diff --git a/Dockerfile.controller b/Dockerfile.controller
index cfe8eab..50da121 100644
--- a/Dockerfile.controller
+++ b/Dockerfile.controller
@@ -1,9 +1,10 @@
-FROM alpine:edge
+FROM alpine:3.20
+
 ARG $TARGETARCH
+
 WORKDIR /root
 
-RUN echo "@testing http://dl-cdn.alpinelinux.org/alpine/edge/testing" | tee -a /etc/apk/repositories \
-    && apk add --update --no-cache python3 py3-pillow py3-future py3-jinja2 py3-bottle py3-pip py3-usb imagemagick ttf-opensans libqrencode-tools step-cli openssl bash curl libusb fontconfig ttf-dejavu jq kubectl@testing timg@testing \
+RUN apk add --update --no-cache python3 py3-pillow py3-future py3-jinja2 py3-bottle py3-pip py3-usb imagemagick ttf-opensans libqrencode-tools step-cli openssl bash curl libusb fontconfig ttf-dejavu jq kubectl timg \
     && python3 -m venv /venv && . /venv/bin/activate \
     && pip3 install --no-cache-dir --upgrade brother_ql \
     && curl -sSL https://github.com/pklaus/brother_ql_web/archive/refs/heads/master.tar.gz | tar xz -C /root \
diff --git a/README.md b/README.md
index 6cc61e4..0ddbbcb 100644
--- a/README.md
+++ b/README.md
@@ -31,9 +31,9 @@ work forever, the other URLs and IPs presented in this README are temporary.
 - [Local development](#local-development)
   - [Local development on the UI](#local-development-on-the-ui)
   - [Local development on the controller (that creates PNGs and prints them)](#local-development-on-the-controller-that-creates-pngs-and-prints-them)
-    - [`pem-to-png`](#pem-to-png)
+    - [`cert-card`](#cert-card)
     - [Testing the printer](#testing-the-printer)
-    - [Testing pem-to-png](#testing-pem-to-png)
+    - [Testing cert-card](#testing-cert-card)
 - [Troubleshooting](#troubleshooting)
   - [From the CLI: `usb.core.USBError: [Errno 13] Access denied (insufficient permissions)`](#from-the-cli-usbcoreusberror-errno-13-access-denied-insufficient-permissions)
   - [From the CLI: `usb.core.USBError: [Errno 16] Resource busy`](#from-the-cli-usbcoreusberror-errno-16-resource-busy)
@@ -227,8 +227,7 @@ https://print-your-cert.cert-manager.io
 
 ## Staff: test things
 
-For anyone who is in the cert-manager org and wants to test or debug
-things:
+For anyone who is authorized and wants to test or debug things:
 
 - [Install tailscale](https://tailscale.com/download/).
 - Run `tailscale up`, it should open something in your browser → "Sign in
@@ -243,9 +242,6 @@ things:
   ssh pi@100.121.173.5
   ```
 
-  > The public keys of each cert-manager org member have been added to the
-  > `authorized_keys` of the Pi.
-
 ## Running everything on the Raspberry Pi (on the booth)
 
 Once on the booth, you will need to perform these ten tasks:
@@ -273,29 +269,16 @@ upgrade` on the first day of KubeCon in Amsterdam and ended up spending half
 First, unplug the micro SD card from the Raspberry Pi and plug it into your
 laptop using a micro-SD-to-SD card adaptor.
 
-Then, install Raspberry OS (Debian Bookworm) on the Pi using the Imager program.
-In the Imager program settings, I changed the username to `pi` and the password
-to something secret (usually the default password is `raspberry`, I changed it;
-see the label on the side of the Raspberry Pi).
-
-Then, you will need to mount the micro SD card to your laptop using a
-SD-to-micro-SD adaptor. Once the SD card is mounted, set the following variable
-to where the SD card is mounted:
+Then, install Raspberry OS on the microSD card using the Imager program.
+In the Imager program settings, change the username to `certmanager` and the password
+to something secret.
 
-```sh
-# On macOS:
-PI=/Volumes/bootfs
-```
+Be sure also to enable SSH with password authentication.
 
-Then, enable SSH on the Pi:
-
-```bash
-touch $PI/ssh
-```
+You can also use the imager to setup a WiFi connection, which might be helpful
+with initial setup at home.
 
-There used to be a way to configure the Wifi password without a screen and
-keyboard, but that's not possible anymore with Bookworm
-([source](https://www.raspberrypi.com/documentation/computers/configuration.html#connect-to-a-wireless-network)).
+At the conference, you should be able to use the GUI to set up a WiFi connection.
 
 > If the Wifi doesn't work, somehow SSH into the Pi and run `wpa_cli`:
 >
@@ -322,7 +305,7 @@ keyboard, but that's not possible anymore with Bookworm
 > sudo ifconfig wlan0 up
 > ```
 
-Then, unmount the micro SD card from your laptop and plug it into the Raspberry.
+Then, unmount the micro SD card from your laptop and plug it into the Raspberry Pi.
 
 ### Booth: Set Up Tailscale on the Raspberry Pi
 
@@ -352,8 +335,13 @@ machine with your Tailnet in <https://login.tailscale.com/admin/machines>. That
 way, you can stay logged to your tailnet but still be able to access the
 Raspberry Pi.
 
-Then, go back to your laptop and run the following command to make sure everyone
-in the cert-manager org can SSH into the Pi:
+#### Allowing SSH Access to cert-manager org members
+
+If desired, the script below will allow SSH access to cert-manager org members.
+
+This might be overkill; you can also just download any GitHub user's SSH keys
+using `curl -LO https://github.com/<user>.keys` and then append the contents of
+that file to `.ssh/authorized_keys`.
 
