificate]' > cert_data.json
+
+
+#Create CSR
+openssl genrsa -out ./server.key 2048
+
+
+COUNTRY="ES"                # 2 letter country-code
+STATE="Madrid"            # state or province name
+LOCALITY="Madrid"        # Locality Name (e.g. city)
+ORGNAME="Telefonica I+D" # Organization Name (eg, company)
+ORGUNIT="Innovation"                  # Organizational Unit Name (eg. section)
+COMMONNAME="capifcore"
+EMAIL="inno@tid.es"    # certificate's email address
+# optional extra details
+CHALLENGE=""                # challenge password
+COMPANY=""                  # company name
+
+# DAYS="-days 365"
+
+# create the certificate request
+#cat <<__EOF__ | openssl req -new $DAYS -nodes -keyout client.key -out client.csr
+cat <<__EOF__ | openssl req -new $DAYS -key ./server.key -out ./server.csr
+$COUNTRY
+$STATE
+$LOCALITY
+$ORGNAME
+$ORGUNIT
+$COMMONNAME
+$EMAIL
+$CHALLENGE
+$COMPANY
+__EOF__
+
+# vault write -format=json pki_int/issue/my-ca \
+#   csr=@server.csr \
+#   format=pem_bundle ttl="438h" \
+#   | jq -r '.data.private_key as $private_key | .data.issuing_ca as $issuing_ca | .data.certificate as $certificate | [$private_key, $issuing_ca, $certificate]' > cert_data.json
+
+vault write -format=json pki_int/sign/my-ca  format=pem_bundle ttl="43000h" csr=@server.csr common_name="capifcore" | jq -r '.data.issuing_ca as $issuing_ca | .data.certificate as $certificate | [$issuing_ca, $certificate]' > cert_data.json
+
+jq -r '.[0]' cert_data.json > root_ca.crt.pem
+jq -r '.[1]' cert_data.json > server_certificate.crt.pem
+
+openssl x509 -pubkey -noout -in server_certificate.crt.pem  > server_certificate_pub.pem
+
+# Guardar la clave privada en Vault
+
+#vault kv put secret/ca ca=@root_ca.crt.pem root_2023_ca.crt
+
+#cat root_2023_ca.crt root_2023_ca.crt > ca.crt
+
+cat > certificados_concatenados.crt << EOF
+$(cat "root_2023_ca.crt")
+$(cat "root_ca.crt.pem")
+EOF
+
+
+# vault kv put secret/ca ca=@root_2023_ca.crt
+vault kv put secret/ca ca=@certificados_concatenados.crt
+
+vault kv put secret/server_cert cert=@server_certificate.crt.pem
+
+vault kv put secret/server_cert/pub pub_key=@server_certificate_pub.pem
+
+vault kv put secret/server_cert/private key=@server.key
+
+POLICY_NAME="my-policy"
+POLICY_FILE="my-policy.hcl"
+TOKEN_ID="read-ca-token"
+
+# Crear la política en Vault
+echo "path \"secret/data/ca\" {
+  capabilities = [\"read\"]
+}" > "$POLICY_FILE"
+
+vault policy write "$POLICY_NAME" "$POLICY_FILE"
+
+# Generar un nuevo token y asignar la política
+TOKEN=$(vault token create -id="$TOKEN_ID" -policy="$POLICY_NAME" -format=json | jq -r '.auth.client_token')
+
+echo "Token generado:"
+echo "$TOKEN"
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Access Control Policy/__init__.robot b/tests/features/CAPIF Api Access Control Policy/__init__.robot
new file mode 100644
index 0000000..e3adfdb
--- /dev/null
+++ b/tests/features/CAPIF Api Access Control Policy/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_acl
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Access Control Policy/capif_api_access_control_policy.robot b/tests/features/CAPIF Api Access Control Policy/capif_api_access_control_policy.robot
new file mode 100644
index 0000000..1772f3b
--- /dev/null
+++ b/tests/features/CAPIF Api Access Control Policy/capif_api_access_control_policy.robot	
@@ -0,0 +1,627 @@
+*** Settings ***
+Resource            /opt/robot-tests/tests/resources/common.resource
+Library             /opt/robot-tests/tests/libraries/bodyRequests.py
+Library             Collections
+Resource            /opt/robot-tests/tests/resources/common/basicRequests.robot
+Resource            ../../resources/common.resource
+
+Suite Teardown      Reset Testing Environment
+Test Setup          Reset Testing Environment
+
+
+*** Variables ***
+${APF_ID_NOT_VALID}             apf-example
+${SERVICE_API_ID_NOT_VALID}     not-valid
+${API_INVOKER_NOT_VALID}        not-valid
+${NOTIFICATION_DESTINATION}     http://robot.testing:1080
+${AEF_ID_NOT_VALID}             not-valid
+
+
+*** Test Cases ***
+Retrieve ACL
+    [Tags]    capif_api_acl-1
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method
+    ...    ${CAPIF_USERS}
+    ...    update_capif_users_dicts
+    ...    ${register_user_info_provider['resource_url'].path}
+    ...    ${AMF_PROVIDER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    service_1
+
+    # Store apiId1
+    ${serviceApiId1}=    Set Variable    ${service_api_description_published_1['apiId']}
+
+    # Retrieve Services 1
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info_provider['apf_id']}/service-apis/${serviceApiId1}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_api_description_published_1}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Service Security
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['apiInvokerPolicies']}
+    Length Should Be    ${resp.json()['apiInvokerPolicies']}    1
+    Should Be Equal As Strings
+    ...    ${resp.json()['apiInvokerPolicies'][0]['apiInvokerId']}
+    ...    ${register_user_info_invoker['api_invoker_id']}
+
+Retrieve ACL with 2 Service APIs published
+    [Tags]    capif_api_acl-2
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method
+    ...    ${CAPIF_USERS}
+    ...    update_capif_users_dicts
+    ...    ${register_user_info_provider['resource_url'].path}
+    ...    ${AMF_PROVIDER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    service_1
+    ${service_api_description_published_2}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    service_2
+
+    # Store apiId1
+    ${serviceApiId1}=    Set Variable    ${service_api_description_published_1['apiId']}
+    ${serviceApiId2}=    Set Variable    ${service_api_description_published_2['apiId']}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+    # Check Service Security
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['apiInvokerPolicies']}
+    Length Should Be    ${resp.json()['apiInvokerPolicies']}    1
+    Should Be Equal As Strings
+    ...    ${resp.json()['apiInvokerPolicies'][0]['apiInvokerId']}
+    ...    ${register_user_info_invoker['api_invoker_id']}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${serviceApiId2}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['apiInvokerPolicies']}
+    Length Should Be    ${resp.json()['apiInvokerPolicies']}    1
+    Should Be Equal As Strings
+    ...    ${resp.json()['apiInvokerPolicies'][0]['apiInvokerId']}
+    ...    ${register_user_info_invoker['api_invoker_id']}
+
+Retrieve ACL with security context created by two different Invokers
+    [Tags]    capif_api_acl-3
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method
+    ...    ${CAPIF_USERS}
+    ...    update_capif_users_dicts
+    ...    ${register_user_info_provider['resource_url'].path}
+    ...    ${AMF_PROVIDER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    service_1
+
+    # Store apiId1
+    ${serviceApiId1}=    Set Variable    ${service_api_description_published_1['apiId']}
+
+    # Retrieve Services 1
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info_provider['apf_id']}/service-apis/${serviceApiId1}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_api_description_published_1}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME}
+
+    ${INVOKER_USERNAME_2}=    Set Variable    ${INVOKER_USERNAME}_2
+
+    # Register another invoker
+    ${register_user_info_invoker_2}    ${url}    ${request_body}=    Invoker Default Onboarding
+    ...    ${INVOKER_USERNAME_2}
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME_2}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME_2}
+
+    # Get Published APIs
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+    # Check Service Security
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    # Get Published APIs
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker_2['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME_2}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker_2['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME_2}
+    # Check Service Security
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['apiInvokerPolicies']}
+    Length Should Be    ${resp.json()['apiInvokerPolicies']}    2
+
+    ${API_INVOKER_1_PRESENT}=    Set Variable    ${False}
+    ${API_INVOKER_2_PRESENT}=    Set Variable    ${False}
+
+    FOR    ${policy}    IN    @{resp.json()['apiInvokerPolicies']}
+        Log    ${policy}
+        IF    "${policy['apiInvokerId']}" == "${register_user_info_invoker['api_invoker_id']}"
+            ${API_INVOKER_1_PRESENT}=    Set Variable    ${True}
+        ELSE IF    "${policy['apiInvokerId']}" == "${register_user_info_invoker_2['api_invoker_id']}"
+            ${API_INVOKER_2_PRESENT}=    Set Variable    ${True}
+        END
+    END
+
+    Should Be True    ${API_INVOKER_1_PRESENT}==${True}
+    Should Be True    ${API_INVOKER_2_PRESENT}==${True}
+
+Retrieve ACL filtered by api-invoker-id
+    [Tags]    capif_api_acl-4
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method
+    ...    ${CAPIF_USERS}
+    ...    update_capif_users_dicts
+    ...    ${register_user_info_provider['resource_url'].path}
+    ...    ${AMF_PROVIDER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    service_1
+
+    # Store apiId1
+    ${serviceApiId1}=    Set Variable    ${service_api_description_published_1['apiId']}
+
+    # Retrieve Services 1
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info_provider['apf_id']}/service-apis/${serviceApiId1}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_api_description_published_1}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME}
+
+    ${INVOKER_USERNAME_2}=    Set Variable    ${INVOKER_USERNAME}_2
+
+    # Register another invoker
+    ${register_user_info_invoker_2}    ${url}    ${request_body}=    Invoker Default Onboarding
+    ...    ${INVOKER_USERNAME_2}
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME_2}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME_2}
+
+    # Get Published APIs
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+    # Check Service Security
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    # Get Published APIs
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker_2['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME_2}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker_2['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME_2}
+    # Check Service Security
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${register_user_info_provider['aef_id']}&api-invoker-id=${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['apiInvokerPolicies']}
+    Length Should Be    ${resp.json()['apiInvokerPolicies']}    1
+    Should Be Equal As Strings
+    ...    ${resp.json()['apiInvokerPolicies'][0]['apiInvokerId']}
+    ...    ${register_user_info_invoker['api_invoker_id']}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${serviceApiId1}?aef-id=${register_user_info_provider['aef_id']}&api-invoker-id=${register_user_info_invoker_2['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['apiInvokerPolicies']}
+    Length Should Be    ${resp.json()['apiInvokerPolicies']}    1
+    Should Be Equal As Strings
+    ...    ${resp.json()['apiInvokerPolicies'][0]['apiInvokerId']}
+    ...    ${register_user_info_invoker_2['api_invoker_id']}
+
+Retrieve ACL filtered by supported-features
+    [Tags]    capif_api_acl-5
+    Skip    Test ${TEST_NAME} is not currently supported by CAPIF
+
+Retrieve ACL with aef-id not valid
+    [Tags]    capif_api_acl-6
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    # ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${AEF_ID_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    404
+    ...    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=No ACLs found for the requested service: ${service_api_description_published['apiId']}, aef_id: ${AEF_ID_NOT_VALID}, invoker: None and supportedFeatures: None
+    ...    cause=Wrong id
+
+Retrieve ACL with service-id not valid
+    [Tags]    capif_api_acl-7
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${SERVICE_API_ID_NOT_VALID}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    404
+    ...    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=No ACLs found for the requested service: ${SERVICE_API_ID_NOT_VALID}, aef_id: ${register_user_info_provider['aef_id']}, invoker: None and supportedFeatures: None
+    ...    cause=Wrong id
+
+Retrieve ACL with service-api-id and aef-id not valid
+    [Tags]    capif_api_acl-8
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${SERVICE_API_ID_NOT_VALID}?aef-id=${AEF_ID_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    404
+    ...    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=No ACLs found for the requested service: ${SERVICE_API_ID_NOT_VALID}, aef_id: ${AEF_ID_NOT_VALID}, invoker: None and supportedFeatures: None
+    ...    cause=Wrong id
+
+Retrieve ACL without SecurityContext created previously by Invoker
+    [Tags]    capif_api_acl-9
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration    create_security_context=${False}
+
+    # ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    404
+    ...    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=No ACLs found for the requested service: ${service_api_description_published['apiId']}, aef_id: ${register_user_info_provider['aef_id']}, invoker: None and supportedFeatures: None
+    ...    cause=Wrong id
+
+Retrieve ACL filtered by api-invoker-id not present
+    [Tags]    capif_api_acl-10
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}&api-invoker-id=${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    404
+    ...    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=No ACLs found for the requested service: ${service_api_description_published['apiId']}, aef_id: ${register_user_info_provider['aef_id']}, invoker: ${API_INVOKER_NOT_VALID} and supportedFeatures: None
+    ...    cause=Wrong id
+
+Retrieve ACL with APF Certificate
+    [Tags]    capif_api_acl-11
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}&api-invoker-id=${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=Certificate not authorized
+
+Retrieve ACL with AMF Certificate
+    [Tags]    capif_api_acl-12
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}&api-invoker-id=${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=Certificate not authorized
+
+Retrieve ACL with Invoker Certificate
+    [Tags]    capif_api_acl-13
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}&api-invoker-id=${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=Certificate not authorized
+
+No ACL for invoker after be removed
+    [Tags]    capif_api_acl-14
+    ${register_user_info_invoker}
+    ...    ${register_user_info_provider}
+    ...    ${service_api_description_published}=
+    ...    Basic ACL registration
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    AccessControlPolicyList
+
+    Remove entity   ${INVOKER_USERNAME}
+
+    ${resp}=    Get Request Capif
+    ...    /access-control-policy/v1/accessControlPolicyList/${service_api_description_published['apiId']}?aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    404
+    ...    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=No ACLs found for the requested service: ${service_api_description_published['apiId']}, aef_id: ${register_user_info_provider['aef_id']}, invoker: None and supportedFeatures: None
+    ...    cause=Wrong id
+
diff --git a/tests/features/CAPIF Api Auditing Service/__init__.robot b/tests/features/CAPIF Api Auditing Service/__init__.robot
new file mode 100644
index 0000000..d4becb7
--- /dev/null
+++ b/tests/features/CAPIF Api Auditing Service/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_auditing_service
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Auditing Service/capif_auditing_api.robot b/tests/features/CAPIF Api Auditing Service/capif_auditing_api.robot
new file mode 100644
index 0000000..e4052ef
--- /dev/null
+++ b/tests/features/CAPIF Api Auditing Service/capif_auditing_api.robot	
@@ -0,0 +1,243 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+Library         Collections
+Resource        /opt/robot-tests/tests/resources/common/basicRequests.robot
+Resource        ../../resources/common.resource
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+*** Variables ***
+${AEF_ID_NOT_VALID}             aef-example
+${SERVICE_API_ID_NOT_VALID}     not-valid
+${API_INVOKER_NOT_VALID}        not-valid
+${NOTIFICATION_DESTINATION}     http://robot.testing:1080
+${API_VERSION_VALID}            v1
+${API_VERSION_NOT_VALID}        v58
+
+*** Test Cases ***
+Get Log Entry
+    [Tags]    capif_api_auditing_service-1
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp_1}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+
+    ${resp_2}=    Get Request Capif
+    ...    /logs/v1/apiInvocationLogs?aef-id=${register_user_info['aef_id']}&api-invoker-id=${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp_2}    200    InvocationLog
+    Length Should Be   ${resp_2.json()["logs"]}  2
+
+Get a log entry without entry created
+    [Tags]    capif_api_auditing_service-2
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+
+     ${resp_1}=  Get Request Capif
+    ...    /logs/v1/apiInvocationLogs?aef-id=${register_user_info['aef_id']}&api-invoker-id=${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp_1}    404   ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=aefId or/and apiInvokerId do not match any InvocationLogs
+    ...    cause=No log invocations found
+
+
+Get a log entry withut aefid and apiInvokerId
+    [Tags]    capif_api_auditing_service-3
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp_1}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${AEF_ID_NOT_VALID}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+
+     ${resp_2}=    Get Request Capif
+    ...    /logs/v1/apiInvocationLogs
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp_2}    400   ProblemDetails
+    ...    title=Bad Request
+    ...    status=400
+    ...    detail=aef_id and api_invoker_id parameters are mandatory
+    ...    cause=Mandatory parameters missing
+
+
+Get Log Entry with apiVersion filter
+    [Tags]    capif_api_auditing_service-4
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp_1}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+
+    ${resp_2}=    Get Request Capif
+    ...    /logs/v1/apiInvocationLogs?aef-id=${register_user_info['aef_id']}&api-invoker-id=${register_user_info_invoker['api_invoker_id']}&api-version=${API_VERSION_VALID} 
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp_2}    200    InvocationLog
+    Length Should Be   ${resp_2.json()["logs"]}  1
+
+Get Log Entry with no exist apiVersion filter 
+    [Tags]    capif_api_auditing_service-5
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp_1}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+
+    ${resp_2}=    Get Request Capif
+    ...    /logs/v1/apiInvocationLogs?aef-id=${register_user_info['aef_id']}&api-invoker-id=${register_user_info_invoker['api_invoker_id']}&api-version=${API_VERSION_NOT_VALID} 
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+   # Check Results
+    Check Response Variable Type And Values    ${resp_2}    404   ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Parameters do not match any log entry
+    ...    cause=No logs found
+
+
+
+
diff --git a/tests/features/CAPIF Api Discover Service/__init__.robot b/tests/features/CAPIF Api Discover Service/__init__.robot
new file mode 100644
index 0000000..c98b3a9
--- /dev/null
+++ b/tests/features/CAPIF Api Discover Service/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_discover_service
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Discover Service/capif_api_service_discover.robot b/tests/features/CAPIF Api Discover Service/capif_api_service_discover.robot
new file mode 100644
index 0000000..0e2a5f7
--- /dev/null
+++ b/tests/features/CAPIF Api Discover Service/capif_api_service_discover.robot	
@@ -0,0 +1,257 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Resource        /opt/robot-tests/tests/resources/api_invoker_management_requests/apiInvokerManagementRequests.robot
+Resource        ../../resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+# Test Setup    Initialize Test And Register    role=invoker
+
+
+*** Variables ***
+${API_INVOKER_NOT_REGISTERED}       not-valid
+
+
+*** Test Cases ***
+Discover Published service APIs by Authorised API Invoker
+    [Tags]    capif_api_discover_service-1
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    ${service_api_description_published}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    DiscoveredAPIs
+
+    # Check Results
+    Dictionary Should Contain Key    ${resp.json()}    serviceAPIDescriptions
+    Should Not Be Empty    ${resp.json()['serviceAPIDescriptions']}
+    Length Should Be    ${resp.json()['serviceAPIDescriptions']}    1
