ca-certificates-mozilla-2.30-21.1<>,%8\HE/=„^XS G3Wz%6'=,@](N%ӫk5:оΙ~SRYYՄ7M÷w +gOm~t79YfXxNhj(? ՕvoX>9M d K~w6>  2e<Ĝrmo t ^7^fIM1˩1xba,4Q$l@ A4>@l?\d $ @ %+2Qp <     , #''4)))*q(*8*&9+,&:-&>o@oBoFoGoHr@ItXulYupZu|[u\u]x ^bcdIeNfSlUuhvw<xzLCca-certificates-mozilla2.3021.1CA certificates for OpenSSLThis package contains some CA root certificates for OpenSSL extracted from MozillaFirefox\HEcloud135hxopenSUSE Leap 42.3openSUSEMPL-2.0http://bugs.opensuse.orgProductivity/Networking/Securityhttp://www.mozilla.orglinuxnoarchupdate-ca-certificates || trueupdate-ca-certificates || true;g0 O]]v,b %%aS "y k2 kE/<,S-/+ ~j6S  ta  ny+ *3 9"wV8ub+ b  8W[ KyE  4d. |27 1?8jy^A큤A큤A큤\HC\H>\HC\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HC\HC\HC\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HA\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HC\HC\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HC\HC\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\HB\H@\HC\HC\HC\HC\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-certificates-mozilla-2.30-21.1.src.rpmca-certificates-mozilla   /bin/sh/bin/shca-certificatesca-certificatesrpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)3.0.4-14.0-14.4.6-14.11.2\@n@[ug@[?YZhu@V@TZ@T@SvS@S@S @S?RRRo@RQQQ)@Q@@Q@PrPuc@Os@OO@NtN^"@MF@L@KuK@KKKKP@KhJH@meissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.commeissner@suse.comlnussel@suse.demeissner@suse.commeissner@suse.comlnussel@suse.demeissner@suse.comlnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.deidonmez@suse.commeissner@suse.comlnussel@suse.decfarrell@suse.comcoolo@suse.comjengelh@medozas.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.delnussel@suse.de- updated to 2.30 state of the Mozilla NSS Certificate store. (bsc#1121446) - Removed CAs: - AC Raiz Certicamara S.A. - Certplus Root CA G1 - Certplus Root CA G2 - OpenTrust Root CA G1 - OpenTrust Root CA G2 - OpenTrust Root CA G3 - Visa eCommerce Root - Added Root CAs: - Certigna Root CA (email and server auth) - GTS Root R1 (server auth) - GTS Root R2 (server auth) - GTS Root R3 (server auth) - GTS Root R4 (server auth) - OISTE WISeKey Global Root GC CA (email and server auth) - UCA Extended Validation Root (server auth) - UCA Global G2 Root (email and server auth)- updated to 2.26 state of the Mozilla NSS Certificate store. (bsc#1104780) - removed server auth - Certplus Root CA G1 - Certplus Root CA G2 - OpenTrust Root CA G1 - OpenTrust Root CA G2 - OpenTrust Root CA G3 - remove CA - ComSign CA - added new CA - GlobalSign- Updated to 2.24 state of the Mozilla NSS Certificate store. - Removed CAs: * S-TRUST_Universal_Root_CA:2.16.96.86.197.75.35.64.91.100.212.237.37.218.217.214.30.30.crt * TC_TrustCenter_Class_3_CA_II:2.14.74.71.0.1.0.2.229.160.93.214.63.0.81.191.crt * TÜRKTRUST_Elektronik_Sertifika_Hizmet_Sağlayıcısı_H5:2.7.0.142.23.254.36.32.129.crt- Updated to Mozilla certificate version 2.22 (bsc#1071152 bsc#1071390 bsc#1010996) - diff-from-upstream-2.7.patch: removed the old 1024 bit CAs we temporary left in to allow in-chain root certificates as openssl is now able to handle it. - Removed Code Signing rights from a lot of CAs (not listed here). - Removed Server Auth rights from: * AddTrust Low-Value Services Root * Camerfirma Chambers of Commerce Root * Camerfirma Global Chambersign Root * Swisscom Root CA 2 - Removed fully: * AddTrust Public Services Root * AddTrust Public CA Root * AddTrust Qualified CA Root * ApplicationCA - Japanese Government * Buypass Class 2 CA 1 * CA Disig Root R1 * CA WoSign ECC Root * Certification Authority of WoSign G2 * Certinomis - Autorité Racine * Certum Root CA * China Internet Network Information Center EV Certificates Root * CNNIC ROOT * Comodo Secure Services root * Comodo Trusted Services root * ComSign Secured CA * EBG Elektronik Sertifika Hizmet Sağlayıcısı * Equifax Secure CA * Equifax Secure eBusiness CA 1 * Equifax Secure Global eBusiness CA * GeoTrust Global CA 2 * IGC/A * Juur-SK * Microsec e-Szigno Root CA * PSCProcert * Root CA Generalitat Valenciana * RSA Security 2048 v3 * Security Communication EV RootCA1 * Sonera Class 1 Root CA * StartCom Certification Authority * StartCom Certification Authority G2 * S-TRUST Authentication