 ```bash
 curl -sH "Authorization: token $(lpass show github.com -p)" https://api.github.com/orgs/cert-manager/members \
@@ -482,8 +470,7 @@ To create the VM `print-your-cert`, you can use the following command:
 > [!NOTE]
 >
 > Use the GCP zone closest to the KubeCon venue. The examples below use
-> `europe-west1-c` (Belgium) since the venue was in Paris (I didn't pick Paris
-> as it doesn't have f1-micro VMs).
+> `europe-west1-c` (Belgium). Try to pick a zone with low CO2 emissions.
 
 > [!NOTE]
 >
@@ -581,6 +568,17 @@ sudo systemctl restart caddy.service
 EOF
 ```
 
+Finally, you'll need to ensure that the tailscale ACLs allow traffic to the pi.
+
+Visit [the Tailscale admin panel](https://login.tailscale.com/admin/acls/file) and set the "hosts" key
+to include the Pi, and ensure that there's an ACL allowing traffic:
+
+```text
+"acls": [
+    {"action": "accept", "users": ["*"], "ports": ["raspberrypi:*"]},
+]
+```
+
 ### Prerequisite: install k3s on the Raspberry Pi
 
 This prerequisite is useful both for local development and for running the
@@ -677,7 +675,7 @@ Now, ssh into the Raspberry Pi and launch the UI:
 # From your laptop.
 ssh pi docker rm -f print-your-cert-ui
 ssh pi docker run -d --restart=always --name print-your-cert-ui --net=host \
-  -v '/home/pi/.kube/config:/home/nonroot/.kube/config' \
+  -v '/home/certmanager/.kube/config:/home/nonroot/.kube/config' \
   ghcr.io/cert-manager/print-your-cert-ui:latest \
   --issuer print-your-cert-ca \
   --issuer-kind ClusterIssuer \
@@ -761,7 +759,7 @@ Now, SSH into the Raspberry Pi and launch the controller:
 ```sh
 ssh pi sudo chmod a+r ~/.kube/config
 ssh pi docker rm -f print-your-cert-controller
-ssh pi docker run -d --restart=always --name print-your-cert-controller --privileged -v /dev/bus/usb:/dev/bus/usb -v /home/pi/.kube/config:/root/.kube/config --net=host ghcr.io/cert-manager/print-your-cert-controller:latest
+ssh pi docker run -d --restart=always --name print-your-cert-controller --privileged -v /dev/bus/usb:/dev/bus/usb -v /home/certmanager/.kube/config:/root/.kube/config --net=host ghcr.io/cert-manager/print-your-cert-controller:latest
 ```
 
 You can also run the "debug" printer UI (brother_ql_web) if you want to make
@@ -933,16 +931,16 @@ To use the guestbook, make sure the UI is running locally too (see above).
 
 ### Local development on the controller (that creates PNGs and prints them)
 
-The controller is made in two pieces: `pem-to-png` that turns one PEM into two
-PNGs, and `print-your-cert-controller` that runs `pem-to-png` every time a
+The controller is made in two pieces: `cert-card` which produces a PNG with the label(s),
+and `print-your-cert-controller` that runs `cert-card` every time a
 certificate object in Kubernetes becomes ready.
 
-#### `pem-to-png`
+#### `cert-card`
 
-pem-to-png is what turns a PEM file into two PNGs: `front.png` and `back.png`.
+`cert-card` which produces a PNG with the label(s)
 
 ```sh
-brew install imagemagick qrencode step svn
+brew install imagemagick qrencode step
 brew install homebrew/cask-fonts/font-open-sans
 brew install homebrew/cask-fonts/font-dejavu
 ```
@@ -950,7 +948,7 @@ brew install homebrew/cask-fonts/font-dejavu
 To run it, for example:
 
 ```sh
-./pem-to-png <<EOF
+./cert-card <<EOF
 -----BEGIN CERTIFICATE-----
 MIICXDCCAgOgAwIBAgIQdPaTuGSUDeosii4dbdLBgTAKBggqhkjOPQQDAjAnMSUw
 IwYDVQQDExxUaGUgY2VydC1tYW5hZ2VyIG1haW50YWluZXJzMB4XDTIyMDUxNjEz
@@ -978,16 +976,16 @@ convert -size 230x30 -background white -font /usr/share/fonts/TTF/OpenSans-Regul
 brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 example.png
 ```
 
-#### Testing pem-to-png
+#### Testing cert-card
 