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published}
+
+
+Discover Published service APIs by Non Authorised API Invoker
+    [Tags]    capif_api_discover_service-2
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=User not authorized
+    ...    cause=Certificate not authorized
+
+Discover Published service APIs by not registered API Invoker
+    [Tags]    capif_api_discover_service-3
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${API_INVOKER_NOT_REGISTERED}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=API Invoker does not exist
+    ...    cause=API Invoker id not found
+
+Discover Published service APIs by registered API Invoker with 1 result filtered
+    [Tags]    capif_api_discover_service-4
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name_1}=    Set Variable    service_1
+    ${api_name_2}=    Set Variable    service_2
+
+    # Publish 2 apis
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    ${api_name_1}
+    ${service_api_description_published_2}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    ${api_name_2}
+
+    # Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Request all APIs for Invoker
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    DiscoveredAPIs
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['serviceAPIDescriptions']}
+    Length Should Be    ${resp.json()['serviceAPIDescriptions']}    2
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_1}
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_2}
+
+    # Request api 1
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&api-name=${api_name_1}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    DiscoveredAPIs
+
+    # Check Results
+    Should Not Be Empty    ${resp.json()['serviceAPIDescriptions']}
+    Length Should Be    ${resp.json()['serviceAPIDescriptions']}    1
+    List Should Contain Value    ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_1}
+
+Discover Published service APIs by registered API Invoker filtered with no match
+    [Tags]    capif_api_discover_service-5
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name_1}=    Set Variable    apiName1
+    ${api_name_2}=    Set Variable    apiName2
+
+    # Publish 2 apis
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    ${api_name_1}
+    ${service_api_description_published_2}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    ${api_name_2}
+
+    # Change to invoker role and register at api invoker management
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Request all APIs for Invoker
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    DiscoveredAPIs
+
+    # Check returned values
+    Should Not Be Empty    ${resp.json()['serviceAPIDescriptions']}
+    Length Should Be    ${resp.json()['serviceAPIDescriptions']}    2
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_1}
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_2}
+
+    # Request api 1
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&api-name=NOT_VALID_NAME
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=API Invoker ${register_user_info_invoker['api_invoker_id']} has no API Published that accomplish filter conditions
+    ...    cause=No API Published accomplish filter conditions
+
+Discover Published service APIs by registered API Invoker not filtered
+    [Tags]    capif_api_discover_service-6
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name_1}=    Set Variable    apiName1
+    ${api_name_2}=    Set Variable    apiName2
+
+    # Publish 2 apis
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    ${api_name_1}
+    ${service_api_description_published_2}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    ${api_name_2}
+
+    # Change to invoker role and register at api invoker management
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Request all APIs for Invoker
+    ${resp}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    DiscoveredAPIs
+
+    # Check Results
+    Should Not Be Empty    ${resp.json()['serviceAPIDescriptions']}
+    Length Should Be    ${resp.json()['serviceAPIDescriptions']}    2
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_1}
+    List Should Contain Value   ${resp.json()['serviceAPIDescriptions']}    ${service_api_description_published_2}
diff --git a/tests/features/CAPIF Api Events/__init__.robot b/tests/features/CAPIF Api Events/__init__.robot
new file mode 100644
index 0000000..fa13d53
--- /dev/null
+++ b/tests/features/CAPIF Api Events/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_events
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Events/capif_events_api.robot b/tests/features/CAPIF Api Events/capif_events_api.robot
new file mode 100644
index 0000000..aecff95
--- /dev/null
+++ b/tests/features/CAPIF Api Events/capif_events_api.robot	
@@ -0,0 +1,156 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+Library         XML
+Resource        /opt/robot-tests/tests/resources/common/basicRequests.robot
+Resource        ../../resources/common.resource
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+
+*** Variables ***
+${API_INVOKER_NOT_REGISTERED}       not-valid
+${SUBSCRIBER_ID_NOT_VALID}          not-valid
+${SUBSCRIPTION_ID_NOT_VALID}        not-valid
+
+
+*** Test Cases ***
+Creates a new individual CAPIF Event Subscription
+    [Tags]    capif_api_events-1
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Events Subscription
+    ${resp}=    Post Request Capif
+    ...    /capif-events/v1/${register_user_info_invoker['api_invoker_id']}/subscriptions
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    201    EventSubscription
+    ${subscriber_id}    ${subscription_id}=    Check Event Location Header    ${resp}
+
+Creates a new individual CAPIF Event Subscription with Invalid SubscriberId
+    [Tags]    capif_api_events-2
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Events Subscription
+    ${resp}=    Post Request Capif
+    ...    /capif-events/v1/${SUBSCRIBER_ID_NOT_VALID}/subscriptions
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values  ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker or APF or AEF or AMF Not found
+    ...    cause=Subscriber Not Found
+
+Deletes an individual CAPIF Event Subscription
+    [Tags]    capif_api_events-3
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Events Subscription
+    ${resp}=    Post Request Capif
+    ...    /capif-events/v1/${register_user_info_invoker['api_invoker_id']}/subscriptions
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    EventSubscription
+
+    ${subscriber_id}    ${subscription_id}=    Check Event Location Header    ${resp}
+
+    ${resp}=    Delete Request Capif
+    ...    /capif-events/v1/${subscriber_id}/subscriptions/${subscription_id}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Status Should Be    204    ${resp}
+
+Deletes an individual CAPIF Event Subscription with invalid SubscriberId
+    [Tags]    capif_api_events-4
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Events Subscription
+    ${resp}=    Post Request Capif
+    ...    /capif-events/v1/${register_user_info_invoker['api_invoker_id']}/subscriptions
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    EventSubscription
+
+    ${subscriber_id}    ${subscription_id}=    Check Event Location Header    ${resp}
+
+    ${resp}=    Delete Request Capif
+    ...    /capif-events/v1/${SUBSCRIBER_ID_NOT_VALID}/subscriptions/${subscription_id}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+    
+    # Check Results
+    Check Response Variable Type And Values  ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker or APF or AEF or AMF Not found
+    ...    cause=Subscriber Not Found
+
+
+Deletes an individual CAPIF Event Subscription with invalid SubscriptionId
+    [Tags]    capif_api_events-5
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Events Subscription
+    ${resp}=    Post Request Capif
+    ...    /capif-events/v1/${register_user_info_invoker['api_invoker_id']}/subscriptions
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    EventSubscription
+
+    ${subscriber_id}    ${subscription_id}=    Check Event Location Header    ${resp}
+
+    ${resp}=    Delete Request Capif
+    ...    /capif-events/v1/${subscriber_id}/subscriptions/${SUBSCRIPTION_ID_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    detail=User not authorized
+    ...    cause=You are not the owner of this resource
+
diff --git a/tests/features/CAPIF Api Invoker Management/__init__.robot b/tests/features/CAPIF Api Invoker Management/__init__.robot
new file mode 100644
index 0000000..4d19a72
--- /dev/null
+++ b/tests/features/CAPIF Api Invoker Management/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_invoker_management
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Invoker Management/capif_api_invoker_managenet.robot b/tests/features/CAPIF Api Invoker Management/capif_api_invoker_managenet.robot
new file mode 100644
index 0000000..48eaa87
--- /dev/null
+++ b/tests/features/CAPIF Api Invoker Management/capif_api_invoker_managenet.robot	
@@ -0,0 +1,201 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Resource        /opt/robot-tests/tests/resources/api_invoker_management_requests/apiInvokerManagementRequests.robot
+Resource    ../../resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+Library         Process
+Library         Collections
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+
+*** Variables ***
+${API_INVOKER_NOT_REGISTERED}       not-valid
+
+
+*** Test Cases ***
+Onboard NetApp
+    [Tags]    capif_api_invoker_management-1
+    #Register Netapp
+    ${register_user_info}=    Register User At Jwt Auth
+    ...    username=${INVOKER_USERNAME}    role=${INVOKER_ROLE}
+
+    # Send Onboarding Request
+    ${request_body}=    Create Onboarding Notification Body
+    ...    http://${CAPIF_CALLBACK_IP}:${CAPIF_CALLBACK_PORT}/netapp_callback
+    ...    ${register_user_info['csr_request']}
+    ...    ${INVOKER_USERNAME}
+    ${resp}=    Post Request Capif
+    ...    ${register_user_info['ccf_onboarding_url']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    access_token=${register_user_info['access_token']}
+
+    # Check Results
+    Check Response Variable Type And Values  ${resp}  201  APIInvokerEnrolmentDetails
+    ${url}=    Parse Url    ${resp.headers['Location']}
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+    Check Location Header    ${resp}    ${LOCATION_INVOKER_RESOURCE_REGEX}
+
+    # Store dummy signed certificate
+    Store In File    ${INVOKER_USERNAME}.crt    ${resp.json()['onboardingInformation']['apiInvokerCertificate']}
+
+Register NetApp Already Onboarded
+    [Tags]    capif_api_invoker_management-2
+    # Default Invoker Registration and Onboarding
+    ${register_user_info}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Post Request Capif
+    ...    ${register_user_info['ccf_onboarding_url']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    access_token=${register_user_info['access_token']}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    403    ProblemDetails
+    ...    status=403
+    ...    title=Forbidden
+    ...    detail=Invoker already registered
+    ...    cause=Identical invoker public key
+
+Update Onboarded NetApp
+    [Tags]    capif_api_invoker_management-3
+    ${new_notification_destination}=    Set Variable
+    ...    http://${CAPIF_CALLBACK_IP}:${CAPIF_CALLBACK_PORT}/netapp_new_callback
+    # Default Invoker Registration and Onboarding
+    ${register_user_info}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    Set To Dictionary
+    ...    ${request_body}
+    ...    notificationDestination=${new_notification_destination}
+
+    ${resp}=    Put Request Capif
+    ...    ${url.path}
+    ...    ${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    APIInvokerEnrolmentDetails
+    ...    notificationDestination=${new_notification_destination}
+
+Update Not Onboarded NetApp
+    [Tags]    capif_api_invoker_management-4
+    # Default Invoker Registration and Onboarding
+    ${register_user_info}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Put Request Capif
+    ...    /api-invoker-management/v1/onboardedInvokers/${INVOKER_NOT_REGISTERED}
+    ...    ${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=Please provide an existing Netapp ID
+    ...    cause=Not exist NetappID
+
+Offboard NetApp
+    [Tags]    capif_api_invoker_management-5
+    # Default Invoker Registration and Onboarding
+    ${register_user_info}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    ${url.path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Should Be Equal As Strings    ${resp.status_code}    204
+
+Offboard Not Previously Onboarded NetApp
+    [Tags]    capif_api_invoker_management-6
+    # Default Invoker Registration and Onboarding
+    ${register_user_info}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    /api-invoker-management/v1/onboardedInvokers/${INVOKER_NOT_REGISTERED}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=Please provide an existing Netapp ID
+    ...    cause=Not exist NetappID
+
+Update Onboarded NetApp Certificate
+    [Tags]    capif_api_invoker_management-7
+    ${new_notification_destination}=    Set Variable
+    ...    http://${CAPIF_CALLBACK_IP}:${CAPIF_CALLBACK_PORT}/netapp_new_callback
+    # Default Invoker Registration and Onboarding
+    ${register_user_info}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${INVOKER_USERNAME_NEW}=   Set Variable     ${INVOKER_USERNAME}_NEW
+
+    ${csr_request_new}=    Create User Csr    ${INVOKER_USERNAME_NEW}    invoker
+
+    ${new_onboarding_notification_body}=    Create Onboarding Notification Body
+    ...    http://${CAPIF_CALLBACK_IP}:${CAPIF_CALLBACK_PORT}/netapp_callback
+    ...    ${csr_request_new}
+    ...    ${INVOKER_USERNAME}
+
+    Set To Dictionary
+    ...    ${request_body}
+    ...    onboardingInformation=${new_onboarding_notification_body['onboardingInformation']}
+
+    ${resp}=    Put Request Capif
+    ...    ${url.path}
+    ...    ${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    APIInvokerEnrolmentDetails
+
+    Store In File    ${INVOKER_USERNAME_NEW}.crt    ${resp.json()['onboardingInformation']['apiInvokerCertificate']}
+
+    Set To Dictionary
+    ...    ${request_body}
+    ...    notificationDestination=${new_notification_destination}
+
+    ${resp}=    Put Request Capif
+    ...    ${url.path}
+    ...    ${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME_NEW}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    APIInvokerEnrolmentDetails
+    ...    notificationDestination=${new_notification_destination}
+
+
diff --git a/tests/features/CAPIF Api Logging Service/__init__.robot b/tests/features/CAPIF Api Logging Service/__init__.robot
new file mode 100644
index 0000000..fd3c43e
--- /dev/null
+++ b/tests/features/CAPIF Api Logging Service/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_logging_service
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Logging Service/capif_logging_api.robot b/tests/features/CAPIF Api Logging Service/capif_logging_api.robot
new file mode 100644
index 0000000..de9c672
--- /dev/null
+++ b/tests/features/CAPIF Api Logging Service/capif_logging_api.robot	
@@ -0,0 +1,221 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+Library         Collections
+Resource        /opt/robot-tests/tests/resources/common/basicRequests.robot
+Resource        ../../resources/common.resource
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+*** Variables ***
+${AEF_ID_NOT_VALID}             aef-example
+${SERVICE_API_ID_NOT_VALID}     not-valid
+${API_INVOKER_NOT_VALID}        not-valid
+${NOTIFICATION_DESTINATION}     http://robot.testing:1080
+
+*** Test Cases ***
+Create a log entry
+    [Tags]    capif_api_logging_service-1
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    201    InvocationLog
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_LOGGING_RESOURCE_REGEX}
+
+Create a log entry invalid aefId
+    [Tags]    capif_api_logging_service-2
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${AEF_ID_NOT_VALID}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404   ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Exposer not exist
+    ...    cause=Exposer id not found
+
+
+
+Create a log entry invalid serviceApi
+    [Tags]    capif_api_logging_service-3
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry Bad Service  ${register_user_info['aef_id']}  ${register_user_info_invoker['api_invoker_id']}
+    ${resp}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Service API not exist
+
+Create a log entry invalid apiInvokerId
+    [Tags]    capif_api_logging_service-4
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${register_user_info['aef_id']}  ${API_INVOKER_NOT_VALID}   ${api_ids}  ${api_names}
+    ${resp}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker not exist
+    ...    cause=Invoker id not found
+
+
+Create a log entry different aef_id in body
+    [Tags]    capif_api_logging_service-5
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish one api
+    Publish Service Api    ${register_user_info}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    ${api_ids}   ${api_names}=    Get Api Ids And Names From Discover Response    ${discover_response}
+
+    # Create Log Entry
+    ${request_body}=  Create Log Entry  ${AEF_ID_NOT_VALID}  ${register_user_info_invoker['api_invoker_id']}  ${api_ids}  ${api_names}
+    ${resp}=    Post Request Capif
+    ...    /api-invocation-logs/v1/${register_user_info['aef_id']}/logs
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=AEF id not matching in request and body
+    ...    cause=Not identical AEF id
+
diff --git a/tests/features/CAPIF Api Provider Management/__init__.robot b/tests/features/CAPIF Api Provider Management/__init__.robot
new file mode 100644
index 0000000..24460ae
--- /dev/null
+++ b/tests/features/CAPIF Api Provider Management/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_provider_management
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Provider Management/capif_api_provider_management.robot b/tests/features/CAPIF Api Provider Management/capif_api_provider_management.robot
new file mode 100644
index 0000000..fd70925
--- /dev/null
+++ b/tests/features/CAPIF Api Provider Management/capif_api_provider_management.robot	
@@ -0,0 +1,222 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Resource        ../../resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+Library         Process
+Library         Collections
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+
+*** Variables ***
+${API_PROVIDER_NOT_REGISTERED}      notValid
+
+
+*** Test Cases ***
+Register Api Provider
+    [Tags]    capif_api_provider_management-1
+    #Register Provider User An create Certificates for each function
+    ${register_user_info}=    Register User At Jwt Auth Provider
+    ...    username=${PROVIDER_USERNAME}    role=${PROVIDER_ROLE}
+
+    # Create provider Registration Body
+    ${apf_func_details}=    Create Api Provider Function Details
+    ...    ${register_user_info['apf_username']}
+    ...    ${register_user_info['apf_csr_request']}
+    ...    APF
+    ${aef_func_details}=    Create Api Provider Function Details
+    ...    ${register_user_info['aef_username']}
+    ...    ${register_user_info['aef_csr_request']}
+    ...    AEF
+    ${amf_func_details}=    Create Api Provider Function Details
+    ...    ${register_user_info['amf_username']}
+    ...    ${register_user_info['amf_csr_request']}
+    ...    AMF
+    ${api_prov_funcs}=    Create List    ${apf_func_details}    ${aef_func_details}    ${amf_func_details}
+
+    ${request_body}=    Create Api Provider Enrolment Details Body
+    ...    ${register_user_info['access_token']}
+    ...    ${api_prov_funcs}
+
+    # Register Provider
+    ${resp}=    Post Request Capif
+    ...    /api-provider-management/v1/registrations
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    access_token=${register_user_info['access_token']}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    201    APIProviderEnrolmentDetails
+
+    ${url}=    Parse Url    ${resp.headers['Location']}
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${register_user_info['amf_username']}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_PROVIDER_RESOURCE_REGEX}
+
+
+    FOR    ${prov}    IN    @{resp.json()['apiProvFuncs']}
+        Log Dictionary    ${prov}
+        Store In File    ${prov['apiProvFuncInfo']}.crt    ${prov['regInfo']['apiProvCert']}
+    END
+
+Register Api Provider Already registered
+    [Tags]    capif_api_provider_management-2
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+
+    ${resp}=    Post Request Capif
+    ...    /api-provider-management/v1/registrations
+    ...    json=${register_user_info['provider_enrollment_details']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    access_token=${register_user_info['access_token']}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    403    ProblemDetails