and Encryption Root CA 2005 PN * Swisscom Root CA 1 * Swisscom Root EV CA 2 * TÜBİTAK UEKAE Kök Sertifika Hizmet Sağlayıcısı - Sürüm 3 * TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı * TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6 * UTN USERFirst Hardware Root CA * UTN USERFirst Object Root CA * VeriSign Class 3 Secure Server CA - G2 * Verisign Class 1 Public Primary Certification Authority * Verisign Class 2 Public Primary Certification Authority - G2 * Verisign Class 3 Public Primary Certification Authority * WellsSecure Public Root Certificate Authority * Certification Authority of WoSign * WoSign China - Added: * Amazon Root CA 1: (email protection, server auth) * Amazon Root CA 2: (email protection, server auth) * Amazon Root CA 3: (email protection, server auth) * Amazon Root CA 4: (email protection, server auth) * Certplus Root CA G1: (email protection, server auth) * Certplus Root CA G2: (email protection, server auth) * D-TRUST Root CA 3 2013: (email protection) * GDCA TrustAUTH R5 ROOT: (server auth) * Hellenic Academic and Research Institutions ECC RootCA 2015: (email protection, server auth) * Hellenic Academic and Research Institutions RootCA 2015: (email protection, server auth) * ISRG Root X1: (server auth) * LuxTrust Global Root 2: (server auth) * OpenTrust Root CA G1: (email protection, server auth) * OpenTrust Root CA G2: (email protection, server auth) * OpenTrust Root CA G3: (email protection, server auth) * SSL.com EV Root Certification Authority ECC: (server auth) * SSL.com EV Root Certification Authority RSA R2: (server auth) * SSL.com Root Certification Authority ECC: (email protection, server auth) * SSL.com Root Certification Authority RSA: (email protection, server auth) * Symantec Class 1 Public Primary Certification Authority - G4: (email protection) * Symantec Class 1 Public Primary Certification Authority - G6: (email protection) * Symantec Class 2 Public Primary Certification Authority - G4: (email protection) * Symantec Class 2 Public Primary Certification Authority - G6: (email protection) * TrustCor ECA-1: (email protection, server auth) * TrustCor RootCert CA-1: (email protection, server auth) * TrustCor RootCert CA-2: (email protection, server auth) * TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1: (server auth)- updated to 2.7 (bsc#973042) - renamed: diff-from-upstream-2.2.patch -> diff-from-upstream-2.7.patch - Removed server trust from: AC Raíz Certicámara S.A. ComSign Secured CA NetLock Uzleti (Class B) Tanusitvanykiado NetLock Business (Class B) Root NetLock Expressz (Class C) Tanusitvanykiado TC TrustCenter Class 3 CA II TURKTRUST Certificate Services Provider Root 1 TURKTRUST Certificate Services Provider Root 2 Equifax Secure Global eBusiness CA-1 Verisign Class 4 Public Primary Certification Authority G3 - enable server trust Actalis Authentication Root CA - Deleted CAs: AOL CA A Trust nQual 03 Buypass Class 3 CA 1 CA Disig Digital Signature Trust Co Global CA 1 Digital Signature Trust Co Global CA 3 E Guven Kok Elektronik Sertifika Hizmet Saglayicisi NetLock Expressz (Class C) Tanusitvanykiado NetLock Kozjegyzoi (Class A) Tanusitvanykiado NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado NetLock Uzleti (Class B) Tanusitvanykiado SG TRUST SERVICES RACINE Staat der Nederlanden Root CA TC TrustCenter Class 2 CA II TC TrustCenter Universal CA I TDC Internet Root CA UTN DATACorp SGC Root CA Verisign Class 1 Public Primary Certification Authority - G2 Verisign Class 3 Public Primary Certification Authority Verisign Class 3 Public Primary Certification Authority - G2 - New added CAs: CA WoSign ECC Root Certification Authority of WoSign Certification Authority of WoSign G2 Certinomis - Root CA Certum Trusted Network CA 2 CFCA EV ROOT COMODO RSA Certification Authority DigiCert Assured ID Root G2 DigiCert Assured ID Root G3 DigiCert Global Root G2 DigiCert Global Root G3 DigiCert Trusted Root G4 Entrust Root Certification Authority - EC1 Entrust Root Certification Authority - G2 GlobalSign GlobalSign IdenTrust Commercial Root CA 1 IdenTrust Public Sector Root CA 1 OISTE WISeKey Global Root GB CA QuoVadis Root CA 1 G3 QuoVadis Root CA 2 G3 QuoVadis Root CA 3 G3 Staat der Nederlanden