 ```shell=sh
 openssl genrsa -out ca.key 2048
 openssl req -x509 -new -nodes -key ca.key -utf8 -subj "/CN=Maël Valais <mael@vls.dev>/O=Jetstack" -reqexts v3_req -extensions v3_ca -out ca.crt
 step certificate create "CN=Foo Bar <foo@bar.com>" foo.crt foo.key --ca ca.crt --ca-key ca.key --password-file /dev/null
-pem-to-png <foo.crt
-timg pem-to-png.png
+cert-card <foo.crt
+timg cert-card.png
 read
-brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 pem-to-png.png
+brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 cert-card.png
 ```
 
 ## Troubleshooting
diff --git a/cert-card b/cert-card
index 729af3b..554c3c5 100755
--- a/cert-card
+++ b/cert-card
@@ -5,6 +5,8 @@ set -euo pipefail
 certname=${1:-}
 fetchkey=${2:-}
 
+cardcolor=${3:-"w"}
+
 if [[ -z $certname || -z $fetchkey ]]; then
 	echo "usage: $0 <certname> <fetchkey>"
 fi
@@ -67,32 +69,43 @@ cat >/tmp/crt-$certname
 
 line1=$(
     cat <<EOF
-Thank you for visiting the cert-manager
-booth! We hope you are enjoying
-your time in Paris.
+Thank you for visiting the cert-manager booth
+at KubeCon NA 2024!
+
+We hope you\'re enjoying Salt Lake City!
+
 EOF
 )
 
 line2=$(
     cat <<EOF
-This card is proof that you
-were there! On the back of
-the card, the QR code
-links to your certificate.
+The QR code will allow you to download your
+certificate and sign the guestbook!
+
+$(step certificate inspect --short /tmp/crt-$certname | sed -e 's/\[\(.*\)\]/\n\1/' -e 's/Certificate (\(.*\))/Certificate\nAlgorithm: \1/' | sed 's/^  //')
 EOF
 )
 
 # \( -gravity NorthEast logo.png -resize 160 -background white -alpha remove -alpha off -monochrome \) -geometry +40+20 -composite \
 # \( -gravity East kubecon-eu-2022-logo.png -resize 280 -background white -alpha remove -alpha off -monochrome \) -geometry +80+10 \
-convert -size 696x492 canvas:white \
-    \( -gravity NorthWest -font Open-Sans-Regular -pointsize 22 -fill black -annotate +0-0 "$line1" \) -geometry +0+0 \
-    \( -gravity NorthWest -font Open-Sans-Regular -pointsize 22 -fill black -annotate +0+115 "$line2" \) -geometry +0+0 \
-    \( -gravity SouthWest -font DejaVu-Sans-Mono -pointsize 22 -fill black -annotate +0+0 "$(step certificate inspect --short /tmp/crt-$certname | sed -e 's/\[\(.*\)\]/\n\1/' -e 's/Certificate (\(.*\))/Certificate\nAlgorithm: \1/' | sed 's/^  //')" \) -geometry +0+0 \
-    -background None -layers Flatten front-$certname.png
-
+#convert -size 696x1109 canvas:white \
+#    \( -gravity NorthWest -font Open-Sans-Regular -pointsize 22 -fill black -annotate +0-0 "$line1" \) -geometry +0+0 \
+#    \( -gravity NorthWest -font Open-Sans-Regular -pointsize 22 -fill black -annotate +0+115 "$line2" \) -geometry +0+0 \
+#    \( -gravity NorthEast -font Open-Sans-Regular -pointsize 44 -fill black -annotate +0-0 "$cardcolor" \) -geometry +0+0 \
+#    \( -gravity SouthWest -font DejaVu-Sans-Mono -pointsize 22 -fill black -annotate +0+0 "$(step certificate inspect --short /tmp/crt-$certname | sed -e 's/\[\(.*\)\]/\n\1/' -e 's/Certificate (\(.*\))/Certificate\nAlgorithm: \1/' | sed 's/^  //')" \) -geometry +0+0 \
+#    -background None -layers Flatten front-$certname.png
+#
 # TODO: update this URL
 url="http://print-your-cert.cert-manager.io/certificate?certName=$certname&fetchKey=$fetchkey"
 # url="http://192.168.1.171:8080/certificate?certName=$certname&fetchKey=$fetchkey"
-echo "$url" >&2
-echo "$url" | qrencode --type PNG --margin 4 -o - | convert -size 696x492 canvas:white \
-    \( -gravity Center -monochrome -filter point -interpolate nearest - -resize 492 \) -composite back-$certname.png
+
+echo "$url" | qrencode --type PNG --margin 4 -o - | convert -size 696x1109 canvas:white \
+    \( -gravity SouthWest -font Open-Sans-Regular -pointsize 22 -fill black -annotate +0-0 "$line1" \) -geometry +0+0 \
+    \( -gravity SouthWest -font Open-Sans-Regular -pointsize 22 -fill black -annotate +0+115 "$line2" \) -geometry +0+0 \
+    \( -gravity SouthEast -font Open-Sans-Regular -pointsize 44 -fill black -annotate +0-0 "$cardcolor" \) -geometry +0+0 \
+    \( -gravity SouthEast -annotate +415+415  -monochrome -filter point -interpolate nearest - -resize 492 \) -geometry +0+0 \
+    -background None -layers Flatten front-$certname.png
+
+#echo "$url" >&2
+#echo "$url" | qrencode --type PNG --margin 4 -o - | convert -size 696x1109 canvas:white \
+#    \( -gravity Center -monochrome -filter point -interpolate nearest - -resize 492 \) -composite back-$certname.png
diff --git a/cluster_issuer.yaml b/cluster_issuer.yaml
index cd47aad..e0559b7 100644
--- a/cluster_issuer.yaml
+++ b/cluster_issuer.yaml
@@ -23,7 +23,9 @@ spec:
     organizationalUnits:
     - cert-manager
     countries: # Change for the country you're issuing in!
-    - FR
+    - US
+    localities: # Change for the city you're issuing in!
+    - Salt Lake City
   duration: 438000h # 50 years.
   issuerRef:
     name: root-print-your-cert-ca-issuer
diff --git a/guestbook/README.md b/guestbook/README.md
index 6bab5f9..936dc85 100644
--- a/guestbook/README.md
+++ b/guestbook/README.md
@@ -2,12 +2,28 @@
 