+    ...    status=403
+    ...    title=Forbidden
+    ...    detail=Provider already registered
+    ...    cause=Identical provider reg sec
+
+Update Registered Api Provider
+    [Tags]    capif_api_provider_management-3
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Set Variable    ${register_user_info['provider_enrollment_details']}
+
+    Set To Dictionary    ${request_body}    apiProvDomInfo=ROBOT_TESTING_MOD
+
+    ${resp}=    Put Request Capif
+    ...    ${register_user_info['resource_url'].path}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    FOR    ${prov}    IN    @{resp.json()['apiProvFuncs']}
+        Log Dictionary    ${prov}
+        Store In File    ${prov['apiProvFuncInfo']}.crt    ${prov['regInfo']['apiProvCert']}
+        IF    "${prov['apiProvFuncRole']}" == "APF"
+            Set To Dictionary    ${register_user_info}    apf_id=${prov['apiProvFuncId']}
+        ELSE IF    "${prov['apiProvFuncRole']}" == "AEF"
+            Set To Dictionary    ${register_user_info}    aef_id=${prov['apiProvFuncId']}
+        ELSE IF    "${prov['apiProvFuncRole']}" == "AMF"
+            Set To Dictionary    ${register_user_info}    amf_id=${prov['apiProvFuncId']}
+        ELSE
+            Fail    "${prov['apiProvFuncRole']} is not valid role"
+        END
+    END
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    APIProviderEnrolmentDetails
+    ...    apiProvDomInfo=ROBOT_TESTING_MOD
+
+Update Not Registered Api Provider
+    [Tags]    capif_api_provider_management-4
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Set Variable    ${register_user_info['provider_enrollment_details']}
+
+    ${resp}=    Put Request Capif
+    ...    /api-provider-management/v1/registrations/${API_PROVIDER_NOT_REGISTERED}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=Not Exist Provider Enrolment Details
+    ...    cause=Not found registrations to send this api provider details
+
+# Partially Update Registered Api Provider
+#     [Tags]    capif_api_provider_management-5
+#     ${register_user_info}=    Provider Default Registration
+
+#     ${request_body}=    Create Api Provider Enrolment Details Patch Body    ROBOT_TESTING_MOD
+
+#     ${resp}=    Patch Request Capif
+#     ...    ${register_user_info['resource_url'].path}
+#     ...    json=${request_body}
+#     ...    server=${CAPIF_HTTPS_URL}
+#     ...    verify=ca.crt
+#     ...    username=${AMF_PROVIDER_USERNAME}
+
+#     Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${register_user_info['amf_username']}
+#     Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+#     # Check Results
+#     Check Response Variable Type And Values    ${resp}    200    APIProviderEnrolmentDetails
+#     ...    apiProvDomInfo=ROBOT_TESTING_MOD
+
+Partially Update Not Registered Api Provider
+    [Tags]    capif_api_provider_management-6
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Create Api Provider Enrolment Details Patch Body
+
+    ${resp}=    Patch Request Capif
+    ...    /api-provider-management/v1/registrations/${API_PROVIDER_NOT_REGISTERED}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=Not Exist Provider Enrolment Details
+    ...    cause=Not found registrations to send this api provider details
+
+Delete Registered Api Provider
+    [Tags]    capif_api_provider_management-7
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    ${register_user_info['resource_url'].path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Status Should Be    204    ${resp}
+
+Delete Not Registered Api Provider
+    [Tags]    capif_api_provider_management-8
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    /api-provider-management/v1/registrations/${API_PROVIDER_NOT_REGISTERED}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AMF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    status=404
+    ...    title=Not Found
+    ...    detail=Not Exist Provider Enrolment Details
+    ...    cause=Not found registrations to send this api provider details
diff --git a/tests/features/CAPIF Api Publish Service/__init__.robot b/tests/features/CAPIF Api Publish Service/__init__.robot
new file mode 100644
index 0000000..137026f
--- /dev/null
+++ b/tests/features/CAPIF Api Publish Service/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_api_publish_service
\ No newline at end of file
diff --git a/tests/features/CAPIF Api Publish Service/capif_api_publish_service.robot b/tests/features/CAPIF Api Publish Service/capif_api_publish_service.robot
new file mode 100644
index 0000000..cd58b3e
--- /dev/null
+++ b/tests/features/CAPIF Api Publish Service/capif_api_publish_service.robot	
@@ -0,0 +1,374 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Resource        ../../resources/common/basicRequests.robot
+Resource        ../../resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+
+*** Variables ***
+${APF_ID_NOT_VALID}             apf-example
+${SERVICE_API_ID_NOT_VALID}     not-valid
+
+
+*** Test Cases ***
+Publish API by Authorised API Publisher
+    [Tags]    capif_api_publish_service-1
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Test
+    ${request_body}=    Create Service Api Description    service_1
+    ${resp}=    Post Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceAPIDescription
+    ...    apiName=service_1
+    Dictionary Should Contain Key    ${resp.json()}    apiId
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_PUBLISH_RESOURCE_REGEX}
+
+Publish API by NON Authorised API Publisher
+    [Tags]    capif_api_publish_service-2
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Create Service Api Description
+    ${resp}=    Post Request Capif
+    ...    /published-apis/v1/${APF_ID_NOT_VALID}/service-apis
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    status=401
+    ...    title=Unauthorized
+    ...    detail=Publisher not existing
+    ...    cause=Publisher id not found
+
+Retrieve all APIs Published by Authorised apfId
+    [Tags]    capif_api_publish_service-3
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_1
+    ${service_api_description_published_2}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_2
+
+    # Retrieve Services published
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+
+    List Should Contain Value    ${resp.json()}    ${service_api_description_published_1}
+    List Should Contain Value    ${resp.json()}    ${service_api_description_published_2}
+
+Retrieve all APIs Published by NON Authorised apfId
+    [Tags]    capif_api_publish_service-4
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Retrieve Services published
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${APF_ID_NOT_VALID}/service-apis
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Publisher not existing
+    ...    cause=Publisher id not found
+
+Retrieve single APIs Published by Authorised apfId
+    [Tags]    capif_api_publish_service-5
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_1
+    ${service_api_description_published_2}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_2
+
+    # Store apiId1
+    ${serviceApiId1}=    Set Variable    ${service_api_description_published_1['apiId']}
+    ${serviceApiId2}=    Set Variable    ${service_api_description_published_2['apiId']}
+
+    # Retrieve Services 1
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis/${serviceApiId1}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_api_description_published_1}
+
+    # Retrieve Services 1
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis/${serviceApiId2}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_api_description_published_2}
+
+Retrieve single APIs non Published by Authorised apfId
+    [Tags]    capif_api_publish_service-6
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis/${SERVICE_API_ID_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    detail=User not authorized
+    ...    cause=You are not the owner of this resource
+
+Retrieve single APIs Published by NON Authorised apfId
+    [Tags]    capif_api_publish_service-7
+    # Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Publish Service API
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_1
+
+    # Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Get Request Capif
+    ...    ${resource_url.path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=User not authorized
+    ...    cause=Certificate not authorized
+
+Update API Published by Authorised apfId with valid serviceApiId
+    [Tags]    capif_api_publish_service-8
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_1
+
+    ${request_body_modified}=    Create Service Api Description    service_1_modified
+    ${resp}=    Put Request Capif
+    ...    ${resource_url.path}
+    ...    json=${request_body_modified}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    ...    apiName=service_1_modified
+
+    # Retrieve Service
+    ${resp}=    Get Request Capif
+    ...    ${resource_url.path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    ...    apiName=service_1_modified
+
+Update APIs Published by Authorised apfId with invalid serviceApiId
+    [Tags]    capif_api_publish_service-9
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_1
+
+    ${request_body}=    Create Service Api Description    service_1_modified
+    ${resp}=    Put Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis/${SERVICE_API_ID_NOT_VALID}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    detail=User not authorized
+    ...    cause=You are not the owner of this resource
+
+Update APIs Published by NON Authorised apfId
+    [Tags]    capif_api_publish_service-10
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    service_1
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Api Description    service_1_modified
+    ${resp}=    Put Request Capif
+    ...    ${resource_url.path}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=User not authorized
+    ...    cause=Certificate not authorized
+
+    # Retrieve Service
+    ${resp}=    Get Request Capif
+    ...    ${resource_url.path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    ...    apiName=service_1
+
+Delete API Published by Authorised apfId with valid serviceApiId
+    [Tags]    capif_api_publish_service-11
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info}
+    ...    first_service
+
+    ${resp}=    Delete Request Capif
+    ...    ${resource_url.path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Status Should Be    204    ${resp}
+
+    ${resp}=    Get Request Capif
+    ...    ${resource_url.path}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    detail=User not authorized
+    ...    cause=You are not the owner of this resource
+
+Delete APIs Published by Authorised apfId with invalid serviceApiId
+    [Tags]    capif_api_publish_service-12
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis/${SERVICE_API_ID_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    detail=User not authorized
+    ...    cause=You are not the owner of this resource
+
+Delete APIs Published by NON Authorised apfId
+    [Tags]    capif_api_publish_service-13
+    #Register APF
+    ${register_user_info}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    #Register INVOKER
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    /published-apis/v1/${register_user_info['apf_id']}/service-apis/${SERVICE_API_ID_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=User not authorized
+    ...    cause=Certificate not authorized
diff --git a/tests/features/CAPIF Security Api/__init__.robot b/tests/features/CAPIF Security Api/__init__.robot
new file mode 100644
index 0000000..3cb47d6
--- /dev/null
+++ b/tests/features/CAPIF Security Api/__init__.robot	
@@ -0,0 +1,2 @@
+*** Settings ***
+Force Tags    capif_security_api
\ No newline at end of file
diff --git a/tests/features/CAPIF Security Api/capif_security_api.robot b/tests/features/CAPIF Security Api/capif_security_api.robot
new file mode 100644
index 0000000..2a41e80
--- /dev/null
+++ b/tests/features/CAPIF Security Api/capif_security_api.robot	
@@ -0,0 +1,1192 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Library         /opt/robot-tests/tests/libraries/bodyRequests.py
+Library         Collections
+Resource        /opt/robot-tests/tests/resources/common/basicRequests.robot
+Resource        ../../resources/common.resource
+
+Test Setup      Reset Testing Environment
+Suite Teardown   Reset Testing Environment
+
+
+*** Variables ***
+${APF_ID_NOT_VALID}             apf-example
+${SERVICE_API_ID_NOT_VALID}     not-valid
+${API_INVOKER_NOT_VALID}        not-valid
+${NOTIFICATION_DESTINATION}     http://robot.testing:1080
+
+
+*** Test Cases ***
+Create a security context for an API invoker
+    [Tags]    capif_security_api-1
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Create Security Context
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+Create a security context for an API invoker with Provider role
+    [Tags]    capif_security_api-2
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Create Security Context
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be invoker
+
+Create a security context for an API invoker with Provider entity role and invalid apiInvokerId
+    [Tags]    capif_security_api-3
+    # Register APF
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Create Security Context
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be invoker
+
+Create a security context for an API invoker with Invalid apiInvokerID
+    [Tags]    capif_security_api-4
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker not found
+    ...    cause=API Invoker not exists or invalid ID
+
+Retrieve the Security Context of an API Invoker
+    [Tags]    capif_security_api-5
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+
+    ${service_security_context}=    Set Variable    ${resp.json()}
+
+    # Register APF
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Retrieve Security context can setup by parameters if authenticationInfo and authorizationInfo are needed at response.
+    # ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}?authenticationInfo=true&authorizationInfo=true
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    ServiceSecurity
+
+    ${service_security_context_filtered}=    Remove Keys From Object
+    ...    ${service_security_context}
+    ...    authenticationInfo
+    ...    authorizationInfo
+
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_security_context_filtered}
+
+Retrieve the Security Context of an API Invoker with invalid apiInvokerID
+    [Tags]    capif_security_api-6
+    # Register APF
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker not found
+    ...    cause=API Invoker not exists or invalid ID
+
+Retrieve the Security Context of an API Invoker with invalid apfId
+    [Tags]    capif_security_api-7
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # We will request information using invoker user, that is not allowed
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be aef
+
+Delete the Security Context of an API Invoker
+    [Tags]    capif_security_api-8
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Register APF
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Remove Security Context
+    ${resp}=    Delete Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Status Should Be    204    ${resp}
+
+    # Check if Security Context is removed
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Security context not found
+    ...    cause=API Invoker has no security context
+
+Delete the Security Context of an API Invoker with Invoker entity role
+    [Tags]    capif_security_api-9
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    ${resp}=    Delete Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Result
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be aef
+
+Delete the Security Context of an API Invoker with Invoker entity role and invalid apiInvokerID
+    [Tags]    capif_security_api-10
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Result
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be aef
+
+Delete the Security Context of an API Invoker with invalid apiInvokerID
+    [Tags]    capif_security_api-11
+    # Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Delete Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Result
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker not found
+    ...    cause=API Invoker not exists or invalid ID
+
+Update the Security Context of an API Invoker
+    [Tags]    capif_security_api-12
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Store Initial Security Context
+    ${security_context}=    Set Variable    ${resp.json()}
+
+    # Update Security Context
+    ${request_body}=    Create Service Security Body    http://robot.testing2
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}/update
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceSecurity
+
+    # Store Security Context modified.
+    ${security_context_modified}=    Set Variable    ${resp.json()}
+
+    # Check Security Context is corretly modified at CCF
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}?authenticationInfo=true&authorizationInfo=true
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    ServiceSecurity
+    Dictionaries Should Be Equal    ${resp.json()}    ${security_context_modified}
+
+Update the Security Context of an API Invoker with Provider entity role
+    [Tags]    capif_security_api-13
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    #Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}/update
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be invoker
+
+Update the Security Context of an API Invoker with AEF entity role and invalid apiInvokerId
+    [Tags]    capif_security_api-14
+    #Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}/update
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be invoker
+
+Update the Security Context of an API Invoker with invalid apiInvokerID
+    [Tags]    capif_security_api-15
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}/update
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Result
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker not found
+    ...    cause=API Invoker not exists or invalid ID
+
+Revoke the authorization of the API invoker for APIs
+    [Tags]    capif_security_api-16
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    ${api_ids}=    Get Api Ids From Discover Response    ${discover_response}
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Revoke Security Context by Provider
+    ${request_body}=    Create Security Notification Body
+    ...    ${register_user_info_invoker['api_invoker_id']}
+    ...    ${api_ids}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}/delete
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Status Should Be    204    ${resp}
+
+    # Check if Security Context is removed
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Security context not found
+    ...    cause=API Invoker has no security context
+
+Revoke the authorization of the API invoker for APIs without valid apfID.
+    [Tags]    capif_security_api-17
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    ${security_context}=    Set Variable    ${resp.json()}
+
+    # Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    # Revoke Security Context by Invoker
+    ${request_body}=    Create Security Notification Body    ${register_user_info_invoker['api_invoker_id']}    1234
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}/delete
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    ProblemDetails
+    ...    title=Unauthorized
+    ...    status=401
+    ...    detail=Role not authorized for this API route
+    ...    cause=User role must be aef
+
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    ServiceSecurity
+    ${security_context_filtered}=    Remove Keys From Object
+    ...    ${security_context}
+    ...    authenticationInfo
+    ...    authorizationInfo
+    Dictionaries Should Be Equal    ${resp.json()}    ${security_context_filtered}
+
+Revoke the authorization of the API invoker for APIs with invalid apiInvokerId
+    [Tags]    capif_security_api-18
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    ${request_body}=    Create Service Security Body    ${NOTIFICATION_DESTINATION}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    ${security_context}=    Set Variable    ${resp.json()}
+
+    #Register Provider
+    ${register_user_info_publisher}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_publisher['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${request_body}=    Create Security Notification Body    ${API_INVOKER_NOT_VALID}    1234
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/trustedInvokers/${API_INVOKER_NOT_VALID}/delete
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Invoker not found