EV Root CA Staat der Nederlanden Root CA - G3 S-TRUST Universal Root CA SZAFIR ROOT CA2 TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H5 TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6 USERTrust ECC Certification Authority USERTrust RSA Certification Authority 沃通根证书- diff-from-upstream-2.2.patch: Temporary reenable some root ca trusts, as openssl/gnutls have trouble using intermediates as root CA. - GTE CyberTrust Global Root - Thawte Server CA - Thawte Premium Server CA - ValiCert Class 1 VA - ValiCert Class 2 VA - RSA Root Certificate 1 - Entrust.net Secure Server CA - America Online Root Certification Authority 1 - America Online Root Certification Authority 2- Updated to 2.2 (bnc#888534) - The following CAs were removed: + America_Online_Root_Certification_Authority_1 + America_Online_Root_Certification_Authority_2 + GTE_CyberTrust_Global_Root + Thawte_Premium_Server_CA + Thawte_Server_CA - The following CAs were added: + COMODO_RSA_Certification_Authority codeSigning emailProtection serverAuth + GlobalSign_ECC_Root_CA_-_R4 codeSigning emailProtection serverAuth + GlobalSign_ECC_Root_CA_-_R5 codeSigning emailProtection serverAuth + USERTrust_ECC_Certification_Authority codeSigning emailProtection serverAuth + USERTrust_RSA_Certification_Authority codeSigning emailProtection serverAuth + VeriSign-C3SSA-G2-temporary-intermediate-after-1024bit-removal - The following CAs were changed: + Equifax_Secure_eBusiness_CA_1 remote code signing and https trust, leave email trust + Verisign_Class_3_Public_Primary_Certification_Authority_-_G2 only trust emailProtection- Updated to 2.1 (bnc#888534) - The following 1024-bit CA certificates were removed - Entrust.net Secure Server Certification Authority - ValiCert Class 1 Policy Validation Authority - ValiCert Class 2 Policy Validation Authority - ValiCert Class 3 Policy Validation Authority - TDC Internet Root CA - The following CA certificates were added: - Certification Authority of WoSign - CA 沃通根证书 - DigiCert Assured ID Root G2 - DigiCert Assured ID Root G3 - DigiCert Global Root G2 - DigiCert Global Root G3 - DigiCert Trusted Root G4 - QuoVadis Root CA 1 G3 - QuoVadis Root CA 2 G3 - QuoVadis Root CA 3 G3 - The Trust Bits were changed for the following CA certificates - Class 3 Public Primary Certification Authority - Class 3 Public Primary Certification Authority - Class 2 Public Primary Certification Authority - G2 - VeriSign Class 2 Public Primary Certification Authority - G3 - AC Raíz Certicámara S.A. - NetLock Uzleti (Class B) Tanusitvanykiado - NetLock Expressz (Class C) Tanusitvanykiado - certdata-temporary-1024.patch: restore some certificates removed from NSS as these are still used for some major sites. openssl is not as clever as NSS in selecting the new ones in the chain correctly.- do not provide openssl-certs, just obsolete it.- in sle11 we bumped openssl-certs version to match the NSS version, so provide/obsolete the current version.- updated certificates to revision 1.97 (bnc#881241) new: "Atos TrustedRoot 2011" (codeSigning emailProtection serverAuth) new: "Tugra Certification Authority" (codeSigning serverAuth) removed: "Firmaprofesional Root CA" removed: "TDC OCES Root CA" new: "TeliaSonera Root CA v1" (emailProtection serverAuth) new: "T-TeleSec GlobalRoot Class 2" (emailProtection serverAuth)- updated certificates to revision 1.96 (bnc#865080) new: ACCVRAIZ1.pem (Spain) (all trusts) new: SG_TRUST_SERVICES_RACINE.pem (Singapore) (email signing only) new: TWCA_Global_Root_CA.pem (Taiwanese) (all trusts) removed: Wells_Fargo_Root_CA.pem- Updated to 1.95 Distrust a sub-ca that issued google.com certificates. "Distrusted AC DG Tresor SSL" (bnc#854367)- fix handling of certificates with same name (bnc#854163)- Updated to 1.94 * new: CA_Disig_Root_R1:2.9.0.195.3.154.238.80.144.110.40.crt server auth, code signing, email signing * new: CA_Disig_Root_R2:2.9.0.146.184.136.219.176.138.193.99.crt server auth, code signing, email signing * new: China_Internet_Network_Information_Center_EV_Certificates_Root:2.4.72.159.0.1.crt server auth * changed: Digital_Signature_Trust_Co._Global_CA_1:2.4.54.112.21.150.crt removed code signing and server auth abilities * changed: Digital_Signature_Trust_Co._Global_CA_3:2.4.54.110.211.206.crt removed code signing and server auth abilities * new: D-TRUST_Root_Class_3_CA_2_2009:2.3.9.131.243.crt server auth * new: D-TRUST_Root_Class_3_CA_2_EV_2009:2.3.9.131.244.crt server auth * removed: Entrust.net_Premium_2048_Secure_Server_CA:2.4.56.99.185.102.crt * new: Entrust.net_Premium_2048_Secure_Server_CA:2.4.56.99.222.248.crt I think the missing flags were adjusted. * removed: Equifax_Secure_eBusiness_CA_2:2.4.55.112.207.181.crt * new: PSCProcert:2.1.11.crt server auth, code signing, email signing * new: Swisscom_Root_CA_2:2.16.30.158.40.232.72.242.229.239.195.124.74.30.90.24.103.182.crt server auth, code signing, email signing * new: Swisscom_Root_EV_CA_2:2.17.0.242.250.100.226.116.99.211.141.253.16.29.4.31.118.202.88.crt server auth, code signing * changed: TC_TrustCenter_Universal_CA_III:2.14.99.37.0.1.0.2.20.141.51.21.2.228.108.244.crt removed all abilities * new: TURKTRUST_Certificate_Services_Provider_Root_2007:2.1.1.crt server auth, code signing * changed: TWCA_Root_Certification_Authority:2.1.1.crt added code signing ability - removed temporary Entrust.net_Premium_2048_Secure_Server_CA.p11-kit override.- update Entrust root attributes to new format used by p11-kit- remove superfluous double quotes from certificate names- add fake basic contraints to Entrust root so p11-kit export the cert (bnc#829471) - add nssckbi.h that matches certdata.txt; make sure package has the correct version number which is currently 1.93. No actual content change in certdata.txt compared to 1.85, it's just that the versioning scheme changed.- use certdata2pem.py from Fedora to extract all certs- use correct 'anchors' subdirectory- new location of CA certificate anchors is /usr/share/ca-certificates/anchors- update certificates to revision 1.87 (bnc#796628) * new "EE Certification Centre Root CA" * new "T-TeleSec GlobalRoot Class 3" * revoke mis-issued intermediate CAs from TURKTRUST- updated certificates to revision 1.85 (bnc#783509) * new "Actalis Authentication Root CA" * new "Trustis FPS Root CA" * new "StartCom Certification Authority" * new "StartCom Certification Authority G2" * new "Buypass Class 2 Root CA" * new "Buypass Class 3 Root CA" * updated: "Sonera Class2 CA": remove code-signing * updated: "thawte Primary Root CA": added code-signing * updated: "Trustis_FPS_Root_CA.pem": added code-signing * updated: VeriSign Class 3 Public Primary Certification Authority - G5": added code-signing, email-protection- update certificates to revision 1.83 (bnc#760503) * new: EC_ACC.pem * new: Hellenic_Academic_and_Research_Institutions_RootCA_2011.pem * new: Security_Communication_RootCA2.pem * removed: TC_TrustCenter_Germany_Class_2_CA.pem * removed: TC_TrustCenter_Germany_Class_3_CA.pem * removed: Verisign_Class_1_Public_Primary_Certification_Authority.1.pem * removed: Verisign_Class_2_Public_Primary_Certification_Authority.pem * removed: Verisign_Class_4_Public_Primary_Certification_Authority_G2.pem - license change to MPL-2.0- license update: MPL-1.1 or GPL-2.0+ or LGPL-2.1+ SPDX format and correct GPL and LGPL tags to include or later- change license to be in spdx.org format- Remove redundant tags/sections from specfile- update certificates to revision 1.76 * new: Go_Daddy_Root_Certificate_Authority_G2.pem * new: Starfield_Root_Certificate_Authority_G2.pem * new: Starfield_Services_Root_Certificate_Authority_G2.pem * new: AffirmTrust_Commercial.pem * new: AffirmTrust_Networking.pem * new: AffirmTrust_Premium.pem * new: AffirmTrust_Premium_ECC.pem * new: Certum_Trusted_Network_CA.pem * new: Certinomis_Autorit_Racine.pem * new: Root_CA_Generalitat_Valenciana.pem * new: A_Trust_nQual_03.pem * new: TWCA_Root_Certification_Authority.pem * removed: DigiNotar_Root_CA.pem (bnc#714931)- update certificates to revision 1.70 * new: AddTrust_Qualified_Certificates_Root.pem * new: Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.pem * new: Chambers_of_Commerce_Root_2008.pem * new: Global_Chambersign_Root_2008.pem * new: Izenpe_com.pem * new: TC_TrustCenter_Universal_CA_III.pem- update certificates to revision 1.65 * new: E_Guven_Kok_Elektronik_Sertifika_Hizmet_Saglayicisi.pem * new: GlobalSign_Root_CA_R3.pem * new: Microsec_e_Szigno_Root_CA_2009.pem * new: Verisign_Class_1_Public_Primary_Certification_Authority.1.pem * new: Verisign_Class_3_Public_Primary_Certification_Authority.1.pem- update certificates to revision 1.64 * removed "RSA Security 1024 V3" certificate- require ca-certificates also for postun- don't output trusted certs by default as it's not supported by gnutls yet and pidgin scans /etc/ssl/certs- update certificates to revision 1.62- extract trustbits as comment as Fedora does - convert to trusted certificates in spec file instead- rename to ca-certificates-mozilla - output trusted certificates - use utf8 in file names- update certificates to revision 1.57 - add script to compare with previous certificates- update certifiates to cvs revision 1.56 - exclude certficates that are not trusted for identifying web sites/bin/sh/bin/shopenssl-certscloud135 1548262981  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~2.30-21.1ca-certificates-mozillaCOPYINGtrustACCVRAIZ1.pemAC_RAIZ_FNMT-RCM.pemActalis_Authentication_Root_CA.pemAddTrust_External_Root.pemAddTrust_Low-Value_Services_Root.pemAffirmTrust_Commercial.pemAffirmTrust_Networking.pemAffirmTrust_Premium.pemAffirmTrust_Premium_ECC.pemAmazon_Root_CA_1.pemAmazon_Root_CA_2.pemAmazon_Root_CA_3.pemAmazon_Root_CA_4.pemAtos_TrustedRoot_2011.pemAutoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.pemBaltimore_CyberTrust_Root.pemBuypass_Class_2_Root_CA.pemBuypass_Class_3_Root_CA.pemCA_Disig_Root_R2.pemCFCA_EV_ROOT.pemCOMODO_Certification_Authority.pemCOMODO_ECC_Certification_Authority.pemCOMODO_RSA_Certification_Authority.pemCamerfirma_Chambers_of_Commerce_Root.pemCamerfirma_Global_Chambersign_Root.pemCertigna.pemCertigna_Root_CA.pemCertinomis_-_Root_CA.pemCertplus_Class_2_Primary_CA.pemCertum_Root_CA.pemCertum_Trusted_Network_CA.pemCertum_Trusted_Network_CA_2.pemChambers_of_Commerce_Root_-_2008.pemComodo_AAA_Services_root.pemCybertrust_Global_Root.pemD-TRUST_Root_CA_3_2013.pemD-TRUST_Root_Class_3_CA_2_2009.pemD-TRUST_Root_Class_3_CA_2_EV_2009.pemDST_Root_CA_X3.pemDeutsche_Telekom_Root_CA_2.pemDigiCert_Assured_ID_Root_CA.pemDigiCert_Assured_ID_Root_G2.pemDigiCert_Assured_ID_Root_G3.pemDigiCert_Global_Root_CA.pemDigiCert_Global_Root_G2.pemDigiCert_Global_Root_G3.pemDigiCert_High_Assurance_EV_Root_CA.pemDigiCert_Trusted_Root_G4.pemDistrust:_O=Egypt_Trust__OU=VeriSign_Trust_Network_=cert_1_3=:2.16.76.0.54.27.229.8.43.169.170.206.116.10.5.62.251.52.p11-kitDistrust:_O=Egypt_Trust__OU=VeriSign_Trust_Network_=cert_2_3=:2.16.62.12.158.135.105.170.149.92.234.35.216.69.158.212.91.81.p11-kitDistrust:_O=Egypt_Trust__OU=VeriSign_Trust_Network_=cert_3_3=:2.16.18.189.38.162.174.51.192.127.36.123.106.88.105.242.10.118.p11-kitE-Tugra_Certification_Authority.pemEC-ACC.pemEE_Certification_Centre_Root_CA.pemEntrust.net_Premium_2048_Secure_Server_CA.pemEntrust_Root_Certification_Authority.pemEntrust_Root_Certification_Authority_-_EC1.pemEntrust_Root_Certification_Authority_-_G2.pemExplicitly_Distrust_DigiNotar_Root_CA.pemExplicitly_Distrusted_DigiNotar_PKIoverheid_G2.pemGDCA_TrustAUTH_R5_ROOT.pemGTS_Root_R1.pemGTS_Root_R2.pemGTS_Root_R3.pemGTS_Root_R4.pemGeoTrust_Global_CA.pemGeoTrust_Primary_Certification_Authority.pemGeoTrust_Primary_Certification_Authority_-_G2.pemGeoTrust_Primary_Certification_Authority_-_G3.pemGeoTrust_Universal_CA.pemGeoTrust_Universal_CA_2.pemGlobalSign_ECC_Root_CA_-_R4.pemGlobalSign_ECC_Root_CA_-_R5.pemGlobalSign_Root_CA.pemGlobalSign_Root_CA_-_R2.pemGlobalSign_Root_CA_-_R3.pemGlobalSign_Root_CA_-_R6.pemGlobal_Chambersign_Root_-_2008.pemGo_Daddy_Class_2_CA.pemGo_Daddy_Root_Certificate_Authority_-_G2.pemHellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.pemHellenic_Academic_and_Research_Institutions_RootCA_2011.pemHellenic_Academic_and_Research_Institutions_RootCA_2015.pemHongkong_Post_Root_CA_1.pemISRG_Root_X1.pemIdenTrust_Commercial_Root_CA_1.pemIdenTrust_Public_Sector_Root_CA_1.pemIzenpe.com.pemLuxTrust_Global_Root_2.pemMITM_subCA_1_issued_by_Trustwave:2.4.107.73.210.5.p11-kitMITM_subCA_2_issued_by_Trustwave:2.4.107.73.210.6.p11-kitMicrosec_e-Szigno_Root_CA_2009.pemNetLock_Arany_=Class_Gold=_Főtanúsítvány.pemNetwork_Solutions_Certificate_Authority.pemOISTE_WISeKey_Global_Root_GA_CA.pemOISTE_WISeKey_Global