 ## Setup
 
-1. Manually copied a locally built guestbook binary, litestream.yml, the systemd service, the cert, key and CA files to the remote VM.
-2. Installed litestream manually, then moved litestream.yml to /etc/litestream.yml
-3. Moved the systemd unit to /usr/lib/systemd/system
-4. Created /var/guestbook
-5. Ran the guestbook with init-db to create the db, moved it to /var/guestbook
-6. Enabled litestream and the systemd unit
+1. Create a VM for running the guestbook in the cert-manager-general GCP project.
+    - Example CLI command is below
+    - Be sure to use a debian-based Linux distro
+2. On a running k8s cluster with cert-manager (not on the guestbook VM):
+    - Set up a [Google Cloud DNS secret](https://cert-manager.io/docs/configuration/acme/dns01/google/)
+    - Be sure to use the cert-manager-general project!
+    - Apply `letsencrypt-cert.yaml`
+    - Export the resulting cert and key
+3. Manually copy the following files to the remote guestbook VM:
+   - Locally built guestbook binary
+   - litestream.yml
+   - guestbook.service
+   - The cert chain and key from Let's Encrypt
+   - The root CA from the Pi (used for mTLS)
+4. Install litestream [manually](https://litestream.io/install/debian/) with `dpkg`
+5. Move `litestream.yml` to `/etc/litestream.yml`
+    - Check that the bucket configuration is correct and that the VM's SA has access to the bucket
+    - Litestream will back the database up to GCS when a write occurs
+6. Move `guestbook.service` to `/usr/lib/systemd/system`
+7. Create `/var/guestbook`
+8. Run `sudo guestbook -init-db -db-path /var/guestbook/guestbook.sqlite`
+9. `sudo systemctl enable --now guestbook.service litestream.service`
 
 ## Root CA
 
@@ -66,3 +82,24 @@ Certificate:
     40:02:20:66:ad:b0:9f:97:d9:56:ec:7c:65:71:7b:07:1d:b6:
     64:4a:6c:b7:6d:c6:58:0c:1f:6a:64:d4:98:12:e5:80:50
 ```
+
+## gcloud CLI for VM
+
+```bash
+gcloud compute instances create print-your-cert-guestbook-20241127-090928 \
+           --project=cert-manager-general \
+           --zone=us-central1-f \
+           --machine-type=e2-medium \
+           --network-interface=network-tier=PREMIUM,stack-type=IPV4_ONLY,subnet=default \
+           --maintenance-policy=MIGRATE \
+           --provisioning-model=STANDARD \
+           --service-account=guestbook-sa@cert-manager-general.iam.gserviceaccount.com \
+           --scopes=https://www.googleapis.com/auth/devstorage.read_write,https://www.googleapis.com/auth/logging.write,https://www.googleapis.com/auth/monitoring.write,https://www.googleapis.com/auth/service.management.readonly,https://www.googleapis.com/auth/servicecontrol,https://www.googleapis.com/auth/trace.append \
+           --tags=https-server \
+           --create-disk=auto-delete=yes,boot=yes,device-name=print-your-cert-guestbook,image=projects/debian-cloud/global/images/debian-12-bookworm-v20241009,mode=rw,size=10,type=pd-balanced \
+           --no-shielded-secure-boot \
+           --shielded-vtpm \
+           --shielded-integrity-monitoring \
+           --labels=goog-ec-src=vm_add-gcloud \
+           --reservation-affinity=any
+```
diff --git a/guestbook/guestbook.service b/guestbook/guestbook.service
index f68dfb8..0521936 100644
--- a/guestbook/guestbook.service
+++ b/guestbook/guestbook.service
@@ -6,7 +6,7 @@ After=network.target
 # TODO: Add custom user
 # User=guestbook
 # Group=guestbook
-ExecStart=/usr/bin/guestbook -ca-cert /var/guestbook/ca.crt -tls-chain /etc/ssl/tls.chain -tls-key /etc/ssl/tls.key -db-path /var/guestbook/guestbook.sqlite
+ExecStart=/usr/bin/guestbook -ca-cert /var/guestbook/ca.crt -tls-chain /etc/ssl/tls.chain -tls-key /etc/ssl/tls.key -db-path /var/guestbook/guestbook.sqlite -listen 0.0.0.0:443
 StandardOutput=journal
 StandardError=journal
 Type=simple
diff --git a/guestbook/letsencrypt-cert.yaml b/guestbook/letsencrypt-cert.yaml
new file mode 100644
index 0000000..d07287a
--- /dev/null
+++ b/guestbook/letsencrypt-cert.yaml
@@ -0,0 +1,46 @@
+apiVersion: cert-manager.io/v1
+kind: Issuer
+metadata:
+  name: le-issuer
+spec:
+  acme:
+    email: ashley.davis@venafi.com
+    server: https://acme-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      name: le-account-key
+    solvers:
+    - dns01:
+        cloudDNS:
+          project: cert-manager-general
+          serviceAccountSecretRef:
+            name: clouddns-dns01-solver-svc-acct
+            key: key.json
+---
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: guestbook-tls
+  namespace: default
+spec:
+  privateKey:
+    algorithm: ECDSA
+    size: 256
+  secretName: guestbook-tls
+  commonName: guestbook.print-your-cert.cert-manager.io
+  subject:
+    organizations:
+    - CNCF
+    organizationalUnits:
+    - cert-manager
+    countries:
+    - GB
+    - US
+    - FR
+    - ES
+    - NL
+  dnsNames:
+  - guestbook.print-your-cert.cert-manager.io
+  - readonly-guestbook.print-your-cert.cert-manager.io
+  issuerRef:
+    name: le-issuer
+    kind: Issuer
diff --git a/landing.html b/landing.html
index 947cec5..8896992 100644
--- a/landing.html
+++ b/landing.html
@@ -16,7 +16,8 @@
 