+    ...    cause=API Invoker not exists or invalid ID
+
+    ${resp}=    Get Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}?authenticationInfo=true&authorizationInfo=true
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    ServiceSecurity
+    Dictionaries Should Be Equal    ${resp.json()}    ${security_context}
+
+Retrieve access token
+    [Tags]    capif_security_api-19
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body    ${register_user_info_invoker['api_invoker_id']}    ${scope}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    200    AccessTokenRsp
+    ...    token_type=Bearer
+
+    Should Not Be Empty    ${resp.json()['access_token']}
+
+Retrieve access token by Provider
+    [Tags]    capif_security_api-20
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body    ${register_user_info_invoker['api_invoker_id']}    ${scope}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    AccessTokenErr
+    ...    error=unauthorized_client
+    ...    error_description=Role not authorized for this API route
+
+Retrieve access token by Provider with invalid apiInvokerId
+    [Tags]    capif_security_api-21
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body    ${register_user_info_invoker['api_invoker_id']}    ${scope}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${API_INVOKER_NOT_VALID}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${AEF_PROVIDER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    401    AccessTokenErr
+    ...    error=unauthorized_client
+    ...    error_description=Role not authorized for this API route
+
+Retrieve access token with invalid apiInvokerId
+    [Tags]    capif_security_api-22
+    # Default Invoker Registration and Onboarding
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body    ${register_user_info_invoker['api_invoker_id']}    ${scope}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${API_INVOKER_NOT_VALID}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    404    ProblemDetails29571
+    ...    title=Not Found
+    ...    status=404
+    ...    detail=Security context not found
+    ...    cause=API Invoker has no security context
+
+Retrieve access token with invalid client_id
+    [Tags]    capif_security_api-23
+    # Default Invoker Registration and Onboarding
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body    ${API_INVOKER_NOT_VALID}    ${scope}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    400    AccessTokenErr
+    ...    error=invalid_client
+    ...    error_description=Client Id not found
+
+Retrieve access token with unsupported grant_type
+    [Tags]    capif_security_api-24
+    # Default Invoker Registration and Onboarding
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${grant_type}=    Set Variable    not_valid
+    ${request_body}=    Create Access Token Req Body
+    ...    ${register_user_info_invoker['api_invoker_id']}
+    ...    ${scope}
+    ...    grant_type=${grant_type}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values
+    ...    ${resp}
+    ...    400
+    ...    AccessTokenErr
+    ...    error=unsupported_grant_type
+    ...    error_description=Invalid value for `grant_type` \\(${grant_type}\\), must be one of \\['client_credentials'\\] - 'grant_type'
+
+Retrieve access token with invalid scope
+    [Tags]    capif_security_api-25
+    # Default Invoker Registration and Onboarding
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body
+    ...    ${register_user_info_invoker['api_invoker_id']}
+    ...    "not-valid-scope"
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    400    AccessTokenErr
+    ...    error=invalid_scope
+    ...    error_description=The first characters must be '3gpp'
+
+Retrieve access token with invalid aefid at scope
+    [Tags]    capif_security_api-26
+    # Default Invoker Registration and Onboarding
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${scope}=    Create Scope    ${register_user_info_provider['aef_id']}    ${api_name}
+    ${request_body}=    Create Access Token Req Body
+    ...    ${register_user_info_invoker['api_invoker_id']}
+    ...    3gpp#1234:${api_name}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    400    AccessTokenErr
+    ...    error=invalid_scope
+    ...    error_description=One of aef_id not belongs of your security context
+
+Retrieve access token with invalid apiName at scope
+    [Tags]    capif_security_api-27
+    # Default Invoker Registration and Onboarding
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${register_user_info_provider['resource_url'].path}  ${AMF_PROVIDER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${PROVIDER_USERNAME}
+
+    ${api_name}=    Set Variable    service_1
+
+    # Register One Service
+    ${service_api_description_published_1}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    ${api_name}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method  ${CAPIF_USERS}  update_capif_users_dicts  ${url.path}  ${INVOKER_USERNAME}
+    Call Method  ${CAPIF_USERS}  update_register_users   ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    # create Security Context
+    ${request_body}=    Create Service Security From Discover Response
+    ...    ${NOTIFICATION_DESTINATION}
+    ...    ${discover_response}
+    ${resp}=    Put Request Capif
+    ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+
+    # Retrieve Token from CCF
+    ${not_valid_api_name}=    Set Variable    not-valid
+    ${request_body}=    Create Access Token Req Body
+    ...    ${register_user_info_invoker['api_invoker_id']}
+    ...    3gpp#${register_user_info_provider['aef_id']}:${not_valid_api_name}
+    ${resp}=    Post Request Capif
+    ...    /capif-security/v1/securities/${register_user_info_invoker['api_invoker_id']}/token
+    ...    data=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    400    AccessTokenErr
+    ...    error=invalid_scope
+    ...    error_description=One of the api names does not exist or is not associated with the aef id provided
\ No newline at end of file
diff --git a/tests/features/__init__.robot b/tests/features/__init__.robot
new file mode 100644
index 0000000..19e0fdb
--- /dev/null
+++ b/tests/features/__init__.robot
@@ -0,0 +1,56 @@
+*** Settings ***
+Resource        /opt/robot-tests/tests/resources/common.resource
+Resource    ../resources/common.resource
+
+Suite Setup     Prepare environment
+# Suite Teardown  Reset Testing Environment
+
+Force Tags      all
+
+
+*** Keywords ***
+Prepare environment
+    Log    ${CAPIF_HOSTNAME}
+    Log    "${CAPIF_HTTP_PORT}"
+    Log    "${CAPIF_HTTPS_PORT}"
+
+    Set Global Variable    ${CAPIF_HTTP_VAULT_URL}    http://${CAPIF_VAULT}/
+    IF    "${CAPIF_VAULT_PORT}" != ""
+        Set Global Variable    ${CAPIF_HTTP_VAULT_URL}    http://${CAPIF_VAULT}:${CAPIF_VAULT_PORT}/
+    END
+
+    Set Global Variable    ${CAPIF_HTTPS_REGISTER_URL}    https://${CAPIF_REGISTER}/
+    IF    "${CAPIF_REGISTER_PORT}" != ""
+        Set Global Variable     ${CAPIF_HTTPS_REGISTER_URL}    https://${CAPIF_REGISTER}:${CAPIF_REGISTER_PORT}/
+    END
+
+    Set Global Variable    ${CAPIF_HTTP_URL}    http://${CAPIF_HOSTNAME}/
+    IF    "${CAPIF_HTTP_PORT}" != ""
+        Set Global Variable    ${CAPIF_HTTP_URL}    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/
+    END
+
+    Set Global Variable    ${CAPIF_HTTPS_URL}    https://${CAPIF_HOSTNAME}/
+    IF    "${CAPIF_HTTPS_PORT}" != ""
+        Set Global Variable    ${CAPIF_HTTPS_URL}    https://${CAPIF_HOSTNAME}:${CAPIF_HTTPS_PORT}/
+    END
+
+    ${status}    ${CAPIF_IP}=    Run Keyword And Ignore Error    Get Ip From Hostname    ${CAPIF_HOSTNAME}
+
+    IF    "${status}" == "PASS"
+        Log    We will use a remote deployment
+        Log    ${CAPIF_IP}
+    ELSE
+        Log    We will use a local deployment
+        Add Dns To Hosts    127.0.0.1    ${CAPIF_HOSTNAME}
+    END
+    # Obtain ca root certificate
+    Retrieve Ca Root
+
+    Reset Testing Environment
+
+Retrieve Ca Root
+    [Documentation]    This keyword retrieve ca.root from CAPIF and store it at ca.crt in order to use at TLS communications
+    ${resp}=    Get CA Vault  /v1/secret/data/ca  ${CAPIF_HTTP_VAULT_URL}
+    Status Should Be    200    ${resp}
+    Log    ${resp.json()['data']['data']['ca']}
+    Store In File    ca.crt    ${resp.json()['data']['data']['ca']}
diff --git a/tests/libraries/api_events/bodyRequests.py b/tests/libraries/api_events/bodyRequests.py
new file mode 100644
index 0000000..ab6e4da
--- /dev/null
+++ b/tests/libraries/api_events/bodyRequests.py
@@ -0,0 +1,32 @@
+def create_events_subscription():
+    return {
+        "eventFilters": [
+            {
+                "aefIds": ["aefIds", "aefIds"],
+                "apiIds": ["apiIds", "apiIds"],
+                "apiInvokerIds": ["apiInvokerIds", "apiInvokerIds"]
+            },
+            {
+                "aefIds": ["aefIds", "aefIds"],
+                "apiIds": ["apiIds", "apiIds"],
+                "apiInvokerIds": ["apiInvokerIds", "apiInvokerIds"]
+            }
+        ],
+        "eventReq": {
+            "grpRepTime": 5,
+            "immRep": True,
+            "maxReportNbr": 0,
+            "monDur": "2000-01-23T04:56:07+00:00",
+            "partitionCriteria": ["TAC", "GEOAREA"],
+            "repPeriod": 6,
+            "sampRatio": 15
+        },
+        "events": ["SERVICE_API_AVAILABLE", "API_INVOKER_ONBOARDED"],
+        "notificationDestination": "http://robot.testing",
+        "requestTestNotification": True,
+        "supportedFeatures": "aaa",
+        "websockNotifConfig": {
+            "requestWebsocketUri": True,
+            "websocketUri": "websocketUri"
+        }
+    }
diff --git a/tests/libraries/api_invoker_management/bodyRequests.py b/tests/libraries/api_invoker_management/bodyRequests.py
new file mode 100644
index 0000000..37b9456
--- /dev/null
+++ b/tests/libraries/api_invoker_management/bodyRequests.py
@@ -0,0 +1,20 @@
+def create_onboarding_notification_body(notification_destination="https://host.docker.internal/netapp_callback", api_invoker_public_key="ApiInvokerPublicKey",api_invoker_information='ROBOT_TESTING', api_invoker_id=None):
+    data = {
+        "notificationDestination": notification_destination,
+        "supportedFeatures": "fffffff",
+        "apiInvokerInformation": api_invoker_information,
+        "websockNotifConfig": {
+            "requestWebsocketUri": True,
+            "websocketUri": "websocketUri"
+        },
+        "onboardingInformation": {
+            "apiInvokerPublicKey": api_invoker_public_key.decode("utf-8"),
+            "onboardingSecret": "onboardingSecret",
+            "apiInvokerCertificate": "apiInvokerCertificate"
+        },
+        "requestTestNotification": True
+    }
+    if api_invoker_id != None:
+        data['apiInvokerId'] = api_invoker_id
+
+    return (data)
diff --git a/tests/libraries/api_logging_service/bodyRequests.py b/tests/libraries/api_logging_service/bodyRequests.py
new file mode 100644
index 0000000..fe3faf1
--- /dev/null
+++ b/tests/libraries/api_logging_service/bodyRequests.py
@@ -0,0 +1,133 @@
+def create_log_entry(aefId=None, apiInvokerId=None, apiId=None, apiName=None):
+    data = {
+    "aefId": aefId,
+    "apiInvokerId": apiInvokerId,
+    "logs": [
+        {
+        "apiId": apiId[0],
+        "apiName": apiName[0],
+        "apiVersion": "v1",
+        "resourceName": "string",
+        "uri": "http://resource/endpoint",
+        "protocol": "HTTP_1_1",
+        "operation": "GET",
+        "result": "string",
+        "invocationTime": "2023-03-30T10:30:21.408Z",
+        "invocationLatency": 0,
+        "inputParameters": "string",
+        "outputParameters": "string",
+        "srcInterface": {
+            "ipv4Addr": "192.168.1.1",
+            "fqdn": "string",
+            "port": 65535,
+            "apiPrefix": "string",
+            "securityMethods": [
+            "PSK",
+            "string"
+            ]
+        },
+        "destInterface": {
+            "ipv4Addr": "192.168.1.23",
+            "fqdn": "string",
+            "port": 65535,
+            "apiPrefix": "string",
+            "securityMethods": [
+            "PSK",
+            "string"
+            ]
+        },
+        "fwdInterface": "string"
+        },
+        {
+        "apiId": apiId[0],
+        "apiName": apiName[0],
+        "apiVersion": "v2",
+        "resourceName": "string",
+        "uri": "http://resource/endpoint",
+        "protocol": "HTTP_1_1",
+        "operation": "GET",
+        "result": "string",
+        "invocationTime": "2023-03-30T10:30:21.408Z",
+        "invocationLatency": 0,
+        "inputParameters": "string",
+        "outputParameters": "string",
+        "srcInterface": {
+            "ipv4Addr": "192.168.1.1",
+            "fqdn": "string",
+            "port": 65535,
+            "apiPrefix": "string",
+            "securityMethods": [
+            "PSK",
+            "string"
+            ]
+        },
+        "destInterface": {
+            "ipv4Addr": "192.168.1.23",
+            "fqdn": "string",
+            "port": 65535,
+            "apiPrefix": "string",
+            "securityMethods": [
+            "PSK",
+            "string"
+            ]
+        },
+        "fwdInterface": "string"
+        }
+    ],
+    "supportedFeatures": "ffff"
+    }
+    return data 
+
+def create_log_entry_bad_service(aefId=None, apiInvokerId=None):
+    data = {
+    "aefId": aefId,
+    "apiInvokerId": apiInvokerId,
+    "logs": [
+        {
+        "apiId": "not-exist",
+        "apiName": "not-exist",
+        "apiVersion": "string",
+        "resourceName": "string",
+        "uri": "string",
+        "protocol": "HTTP_1_1",
+        "operation": "GET",
+        "result": "string",
+        "invocationTime": "2023-03-30T10:30:21.408Z",
+        "invocationLatency": 0,
+        "inputParameters": "string",
+        "outputParameters": "string",
+        "srcInterface": {
+            "ipv4Addr": "192.168.1.1",
+            "fqdn": "string",
+            "port": 65535,
+            "apiPrefix": "string",
+            "securityMethods": [
+            "PSK",
+            "string"
+            ]
+        },
+        "destInterface": {
+            "ipv4Addr": "192.168.1.23",
+            "fqdn": "string",
+            "port": 65535,
+            "apiPrefix": "string",
+            "securityMethods": [
+            "PSK",
+            "string"
+            ]
+        },
+        "fwdInterface": "string"
+        }
+    ],
+    "supportedFeatures": "ffff"
+    }
+    return data 
+
+def get_api_ids_and_names_from_discover_response(discover_response):
+    api_ids=[]
+    api_names=[]
+    service_api_descriptions = discover_response.json()['serviceAPIDescriptions']
+    for service_api_description in service_api_descriptions:
+        api_ids.append(service_api_description['apiId'])
+        api_names.append(service_api_description['apiName'])
+    return api_ids, api_names
diff --git a/tests/libraries/api_provider_management/bodyRequests.py b/tests/libraries/api_provider_management/bodyRequests.py
new file mode 100644
index 0000000..e024a5b
--- /dev/null
+++ b/tests/libraries/api_provider_management/bodyRequests.py
@@ -0,0 +1,41 @@
+def create_api_provider_enrolment_details_body(regSec, api_prov_funcs, apiProvDomInfo="ROBOT_TESTING"):
+    data = {
+        "regSec": regSec,
+        "apiProvFuncs": api_prov_funcs,
+        "apiProvDomInfo": apiProvDomInfo,
+        "suppFeat": "fffffff",
+        "failReason": "string"
+    }
+
+    return (data)
+
+
+def create_api_provider_function_details(username, public_key, role):
+    data = {
+        "regInfo": {
+            "apiProvPubKey": public_key.decode("utf-8"),
+        },
+        "apiProvFuncRole": role,
+        "apiProvFuncInfo": username
+
+    }
+    return data
+
+
+def create_api_provider_enrolment_details_patch_body(apiProvDomInfo="ROBOT_TESTING"):
+    data = {
+        "apiProvFuncs": [
+            {
+                "apiProvFuncId": "PATCH",
+                "regInfo": {
+                    "apiProvPubKey": "PATCH",
+                    "apiProvCert": "PATCH"
+                },
+                "apiProvFuncRole": "AEF",
+                "apiProvFuncInfo": "PATCH"
+            }
+        ],
+        "apiProvDomInfo": apiProvDomInfo,
+    }
+
+    return (data)
diff --git a/tests/libraries/api_publish_service/bodyRequests.py b/tests/libraries/api_publish_service/bodyRequests.py
new file mode 100644
index 0000000..17ac4a7
--- /dev/null
+++ b/tests/libraries/api_publish_service/bodyRequests.py
@@ -0,0 +1,68 @@
+def create_service_api_description(api_name="service_1",aef_id="aef_id"):
+    return {
+        "apiName": api_name,
+        "aefProfiles": [
+            {
+                "aefId": aef_id,
+                "versions": [
+                    {
+                        "apiVersion": "v1",
+                        "expiry": "2021-11-30T10:32:02.004000Z",
+                        "resources": [
+                            {
+                                "resourceName": "string",
+                                "commType": "REQUEST_RESPONSE",
+                                "uri": "string",
+                                "custOpName": "string",
+                                "operations": [
+                                    "GET"
+                                ],
+                                "description": "string"
+                            }
+                        ],
+                        "custOperations": [
+                            {
+                                "commType": "REQUEST_RESPONSE",
+                                "custOpName": "string",
+                                "operations": [
+                                    "GET"
+                                ],
+                                "description": "string"
+                            }
+                        ]
+                    }
+                ],
+                "protocol": "HTTP_1_1",
+                "dataFormat": "JSON",
+                "securityMethods": ["PSK"],
+                "interfaceDescriptions": [
+                    {
+                        "ipv4Addr": "string",
+                        "port": 65535,
+                        "securityMethods": ["PSK"]
+                    },
+                    {
+                        "ipv4Addr": "string",
+                        "port": 65535,
+                        "securityMethods": ["PSK"]
+                    }
+                ]
+            }
+        ],
+        "description": "ROBOT_TESTING",
+        "supportedFeatures": "fffff",
+        "shareableInfo": {
+            "isShareable": True,
+            "capifProvDoms": [
+                "string"
+            ]
+        },
+        "serviceAPICategory": "string",
+        "apiSuppFeats": "fffff",
+        "pubApiPath": {
+            "ccfIds": [
+                "string"
+            ]
+        },
+        "ccfId": "string"
+    }
diff --git a/tests/libraries/bodyRequests.py b/tests/libraries/bodyRequests.py
new file mode 100644
index 0000000..5e45124
--- /dev/null
+++ b/tests/libraries/bodyRequests.py
@@ -0,0 +1,8 @@
+from common.bodyRequests import *
+from api_invoker_management.bodyRequests import *
+from api_logging_service.bodyRequests import *
+from api_publish_service.bodyRequests import *
+from api_events.bodyRequests import *
+from security_api.bodyRequests import *
+from api_provider_management.bodyRequests import *
+
diff --git a/tests/libraries/common/bodyRequests.py b/tests/libraries/common/bodyRequests.py
new file mode 100644
index 0000000..3f1e482
--- /dev/null
+++ b/tests/libraries/common/bodyRequests.py
@@ -0,0 +1,125 @@
+from operator import contains
+import re
+import json
+from xmlrpc.client import boolean
+import rfc3987
+
+f = open('/opt/robot-tests/tests/libraries/common/types.json')
+capif_types = json.load(f)
+
+
+def check_variable(input, data_type):
+    print(input)
+    print(type(input))
+    print(data_type)
+    if isinstance(input, list):
+        for one in input:
+            check_variable(one, data_type)
+            return True
+    if data_type == "string":
+        if isinstance(input, str):
+            return True
+        else:
+            raise Exception("variable is not string type")
+    elif data_type == "integer":
+        if isinstance(input, int):
+            return True
+        else:
+            raise Exception("variable is not integer type")
+    elif data_type == "boolean":
+        if isinstance(input, boolean):
+            return True
+        else:
+            raise Exception("variable is not integer type")
+    elif data_type == "URI":
+        check_uri(input,data_type)
+        return True
+    elif data_type == "URI_reference":
+        check_uri(input, data_type)
+        return True
+    elif data_type not in capif_types.keys():