_Root_GB_CA.pemOISTE_WISeKey_Global_Root_GC_CA.pemQuoVadis_Root_CA.pemQuoVadis_Root_CA_1_G3.pemQuoVadis_Root_CA_2.pemQuoVadis_Root_CA_2_G3.pemQuoVadis_Root_CA_3.pemQuoVadis_Root_CA_3_G3.pemSSL.com_EV_Root_Certification_Authority_ECC.pemSSL.com_EV_Root_Certification_Authority_RSA_R2.pemSSL.com_Root_Certification_Authority_ECC.pemSSL.com_Root_Certification_Authority_RSA.pemSZAFIR_ROOT_CA2.pemSecureSign_RootCA11.pemSecureTrust_CA.pemSecure_Global_CA.pemSecurity_Communication_RootCA2.pemSecurity_Communication_Root_CA.pemSonera_Class_2_Root_CA.pemStaat_der_Nederlanden_EV_Root_CA.pemStaat_der_Nederlanden_Root_CA_-_G2.pemStaat_der_Nederlanden_Root_CA_-_G3.pemStarfield_Class_2_CA.pemStarfield_Root_Certificate_Authority_-_G2.pemStarfield_Services_Root_Certificate_Authority_-_G2.pemSwissSign_Gold_CA_-_G2.pemSwissSign_Platinum_CA_-_G2.pemSwissSign_Silver_CA_-_G2.pemSwisscom_Root_CA_2.pemSymantec_Class_1_Public_Primary_Certification_Authority_-_G4.pemSymantec_Class_1_Public_Primary_Certification_Authority_-_G6.pemSymantec_Class_2_Public_Primary_Certification_Authority_-_G4.pemSymantec_Class_2_Public_Primary_Certification_Authority_-_G6.pemT-TeleSec_GlobalRoot_Class_2.pemT-TeleSec_GlobalRoot_Class_3.pemTUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.pemTURKTRUST_Mis-issued_Intermediate_CA_1:2.2.8.39.p11-kitTURKTRUST_Mis-issued_Intermediate_CA_2:2.2.8.100.p11-kitTWCA_Global_Root_CA.pemTWCA_Root_Certification_Authority.pemTaiwan_GRCA.pemTeliaSonera_Root_CA_v1.pemTrustCor_ECA-1.pemTrustCor_RootCert_CA-1.pemTrustCor_RootCert_CA-2.pemTrustis_FPS_Root_CA.pemUCA_Extended_Validation_Root.pemUCA_Global_G2_Root.pemUSERTrust_ECC_Certification_Authority.pemUSERTrust_RSA_Certification_Authority.pemUTN_USERFirst_Email_Root_CA.pemVeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.pemVeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.pemVeriSign_Universal_Root_Certification_Authority.pemVerisign_Class_1_Public_Primary_Certification_Authority_-_G3.pemVerisign_Class_2_Public_Primary_Certification_Authority_-_G3.pemVerisign_Class_3_Public_Primary_Certification_Authority_-_G3.pemXRamp_Global_CA_Root.pemanchorscertSIGN_ROOT_CA.pemePKI_Root_Certification_Authority.pemthawte_Primary_Root_CA.pemthawte_Primary_Root_CA_-_G2.pemthawte_Primary_Root_CA_-_G3.pem/usr/share/doc/packages//usr/share/doc/packages/ca-certificates-mozilla//usr/share/pki//usr/share/pki/trust/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:9513/openSUSE_Leap_42.3_Update/3160a47e6def8aadef2b106a698646cd-ca-certificates-mozilla.openSUSE_Leap_42.3_Updatedrpmlzma5noarch-suse-linuxdirectoryUTF-8 Unicode textASCII textASCII text, with very long lines1ߖhQ.P?]"k%hv41 GSlUuOl[;9 u8,UIoc+̴V oD%PWd MWÅM^1w40CG \?#rE01N,hQ.V`-.U_ܑA">JN^{JFm).K), ^^ƻ/Ӷar1ܯ;.C!|7zÁL&85' m+~Qj=o@6Ƹ<(" V 'uD} 5a7q4;3KG10vU8= ⵂPQy U$(j8A;%6:@ֈ18 6f suV_>%h5Z^9^kk!I{˴!VP6NN{A6dd =-؂9gOC.(I]ZUl#D~q;ydSɆJ /JwtoGF|6'«w.+~8rbM]oB2;@ڷ9̳yQ"qEPn^|9zdvÏ`aE/WX:%߾% taŰc~zG0 }fyɓË0_܅; zaJk;PV1*qCwC`݄#H'~Dzk{TOc{]xJ¿407{qd5+B[mu rTGBs2 u+*~b3& 0EM_h0t ~8gb"V۞uw n8 aM#b)' M3~TgaKճڡ< *QQr9ƕӿ8k\imG6#$62Q\ ?; jyqnA0ԑ`$"3\cg?')T)W=CEI&/-Q$Wg9bAKF78l+ 3Mwpa`Ll͐v*Vڔc 0β.ksAj݃͊QsAm3#?.E@{JêDU9raVe睖Mz8Λ@!KS>bCKfx4-ׇ^oC7UE wlylm4%ITӑDSN(WZOvd1p<a[4#zBSL<[6?5҂dAK1 .S 4뉞yfM_~Ǩ'$6D8=/ޑ%؝It"-Xrb*7USHb<* Ly IYP+ѵCYii . 0ġ,@# _c6|BÍop&&H#"\0;?ccaξlm=SNFhrnGBvUA~*p O-wƾ5S^؂fie[ p2Nø uƚv: 0k%*j v QO}AJXw)oww9wH[&~s\ NzeS, E1cٴ 0iDX(Q}?򮜑jXgfָE  ]s 10=k3௎9S< =RWf# _~$ :W7o_j[ғ ^4G/2l<}~b6]\]/#ΣmKm], Wk( B}ID![J$V!wx461f *3mklF61A1ndAI2Б8ogJSjFbJ#Y* )|m|(qx3ax'el HucF#6.$;N.uiOT\o0O/0[8ۙA,9U'{[m[8VGd$=__7!XDh4 10dޡNs/, 'qfEX?D@!߄3e- 97p0nm%T:ṁ*"Ͷ/dȾU;+%`&|yO7@q%'hl;!' LB:3:cj5A^{?́H>.ʫ}WcE)5n$FxZcKܮg{dcmD$])FS R;ZnK^Θw[#Z5kv2sZ <9D$d \QGq316Xiyǽ9\M7M/"M98'gCMBv =Iׯ8sƺFsd*x$nzUAb?cbX2Lwe k llWt`kp G"D ZVo. he @lݚHFN@0|Ѯ#>;Jz`.1XlW)7k RG֑<&i;ͥA^⌚6[/h 4veXgg#~O01c(bmb1+}|'&'%* xY#J~0uM6K΂rk@|f2+%w_Fgܿꏢ&9{K=2x鄇N27u߿1Y []'ʍ߿ɖKT^/y<qp>pd9n8{C2t: H|/XoHt+yX}-3/ٌMNIlLCپ̺.N Ģ!VgȢvp/p88l1x9bN|j}&;h:A|Va SS>{R\|rL5j`u8)C*=P߉)յ]>$ǫ:-}\(t Nq^i;]%#(ŐԈѣQ GkB͟vߡ\?5{skk7;s;=ĒC" #*ܜD)3Ȯ:wV"j]!ңc'jZhاɽz^+r%XY(sq"~{Z/2CLߍp+W52y}AUK:!LJEXfG6D!2Q` :F { Uμ2*oWp?yoqzìpL_e|"0w}责Z3&L$Ú(U8/':ĸLD4mޒ.mW2>FJE%䚎! <\- y G_)XM7YDۅHՙv36y!,UP+]љ~tQ"%%V*a;#7ܭd^Em`(q$Yq/2XQ|,.d& jC&ޔDU֧G$rIV'5 s\׼@Y #y_W SlJ+rtqOp/!