   <body>
     <div class="wrapper">
-      <img src="static/images/logo.svg" alt="Logo" width="220" height="191" />
+      <img src="static/images/logo_grad.svg" alt="Logo" width="325" height="386" style="margin-bottom: 25px;" />
+
       <h1 class="mainTitle">Print Your Certificate</h1>
       <h2>Powered by cert-manager</h2>
 
@@ -43,6 +44,7 @@ <h2>Powered by cert-manager</h2>
             value="{{.Name}}"
             required
             placeholder="Your name"
+            autocomplete="off"
             />
         <div class="inputWrapper">
           <input
@@ -51,6 +53,7 @@ <h2>Powered by cert-manager</h2>
               value="{{.Email}}"
               required
               placeholder="Your email address"
+              autocomplete="off"
               />
           {{if .Error}}
           <div class="error">{{.Error}}</div>
@@ -62,7 +65,33 @@ <h2>Powered by cert-manager</h2>
           </div>
           {{end}}
         </div>
-        <button type="submit">Get your certificate</button>
+        <div class="inputWrapper">
+          <p>Pick your certificate's color:</p>
+          <table>
+            <tr>
+              <td>
+                <label for="P">Pink</label>
+                <input type="radio" name="cardcolor" id="P" value="P" checked />
+              </td>
+
+              <td>
+                <label for="R">Random!</label>
+                <input type="radio" name="cardcolor" id="R" value="R" checked />
+              </td>
+
+              <td>
+                <label for="Y">Yellow</label>
+                <input type="radio" name="cardcolor" id="Y" value="Y" />
+              </td>
+
+              <td>
+                <label for="W">White</label>
+                <input type="radio" name="cardcolor" id="W" value="W" />
+              </td>
+              </tr>
+            </table>
+          </div>
+          <button type="submit">Get your certificate</button>
       </form>
 
       <p
@@ -74,8 +103,9 @@ <h2>Powered by cert-manager</h2>
                  "
           >
           Your email will not be displayed on-screen, just your name. These
-          details are only used to fill in the "Subject" field of the X.509
-          certificate, and will be removed within six months.
+          details are used to fill in the "Subject" field of the X.509
+          certificate, and will be removed within six months.<br />
+          We may send a follow-up thank you email using the address provided.
       </p>
 
       <div class="push"></div>
diff --git a/list.html b/list.html
index 71b45af..e95b41f 100644
--- a/list.html
+++ b/list.html
@@ -65,8 +65,5 @@ <h1 class="mainTitle">Print Your Certificate</h1>
       Design by <a href="https://constantinchirila.com" target="_blank">Constantin Chirila</a>
       </p>
     </footer>
-    {{if .Debug}}
-    <pre>{{.Debug}}</pre>
-    {{end}}
   </body>
 </html>
diff --git a/main.go b/main.go
index 8123730..6446852 100644
--- a/main.go
+++ b/main.go
@@ -61,7 +61,8 @@ const (
 	AnnotationPrint  = "print"
 	ConditionPrinted = "Printed"
 
-	AnnotationFetchKey = "fetch-key"
+	AnnotationFetchKey  = "fetch-key"
+	AnnotationCardColor = "card-color"
 )
 
 // Config attempts to load the in-cluster config and falls back to using
@@ -157,9 +158,14 @@ func landingPage(kclient kubernetes.Interface, cmclient cmversioned.Interface) f
 
 		personName := r.URL.Query().Get("name")
 		email := r.URL.Query().Get("email")
+		cardColor := strings.ToUpper(r.URL.Query().Get("cardcolor"))
 
-		// Happily return early if the name or email haven't been
-		// provided yet.
+		if cardColor == "" {
+			// default to pink since that's usually the color we have most of
+			cardColor = "P"
+		}
+
+		// Happily return early if the name or email haven't been provided yet.
 		if personName == "" && email == "" {
 			w.WriteHeader(400)
 			tmpl.ExecuteTemplate(w, "landing.html", landingPageData{Name: personName, Email: email, CountPrinted: printed, CountPending: pending, Message: "Welcome! To get your certificate, fill in your name and email."})
@@ -202,7 +208,8 @@ func landingPage(kclient kubernetes.Interface, cmclient cmversioned.Interface) f
 			ObjectMeta: metav1.ObjectMeta{
 				Name: certName,
 				Annotations: map[string]string{
-					AnnotationFetchKey: fetchKey,
+					AnnotationFetchKey:  fetchKey,
+					AnnotationCardColor: cardColor,
 				},
 			},
 			Spec: certmanagerv1.CertificateSpec{
@@ -211,7 +218,11 @@ func landingPage(kclient kubernetes.Interface, cmclient cmversioned.Interface) f
 				Subject: &certmanagerv1.X509Subject{
 					// Update this with the country you're issuing in!
 					Countries: []string{
-						"FR",
+						"US",
+					},
+					// Update this with the city you're issuing in!
+					Localities: []string{
+						"Salt Lake City",
 					},
 				},
 				SecretName: certName,
@@ -1104,7 +1115,7 @@ curl --cert chain.pem --key pkey.pem https://guestbook.print-your-cert.cert-mana
 	-d "message=I'm a star"
 `
 
-const signREADME = `Thanks for downloading your certificate from the cert-manager booth at KubeCon Paris 2024!
+const signREADME = `Thanks for downloading your certificate from the cert-manager booth at KubeCon Salt Lake City 2024!
 