+        raise Exception("ERROR, type " + data_type +
+                        " is not present in types file")
+    if "Check" in capif_types[data_type].keys():
+        if not capif_types[data_type]["Check"]:
+            return True
+    if "enum" in capif_types[data_type].keys():
+        if input in capif_types[data_type]["enum"]:
+            print("value (" + input + ") is present at enum (" +
+                  ','.join(capif_types[data_type]["enum"]) + ")")
+            return True
+        else:
+            raise Exception("value (" + input + ") is not present at enum (" +
+                            ','.join(capif_types[data_type]["enum"]) + ")")
+    if "regex" in capif_types[data_type].keys():
+        check_regex(input, capif_types[data_type]["regex"])
+        return True
+
+    # Check Structure
+    all_attributes = check_attributes_dict(input, data_type)
+
+    print(all_attributes)
+
+    print('Check Variable type')
+    # Check Variable type
+    for key in input.keys():
+        print(key)
+        check_variable(input[key], all_attributes[key])
+
+
+def check_attributes_dict(body, data_type):
+    mandatory_attributes = capif_types[data_type]["mandatory_attributes"]
+    optional_parameters = capif_types[data_type]["optional_attributes"]
+    all_attributes = mandatory_attributes | optional_parameters
+    # Check if body has not allowed attributes
+
+    for body_key in body.keys():
+        if body_key not in all_attributes.keys():
+            raise Exception('Attribute "' + body_key +
+                            '" is not present as a mandatory or optional key (' + ','.join(all_attributes.keys()) + ')')
+
+    if mandatory_attributes:
+        for mandatory_key in mandatory_attributes.keys():
+            if mandatory_key not in body.keys():
+                raise Exception('Mandatory Attribute "' + mandatory_key +
+                                '" is not present at body under check')
+
+    if 'oneOf' in capif_types[data_type].keys():
+        one_of = capif_types[data_type]["oneOf"]
+        count = 0
+        for body_key in body.keys():
+            if body_key in one_of:
+                count = count+1
+
+        if count == 0:
+            raise Exception('Mandatory oneOf [' + ','.join(one_of) +
+                            '] is not present at body (' + ','.join(body.keys()) + ')')
+        elif count > 1:
+            raise Exception('More than one oneOf [' + ','.join(
+                one_of) + '] is present at body (' + ','.join(body.keys()) + ')')
+
+    return all_attributes
+
+
+def sign_csr_body(username, public_key):
+    data = {
+        "csr":  public_key.decode("utf-8"),
+        "mode":  "client",
+        "filename": username
+    }
+    return data
+
+
+def check_uri(input,rule):
+    if rfc3987.match(input, rule=rule) is not None:
+        return input
+    else:
+        raise Exception(rule + " is not accomplish rfc3986 rule ("+input+")")
+
+def check_regex(input, regex):
+    matched = re.match(regex, input)
+    is_match = bool(matched)
+    if is_match:
+        print("Regex match")
+    else:
+        raise Exception("Input(" + input + ") not match regex (" + regex + ")")
diff --git a/tests/libraries/common/types.json b/tests/libraries/common/types.json
new file mode 100644
index 0000000..4b68359
--- /dev/null
+++ b/tests/libraries/common/types.json
@@ -0,0 +1,606 @@
+{
+  "ProblemDetails": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "type": "URI",
+      "title": "string",
+      "status": "integer",
+      "detail": "string",
+      "instance": "URI",
+      "cause": "string",
+      "invalidParams": "InvalidParam",
+      "supportedFeatures": "SupportedFeatures"
+    }
+  },
+  "ProblemDetails29571": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "type": "URI",
+      "title": "string",
+      "status": "integer",
+      "detail": "string",
+      "instance": "URI",
+      "cause": "string",
+      "invalidParams": "InvalidParam",
+      "supportedFeatures": "SupportedFeatures",
+      "accessTokenError": "AccessTokenErr",
+      "accessTokenRequest": "AccessTokenReq29571",
+      "nrfId": "NrfId"
+    }
+  },
+  "NrfId": {
+    "regex": "^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\\.)+[A-Za-z]{2,63}\\.?$"
+  },
+  "InvalidParam": {
+    "mandatory_attributes": {
+      "param": "string"
+    },
+    "optional_attributes": {
+      "reason": "string"
+    }
+  },
+  "APIInvokerEnrolmentDetails": {
+    "mandatory_attributes": {
+      "apiInvokerId": "string",
+      "onboardingInformation": "OnboardingInformation",
+      "notificationDestination": "URI"
+    },
+    "optional_attributes": {
+      "requestTestNotification": "boolean",
+      "websockNotifConfig": "WebsockNotifConfig",
+      "apiList": "ServiceAPIDescription",
+      "apiInvokerInformation": "string",
+      "supportedFeatures": "SupportedFeatures"
+    }
+  },
+  "OnboardingInformation": {
+    "mandatory_attributes": {
+      "apiInvokerPublicKey": "string"
+    },
+    "optional_attributes": {
+      "apiInvokerCertificate": "string",
+      "onboardingSecret": "string"
+    }
+  },
+  "WebsockNotifConfig": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "websocketUri": "URI_reference",
+      "requestWebsocketUri": "boolean"
+    }
+  },
+  "ServiceAPIDescription": {
+    "mandatory_attributes": {
+      "apiName": "string"
+    },
+    "optional_attributes": {
+      "apiId": "string",
+      "aefProfiles": "AefProfile",
+      "description": "string",
+      "supportedFeatures": "SupportedFeatures",
+      "shareableInfo": "ShareableInformation",
+      "serviceAPICategory": "string",
+      "apiSuppFeats": "SupportedFeatures",
+      "pubApiPath": "PublishedApiPath",
+      "ccfId": "string"
+    }
+  },
+  "AefProfile": {
+    "mandatory_attributes": {
+      "aefId": "string",
+      "versions": "Version"
+    },
+    "optional_attributes": {
+      "protocol": "Protocol",
+      "dataFormat": "DataFormat",
+      "securityMethods": "SecurityMethod",
+      "domainName": "string",
+      "interfaceDescriptions": "InterfaceDescription",
+      "aefLocation": "AefLocation"
+    },
+    "oneOf": ["interfaceDescriptions", "domainName"]
+  },
+  "Version": {
+    "mandatory_attributes": {
+      "apiVersion": "string"
+    },
+    "optional_attributes": {
+      "expiry": "string",
+      "resources": "Resource",
+      "custOperations": "CustomOperation"
+    }
+  },
+  "Resource": {
+    "mandatory_attributes": {
+      "resourceName": "string",
+      "commType": "CommunicationType",
+      "uri": "URI_reference"
+    },
+    "optional_attributes": {
+      "custOpName": "string",
+      "operations": "Operation",
+      "description": "string"
+    }
+  },
+  "CommunicationType": {
+    "enum": ["REQUEST_RESPONSE", "SUBSCRIBE_NOTIFY"]
+  },
+  "Operation": {
+    "enum": ["GET", "POST", "PUT", "PATCH", "DELETE"]
+  },
+  "CustomOperation": {
+    "mandatory_attributes": {
+      "commType": "CommunicationType",
+      "custOpName": "string"
+    },
+    "optional_attributes": {
+      "operations": "Operation",
+      "description": "string"
+    }
+  },
+  "Protocol": {
+    "enum": ["HTTP_1_1", "HTTP_2"]
+  },
+  "DataFormat": {
+    "enum": ["JSON"]
+  },
+  "SecurityMethod": {
+    "enum": ["PSK", "PKI", "OAUTH"]
+  },
+  "InterfaceDescription": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "ipv4Addr": "string",
+      "ipv6Addr": "string",
+      "port": "integer",
+      "securityMethods": "SecurityMethod"
+    },
+    "oneOf": ["ipv4Addr", "ipv6Addr"]
+  },
+  "AefLocation": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "civicAddr": "CivicAddress",
+      "geoArea": "GeographicArea",
+      "dcId": "string"
+    }
+  },
+  "CivicAddress": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "country": "string",
+      "A1": "string",
+      "A2": "string",
+      "A3": "string",
+      "A4": "string",
+      "A5": "string",
+      "A6": "string",
+      "PRD": "string",
+      "POD": "string",
+      "STS": "string",
+      "HNO": "string",
+      "HNS": "string",
+      "LMK": "string",
+      "LOC": "string",
+      "NAM": "string",
+      "PC": "string",
+      "BLD": "string",
+      "UNIT": "string",
+      "FLR": "string",
+      "ROOM": "string",
+      "PLC": "string",
+      "PCN": "string",
+      "POBOX": "string",
+      "ADDCODE": "string",
+      "SEAT": "string",
+      "RD": "string",
+      "RDSEC": "string",
+      "RDBR": "string",
+      "RDSUBBR": "string",
+      "PRM": "string",
+      "POM": "string",
+      "usageRules": "string",
+      "method": "string",
+      "providedBy": "string"
+    }
+  },
+  "GeographicArea": {
+    "Check": false
+  },
+  "ShareableInformation": {
+    "mandatory_attributes": {
+      "isShareable": "boolean"
+    },
+    "optional_attributes": {
+      "capifProvDoms": "string"
+    }
+  },
+  "PublishedApiPath": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "ccfIds": "string"
+    }
+  },
+  "EventSubscription": {
+    "mandatory_attributes": {
+      "events": "CAPIFEvent",
+      "notificationDestination": "URI"
+    },
+    "optional_attributes": {
+      "eventFilters": "CAPIFEventFilter",
+      "eventReq": "ReportingInformation",
+      "requestTestNotification": "boolean",
+      "websockNotifConfig": "WebsockNotifConfig",
+      "supportedFeatures": "SupportedFeatures"
+    }
+  },
+  "CAPIFEvent": {
+    "enum": [
+      "SERVICE_API_AVAILABLE",
+      "SERVICE_API_UNAVAILABLE",
+      "SERVICE_API_UPDATE",
+      "API_INVOKER_ONBOARDED",
+      "API_INVOKER_OFFBOARDED",
+      "SERVICE_API_INVOCATION_SUCCESS",
+      "SERVICE_API_INVOCATION_FAILURE",
+      "ACCESS_CONTROL_POLICY_UPDATE",
+      "ACCESS_CONTROL_POLICY_UNAVAILABLE",
+      "API_INVOKER_AUTHORIZATION_REVOKED",
+      "API_INVOKER_UPDATED",
+      "API_TOPOLOGY_HIDING_CREATED",
+      "API_TOPOLOGY_HIDING_REVOKED"
+    ]
+  },
+  "CAPIFEventFilter": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "apiIds": "string",
+      "apiInvokerIds": "string",
+      "aefIds": "string"
+    }
+  },
+  "ReportingInformation": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "immRep": "boolean",
+      "notifMethod": "NotificationMethod",
+      "maxReportNbr": "integer",
+      "monDur": "string",
+      "repPeriod": "integer",
+      "sampRatio": "integer",
+      "partitionCriteria": "PartitioningCriteria",
+      "grpRepTime": "integer",
+      "notifFlag": "NotificationFlag"
+    }
+  },
+  "NotificationMethod": {
+    "enum": ["PERIODIC", "ONE_TIME", "ON_EVENT_DETECTION"]
+  },
+  "PartitioningCriteria": {
+    "enum": ["TAC", "SUBPLMN", "GEOAREA", "SNSSAI", "DNN"]
+  },
+  "NotificationFlag": {
+    "enum": ["ACTIVATE", "DEACTIVATE", "RETRIEVAL"]
+  },
+  "DiscoveredAPIs": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "serviceAPIDescriptions": "ServiceAPIDescription"
+    }
+  },
+  "ServiceSecurity": {
+    "mandatory_attributes": {
+      "securityInfo": "SecurityInformation",
+      "notificationDestination": "URI"
+    },
+    "optional_attributes": {
+      "requestTestNotification": "boolean",
+      "websockNotifConfig": "WebsockNotifConfig",
+      "supportedFeatures": "SupportedFeatures"
+    }
+  },
+  "SecurityInformation": {
+    "mandatory_attributes": {
+      "prefSecurityMethods": "SecurityMethod"
+    },
+    "optional_attributes": {
+      "interfaceDetails": "InterfaceDescription",
+      "aefId": "string",
+      "apiId": "string",
+      "selSecurityMethod": "SecurityMethod",
+      "authenticationInfo": "string",
+      "authorizationInfo": "string"
+    },
+    "oneOf": ["interfaceDetails", "aefId"]
+  },
+  "SupportedFeatures": {
+    "regex": "^[A-Fa-f0-9]*$"
+  },
+  "SecurityNotification": {
+    "mandatory_attributes": {
+      "apiInvokerId": "string",
+      "apiIds": "string",
+      "cause": "Cause"
+    },
+    "optional_attributes": {
+      "aefId": "string"
+    }
+  },
+  "Cause": {
+    "enum": ["OVERLIMIT_USAGE", "UNEXPECTED_REASON"]
+  },
+  "AccessTokenReq": {
+    "mandatory_attributes": {
+      "grant_type": "GrantType",
+      "client_id": "string"
+    },
+    "optional_attributes": {
+      "client_secret": "string",
+      "scope": "string"
+    }
+  },
+  "AccessTokenReq29571": {
+    "mandatory_attributes": {
+      "grant_type": "GrantType",
+      "nfInstanceId": "UUID",
+      "scope": "ScopeRegex"
+    },
+    "optional_attributes": {
+      "nfType": "NFType",
+      "targetNfType": "NFType",
+      "targetNfInstanceId": "UUID",
+      "requesterPlmn": "PlmnId",
+      "requesterPlmnList": "PlmnId",
+      "requesterSnssaiList": "Snssai",
+      "requesterFqdn": "Fqdn",
+      "requesterSnpnList": "PlmnIdNid",
+      "targetPlmn": "PlmnId",
+      "targetSnpn": "PlmnIdNid",
+      "targetSnssaiList": "Snssai",
+      "targetNsiList": "string",
+      "targetNfSetId": "NfSetId",
+      "targetNfServiceSetId": "NfServiceSetId",
+      "hnrfAccessTokenUri": "URI",
+      "sourceNfInstanceId": "UUID"
+    }
+  },
+  "NfSetId":{
+    "regex": "set[a-zA-Z0-9\\-]+\\.(nrf|udm|amf|smf|ausf|nef|pcf|smsf|nssf|udr|lmf|gmlc|5g_eir|sepp|upf|n3iwf|af|udsf|bsf|chf|nwdaf|pcscf|cbcf|hss|ucmf|sor_af|spaf|mme|scsas|scef|scp|nssaaf|icscf|scscf|dra|ims_as|aanf|5g_ddnmf|nsacf|mfaf|easdf|dccf|mb_smf|tsctsf|adrf|gba_bsf|cef|mb_upf|nswof|pkmf|mnpf|sms_gmsc|sms_iwmsc|mbsf|mbstf|panf)set\\.5gc(\\.nid[A-Fa-f0-9]{11})?\\.mnc[0-9]{3}\\.mcc[0-9]{3}"
+  },
+  "NfServiceSetId":{
+    "regex": "set[a-zA-Z0-9\\-]+\\.(nrf|udm|amf|smf|ausf|nef|pcf|smsf|nssf|udr|lmf|gmlc|5g_eir|sepp|upf|n3iwf|af|udsf|bsf|chf|nwdaf|pcscf|cbcf|hss|ucmf|sor_af|spaf|mme|scsas|scef|scp|nssaaf|icscf|scscf|dra|ims_as|aanf|5g_ddnmf|nsacf|mfaf|easdf|dccf|mb_smf|tsctsf|adrf|gba_bsf|cef|mb_upf|nswof|pkmf|mnpf|sms_gmsc|sms_iwmsc|mbsf|mbstf|panf)set\\.5gc(\\.nid[A-Fa-f0-9]{11})?\\.mnc[0-9]{3}\\.mcc[0-9]{3}"
+  },
+  "ScopeRegex": {
+    "regex": "^([a-zA-Z0-9_:-]+)( [a-zA-Z0-9_:-]+)*$"
+  },
+  "Fqdn": {
+    "regex": "^([0-9A-Za-z]([-0-9A-Za-z]{0,61}[0-9A-Za-z])?\\.)+[A-Za-z]{2,63}\\.?$"
+  },
+  "UUID": {
+    "regex": "^[0-9a-f]{8}-[0-9a-f]{4}-[0-5][0-9a-f]{3}-[089ab][0-9a-f]{3}-[0-9a-f]{12}$"
+  },
+  "NFType": {
+    "enum": [
+      "NRF",
+      "UDM",
+      "AMF",
+      "SMF",
+      "AUSF",
+      "NEF",
+      "PCF",
+      "SMSF",
+      "NSSF",
+      "UDR",
+      "LMF",
+      "GMLC",
+      "5G_EIR",
+      "SEPP",
+      "UPF",
+      "N3IWF",
+      "AF",
+      "UDSF",
+      "BSF",
+      "CHF",
+      "NWDAF",
+      "PCSCF",
+      "CBCF",
+      "HSS",
+      "UCMF",
+      "SOR_AF",
+      "SPAF",
+      "MME",
+      "SCSAS",
+      "SCEF",
+      "SCP",
+      "NSSAAF",
+      "ICSCF",
+      "SCSCF",
+      "DRA",
+      "IMS_AS",
+      "AANF",
+      "5G_DDNMF",
+      "NSACF",
+      "MFAF",
+      "EASDF",
+      "DCCF",
+      "MB_SMF",
+      "TSCTSF",
+      "ADRF",
+      "GBA_BSF",
+      "CEF",
+      "MB_UPF",
+      "NSWOF",
+      "PKMF",
+      "MNPF",
+      "SMS_GMSC",
+      "SMS_IWMSC",
+      "MBSF",
+      "MBSTF",
+      "PANF"
+    ]
+  },
+  "PlmnId": {
+    "mandatory_attributes": {
+      "mcc": "Mcc",
+      "mnc": "Mnc"
+    },
+    "optional_attributes": {}
+  },
+  "PlmnIdNid":{
+    "mandatory_attributes": {
+      "mcc": "Mcc",
+      "mnc": "Mnc"
+    },
+    "optional_attributes": {
+      "nid": "Nid"
+    }
+  },
+  "Mcc": {
+    "regex": "^[0-9]{3}$"
+  },
+  "Mnc": {
+    "regex": "^[0-9]{2,3}$"
+  },
+  "Snssai": {
+    "mandatory_attributes": {
+      "sst": "integer"
+    },
+    "optional_attributes": {
+      "sd": "SlideDifferentiator"
+    }
+  },
+  "SlideDifferentiator": {
+    "regex": "^[A-Fa-f0-9]{6}$"
+  },
+  "Nid":{
+    "regex": "^[A-Fa-f0-9]{11}$"
+  },
+  "AccessTokenRsp": {
+    "mandatory_attributes": {
+      "access_token": "string",
+      "token_type": "TokenType",
+      "expires_in": "integer"
+    },
+    "optional_attributes": {
+      "scope": "string"
+    }
+  },
+  "GrantType": {
+    "enum": ["client_credentials"]
+  },
+  "TokenType": {
+    "enum": ["Bearer"]
+  },
+  "AccessTokenErr": {
+    "mandatory_attributes": {
+      "error": "ErrorType"
+    },
+    "optional_attributes": {
+      "error_description": "string",
+      "error_uri": "string"
+    }
+  },
+  "ErrorType": {
+    "enum": [
+      "invalid_request",
+      "invalid_client",
+      "invalid_grant",
+      "unauthorized_client",
+      "unsupported_grant_type",
+      "invalid_scope"
+    ]
+  },
+  "APIProviderEnrolmentDetails": {
+    "mandatory_attributes": {
+      "regSec": "string",
+      "apiProvDomId": "string"
+    },
+    "optional_attributes": {
+      "apiProvFuncs": "APIProviderFunctionDetails",
+      "apiProvDomInfo": "string",
+      "suppFeat": "SupportedFeatures",
+      "failReason": "string"
+    }
+  },
+  "APIProviderFunctionDetails": {
+    "mandatory_attributes": {
+      "regInfo": "RegistrationInformation",
+      "apiProvFuncRole": "ApiProviderFuncRole",
+      "apiProvFuncId": "string"
+    },
+    "optional_attributes": {
+      "apiProvFuncInfo": "string"
+    }
+  },
+  "RegistrationInformation": {
+    "mandatory_attributes": {
+      "apiProvPubKey": "string",
+      "apiProvCert": "string"
+    },
+    "optional_attributes": {}
+  },
+  "ApiProviderFuncRole": {
+    "enum": ["AEF", "APF", "AMF"]
+  },
+  "InvocationLog": {
+    "mandatory_attributes": {
+      "aefId": "string",
+      "apiInvokerId": "string",
+      "logs": "Log"
+    },
+    "optional_attributes": {
+      "log_id":"string",
+      "supportedFeatures": "SupportedFeatures"
+    }
+  },
+  "Log": {
+    "mandatory_attributes": {
+      "apiId": "string",
+      "apiName": "string",
+      "apiVersion": "string",
+      "resourceName": "string",
+      "protocol": "Protocol",
+      "result": "string"
+    },
+    "optional_attributes": {
+      "log_id": "string",
+      "uri": "URI",
+      "operation": "Operation",
+      "invocationTime": "string",
+      "invocationLatency": "integer",
+      "inputParameters": "Any",
+      "outputParameters": "Any",
+      "srcInterface": "InterfaceDescription",
+      "destInterface": "InterfaceDescription",
+      "fwdInterface": "string",
+      "supportedFeatures": "SupportedFeatures"
+    }
+  },
+  "Any": {
+    "Check": false
+  },
+  "AccessControlPolicyList": {
+    "mandatory_attributes": {},
+    "optional_attributes": {
+      "apiInvokerPolicies": "ApiInvokerPolicy"
+    }
+  },
+  "ApiInvokerPolicy": {
+    "mandatory_attributes": {
+      "apiInvokerId":"string"
+    },
+    "optional_attributes": {
+      "allowedTotalInvocations": "integer",
+      "allowedInvocationsPerSecond": "integer",
+      "allowedInvocationTimeRangeList": "TimeRange"
+    }
+  },
+  "TimeRange": {
+    "mandatory_attributes": {},
+    "optional_attributes":{
+      "startTime": "string",
+      "stopTime": "string"
+    }
+  }
+
+}
diff --git a/tests/libraries/environment.py b/tests/libraries/environment.py
new file mode 100644
index 0000000..d8100fa
--- /dev/null
+++ b/tests/libraries/environment.py
@@ -0,0 +1,25 @@
+class CapifUserManager():
+    def __init__(self):
+        self.capif_users = {}
+        self.register_users = []
+
+    def update_register_users(self, value):
+        self.register_users.append(value)
+
+    def update_capif_users_dicts(self, key, value):
+        self.capif_users[key] = value
+
+    def remove_capif_users_entry(self, key):
+        self.capif_users.pop(key)
+
+    def remove_register_users_entry(self, value):
+        self.register_users.remove(value)
+
+    def get_capif_users_dict(self):
+        return self.capif_users
+
+    def get_register_users(self):
+        return self.register_users
+
+
+CAPIF_USERS = CapifUserManager()
\ No newline at end of file
diff --git a/tests/libraries/helpers.py b/tests/libraries/helpers.py
new file mode 100644
index 0000000..ec1abe0
--- /dev/null
+++ b/tests/libraries/helpers.py
@@ -0,0 +1,141 @@
+import requests
+import re
+import pandas as pd
+from urllib.parse import urlparse
+from OpenSSL.crypto import (dump_certificate_request, dump_privatekey,
+                            PKey, TYPE_RSA, X509Req)
+from OpenSSL.SSL import FILETYPE_PEM
+import socket
+import copy
+
+
+def parse_url(input):
+    return urlparse(input)
+
+
+def get_db_host(input):
+    p = re.compile('^(http|https):\/\/([^:/]+):?([0-9]{1,6})?.*')
+    m = p.match(input)
+    if m:
+        if m.lastindex == 3:
+            return m[2], m[3]
+        return m[2], 80
+    else:
+        raise Exception('Host is not present at ' + input)
+
+
+def get_subscriber_and_subscription_from_location(input):
+    p = re.compile('^.*/v1/([a-zA-Z0-9]+)/subscriptions/([a-zA-Z0-9]+)/?')
+    m = p.match(input)
+    if m:
+        if m.lastindex == 2:
+            return m[1], m[2]
+        raise Exception('Only match ' + m.lastindex + ' and the expected is 2')
+    else:
+        raise Exception('Host is not present at ' + input)
+
+
+def get_registration_id(input):
+    p = re.compile('^.*/v1/registrations/([a-zA-Z0-9]+)/?')