{N[ks6e2@'ܡru:[ Q.bWs̬~]J &Y;e9, }>D?XB)ZuprFȺkC- Mö`vdDPMX]H iN%C-U\ ޣaL|WZiJz3i@5CZX<9rwDz#3qQXބivHXh0ZPőnyTr-Dkq8caGBfp/ p~|xjZFmk.)+mWX]-ָK\.: );F54a,LzhV+|ό,ے"shh kO~Ff0.-\ZjdNeȗⷄҎl(7CjO^Kw [i.g ^G$3K+9U2( YMU&IGWvaN}(]h8^PU_n#Xb 3.'6ZLi}Nv͹=nFBM Y D]`sEN%ڹ|«gdža{gQ@l,x-~=U:-3j/X%31mk: *ta@M9'šˬZeU 5`AqbnL=GXƇd}GGOmgk5W/߅th08Dn7][5d+7btѽ2$LV]4]E؋teXՠ:1aZ6Kؿ\" ʨu4Y<wwI|! ԞHg~25|WjF"%*$JpҠC0E3Qsw{w?+dT2-ocvϭcfE:j }eš| _U>"Ol\q S β>2v|<L7 -ֶ#(Y`YO]}ֶZE%r; W@Vxw0v=3`7sQic4P!e+ceQ ]sC5r\ r>`ek5ۉ\l2x_^pqy~]YQ+Q36M]NB ɢ&r{?N~9I``5o،kk[FC̏0A0x\dYYW_{3/펬+PMrQ['v;"2i%2@|H^L9Gؠ>CetV9K܏\We|3Q-D oTv9|- Ϣ1IgL0đ6ݻ{o;bX̄UcѓJiw2SЈ')~\dQhAɺFv/bˢ(y|E8D|rM7D<~!|bS\%xFMxs\|(I!I$/`vgwR4O8wFďkŻpoF%Ƭ{hAFju؜M獨&)fEB< [/3>LMHV@hc"/t ^}*vq&LBXeGDSZҼPsV6 /`ۡ-Xtֽ$iuWJ߆U&H_>$)=/xYf1}fs %uW ~kg\x_~M~wT8Kfm H?hK%8 1R3"./*C3FyDn…I6دcءkϥw6_!b+ 9{d=>˞F Z[:H)^o:]".Ѿf3r 휸+?ipr 'UQxKBLdyT7%1>`3J;k(?W)>--j+S-0u .ELl#"bI\7FILs7x hq%@?`lHulu~@A{03e1bWY@;_->+48TK-n{'~[nCGٔxع-T~ۻ^qnܡOuEv{DnT_z= 4n|STyʏR>?|t5p©F$bڎ!ћ[sGzt|N_a*;H4Sf 32BAZ4k.<21uܠ"͉`Y8apkd3⸼qצ>=O*u.3he.],r\SQ~~:wrYΔ7E>M_+Mlq|A,Bgii~|.*.ȝl2%p]U_q$8Uhsh)оo 0l4AN tag5OndZ||-E""1ij6 kzRP?w[A1#8f~ǰO+GӌoӗijȌ^p[\ú ==`jM t/hR6#N!D'Luԉ^)zij)KPϮ _DM^P U=CrA穱gPɈznwUcFt2^1yzǸT( 486ŋ1mui(m\1m9k›y pI5nehNRWA\O\X/' l/e?9N0YswS,4rǖ7r9Ok U&Z\i$:ܕW)-;݃~]'`JŸm–dڛH_/S$ :b͊/}23f]N/ Ͳ,RQ߀(4[֖kaU+uYchOxJJi* rc%߬:?yr@6wR ?JU7[ -Yb>> S #=h9eeYi.(@ȱ+MkLkM[][dCDLjpӴP'KG}ߕE#,W{4^[4*2-oil?NrHpݎz&6>'3k3C} MyMjTIs; dLo57(ߖ `h,t0Cc%k%- 7g%L&iLVKAjU{:/XraM9lUlz?^P{ %GFk&{fJ!{%Bόl;8@\/1YT;_iNHa{I:{8X3\dr#1?C68%HzѰ8DK_Gq@Tכ#W`nw%X1cUCN Xe 4{ة K [IDoմ(8@Ĩn SychSJ_vʻR0sRHjD*;*q`ޣ2}˧"BQ;3+p O p1x{TS g JjO|^v^1pv-T#U? ( FaWǐ'Chwz<I@ˤB|c3X5 >c2Ӟς(J|Cfbu)v Ke 7.e_M'hweʇWzay}xMO_͊UXu'γH)P!{_9gn).=u\>&W)YW-W1SzEmd6p8xm/W8]M5qHvNX[~!X qhyKT D(T-)icXX| RE&6n,.Y&8mՌ**X .]DGE bZ}Ip|)#8xŖev ܝ"HU\%BhqH P3+!8+ v ¼}+ݻH` z)bLR0";b" ]g)O8 ,:ʕ◤D89^?mZVb!h䧏s@x.CNPًkş;Jm8Q&2n'9 mގW}~-q^<ȿ 8Ru ;p1$!j,u8rh'6Y20y'-&lֲ#bbJx,t! Fk,G}Dޔ/@{*rƂ+VHX}K/zk9?xmW{c/7}c; . d%D`.uL T[9W~YGԅ7E$ xx9L5_N[FwBk #DP(e $n[)Rš* >Ϫ=.,Ds̗wS`VZ"sؽ LM x ]/ʼFa=F-+#HdL/Suog!;C,±bx=2'?n5U.NeBlNѓ1U\Yɒr% #jcɺEtW"k0rJ~]1\E*[bw︌y;ӫj_!QRY҇Sc6FÐrFQAlu5W0#~- |wn&Y-J+k-(?U<HoB\Cm1^zn v_х}##vmk=? LZ\TD9Fia}Ӻb->iHЪSqJY{McA'V}z 7k_|zo;! kg|=[`7?6&:+GxW[)} V'ZƛgYcF'Ǿ13* &y>S?-WT&B7sN\"GoS׭7`]1yAXG\hoXƖ?rҘO y4T(W^3H,;-4]*?qA^s C&A|h|eq}q-Z 2XWBW_` RfO~hGRӻm*):$0 Vf~攧%3!â7[9dtNoPŌ@Ǭhb?m Ow,<)~~lNQK+_RT^(6=s'Yk`U0ȡNZ'BuVhA^nHxBOv΅0k5Ǭ 1H!@acSsٟ)o Zd Ҙ[1 J-rXȽ  H+S©*Ic&u71sZߔLz3n,- |hLH[uevFn( ZoԤ(2p,nʻSs=$᢭+SG࿮R|9?j~_WU+ABA?(3z4^ݡ aj}9[|ggV$ sƖWS.@xP(t{ R!2 9@hĎ8($ ׋UJާZz2[3SK;:ZOk^Gd_#'j%J~{A7n<ޅ)HbWM搝|k9ntZ@džN;Z}sJhJDp9xIg?i?{HÏL4ۅX_2s˓QC=Ǖ&e<51=q4`Fu*%_U#3tNI29#_w?֣7!p.[r mT`niBA-έ8(ܝ6nH- _;* `*fo$2a[ۂW]n+JxꅈpZH%5&K\b 64vгԋ/8[]D-cQ _ jfFA2]lc'WRF, f`o @}}6n+Lcⲝ=\{7>v|JROu\}VK^ i]D*bꈗ7İ ֜ղ ( .+3xF$4W_WN<~ڳihxF mڷ*`[`>b=P\3@WT bJ9T&m7I6$ MBSϏhnV盓8NZԈeޝOUqu=D]Vjv10x^y|0o&kſ:)JS\+wR׍2FY~3".A❴frUS]Ẃee'oN9+Kݺ{1UϩHq0KEAQ!09ME@q#jw#>Ķ;H-$/ÃWaP@tIƹ׬u {%{i;!i6 _U̻z", ǭC-UtOn:tXUTQZ,+Q"YY 2=L 8|)v`ֽx1WKDVg=ٔیWL($Sk!c>>Kmb>?;B4 c]<&00%zLS8{kނa~~n`[ Z~^ϱ1jFG\CE,ֿuw~>T{'C]l |n2X;TҊX|l30@W(Uo@A! G&-[;Y>s 9;Eu݇66SxBiI(Lյ5JAQr[6AOt[ӹcebw-B*`Gϯ4FY|(ÜqKV>+8[@My 8g+JK핛jRb!(⬅I˖hZTgĩ.p6pzW Q@&T&Wx] P~J;G(3sNs?zjȚ}4!ED̰k",QVZuY6~u ik|c0d+1I猊Vd_?1>#FD٠Mh9q hI'HuRl`K [J˒{Aߏbh<}JV\oZ7Ј%S~hNEp ! 2ӑM`y,5z ,Q\ܑa:>nȖ%es@ vmim(z/U*v>Ӎ('z᷾-\I>agI:s, "}b OܪwlKg Rr5!fE_N+`pۜ&? /TJzU c:37CHSD컭8Z@ j_&RN{]WcùD8w3v)7:I~g9=^x1F2V;lVD0G -LZ535]0r:@sL8=..J?Fmi}&'l<”0Csސs {ͫ-;:V9,oj=DWL&SgT@MOM-`vHu{ /ݶ^}>=+Gʾ][݂Fhm*<] jii?jv:ї&Jx6 BXCuE߉6\.[ +(X:eJWu:0D(O4>P{@Nmtʄ(pg^^!@^@\uOY#@T x뒖IԦQC:DYrnHf.ցՏJ\z& l_b!X#Ǟ8-m vlXl|Ԏa3M44N:zd3P>?g&D { W bۭn!wI@; Swk UB2^ج3Vš~bNfY]cf5=VgY|\$|lю:c4r:fc;+P;9U _L \ؠY,Xfܣ}VR%NO>GR=U2I "vmnPD*c0uؒXg_zm SCFcqx`&jtYJtut|'Dt:k_NQ˛pNNOKxד [{X"&ۮXPN5"lf=9+7ͨp[ʮBf-U%ѮtI;HR-T:+Im7@LX ?\-ۆjD,YGIpZV5CV'˿O=Sh ^%$ v,p0bZeOրD?xxQ-/5>HHݎ8?: ńFړ2-A[AQ)аn=<̟1;)IZ!=41oUG 'W?c&n~.ܧT?'hbr/#f[j<C0 6N~al {[A@ldۭߋrisb{ C ("^1SOԠ:3}ͬiudFe2\T(4@X^ˤ3{ *b>ڳ60 U&™w)cK{%h6OL-TMP*"_y-R!hq!s9T<=Xcb0z)3++bo_tui)I ة̊~llў*גH~kn}ꩩEضfϻX_3քEu @CBf>Onģ)]?g$ɷP57fV&^?*k{ WƨCXE='qGoi[p~D5R)es|liY̥![.(' )]iы5}@a\Nnp8{14ީ>VgV1&qnzQE]KNOk2ɇ6,O gn7LLdlj{Y=f֔YhBh6M eTg37y[ZP4BibX:74튷Iۭ3?NRKriCGkxcWT\&N^CZߥ?TP ؎v_>S2S:U=m4: v락aMV(`, 섖`˨kr@],8T$i@.gA녜 J x6Rf m=4W*X%& HAu˯xR{ i%}h  =nD-  HX^<>՘RTw(Jh%b)jSW )oKQ'8w^A:cZ\QgCF;dϋ_+˒EŽYGmhR*F$㿤Q#>"T+{ПH)}V&ԙB|IMZt m:#f;˗Q"EMV0!B 5{( 䞫-l2LT0'Jc.bd+;D0RsȢ3Vw~-8='afOЛ۔!X*O^B\I٠!