 You can run sign.sh to sign the guestbook - feel free to customise the message!
 
diff --git a/pem-to-png b/pem-to-png
index 4f92c3a..a7007bc 100755
--- a/pem-to-png
+++ b/pem-to-png
@@ -1,5 +1,8 @@
 #! /usr/bin/env bash
 
+# IMPORTANT: pem-to-png is the old version, kept for reference
+# cert-card is the new version
+
 # entr bash -c "./pem-to-png <foo.crt" <<<$'pem-to-png\n'
 
 set -euo pipefail
@@ -64,7 +67,7 @@ line1=$(
     cat <<EOF
 Thank you for visiting the cert-manager
 booth! We hope you are enjoying
-your time in Paris.
+your time in Salt Lake City.
 EOF
 )
 
diff --git a/print-your-cert-controller b/print-your-cert-controller
index 034cd2f..09f89a0 100755
--- a/print-your-cert-controller
+++ b/print-your-cert-controller
@@ -15,8 +15,11 @@ printf "print-your-cert-controller is now watching certificates.\n"
 
 kubectl get cert -ojson --watch | jq -c --unbuffered | while read -r cert; do
     certname=$(jq -r '.metadata.name | select(.)' <<<"$cert")
+
     annotation_value_print=$(jq -r '.metadata.annotations."print" | select(.)' <<<"$cert")
     annotation_value_fetchkey=$(jq -r '.metadata.annotations."fetch-key" | select(.)' <<<"$cert")
+    annotation_value_cardcolor=$(jq -r '.metadata.annotations."card-color" // "BLK"' <<<"$cert")
+
     condition_status_ready=$(jq -r '.status.conditions[]? | select(.type == "Ready") | .status' <<<"$cert")
     condition_status_printed=$(jq -r '.status.conditions[]? | select(.type == "Printed") |  .status' <<<"$cert")
 
@@ -59,7 +62,7 @@ kubectl get cert -ojson --watch | jq -c --unbuffered | while read -r cert; do
 
         printf "%s: printing.\n" "$(jq -r .metadata.name <<<"$cert")"
 
-        if ! out=$(cert-card "$certname" "$annotation_value_fetchkey" <<<"$pem" 2>&1); then
+        if ! out=$(cert-card "$certname" "$annotation_value_fetchkey" "$annotation_value_cardcolor" <<<"$pem" 2>&1); then
             printf "%s: failed to generate front-....png and back-....png.\n" "$(jq -r .metadata.name <<<"$cert")" "$(tr $'\n' ' ' <<<"$out")"
             continue
         fi
@@ -71,7 +74,8 @@ kubectl get cert -ojson --watch | jq -c --unbuffered | while read -r cert; do
             out="mocked output for front print"
             brother_rc=0
         else
-            out=$(brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 "front-$certname.png" 2>&1)
+            # out=$(brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 "front-$certname.png" 2>&1)
+            out=$(brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62x100 "front-$certname.png" 2>&1)
             brother_rc=$?
         fi
 
@@ -94,29 +98,32 @@ kubectl get cert -ojson --watch | jq -c --unbuffered | while read -r cert; do
         out=
         brother_rc=
 
-        if [[ -n $mock ]]; then
-            out="mocked output for front print"
-            brother_rc=0
-        else
-            out=out=$(brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 back-$certname.png 2>&1)
-            brother_rc=$?
-        fi
-
-        if [[ $brother_rc != 0 ]]; then
-            printf "%s: failed to print back-$certname.png: %s\n" "$(jq -r .metadata.name <<<"$cert")" "$(tail -1 <<<"$out")"
-            if ! out=$(kubectl patch cert "$(jq -r .metadata.name <<<"$cert")" --subresource status --type=json -p '
-            [{
-                "op": "add", "path": "/status/conditions", "value":[{
-                    "type": "Printed",
-                    "status": "False",
-                    "reason": "Error",
-                    "message": "brother_ql: '"$(tail -1 <<<"$out")"'"
-                }]
-            }]' 2>&1); then
-                printf "%s: failed to set the 'Printed' condition to 'False': %s\n" "$(jq -r .metadata.name <<<"$cert")" "$(tr $'\n' ' ' <<<"$out")"
-            fi
-            continue
-        fi
+        # This is commented as in SLC we printed labels on one big sticker rather than two smaller stickers
+        # But we might need to uncomment to return to using smaller stickers
+        #if [[ -n $mock ]]; then
+        #    out="mocked output for back print"
+        #    brother_rc=0
+        #else
+        #    # out=out=$(brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62 back-$certname.png 2>&1)
+        #    out=out=$(brother_ql --model QL-820NWB --printer usb://0x04f9:0x209d print --label 62x100 back-$certname.png 2>&1)
+        #    brother_rc=$?
+        #fi
+
+        #if [[ $brother_rc != 0 ]]; then
+        #    printf "%s: failed to print back-$certname.png: %s\n" "$(jq -r .metadata.name <<<"$cert")" "$(tail -1 <<<"$out")"
+        #    if ! out=$(kubectl patch cert "$(jq -r .metadata.name <<<"$cert")" --subresource status --type=json -p '
+        #    [{
+        #        "op": "add", "path": "/status/conditions", "value":[{
+        #            "type": "Printed",
+        #            "status": "False",
+        #            "reason": "Error",
+        #            "message": "brother_ql: '"$(tail -1 <<<"$out")"'"
+        #        }]
+        #    }]' 2>&1); then
+        #        printf "%s: failed to set the 'Printed' condition to 'False': %s\n" "$(jq -r .metadata.name <<<"$cert")" "$(tr $'\n' ' ' <<<"$out")"
+        #    fi
+        #    continue
+        #fi
 