+    m = p.match(input)
+    if m:
+        if m.lastindex == 1:
+            return m[1]
+        raise Exception('Only match ' + m.lastindex + ' and the expected is 1')
+    else:
+        raise Exception('registration id is not present at ' + input)
+
+
+def store_in_file(file_path, data):
+    with open(file_path, 'wb') as f:
+        f.write(bytes(data, 'utf-8'))
+        f.close()
+
+
+def cert_tuple(cert_file, key_file):
+    return (cert_file, key_file)
+
+
+def add_dns_to_hosts(ip_address, host_name):
+    capif_dns = "{}      {}".format(ip_address, host_name)
+    dns_file = open("/etc/hosts", "a")
+    dns_file.write("{}\n".format(capif_dns))
+    dns_file.close()
+
+
+def create_csr(csr_file_path, private_key_path, cn):
+    # create public/private key
+    key = PKey()
+    key.generate_key(TYPE_RSA, 2048)
+
+    # Generate CSR
+    req = X509Req()
+    req.get_subject().CN = cn
+    req.get_subject().O = 'Telefonica I+D'
+    req.get_subject().OU = 'Innovation'
+    req.get_subject().L = 'Madrid'
+    req.get_subject().ST = 'Madrid'
+    req.get_subject().C = 'ES'
+    req.get_subject().emailAddress = 'inno@tid.es'
+    req.set_pubkey(key)
+    req.sign(key, 'sha256')
+
+    with open(csr_file_path, 'wb+') as f:
+        f.write(dump_certificate_request(FILETYPE_PEM, req))
+        f.close()
+        csr_request = dump_certificate_request(FILETYPE_PEM, req)
+    with open(private_key_path, 'wb+') as f:
+        f.write(dump_privatekey(FILETYPE_PEM, key))
+        f.close()
+
+    return csr_request
+
+
+def create_user_csr(username, cn=None):
+    csr_file_path = username+'.csr'
+    private_key_path = username + '.key'
+    if cn == None:
+        cn = username
+    return create_csr(csr_file_path, private_key_path, cn)
+
+
+def get_ip_from_hostname(hostname):
+    return socket.gethostbyname(hostname)
+
+
+def remove_keys_from_object_helper(input, keys_to_remove):
+    print(keys_to_remove)
+    print(input)
+    print(type(input))
+    if isinstance(input, list):
+        print('list')
+        for data in input:
+            remove_keys_from_object_helper(data, keys_to_remove)
+            return True
+
+    # Check Variable type
+    elif isinstance(input, dict):
+        print('dict')
+
+        for key in list(input.keys()):
+            print('key=' + key)
+            if key in keys_to_remove:
+                print('Remove ' + key + ' from object')
+                del input[key]
+            elif isinstance(input[key], dict) or isinstance(input[key], list):
+                remove_keys_from_object_helper(input[key], keys_to_remove)
+    else:
+        return True
+    return input
+
+
+def remove_key_from_object(input, key_to_remove):
+    input_copy = copy.deepcopy(input)
+    remove_keys_from_object_helper(input_copy, [key_to_remove])
+    return input_copy
+
+
+def create_scope(aef_id, api_name):
+    data = "3gpp#" + aef_id + ":" + api_name
+
+    return data
diff --git a/tests/libraries/security_api/bodyRequests.py b/tests/libraries/security_api/bodyRequests.py
new file mode 100644
index 0000000..6adcc4c
--- /dev/null
+++ b/tests/libraries/security_api/bodyRequests.py
@@ -0,0 +1,96 @@
+def create_service_security_body(notification_destination, aef_id=None, api_id=None):
+    data = {
+        "notificationDestination": notification_destination,
+        "supportedFeatures": "fffffff",
+        "securityInfo": [{
+            "authenticationInfo": "authenticationInfo",
+            "authorizationInfo": "authorizationInfo",
+            "interfaceDetails": {
+                "ipv4Addr": "127.0.0.1",
+                "securityMethods": ["PSK"],
+                "port": 5248
+            },
+            "prefSecurityMethods": ["PSK", "PKI", "OAUTH"],
+        }
+        ],
+        "websockNotifConfig": {
+            "requestWebsocketUri": True,
+            "websocketUri": "websocketUri"
+        },
+        "requestTestNotification": True
+    }
+
+    if aef_id != None and api_id != None:
+        data['securityInfo'].append({
+            "authenticationInfo": "authenticationInfo",
+            "authorizationInfo": "authorizationInfo",
+            "prefSecurityMethods": ["PSK", "PKI", "OAUTH"],
+            "aefId": aef_id,
+            "apiId": api_id
+        })
+
+    return data
+
+
+def create_service_security_from_discover_response(notification_destination, discover_response):
+    data = {
+        "notificationDestination": notification_destination,
+        "supportedFeatures": "fffffff",
+        "securityInfo": [],
+        "websockNotifConfig": {
+            "requestWebsocketUri": True,
+            "websocketUri": "websocketUri"
+        },
+        "requestTestNotification": True
+    }
+    service_api_descriptions = discover_response.json()['serviceAPIDescriptions']
+    for service_api_description in service_api_descriptions:
+        for aef_profile in service_api_description['aefProfiles']:
+            data['securityInfo'].append({
+                "authenticationInfo": "authenticationInfo",
+                "authorizationInfo": "authorizationInfo",
+                "prefSecurityMethods": ["PSK", "PKI", "OAUTH"],
+                "aefId": aef_profile['aefId'],
+                "apiId": service_api_description['apiId']
+            })
+    return data
+
+
+def create_security_notification_body(api_invoker_id, api_ids, cause="OVERLIMIT_USAGE", aef_id=None):
+    # cause must be one of [ OVERLIMIT_USAGE, UNEXPECTED_REASON ]
+    data = {
+        "apiIds": api_ids,
+        "apiInvokerId": api_invoker_id,
+        "cause": cause
+    }
+
+    if isinstance(api_ids,list):
+        data['apiIds'] = api_ids
+    else:
+        data['apiIds'] = [ api_ids ]
+
+    if aef_id != None:
+        data['aefId'] = aef_id
+    
+
+    return data
+
+
+def create_access_token_req_body(client_id, scope, client_secret=None,grant_type="client_credentials"):
+    data = {
+        "client_id": client_id,
+        "grant_type": grant_type,
+        "scope": scope
+    }
+
+    if client_secret != None:
+        data['client_secret'] = client_secret
+
+    return data
+
+def get_api_ids_from_discover_response(discover_response):
+    api_ids=[]
+    service_api_descriptions = discover_response.json()['serviceAPIDescriptions']
+    for service_api_description in service_api_descriptions:
+        api_ids.append(service_api_description['apiId'])
+    return api_ids
diff --git a/tests/requirements.txt b/tests/requirements.txt
new file mode 100644
index 0000000..71b55e2
--- /dev/null
+++ b/tests/requirements.txt
@@ -0,0 +1,7 @@
+# Requirements file for tests.
+robotframework-mongodb-library==3.2
+requests==2.28.1
+configparser==5.3.0
+redis==4.3.4
+rfc3987==1.3.8
+robotframework-httpctrl
\ No newline at end of file
diff --git a/tests/resources/api_invoker_management_requests/apiInvokerManagementRequests.robot b/tests/resources/api_invoker_management_requests/apiInvokerManagementRequests.robot
new file mode 100644
index 0000000..117cfd1
--- /dev/null
+++ b/tests/resources/api_invoker_management_requests/apiInvokerManagementRequests.robot
@@ -0,0 +1,4 @@
+*** Settings ***
+Resource    /opt/robot-tests/tests/resources/common.resource
+Resource    /opt/robot-tests/tests/resources/common/basicRequests.robot
+
diff --git a/tests/resources/common.resource b/tests/resources/common.resource
new file mode 100644
index 0000000..b111127
--- /dev/null
+++ b/tests/resources/common.resource
@@ -0,0 +1,84 @@
+*** Settings ***
+Library     /opt/robot-tests/tests/libraries/helpers.py
+Variables    /opt/robot-tests/tests/libraries/environment.py
+Resource    /opt/robot-tests/tests/resources/common/basicRequests.robot
+
+
+*** Variables ***
+${INVOKER_USERNAME}             ROBOT_TESTING_INVOKER
+${PROVIDER_USERNAME}            ROBOT_TESTING_PROVIDER
+${APF_PROVIDER_USERNAME}        APF_${PROVIDER_USERNAME}
+${AEF_PROVIDER_USERNAME}        AEF_${PROVIDER_USERNAME}
+${AMF_PROVIDER_USERNAME}        AMF_${PROVIDER_USERNAME}
+
+${INVOKER_NOT_REGISTERED}       not-valid
+${INVOKER_ROLE}                 invoker
+${PROVIDER_ROLE}                provider
+
+${CAPIF_HOSTNAME}               capifcore
+${CAPIF_VAULT}                  vault
+${CAPIF_VAULT_PORT}             8200
+${CAPIF_VAULT_TOKEN}            read-ca-token
+${CAPIF_REGISTER}               register
+${CAPIF_REGISTER_PORT}          8084
+${CAPIF_HTTP_PORT}
+${CAPIF_HTTPS_PORT}
+${CAPIF_IP}                     127.0.0.1
+${CAPIF_CALLBACK_IP}            host.docker.internal
+${CAPIF_CALLBACK_PORT}          8086
+
+${DISCOVER_URL}                 /service-apis/v1/allServiceAPIs?api-invoker-id=
+
+
+*** Keywords ***
+Reset Testing Environment
+    Log    Db capif.invokerdetails collection will be removed in order to isolate each test.
+
+    #Clean Test Information By HTTP Requests
+    Clean Test Information
+
+Check Location Header
+    [Documentation]    This keyword will check location header at response according to regular expression provided as argument
+    [Arguments]    ${resp}    ${regular_expression}
+
+    ${event_url}=    Parse Url    ${resp.headers['Location']}
+
+    Should Match Regexp    ${event_url.path}    ${regular_expression}
+    RETURN    ${event_url}
+
+Check Event Location Header
+    [Arguments]    ${resp}
+
+    ${event_url}=    Check Location Header    ${resp}    ${LOCATION_EVENT_RESOURCE_REGEX}
+
+    ${subscriber_id}    ${subscription_id}=    Get Subscriber And Subscription From Location    ${event_url.path}
+
+    RETURN    ${subscriber_id}    ${subscription_id}
+
+Check Problem Details
+    [Arguments]    ${resp}    &{input_parameters}
+    Check Variable    ${resp.json()}    ProblemDetails
+    FOR    ${input}    IN    @{input_parameters}
+        Log    ${input}=${input_parameters['${input}']}
+        Should Match    "${resp.json()['${input}']}"    "${input_parameters['${input}']}"
+    END
+
+Check Response Variable Type And Values
+    [Arguments]    ${resp}    ${status_code}    ${variable_type}    &{input_parameters}
+    Status Should Be    ${status_code}    ${resp}
+    Check Variable    ${resp.json()}    ${variable_type}
+    FOR    ${input}    IN    @{input_parameters}
+        Log    ${input}=${input_parameters['${input}']}
+        Should Match Regexp    "${resp.json()['${input}']}"    "${input_parameters['${input}']}"
+    END
+
+Remove Keys From Object
+    [Arguments]    ${input}    @{keys_to_remove}
+
+    ${filtered_input}=    Remove Keys From Object Helper    ${input}    ${keys_to_remove}
+
+    RETURN    ${filtered_input}
+
+Test ${TEST NAME} Currently Not Supported
+    Log    Test "${TEST NAME}" Currently not supported    WARN
+    Skip    Test "${TEST NAME}" Currently not supported
diff --git a/tests/resources/common/basicRequests.robot b/tests/resources/common/basicRequests.robot
new file mode 100644
index 0000000..1d8d695
--- /dev/null
+++ b/tests/resources/common/basicRequests.robot
@@ -0,0 +1,593 @@
+*** Settings ***
+Documentation       This resource file contains the basic requests used by Capif. NGINX_HOSTNAME and CAPIF_AUTH can be set as global variables, depends on environment used
+
+Library             RequestsLibrary
+Library             Collections
+Library             OperatingSystem
+Library             XML
+
+
+*** Variables ***
+${CAPIF_AUTH}                           ${EMPTY}
+${CAPIF_BEARER}                         ${EMPTY}
+
+${LOCATION_INVOKER_RESOURCE_REGEX}
+...                                     ^/api-invoker-management/v1/onboardedInvokers/[0-9a-zA-Z]+
+${LOCATION_EVENT_RESOURCE_REGEX}
+...                                     ^/capif-events/v1/[0-9a-zA-Z]+/subscriptions/[0-9a-zA-Z]+
+${LOCATION_INVOKER_RESOURCE_REGEX}
+...                                     ^/api-invoker-management/v1/onboardedInvokers/[0-9a-zA-Z]+
+${LOCATION_PUBLISH_RESOURCE_REGEX}
+...                                     ^/published-apis/v1/[0-9a-zA-Z]+/service-apis/[0-9a-zA-Z]+
+${LOCATION_SECURITY_RESOURCE_REGEX}
+...                                     ^/capif-security/v1/trustedInvokers/[0-9a-zA-Z]+
+${LOCATION_PROVIDER_RESOURCE_REGEX}
+...                                     ^/api-provider-management/v1/registrations/[0-9a-zA-Z]+
+${LOCATION_LOGGING_RESOURCE_REGEX}
+...                                     ^/api-invocation-logs/v1/[0-9a-zA-Z]+/logs/[0-9a-zA-Z]+
+
+${INVOKER_ROLE}                         invoker
+${AMF_ROLE}                             amf
+${APF_ROLE}                             apf
+${AEF_ROLE}                             aef
+
+
+*** Keywords ***
+Create CAPIF Session
+    [Documentation]    Create needed session and headers.
+    ...    If server input data is set to NONE, it will try to use NGINX_HOSTNAME variable.
+    [Arguments]    ${server}=${NONE}    ${access_token}=${NONE}    ${verify}=${NONE}    ${vault_token}=${NONE}
+
+    IF    "${server}" != "${NONE}"
+        Create Session    apisession    ${server}    verify=${verify}
+    END
+
+    ${headers}=    Create Dictionary
+    IF    "${access_token}" != "${NONE}"
+        ${headers}=    Create Dictionary    Authorization=Bearer ${access_token}
+    END
+
+    IF    "${vault_token}" != "${NONE}"
+        ${headers}=    Create Dictionary    X-Vault-Token    ${vault_token}
+    END
+
+    RETURN    ${headers}
+
+Post Request Capif
+    [Timeout]    60s
+    [Arguments]
+    ...    ${endpoint}
+    ...    ${json}=${NONE}
+    ...    ${server}=${NONE}
+    ...    ${access_token}=${NONE}
+    ...    ${auth}=${NONE}
+    ...    ${verify}=${FALSE}
+    ...    ${cert}=${NONE}
+    ...    ${username}=${NONE}
+    ...    ${data}=${NONE}
+
+    ${headers}=    Create CAPIF Session    ${server}    ${access_token}    ${verify}
+
+    IF    '${username}' != '${NONE}'
+        ${cert}=    Set variable    ${{ ('${username}.crt','${username}.key') }}
+    END
+
+    ${resp}=    POST On Session
+    ...    apisession
+    ...    ${endpoint}
+    ...    headers=${headers}
+    ...    json=${json}
+    ...    expected_status=any
+    ...    verify=${verify}
+    ...    cert=${cert}
+    ...    data=${data}
+    RETURN    ${resp}
+
+Get Request Capif
+    [Timeout]    60s
+    [Arguments]
+    ...    ${endpoint}
+    ...    ${server}=${NONE}
+    ...    ${access_token}=${NONE}
+    ...    ${auth}=${NONE}
+    ...    ${verify}=${FALSE}
+    ...    ${cert}=${NONE}
+    ...    ${username}=${NONE}
+
+    ${headers}=    Create CAPIF Session    ${server}    ${access_token}
+
+    IF    '${username}' != '${NONE}'
+        ${cert}=    Set variable    ${{ ('${username}.crt','${username}.key') }}
+    END
+
+    ${resp}=    GET On Session
+    ...    apisession
+    ...    ${endpoint}
+    ...    headers=${headers}
+    ...    expected_status=any
+    ...    verify=${verify}
+    ...    cert=${cert}
+    RETURN    ${resp}
+
+Get CA Vault
+    [Timeout]    60s
+    [Arguments]
+    ...    ${endpoint}
+    ...    ${server}=${NONE}
+    ...    ${access_token}=${NONE}
+    ...    ${auth}=${NONE}
+    ...    ${verify}=${FALSE}
+    ...    ${cert}=${NONE}
+    ...    ${username}=${NONE}
+
+    ${headers}=    Create CAPIF Session    ${server}    ${access_token}    vault_token=${CAPIF_VAULT_TOKEN}
+
+    IF    '${username}' != '${NONE}'
+        ${cert}=    Set variable    ${{ ('${username}.crt','${username}.key') }}
+    END
+
+    ${resp}=    GET On Session
+    ...    apisession
+    ...    ${endpoint}
+    ...    headers=${headers}
+    ...    expected_status=any
+    ...    verify=${verify}
+    ...    cert=${cert}
+    RETURN    ${resp}
+    RETURN    ${response}
+
+Put Request Capif
+    [Timeout]    60s
+    [Arguments]
+    ...    ${endpoint}
+    ...    ${json}=${NONE}
+    ...    ${server}=${NONE}
+    ...    ${access_token}=${NONE}
+    ...    ${auth}=${NONE}
+    ...    ${verify}=${FALSE}
+    ...    ${cert}=${NONE}
+    ...    ${username}=${NONE}
+
+    ${headers}=    Create CAPIF Session    ${server}    ${access_token}
+
+    IF    '${username}' != '${NONE}'
+        ${cert}=    Set variable    ${{ ('${username}.crt','${username}.key') }}
+    END
+
+    ${resp}=    PUT On Session
+    ...    apisession
+    ...    ${endpoint}
+    ...    headers=${headers}
+    ...    json=${json}
+    ...    expected_status=any
+    ...    verify=${verify}
+    ...    cert=${cert}
+
+    RETURN    ${resp}
+
+Patch Request Capif
+    [Timeout]    60s
+    [Arguments]
+    ...    ${endpoint}
+    ...    ${json}=${NONE}
+    ...    ${server}=${NONE}
+    ...    ${access_token}=${NONE}
+    ...    ${auth}=${NONE}
+    ...    ${verify}=${FALSE}
+    ...    ${cert}=${NONE}
+    ...    ${username}=${NONE}
+
+    ${headers}=    Create CAPIF Session    ${server}    ${access_token}
+
+    IF    '${username}' != '${NONE}'
+        ${cert}=    Set variable    ${{ ('${username}.crt','${username}.key') }}
+    END
+
+    ${resp}=    PATCH On Session
+    ...    apisession
+    ...    ${endpoint}
+    ...    headers=${headers}
+    ...    json=${json}
+    ...    expected_status=any
+    ...    verify=${verify}
+    ...    cert=${cert}
+
+    RETURN    ${resp}
+
+Delete Request Capif
+    [Timeout]    60s
+    [Arguments]
+    ...    ${endpoint}
+    ...    ${server}=${NONE}
+    ...    ${access_token}=${NONE}
+    ...    ${auth}=${NONE}
+    ...    ${verify}=${FALSE}
+    ...    ${cert}=${NONE}
+    ...    ${username}=${NONE}
+
+    ${headers}=    Create CAPIF Session    ${server}    ${access_token}
+
+    IF    '${username}' != '${NONE}'
+        ${cert}=    Set variable    ${{ ('${username}.crt','${username}.key') }}
+    END
+
+    ${resp}=    DELETE On Session
+    ...    apisession
+    ...    ${endpoint}
+    ...    headers=${headers}
+    ...    expected_status=any
+    ...    verify=${verify}
+    ...    cert=${cert}
+
+    RETURN    ${resp}
+
+Register User At Jwt Auth
+    [Arguments]    ${username}    ${role}    ${password}=password    ${description}=Testing
+
+    ${cn}=    Set Variable    ${username}
+    # Create certificate and private_key for this machine.