ɀ"T/a=kC Ŗҗ3ɳA)[ p)w r-6REV ,p7|.aBѶQ p`U]rrAIZjq2Tc+%n&[~ʩxdch$?1c0OrNsES6|o\8*˽}`?ٛUB k -ZUh@%4R,ѝU; SblmV$2ؔCcM6hܟ ]{MGI0gak?A&fAnB6T-e9;SrYKۗn]:2)K 3!#r0"3uys) 9H$kbmR-Cay?^Ô.lahzj㍵KhX-=,S,_'~hbUwSt2!JhfHy6b2| &7 =x+.zږu"J [ KsOeGuII0y.9x2FdaJW}ʱU\1^Ϛ M~zԏp) %}@KpW$kX<76c NjrW*$rK;)k03v#TowibJ^Q^'.٫—Oxb-FZNF/ť鮌6LU奁Ѫ{}_&I@b W3 Ly{͹o0ir~8en T^B|WR4L?8ƈ3vG{ŒI@KM |#""u[Jo$ߖ0'ّLC, #f7 0 L Vկ ;Ss5\.GR^0AcM-&E$ezK)Pb[>kg_ɻsc+G5Gx폢w뒅 S̩.(M0 Ih8`LT HxPGp϶#lך;roWPeÆz_Nh|rJ7So;k菕ۃQ2$.TM(ͤG}HY?(q1y:F˕8 & S˒r(EAKݣZFd7 BLݶDf屜ݖ Y V؆8?ܠ`ր 8IfN#A@r wm(LMa~#5`" , lP"5<@a-2zU ,kvV0۬^<2P0X ӱ &9Òb{.+D^SqL5mDLd}qtW+ɟB<"QsxבŮXk Y/Ƽ|(аL0|Z /=-51_vEqS-}:+D/K#oG$yh#QDëDQ'"Ub,<$JCq96 B#Gj3yk_KнL.r[pC7ﶨM8WLsW^^ejHihwptFUJ_Cҭ´Kӈ4%2ܻJ6|X_?C. Zm[\`aۢs2";9f݋v8 l@#4MgCsVԇl&0X,Bg,:0 F8xNmA#':8<% .YU~T7 vPMBo8j welʧlq8C}%z6㳋ſif+ jhQ9 zwj9~R§plD΀Ulzh/2h7cCdKd<#` !ܜLHJt/0~Emh05( y%2 zƨ]6C&e6!wN!+rxf^ f*)P#ԂGL׮>5O~î7R#2i+AӈZ%o< v5w{ϙkD&`,<=L&CFyCV-`%,hB@揬f >!@iP>A>Og!9Q QD@_eb̯`q޹<qwAX'ȿ[0Ƹg^1 DG%@9Zr( &%. qKۯIb 7c0nα1QPnsV~]㓑>:ޠ{> GA%AٲWiΝZ oO' }ZRt5{1ACšVu2u輳,>OIPՖzWUX:c^3|=u%<24 }z'Mۆd<+Cn}6qҪV_1$s)wPq?|\<`:f~N\:U_8*]}b1~qhD U4zdTy`B=N/ez:uv VN:c:M*q+ h?iEFb[k 0$Q͡dM N1~`R'jV1kZ'$#,Fdά+NYGsES k!SJ8_U(pk\Bln50ڊ2@N_^2_I0LGD;X/eSa>*'yHf#5֙ab%(n͈EbkvJ5}ΈZ~wk }q= wfS|dZP/Xzq @op~tn w/*s:)Igl7ru^'*>Bsxi5:@!;Mm^~[Ƌ|ИsA `-Z?ÕKsdOS6bxUPClLQXݻ_ /'`D&we\ڹ ڎ+05͙B)zCTT_ޞT\UY@&o|cHBوְ֦V >Ebbs0k6c5RjLW& ~õ87c$q4YL106F*Ml\FQBqh6i4olwϧG^6SaH{"hA֔܆8=MKxיeC%>[GUY p˿ 2ʣ2نyqBŒ}*/dq y!ξ7*&MDzp 2 L.p#[,X'qҟ  hk"Ӱ)Jg~Uvec߬6w5";nF/z|[ٷF'9ywEIJԨ.pQKsyI$0M~2Iwbr[JK^WӁ"MW/ $[+#4 ^ l406~7l. dk\1@!9R2JL^έŤF'eL⒢G]zۉq5NXF{ri$'|/C+Brod} T PDy-M%cO`h{hg]zG-[yO:p,%Ee~-T'*CRzLDfᡷ[ =+Al{(mK kPqKS 43y"po]CK,d=au4t$ptB-iҷmZ ؆_hoP-6NHpqյn]9hcי< ~5vļ'!fxYplPf`4uAo}#pҷi}jiKѼ%ƅ370˙һ|Ii4&ΈraQ#kSbED+8P-5=G$jE`cAa(.U*.50CUE\ V-F\Zr 6N%T}8j:6`SDO>MLvP x8j\CI@D$WQ6 9/dž9]E@ͻs_,gt,3+3Ng>]S~oFeM<:AUʖX&xe.Jb{T3bdMKi=wTmSC3}{0w%(@mPUԁWh[NIoJx:u[:ځJ)GG. IݵpL>[i#yV`+)bRVK]f ›._ԇ^uCc+ՙos8b (Ap\Ap/‹sSRt%ie>!]<^blI>c/VZ6fT;ӎ7Fvem2 Bk\ (B{~#K"7k#ĈD`HBWC$ƴ9afxz:Ai߁{d]#'%Fꚩ=V:7r1t,.??sʌ1zO$aC'`cpэ=\m=SZ}EӮBd8JwB6 ';0 o"Nb`Hl$L@þCtj1È0bW\YPvxSR"#؊[d5tGH+tX1o5AÊwU^\ňqqյ~ɻ_ºt)b(6~KIX r-QOقb5 d9\瞆F+ztu|I-0кE]pFG ,~`!#Ӱdq`Q|OF{L yY)M%ͪq9G٩@mW$&Aj&H7-M(;wd|k:+IϷ&ؖy=;;B>m?^fs-q4_)ˈ%ZiWjT*Uγnփ{-¾]Hμs ~z5GKf%G]Bl`=`#8\X9ۦ2ju!А85Y_Vo++Ǖ4hr#Vq78EJ4:oa% jwOGM5 ItwۉsO : +0Ɵ+yPCfut_I,IdBC%+Jav;}zXE?Ci+Y^`{~Ѿ,Y FG(2yA=d'n93i=C!-PC,Auڐj&A}Ɨ쮴@F]tf b[QD&Xavl֕vu|}x*[|S#?ߣYR[_q-b o$'rҢԇRZ3l~]a8{k;@C.8٘^_F|لL5#FIj+^z[sq 3϶"yl>7}T53D hxn`F?)^V_ND #=f\ÐE*rh(L6)5GMՃer=*@*^M1}!d 9( 3ͷw\c $hHqZL"1Fե?'?o+E Wn!p|asb.6pV1^ϔN-6~u0/wC HXJ9?agG0 hٮmEg8k_uS0)g㚴C ѣz  RN1(֖y.\S^[FV|>~ʗ(Rzo߄UfreOL~P'5|c hypzSL`VDoD (+%[2 f X & oi/r= b=G?3פt ~K̹5Yb| *8uZ]MyU9 kq$g 26V%y~p"X L:sXNӖ=|Aґ;EZkHg3fZR-K\`2z'# ^Zr+'{4d)̂q 847r+U{*%Vjbᖉ<K G1otw_6mEe.Dj9z@h'?tNn$R=&^QHw b~ofl8 ]4ZTD &DHQxS}B$D7椅:߃Qrf`<ajvLrc8XC1lKdy\wet\*& x=͝%nhd 8B#@K7V0+B1̕VXr{^^ox娝M NW޸|Š?fK#K朤U+܈cJjLCj: ʮJzu#؉m|\k^NY8:F8b]C=-ЙSƝE)y(]8{ d%IOuW*vϵ7 JkW|vH+|ւІ0$W-ZLò %p*rT $M]]83Дg{Kh{/hroGʒD3Z TI0EϷE=:-@žn䍒у0C9s\;Sm`0H)Rn.cu2͚!FQ@ZzOuk}|˻*4FOf"ZcnEs֏N<:"Z]]j I=׭Hk yɹW,m Ya^ FpB T|"1Pi)Y"VeU_rk! o.i mpd4D&8E5BMd*5dxB$|cA&,Q~/'~_'VhXH 8$\(F;I-OW_Ol=ydd3bՍ hz0L8B}H)(o!I#خ"y` :_#;%W/+%7b]\sbgĖG^#PP<W[,帝K~eI@&aཡ`DۃlbOq$XR.+ܢ8.Vp;OXH>b_-59̪QŇ] gV0vոB7ݛZD"~(Toע]aq !%r^H`9$%n[c (/MRm(sWɂ8_TNto&T#d2FI}ܻE]>pȲ)^st!RӅ ?@!Mr*=]9 m!E5js͈˘jizp_/"ăű@RA>7LUDn/~XgeKCZ. 6Ԗ} גjy3,O4u羻gPaW{?C5c`;ஓJESVB0n㖇_,!إa\isNu|&#_d6'a L"L0ŴdU *%t퍚fS~jG&ܘ<s=_0~ӊiy ?+e5EYZȺK5*$C; Cjc'ic<ӂMQ++CoG,*qxĴ(g2$C$5md+x:N xLV[ ثpIެEG  zs~B(UC,+] tuC&"dvgfUoNk,`W9~v@;LPչC %Zrp!D'<ܚ~!.arMdRh!^F,WKk?a bےf'[%=4]{M ]Q-0cX`IT8<12ᳬxp)=-_]Pd?`R29zN,OEPԓ{(Xyz!ZSP!RVnW8/ASLpJ;{ 옜OIf‡mfA/ rRc/ѧ}U٬ƾRZᐮ7@eݚd98{#0c>桢ZںuM}DkªS*J7흊"熉u*Bljb| %2T\8N%WCYӏ|`7 L8AI^ د܃xd$~g1YSєWIjչ޶o@>H#8%h4#A1M2_ʭ~+ 6lH|W^]K/ Nʵ@1WKPj ь#26 yZ9#^ς/ %'!Y )iF-ssPY*[w]V%ݜZg%;Bzt$ 7 1'I@6-a'߯kI[#vmry%]DHeg86[tu1BRNLyr& 6D&Fp_xIɎTB_3ÃdRa }ߎ>,L'wz/L04P/ TvgRɋ#&F{xcֿVvULGW+a5WA{xuU_!OSPW$b>$-նV>+pa/Lp[)N٭#R\.A VG|9F3֚-Ã.X^>xr_&@{dj \:Z  *l"Π ߎ<'] -?$`NBӢY S˵IH60%t%^!@ Q|/:]>^̞ϐxezWlwEH̉,.g{qN64xנ4Y-] ~Q~cW;Oʝp;<*Qm\pmy< az*DH!dB k"}W"KV+|JN0ղ9+yp 8_4N