         # Now that the certificate is printed, we can update the status of
         # the certificate.
diff --git a/rebuild-controller.sh b/rebuild-controller.sh
new file mode 100755
index 0000000..26e60cb
--- /dev/null
+++ b/rebuild-controller.sh
@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+
+set -eu -o pipefail
+
+docker buildx create --name mybuilder || :
+
+docker buildx build -f Dockerfile.controller --platform linux/arm64 \
+	-t ghcr.io/cert-manager/print-your-cert-controller:latest \
+	-o type=docker,dest=print-your-cert-controller.tar .
+
+# Example scp command over tailscale
+# scp print-your-cert-controller.tar certmanager@100.84.86.89:
diff --git a/rebuild-ui.sh b/rebuild-ui.sh
new file mode 100755
index 0000000..92bfeed
--- /dev/null
+++ b/rebuild-ui.sh
@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+
+set -eu -o pipefail
+
+KO_DOCKER_REPO=ghcr.io/cert-manager/print-your-cert-ui ko build . --platform linux/arm64 --tarball print-your-cert-ui.tar --push=false --bare
+
+# Example scp command over tailscale
+# scp print-your-cert-ui.tar certmanager@100.84.86.89:
diff --git a/static/images/logo_grad.svg b/static/images/logo_grad.svg
new file mode 100644
index 0000000..c24b1c3
--- /dev/null
+++ b/static/images/logo_grad.svg
@@ -0,0 +1,116 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 0 433.69 515.01">
+  <defs>
+    <style>
+      .cls-1, .cls-2, .cls-3, .cls-4, .cls-5, .cls-6, .cls-7, .cls-8 {
+        fill: none;
+      }
+
+      .cls-1, .cls-2, .cls-4, .cls-6, .cls-7, .cls-8 {
+        stroke: #fff;
+      }
+
+      .cls-1, .cls-4, .cls-8 {
+        stroke-width: 7px;
+      }
+
+      .cls-1, .cls-8 {
+        stroke-linejoin: round;
+      }
+
+      .cls-2 {
+        stroke-width: 6px;
+      }
+
+      .cls-2, .cls-9, .cls-4, .cls-10, .cls-5, .cls-6, .cls-7, .cls-11 {
+        stroke-miterlimit: 10;
+      }
+
+      .cls-12 {
+        clip-path: url(#clippath);
+      }
+
+      .cls-3, .cls-13 {
+        stroke-width: 0px;
+      }
+
+      .cls-9, .cls-10 {
+        fill: #476bb3;
+        stroke: #476bb3;
+      }
+
+      .cls-9, .cls-5, .cls-6 {
+        stroke-width: 2px;
+      }
+
+      .cls-4, .cls-5, .cls-8 {
+        stroke-linecap: round;
+      }
+
+      .cls-10 {
+        stroke-width: 16px;
+      }
+
+      .cls-5, .cls-11 {
+        stroke: #486bb3;
+      }
+
+      .cls-7 {
+        stroke-width: 4px;
+      }
+
+      .cls-11 {
+        stroke-width: 3px;
+      }
+
+      .cls-11, .cls-13 {
+        fill: #fff;
+      }
+    </style>
+    <clipPath id="clippath">
+      <circle class="cls-3" cx="223.06" cy="205.46" r="134.17"/>
+    </clipPath>
+  </defs>
+  <rect class="cls-3" x="28.52" y="19.77" width="387.3" height="374"/>