+    IF    "${role}" == "${INVOKER_ROLE}"
+        ${cn}=    Set Variable    invoker
+        ${csr_request}=    Create User Csr    ${username}    ${cn}
+        Log    inside if cn=${cn}
+    ELSE
+        ${csr_request}=    Set Variable    ${None}
+    END
+
+    Log    cn=${cn}
+
+    &{body}=    Create Dictionary
+    ...    password=${password}
+    ...    username=${username}
+    ...    role=${role}
+    ...    description=${description}
+    ...    cn=${cn}
+
+    Create Session    jwtsession    ${CAPIF_HTTPS_REGISTER_URL}    verify=False    disable_warnings=1
+
+    ${resp}=    POST On Session    jwtsession    /register    json=${body}
+
+    Should Be Equal As Strings    ${resp.status_code}    201
+
+    ${get_auth_response}=    Get Auth For User    ${username}    ${password}
+
+    ${register_user_info}=    Create Dictionary
+    ...    netappID=${resp.json()['id']}
+    ...    csr_request=${csr_request}
+    ...    &{resp.json()}
+    ...    &{get_auth_response}
+
+    Log Dictionary    ${register_user_info}
+
+    IF    "ca_root" in @{register_user_info.keys()}
+        Store In File    ca.crt    ${register_user_info['ca_root']}
+    END
+
+    IF    "cert" in @{register_user_info.keys()}
+        Store In File    ${username}.crt    ${register_user_info['cert']}
+    END
+    IF    "private_key" in @{register_user_info.keys()}
+        Store In File    ${username}.key    ${register_user_info['private_key']}
+    END
+
+    RETURN    ${register_user_info}
+
+Register User At Jwt Auth Provider
+    [Arguments]    ${username}    ${role}    ${password}=password    ${description}=Testing
+
+    ${apf_username}=    Set Variable    APF_${username}
+    ${aef_username}=    Set Variable    AEF_${username}
+    ${amf_username}=    Set Variable    AMF_${username}
+
+    # Create a certificate for each kind of role under provider
+    ${csr_request}=    Create User Csr    ${username}    provider
+
+    ${apf_csr_request}=    Create User Csr    ${apf_username}    apf
+    ${aef_csr_request}=    Create User Csr    ${aef_username}    aef
+    ${amf_csr_request}=    Create User Csr    ${amf_username}    amf
+
+    # Register provider
+    &{body}=    Create Dictionary
+    ...    password=${password}
+    ...    username=${username}
+    ...    role=${role}
+    ...    description=${description}
+    ...    cn=${username}
+
+    Create Session    jwtsession    ${CAPIF_HTTPS_REGISTER_URL}    verify=False    disable_warnings=1
+
+    ${resp}=    POST On Session    jwtsession    /register    json=${body}
+
+    Should Be Equal As Strings    ${resp.status_code}    201
+
+    # Get Auth to obtain access_token
+    ${get_auth_response}=    Get Auth For User    ${username}    ${password}
+
+    ${register_user_info}=    Create Dictionary
+    ...    netappID=${resp.json()['id']}
+    ...    csr_request=${csr_request}
+    ...    apf_csr_request=${apf_csr_request}
+    ...    aef_csr_request=${aef_csr_request}
+    ...    amf_csr_request=${amf_csr_request}
+    ...    apf_username=${apf_username}
+    ...    aef_username=${aef_username}
+    ...    amf_username=${amf_username}
+    ...    &{resp.json()}
+    ...    &{get_auth_response}
+
+    Log Dictionary    ${register_user_info}
+
+    RETURN    ${register_user_info}
+
+Get Auth For User
+    [Arguments]    ${username}    ${password}
+
+    &{body}=    Create Dictionary    username=${username}    password=${password}
+
+    ${resp}=    POST On Session    jwtsession    /getauth    json=${body}
+
+    Should Be Equal As Strings    ${resp.status_code}    200
+
+    # Should Be Equal As Strings    ${resp.json()['message']}    Certificate created successfuly
+
+    RETURN    ${resp.json()}
+
+# Clean Test Information By HTTP Requests
+#    Create Session    jwtsession    ${CAPIF_HTTP_URL}    verify=True
+
+#    ${resp}=    DELETE On Session    jwtsession    /testdata
+#    Should Be Equal As Strings    ${resp.status_code}    200
+
+Clean Test Information
+    ${capif_users_dict}=    Call Method    ${CAPIF_USERS}    get_capif_users_dict
+
+    ${register_users}=    Call Method    ${CAPIF_USERS}    get_register_users
+
+    ${keys}=    Get Dictionary Keys    ${capif_users_dict}
+
+    FOR    ${key}    IN    @{keys}
+        ${value}=    Get From Dictionary    ${capif_users_dict}    ${key}
+        ${resp}=    Delete Request Capif
+        ...    ${key}
+        ...    server=${CAPIF_HTTPS_URL}
+        ...    verify=ca.crt
+        ...    username=${value}
+
+        Status Should Be    204    ${resp}
+
+        Call Method    ${CAPIF_USERS}    remove_capif_users_entry    ${key}
+    END
+
+    FOR    ${user}    IN    @{register_users}
+        &{body}=    Create Dictionary
+        ...    password=password
+        ...    username=${user}
+
+        Create Session    jwtsession    ${CAPIF_HTTPS_REGISTER_URL}    verify=False    disable_warnings=1
+
+        ${resp}=    DELETE On Session    jwtsession    /remove    json=${body}
+
+        Should Be Equal As Strings    ${resp.status_code}    204
+
+        Call Method    ${CAPIF_USERS}    remove_register_users_entry    ${user}
+    END
+
+Remove entity
+    [Arguments]   ${entity_user}   ${certificate_name}=${entity_user}
+
+    ${capif_users_dict}=    Call Method    ${CAPIF_USERS}    get_capif_users_dict
+
+    ${register_users}=    Call Method    ${CAPIF_USERS}    get_register_users
+
+    Log Dictionary    ${capif_users_dict}
+    Log List    ${register_users}
+    ${keys}=    Get Dictionary Keys    ${capif_users_dict}
+
+    FOR    ${key}    IN    @{keys}
+        ${value}=    Get From Dictionary    ${capif_users_dict}    ${key}
+        IF   "${value}" == "${certificate_name}"
+            ${resp}=    Delete Request Capif
+            ...    ${key}
+            ...    server=${CAPIF_HTTPS_URL}
+            ...    verify=ca.crt
+            ...    username=${value}
+
+            Status Should Be    204    ${resp}
+
+            Call Method    ${CAPIF_USERS}    remove_capif_users_entry    ${key}
+        END
+    END
+
+    &{body}=    Create Dictionary
+    ...    password=password
+    ...    username=${entity_user}
+
+    Create Session    jwtsession    ${CAPIF_HTTPS_REGISTER_URL}    verify=False    disable_warnings=1
+
+    ${resp}=    DELETE On Session    jwtsession    /remove    json=${body}
+
+    Should Be Equal As Strings    ${resp.status_code}    204
+
+    Call Method    ${CAPIF_USERS}    remove_register_users_entry    ${entity_user}
+
+    Log Dictionary    ${capif_users_dict}
+    Log List    ${register_users}
+
+
+Invoker Default Onboarding
+    [Arguments]    ${invoker_username}=${INVOKER_USERNAME}
+    ${register_user_info}=    Register User At Jwt Auth
+    ...    username=${INVOKER_USERNAME}    role=${INVOKER_ROLE}
+
+    # Send Onboarding Request
+    ${request_body}=    Create Onboarding Notification Body
+    ...    http://${CAPIF_CALLBACK_IP}:${CAPIF_CALLBACK_PORT}/netapp_callback
+    ...    ${register_user_info['csr_request']}
+    ...    ${INVOKER_USERNAME}
+    ${resp}=    Post Request Capif
+    ...    ${register_user_info['ccf_onboarding_url']}
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    access_token=${register_user_info['access_token']}
+
+    Set To Dictionary    ${register_user_info}    api_invoker_id=${resp.json()['apiInvokerId']}
+    Log Dictionary    ${register_user_info}
+
+    # Assertions
+    Status Should Be    201    ${resp}
+    Check Variable    ${resp.json()}    APIInvokerEnrolmentDetails
+    Check Location Header    ${resp}    ${LOCATION_INVOKER_RESOURCE_REGEX}
+    # Store dummy signede certificate
+    Store In File    ${INVOKER_USERNAME}.crt    ${resp.json()['onboardingInformation']['apiInvokerCertificate']}
+
+    ${url}=    Parse Url    ${resp.headers['Location']}
+
+    RETURN    ${register_user_info}    ${url}    ${request_body}
+
+Provider Registration
+    [Arguments]    ${register_user_info}
+
+    # Create provider Registration Body
+    ${apf_func_details}=    Create Api Provider Function Details
+    ...    ${register_user_info['apf_username']}
+    ...    ${register_user_info['apf_csr_request']}
+    ...    APF
+    ${aef_func_details}=    Create Api Provider Function Details
+    ...    ${register_user_info['aef_username']}
+    ...    ${register_user_info['aef_csr_request']}
+    ...    AEF
+    ${amf_func_details}=    Create Api Provider Function Details
+    ...    ${register_user_info['amf_username']}
+    ...    ${register_user_info['amf_csr_request']}
+    ...    AMF
+    ${api_prov_funcs}=    Create List    ${apf_func_details}    ${aef_func_details}    ${amf_func_details}
+
+    ${request_body}=    Create Api Provider Enrolment Details Body
+    ...    ${register_user_info['access_token']}
+    ...    ${api_prov_funcs}
+
+    # Register Provider
+    ${resp}=    Post Request Capif
+    ...    /api-provider-management/v1/registrations
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    access_token=${register_user_info['access_token']}
+
+    # Check Results
+    Check Response Variable Type And Values    ${resp}    201    APIProviderEnrolmentDetails
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_PROVIDER_RESOURCE_REGEX}
+
+    Log Dictionary    ${resp.json()}
+
+    FOR    ${prov}    IN    @{resp.json()['apiProvFuncs']}
+        Log Dictionary    ${prov}
+        Store In File    ${prov['apiProvFuncInfo']}.crt    ${prov['regInfo']['apiProvCert']}
+        IF    "${prov['apiProvFuncRole']}" == "APF"
+            Set To Dictionary    ${register_user_info}    apf_id=${prov['apiProvFuncId']}
+        ELSE IF    "${prov['apiProvFuncRole']}" == "AEF"
+            Set To Dictionary    ${register_user_info}    aef_id=${prov['apiProvFuncId']}
+        ELSE IF    "${prov['apiProvFuncRole']}" == "AMF"
+            Set To Dictionary    ${register_user_info}    amf_id=${prov['apiProvFuncId']}
+        ELSE
+            Fail    "${prov['apiProvFuncRole']} is not valid role"
+        END
+    END
+
+    Set To Dictionary
+    ...    ${register_user_info}
+    ...    provider_enrollment_details=${request_body}
+    ...    resource_url=${resource_url}
+    ...    provider_register_response=${resp}
+
+    RETURN    ${register_user_info}
+
+Provider Default Registration
+    # Register Provider
+    ${register_user_info}=    Register User At Jwt Auth Provider
+    ...    username=${PROVIDER_USERNAME}    role=${PROVIDER_ROLE}
+
+    ${register_user_info}=    Provider Registration    ${register_user_info}
+
+    Log Dictionary    ${register_user_info}
+    RETURN    ${register_user_info}
+
+Publish Service Api
+    [Arguments]    ${register_user_info_provider}    ${service_name}=service_1
+
+    ${request_body}=    Create Service Api Description    ${service_name}    ${register_user_info_provider['aef_id']}
+    ${resp}=    Post Request Capif
+    ...    /published-apis/v1/${register_user_info_provider['apf_id']}/service-apis
+    ...    json=${request_body}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${register_user_info_provider['apf_username']}
+
+    Check Response Variable Type And Values    ${resp}    201    ServiceAPIDescription
+    Dictionary Should Contain Key    ${resp.json()}    apiId
+    ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_PUBLISH_RESOURCE_REGEX}
+
+    RETURN    ${resp.json()}    ${resource_url}    ${request_body}
+
+Basic ACL registration
+    [Arguments]    ${create_security_context}=${True}
+    # Register APF
+    ${register_user_info_provider}=    Provider Default Registration
+
+    Call Method
+    ...    ${CAPIF_USERS}
+    ...    update_capif_users_dicts
+    ...    ${register_user_info_provider['resource_url'].path}
+    ...    ${AMF_PROVIDER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${PROVIDER_USERNAME}
+
+    ${service_api_description_published}    ${resource_url}    ${request_body}=    Publish Service Api
+    ...    ${register_user_info_provider}
+    ...    service_1
+
+    # Store apiId1
+    ${serviceApiId}=    Set Variable    ${service_api_description_published['apiId']}
+
+    # Retrieve Services 1
+    ${resp}=    Get Request Capif
+    ...    /published-apis/v1/${register_user_info_provider['apf_id']}/service-apis/${serviceApiId}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${APF_PROVIDER_USERNAME}
+
+    Check Response Variable Type And Values    ${resp}    200    ServiceAPIDescription
+    Dictionaries Should Be Equal    ${resp.json()}    ${service_api_description_published}
+
+    # Default Invoker Registration and Onboarding
+    ${register_user_info_invoker}    ${url}    ${request_body}=    Invoker Default Onboarding
+
+    Call Method    ${CAPIF_USERS}    update_capif_users_dicts    ${url.path}    ${INVOKER_USERNAME}
+    Call Method    ${CAPIF_USERS}    update_register_users    ${INVOKER_USERNAME}
+
+    # Test
+    ${discover_response}=    Get Request Capif
+    ...    ${DISCOVER_URL}${register_user_info_invoker['api_invoker_id']}&aef-id=${register_user_info_provider['aef_id']}
+    ...    server=${CAPIF_HTTPS_URL}
+    ...    verify=ca.crt
+    ...    username=${INVOKER_USERNAME}
+
+    Check Response Variable Type And Values    ${discover_response}    200    DiscoveredAPIs
+
+    IF    ${create_security_context} == ${True}
+        # create Security Context
+        ${request_body}=    Create Service Security From Discover Response
+        ...    http://${CAPIF_HOSTNAME}:${CAPIF_HTTP_PORT}/test
+        ...    ${discover_response}
+        ${resp}=    Put Request Capif
+        ...    /capif-security/v1/trustedInvokers/${register_user_info_invoker['api_invoker_id']}
+        ...    json=${request_body}
+        ...    server=${CAPIF_HTTPS_URL}
+        ...    verify=ca.crt
+        ...    username=${INVOKER_USERNAME}
+        # Check Service Security
+        Check Response Variable Type And Values    ${resp}    201    ServiceSecurity
+        ${resource_url}=    Check Location Header    ${resp}    ${LOCATION_SECURITY_RESOURCE_REGEX}
+    END
+
+    RETURN    ${register_user_info_invoker}    ${register_user_info_provider}    ${service_api_description_published}
diff --git a/tests/resources/common/httpServer.robot b/tests/resources/common/httpServer.robot
new file mode 100644
index 0000000..7105dc1
--- /dev/null
+++ b/tests/resources/common/httpServer.robot
@@ -0,0 +1,2 @@
+*** Settings ***
+Library           HttpLibrary
diff --git a/tests/resources/common/httpServerCtrl.robot b/tests/resources/common/httpServerCtrl.robot
new file mode 100644
index 0000000..8782d19
--- /dev/null
+++ b/tests/resources/common/httpServerCtrl.robot
@@ -0,0 +1,3 @@
+*** Settings ***
+
+Library         String
diff --git a/tools/open_api_script/generate_all_capif_apis.sh b/tools/open_api_script/generate_all_capif_apis.sh
new file mode 100755
index 0000000..0b5393c
--- /dev/null
+++ b/tools/open_api_script/generate_all_capif_apis.sh
@@ -0,0 +1,92 @@
+#!/bin/bash
+
+ENDPOINTS=()
+SERVICE_NAMES=()
+COMPOSITE_PROJECT=CAPIF-composite-test2
+OUTPUT_HOST_BASE_DIRECTORY=out/CAPIF-composite-test2
+OUTPUT_DOCKER_BASE_DIRECTORY=/gen/$OUTPUT_HOST_BASE_DIRECTORY
+DOCKER_COMPOSE_FILENAME=$OUTPUT_HOST_BASE_DIRECTORY/docker-compose-test.yml
+NGINX_CONF_FILE=$OUTPUT_HOST_BASE_DIRECTORY/nginx.conf
+
+echo "docker compose file: $DOCKER_COMPOSE_FILENAME"
+mkdir -p $OUTPUT_HOST_BASE_DIRECTORY
+
+# rm $DOCKER_COMPOSE_FILENAME || true
+cat > $DOCKER_COMPOSE_FILENAME << EOF
+services:
+EOF
+
+function createPythonServer {
+    SWAGGER_FILE=$1
+    API_NAME=$(basename -s .yaml $SWAGGER_FILE)
+    ENDPOINT=$(awk '/- url: /{ print $3 }' $SWAGGER_FILE|awk -F / '{ print $2}')
+    OUTPUT=$OUTPUT_DOCKER_BASE_DIRECTORY/$API_NAME/
+    echo "SWAGGER_FILE: $SWAGGER_FILE"
+    echo "API_NAME: $API_NAME"
+    echo "ENDPOINT: $ENDPOINT"
+    echo "OUTPUT DIRECTORY: $OUTPUT"
+    ENDPOINTS+=($ENDPOINT)
+    SERVICE_NAME=$(echo $ENDPOINT | sed 's/-/_/g')
+    # SERVICE_NAMES+=($SERVICE_NAME)
+    ./run-in-docker.sh generate -i $SWAGGER_FILE \
+       -g python-flask \
+       -o $OUTPUT \
+       --package-name=$SERVICE_NAME
+    cat >> $DOCKER_COMPOSE_FILENAME << EOF
+  $ENDPOINT:
+    build: $API_NAME/.
+    expose:
+      - "8080"
+EOF
+}
+
+
+CAPIF_FILES=$(ls capif|awk '/TS29222/{  print "capif/"$0 }')
+for CAPIF_FILE in ${CAPIF_FILES[*]}
+do
+createPythonServer $CAPIF_FILE
+done
+
+cat >> $DOCKER_COMPOSE_FILENAME << EOF
+  nginx:
+    image: nginx:latest
+    volumes:
+      - ./nginx.conf:/etc/nginx/nginx.conf:ro
+    ports:
+      - "8080:8080"
+    depends_on:
+EOF
+
+for endpoint in ${ENDPOINTS[*]}
+do
+cat >> $DOCKER_COMPOSE_FILENAME << EOF
+      - $endpoint
+EOF
+done
+
+cat > $NGINX_CONF_FILE << EOF
+user  nginx;
+
+events {
+    worker_connections   1000;
+}
+http {
+        server {
+              listen 8080;
+EOF
+
+
+for endpoint in ${ENDPOINTS[*]}
+do
+cat >> $NGINX_CONF_FILE << EOF
+              location /$endpoint {
+                proxy_pass http://$endpoint:8080;
+              }
+EOF
+done
+
+cat >> $NGINX_CONF_FILE << EOF
+        }
+}
+EOF
+
diff --git a/tools/robot/Dockerfile b/tools/robot/Dockerfile
new file mode 100644
index 0000000..49cea17
--- /dev/null
+++ b/tools/robot/Dockerfile
@@ -0,0 +1,100 @@
+FROM harbor.elevenpaths.com/dockerhub-proxy/library/ubuntu:20.04
+LABEL maintainer="Jorge Moratinos Salcines <jorge.moratinossalcines@telefonica.com>"
+LABEL version="2.0"
+LABEL description="Docker to run Robot Framework"
+
+ENV ROBOT_DIRECTORY=/opt/robot-tests
+ENV ROBOT_COMMON_DIRECTORY=$ROBOT_DIRECTORY/common
+ENV ROBOT_TESTS_DIRECTORY=$ROBOT_DIRECTORY/tests
+ENV ROBOT_RESULTS_DIRECTORY=$ROBOT_DIRECTORY/results
+
+
+# Create directories structure
+RUN mkdir $ROBOT_DIRECTORY
+RUN mkdir $ROBOT_COMMON_DIRECTORY
+RUN mkdir $ROBOT_TESTS_DIRECTORY
+RUN mkdir $ROBOT_RESULTS_DIRECTORY
+
+
+# Create Volumes for docker
+# VOLUME $ROBOT_DIRECTORY
+VOLUME $ROBOT_COMMON_DIRECTORY
+VOLUME $ROBOT_TESTS_DIRECTORY
+VOLUME $ROBOT_RESULTS_DIRECTORY
+
+WORKDIR $ROBOT_DIRECTORY
+
+ENV DEBIAN_FRONTEND=noninteractive
+
+# Install dependencies
+RUN apt-get update
+RUN apt-get upgrade -y
+RUN apt-get install -y --no-install-recommends  \
+    software-properties-common \
+    build-essential \
+    bash \
+    bash-completion \
+    libxml2 \
+    libxslt-dev \
+    curl \
+    yarn \
+    less \
+    dpkg \
+    wget \
+    python3 \
+    python3-dev \
+    libxslt-dev \
+    libffi-dev \
+    python3-pip \
+    python3-venv \
+    python2.7-dev \
+    libssl-dev \
+    libldap2-dev libsasl2-dev ldap-utils slapd tox lcov valgrind\
+    tshark
+
+RUN add-apt-repository ppa:deadsnakes/ppa
+RUN apt-get update
+RUN apt-get install -y --fix-missing python3.10 python3.10-venv python3.10-dev
+
+
+RUN mkdir /opt/venv
+RUN python3.10 -m venv /opt/venv
+
+ADD basicRequirements.txt /root/
+
+ADD basicRobotInstall.sh /root/
+RUN chmod a+x /root/basicRobotInstall.sh \
+    && /root/basicRobotInstall.sh /root/basicRequirements.txt
+RUN sed -i 's/\/bin\/ash/\/bin\/bash/g' /etc/passwd
+
+ADD entrypoint.sh /root/
+ADD linter_entrypoint.sh /root/
+ADD featdoc_entrypoint.sh /root/
+ADD libdoc_entrypoint.sh /root/
+
+
+RUN sed  -i 's|ROBOT_DIRECTORY|'$ROBOT_DIRECTORY'|g' /root/entrypoint.sh
+RUN sed  -i 's|ROBOT_TESTS_DIRECTORY|'$ROBOT_TESTS_DIRECTORY'|g' /root/entrypoint.sh
+RUN sed  -i 's|ROBOT_COMMON_DIRECTORY|'$ROBOT_COMMON_DIRECTORY'|g' /root/entrypoint.sh
+RUN sed  -i 's|ROBOT_RESULTS_DIRECTORY|'$ROBOT_RESULTS_DIRECTORY'|g' /root/entrypoint.sh
+
+RUN sed  -i 's|ROBOT_DIRECTORY|'$ROBOT_DIRECTORY'|g' /root/linter_entrypoint.sh
+RUN sed  -i 's|ROBOT_TESTS_DIRECTORY|'$ROBOT_TESTS_DIRECTORY'|g' /root/linter_entrypoint.sh
+RUN sed  -i 's|ROBOT_COMMON_DIRECTORY|'$ROBOT_COMMON_DIRECTORY'|g' /root/linter_entrypoint.sh
+
+
+RUN sed  -i 's|ROBOT_DIRECTORY|'$ROBOT_DIRECTORY'|g' /root/featdoc_entrypoint.sh
+RUN sed  -i 's|ROBOT_TESTS_DIRECTORY|'$ROBOT_TESTS_DIRECTORY'|g' /root/featdoc_entrypoint.sh
+RUN sed  -i 's|ROBOT_COMMON_DIRECTORY|'$ROBOT_COMMON_DIRECTORY'|g' /root/featdoc_entrypoint.sh
+
+RUN sed  -i 's|ROBOT_DIRECTORY|'$ROBOT_DIRECTORY'|g' /root/libdoc_entrypoint.sh
+RUN sed  -i 's|ROBOT_TESTS_DIRECTORY|'$ROBOT_TESTS_DIRECTORY'|g' /root/libdoc_entrypoint.sh
+RUN sed  -i 's|ROBOT_COMMON_DIRECTORY|'$ROBOT_COMMON_DIRECTORY'|g' /root/libdoc_entrypoint.sh
+
+
+RUN chmod a+x /root/entrypoint.sh
+RUN chmod a+x /root/linter_entrypoint.sh
+RUN chmod a+x /root/featdoc_entrypoint.sh
+RUN chmod a+x /root/libdoc_entrypoint.sh
+
+ENTRYPOINT [ "/root/entrypoint.sh" ]
diff --git a/tools/robot/README.md b/tools/robot/README.md
new file mode 100644
index 0000000..91e8caa
--- /dev/null
+++ b/tools/robot/README.md
@@ -0,0 +1,37 @@
+# Usage
+
+In order to achieve independence of underlying machine we build a docker with robot binary to use this tool in a deacoplated, static and controlled way.
+
+## Generate robot-test docker image
+
+To generate container unit use the following
+
+The image will be built and pushed to artifact.
+
+The docker image is stored at dockerhub.hi.inet/5ghacking/robot-test-image:latest
+
+# To build image
+
+Under "robot" directory, execute this:
+
+docker build . -t dockerhub.hi.inet/5ghacking/robot-test-image:latest
+
+## To run test with container
+```
+docker run -t --rm 
+       -v <ROBOT_COMMON_DIRECTORY>:/opt/robot-tests/common 
+       -v <ROBOT_TESTS_DIRECTORY>:/opt/robot-tests/tests 
+       dockerhub.hi.inet/5ghacking/robot-test-image:latest
+       <RELATIVE_PATH_TO_TEST>
+```
+
+If RELATIVE_PATH_TO_TEST is not set, it will execute alll tests placed in <ROBOT_TEST_DIRECTORY>, in other case, robot.test should be call relate to <ROBOT_TEST_DIRECTORY>
+
+# To run bash in container
+```
+docker run -ti --entrypoint=/bin/bash --rm 
+       -v <ROBOT_COMMON_DIRECTORY>:/opt/robot-tests/common 
+       -v <ROBOT_TESTS_DIRECTORY>:/opt/robot-tests/tests 
+       dockerhub.hi.inet/5ghacking/robot-test-image:latest
+
+```
diff --git a/tools/robot/basicRequirements.txt b/tools/robot/basicRequirements.txt
new file mode 100644
index 0000000..8775227
--- /dev/null
+++ b/tools/robot/basicRequirements.txt
@@ -0,0 +1,101 @@
+# Requirements needed when generating releases. See BUILD.rst for details.
+appdirs==1.4.4
+argh==0.26.2
+arrow==1.2.3
+async-generator==1.10
+async-timeout==4.0.2
+attrs==22.1.0
+bcrypt==4.0.1
+beautifulsoup4==4.11.1
+binaryornot==0.4.4
+bson==0.5.10
+certifi==2021.10.8
+cffi==1.15.1
+chardet==5.0.0
+charset-normalizer==2.0.12
+click==8.0.1
+configparser==5.3.0
+cookiecutter==2.1.1
+coverage==4.5.4
+cryptography==38.0.1
+Deprecated==1.2.13
+distlib==0.3.6
+dnspython==2.2.1
+docutils==0.19
+exceptiongroup==1.0.0rc9
+filelock==3.8.0
+flake8==3.9.2
+h11==0.14.0
+robotframework-httpctrl==0.3.1
+idna==3.4
+iniconfig==1.1.1
+invoke==1.6.0
+ipaddress==1.0.23
+Jinja2==3.1.2
+jinja2-time==0.2.0
+lxml==4.9.1
+MarkupSafe==2.1.1
+mccabe==0.6.1
+numpy==1.23.4
+outcome==1.2.0
+packaging==21.3
+pandas==1.5.1
+paramiko==2.11.0
+pathtools==0.1.2
+platformdirs==2.5.2
+pluggy==0.13.1
+psutil==5.9.3
+py==1.11.0
+pyasn1==0.4.8
+pyasn1-modules==0.2.8
+pycodestyle==2.7.0
+pycparser==2.21
+pyflakes==2.3.1
+PyGithub==1.56
+PyJWT==2.6.0
+pymongo==4.3.2
+PyNaCl==1.5.0
+pyOpenSSL==22.1.0
+pyparsing==3.0.9
+PySocks==1.7.1
+pytest==6.2.4
+python-dateutil==2.8.2
+python-ldap==3.4.3
+python-slugify==6.1.2
+pythonping==1.1.3
+pytz==2022.5
+PyYAML==6.0
+redis==4.3.4
+rellu==0.7
+requests==2.28.1
+rfc3987==1.3.8
+robotframework==6.0
+robotframework-lint==1.1
+robotframework-mongodb-library==3.2
+robotframework-pythonlibcore==3.0.0
+robotframework-requests==0.9.3
+robotframework-seleniumlibrary==6.0.0
+robotframework-sshlibrary==3.8.0
+robotremoteserver==1.1
+scp==0.14.4
+selenium==4.5.0
+six==1.16.0
+sniffio==1.3.0
+sortedcontainers==2.4.0
+soupsieve==2.3.2.post1
+sshconf==0.2.5
+text-unidecode==1.3
+toml==0.10.2
+tomli==2.0.1
+tox==3.26.0
+tqdm==4.64.1
+trio==0.22.0
+trio-websocket==0.9.2
+typing-extensions==3.10.0.2
+urllib3==1.26.12
+virtualenv==20.16.5
+watchdog==0.9.0
+webdrivermanager==0.10.0
+wrapt==1.14.1
+wsproto==1.2.0
+xlrd==2.0.1
\ No newline at end of file
diff --git a/tools/robot/basicRobotInstall.sh b/tools/robot/basicRobotInstall.sh
new file mode 100644
index 0000000..511821f
--- /dev/null
+++ b/tools/robot/basicRobotInstall.sh
@@ -0,0 +1,7 @@
+#!/bin/bash
+echo "Installing basic software related with robotFramework"
+source /opt/venv/bin/activate; 
+pip install --upgrade pip
+pip install --upgrade robotframework;
+pip install -r $1 
+echo "Robot framework installed"
diff --git a/tools/robot/doc_entrypoint.sh b/tools/robot/doc_entrypoint.sh
new file mode 100755
index 0000000..9595c0b
--- /dev/null
+++ b/tools/robot/doc_entrypoint.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+source /opt/venv/bin/activate;
+BASE_DIRECTORY=ROBOT_DIRECTORY
+BASE_REQ_FILE=$BASE_DIRECTORY/requirements.txt
+COMMON_REQ_FILE=ROBOT_COMMON_DIRECTORY/requirements.txt
+TESTS_REQ_FILE=ROBOT_TESTS_DIRECTORY/requirements.txt
+
+ARGUMENTS=
+OPTIONS=
+
+while [ -n "$1" ]; do # while loop starts
+
+        case "$1" in
+
+
+        --*)
+                OPTIONS+="$1 $2 "
+                shift
+                ;;
+
+        *) ARGUMENTS+="ROBOT_TESTS_DIRECTORY/$1 " ;;
+        esac
+        shift
+done
+
+if [[ -f "$BASE_REQ_FILE" ]]; then
+    rm $BASE_REQ_FILE
+fi
+
+echo '# Requirements file for tests.' > $BASE_REQ_FILE
+
+if [[ -f "$COMMON_REQ_FILE" ]]; then
+    cat $COMMON_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+if [[ -f "$TESTS_REQ_FILE" ]]; then
+    cat $TESTS_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+cat $BASE_REQ_FILE | sort | uniq > $BASE_REQ_FILE.tmp ; mv $BASE_REQ_FILE.tmp $BASE_REQ_FILE
+
+if [ -z "$ARGUMENTS" ]
+then
+      ARGUMENTS="ROBOT_TESTS_DIRECTORY/"
+fi
+
+pip install -r $BASE_REQ_FILE
+python3 -m robot.testdoc $OPTIONS $ARGUMENTS
diff --git a/tools/robot/entrypoint.sh b/tools/robot/entrypoint.sh
new file mode 100644
index 0000000..d889a7a
--- /dev/null
+++ b/tools/robot/entrypoint.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+source /opt/venv/bin/activate;
+BASE_DIRECTORY=ROBOT_DIRECTORY
+BASE_REQ_FILE=$BASE_DIRECTORY/requirements.txt
+COMMON_REQ_FILE=ROBOT_COMMON_DIRECTORY/requirements.txt
+TESTS_REQ_FILE=ROBOT_TESTS_DIRECTORY/requirements.txt
+
+ARGUMENTS=
+OPTIONS=
+
+while [ -n "$1" ]; do # while loop starts
+
+        case "$1" in
+
+
+        --*)
+                OPTIONS+="$1 $2 "
+                shift
+                ;;
+
+        *) ARGUMENTS+="ROBOT_TESTS_DIRECTORY/$1 " ;;
+        esac
+        shift
+done
+
+if [[ -f "$BASE_REQ_FILE" ]]; then
+    rm $BASE_REQ_FILE
+fi
+
+echo '# Requirements file for tests.' > $BASE_REQ_FILE
+
+if [[ -f "$COMMON_REQ_FILE" ]]; then
+    cat $COMMON_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+if [[ -f "$TESTS_REQ_FILE" ]]; then
+    cat $TESTS_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+cat $BASE_REQ_FILE | sort | uniq > $BASE_REQ_FILE.tmp ; mv $BASE_REQ_FILE.tmp $BASE_REQ_FILE
+
+if [ -z "$ARGUMENTS" ]
+then
+      ARGUMENTS="ROBOT_TESTS_DIRECTORY/"
+fi
+
+pip install -r $BASE_REQ_FILE
+robot -d ROBOT_RESULTS_DIRECTORY --xunit xunit.xml $OPTIONS $ARGUMENTS
diff --git a/tools/robot/featdoc_entrypoint.sh b/tools/robot/featdoc_entrypoint.sh
new file mode 100755
index 0000000..9595c0b
--- /dev/null
+++ b/tools/robot/featdoc_entrypoint.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+source /opt/venv/bin/activate;
+BASE_DIRECTORY=ROBOT_DIRECTORY
+BASE_REQ_FILE=$BASE_DIRECTORY/requirements.txt
+COMMON_REQ_FILE=ROBOT_COMMON_DIRECTORY/requirements.txt
+TESTS_REQ_FILE=ROBOT_TESTS_DIRECTORY/requirements.txt
+
+ARGUMENTS=
+OPTIONS=
+
+while [ -n "$1" ]; do # while loop starts
+
+        case "$1" in
+
+
+        --*)
+                OPTIONS+="$1 $2 "
+                shift
+                ;;
+
+        *) ARGUMENTS+="ROBOT_TESTS_DIRECTORY/$1 " ;;
+        esac
+        shift
+done
+
+if [[ -f "$BASE_REQ_FILE" ]]; then
+    rm $BASE_REQ_FILE
+fi
+
+echo '# Requirements file for tests.' > $BASE_REQ_FILE
+
+if [[ -f "$COMMON_REQ_FILE" ]]; then
+    cat $COMMON_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+if [[ -f "$TESTS_REQ_FILE" ]]; then
+    cat $TESTS_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+cat $BASE_REQ_FILE | sort | uniq > $BASE_REQ_FILE.tmp ; mv $BASE_REQ_FILE.tmp $BASE_REQ_FILE
+
+if [ -z "$ARGUMENTS" ]
+then
+      ARGUMENTS="ROBOT_TESTS_DIRECTORY/"
+fi
+
+pip install -r $BASE_REQ_FILE
+python3 -m robot.testdoc $OPTIONS $ARGUMENTS
diff --git a/tools/robot/libdoc_entrypoint.sh b/tools/robot/libdoc_entrypoint.sh
new file mode 100755
index 0000000..186c721
--- /dev/null
+++ b/tools/robot/libdoc_entrypoint.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+source /opt/venv/bin/activate;
+BASE_DIRECTORY=ROBOT_DIRECTORY
+BASE_REQ_FILE=$BASE_DIRECTORY/requirements.txt
+COMMON_REQ_FILE=ROBOT_COMMON_DIRECTORY/requirements.txt
+TESTS_REQ_FILE=ROBOT_TESTS_DIRECTORY/requirements.txt
+
+ARGUMENTS=
+OPTIONS=
+
+while [ -n "$1" ]; do # while loop starts
+
+        case "$1" in
+
+
+        --*)
+                OPTIONS+="$1 $2 "
+                shift
+                ;;
+
+        *) ARGUMENTS+="ROBOT_TESTS_DIRECTORY/$1 " ;;
+        esac
+        shift
+done
+
+if [[ -f "$BASE_REQ_FILE" ]]; then
+    rm $BASE_REQ_FILE
+fi
+
+echo '# Requirements file for tests.' > $BASE_REQ_FILE
+
+if [[ -f "$COMMON_REQ_FILE" ]]; then
+    cat $COMMON_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+if [[ -f "$TESTS_REQ_FILE" ]]; then
+    cat $TESTS_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+cat $BASE_REQ_FILE | sort | uniq > $BASE_REQ_FILE.tmp ; mv $BASE_REQ_FILE.tmp $BASE_REQ_FILE
+
+if [ -z "$ARGUMENTS" ]
+then
+      ARGUMENTS="ROBOT_TESTS_DIRECTORY/"
+fi
+
+pip install -r $BASE_REQ_FILE
+python3 -m robot.libdoc $OPTIONS $ARGUMENTS
diff --git a/tools/robot/linter_entrypoint.sh b/tools/robot/linter_entrypoint.sh
new file mode 100755
index 0000000..803719a
--- /dev/null
+++ b/tools/robot/linter_entrypoint.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+source /opt/venv/bin/activate;
+BASE_DIRECTORY=ROBOT_DIRECTORY
+BASE_REQ_FILE=$BASE_DIRECTORY/requirements.txt
+COMMON_REQ_FILE=ROBOT_COMMON_DIRECTORY/requirements.txt
+TESTS_REQ_FILE=ROBOT_TESTS_DIRECTORY/requirements.txt
+
+ARGUMENTS=
+OPTIONS=
+
+while [ -n "$1" ]; do # while loop starts
+
+        case "$1" in
+
+
+        --*)
+                OPTIONS+="$1 $2 "
+                shift
+                ;;
+
+        *) ARGUMENTS+="ROBOT_TESTS_DIRECTORY/$1 " ;;
+        esac
+        shift
+done
+
+if [[ -f "$BASE_REQ_FILE" ]]; then
+    rm $BASE_REQ_FILE
+fi
+
+echo '# Requirements file for tests.' > $BASE_REQ_FILE
+
+if [[ -f "$COMMON_REQ_FILE" ]]; then
+    cat $COMMON_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+if [[ -f "$TESTS_REQ_FILE" ]]; then
+    cat $TESTS_REQ_FILE >> $BASE_REQ_FILE
+fi
+
+cat $BASE_REQ_FILE | sort | uniq > $BASE_REQ_FILE.tmp ; mv $BASE_REQ_FILE.tmp $BASE_REQ_FILE
+
+if [ -z "$ARGUMENTS" ]
+then
+      ARGUMENTS="ROBOT_TESTS_DIRECTORY/"
+fi
+
+pip install -r $BASE_REQ_FILE
+rflint $OPTIONS $ARGUMENTS
-- 
GitLab