+  <path class="cls-9" d="M415.82,206.77c0,20.4-12.48,38.57-18.44,56.96-6.19,19.07-6.98,41.08-18.52,56.96-11.66,16.04-32.4,23.54-48.43,35.21-15.87,11.55-29.34,29.05-48.39,35.24-18.39,5.97-39.48-.06-59.86-.06s-41.47,6.03-59.86.06c-19.06-6.2-32.53-23.69-48.4-35.24-16.02-11.67-36.77-19.17-48.43-35.21-11.55-15.87-12.34-37.88-18.52-56.96-5.97-18.41-18.44-36.58-18.44-56.96s12.48-38.57,18.44-56.95c6.19-19.07,6.98-41.08,18.52-56.96,11.66-16.03,32.4-23.54,48.43-35.2,15.87-11.55,29.34-29.05,48.4-35.24,18.39-5.98,39.48.05,59.86.05s41.47-6.03,59.86-.05c19.06,6.19,32.53,23.69,48.4,35.24,16.02,11.67,36.77,19.17,48.43,35.2,11.55,15.88,12.34,37.88,18.52,56.96,5.96,18.38,18.44,36.56,18.44,56.95h0Z"/>
+  <path class="cls-13" d="M222.16,42.15c-90.85,0-164.49,73.7-164.49,164.62s73.65,164.62,164.49,164.62,164.49-73.68,164.49-164.62S313,42.15,222.16,42.15h0ZM222.12,357.07c-82.96,0-150.12-67.24-150.14-150.27,0-83.12,67.33-150.46,150.35-150.3,83.02.16,150.08,67.4,150.01,150.41-.07,83.02-67.26,150.18-150.22,150.16h0Z"/>
+  <path class="cls-13" d="M146.27,281.36c-.53-1.82-3.03-3.63-4.97-3.39-2.76.35-5.51.81-8.83,1.31,1.22-3.24,2.26-6.01,3.31-8.78.91-2.4-1.05-3.57-2.29-4.86-1.23-1.29-2.2.34-3.03,1-4.46,3.54-8.79,7.25-13.3,10.73-2.14,1.65-.53,2.61.34,3.8.86,1.19,1.74,2.52,3.51.97,2.03-1.79,4.18-3.45,6.32-5.18.08.2.15.29.13.36-.42,1.22-.88,2.44-1.29,3.67-.86,2.59.8,4.49,3.53,4.06,1.13-.18,2.29-.53,3.64.05-2.19,1.8-4.09,3.49-6.13,4.99-1.67,1.23-.87,2.24.14,3.16,1.01.92,1.43,3.33,3.58,1.58,4.84-3.91,9.67-7.83,14.49-11.77.5-.41,1.13-.79.86-1.7h0Z"/>
+  <path class="cls-13" d="M234.35,103.96c3.45,1.42,4.81.77,5.52-2.79.16-.78.3-1.55.49-2.31.15-.62,0-1.67.95-1.54.95.13,2.18-.06,2.52,1.36.35,1.42.78,2.68,1.17,4.02,1.1,3.69,1.85,4.27,5.61,4.46,1.41.07,1.73-.41,1.35-1.67-.59-2.01-1.1-4.04-1.73-6.04-.29-.91-.53-1.45.72-1.97,3.05-1.29,3.87-4.05,4.08-6.89,0-3.51-2.11-6.08-6.05-7.14-3.2-.85-6.49-1.39-9.74-2.11-1.21-.26-1.82.23-2.05,1.39-1.24,6.33-2.51,12.7-3.74,19.06-.16.86-.28,1.7.87,2.17h0ZM243.59,87.61c2.66-.27,5.23,1.27,5.2,2.85-.03,1.58-.95,2.34-2.73,2.39-1.1-.93-3.66.58-4.03-1.78-.16-1-.53-3.22,1.56-3.44v-.02Z"/>
+  <path class="cls-13" d="M199.66,310.27c-1.5-.49-3.02-1.11-3.55,1.38-.57,2.74-1.45,5.41-2.36,8.7-1.39-4.12-2.67-7.66-3.74-11.25-.7-2.35-2.71-2.33-4.41-2.64-1.87-.31-1.53,1.58-1.83,2.64-1.58,5.46-2.94,11-4.64,16.43-.83,2.68,1.14,2.44,2.46,2.9,1.4.48,2.88,1.06,3.41-1.27.64-2.78,1.49-5.51,2.35-8.62.35.81.59,1.28.76,1.76,1.05,3.16,2.15,6.29,3.16,9.46.72,2.34,2.83,2.2,4.51,2.43,1.68.23,1.33-1.58,1.61-2.54,1.58-5.47,2.91-11.02,4.64-16.44.78-2.63-1.03-2.51-2.38-2.95h0Z"/>
+  <path class="cls-13" d="M326.58,276.91c-1.73-.25-3.43-.76-5.16-.92-1.43-.13-1.79-.63-1.83-2.11-.12-3.69-3.45-6.72-7.08-6.76-2.49-.07-4.4,1.18-5.93,2.93-1.9,2.18-3.54,4.59-5.44,6.76-1.3,1.48-1.13,2.4.41,3.56,4.62,3.49,9.2,7.04,13.67,10.71,1.58,1.27,2.38,1.13,3.54-.45,2.11-2.87,2.19-2.81-.65-5.01-.62-.49-1.28-.94-1.84-1.48-.44-.42-1.52-.58-.91-1.53.5-.76.92-1.77,2.19-1.51,1.27.26,2.63.29,3.86.74,2.83,1.05,4.59-.05,6.13-2.39,1.02-1.52,1.07-2.25-.95-2.53h0ZM310.77,279.78c-.39.03-3.23-2.4-3.2-2.76.07-.93,3.31-4.03,4.22-4.03,1.22.24,2.11.85,2.21,2.19.06.82-2.62,4.55-3.22,4.6h0Z"/>
+  <path class="cls-13" d="M195.58,104.48c.18,1.05.53,1.9,1.84,1.69,4.74-.82,9.52-1.53,14.23-2.52,2.49-.53.77-2.4.8-3.69.03-1.38-.72-1.79-2.07-1.53-2.58.5-5.19.84-7.77,1.36-1.34.26-1.69-.35-1.82-1.49-.11-1.02-.26-1.81,1.21-1.97,2.18-.23,4.31-.85,6.48-1.08,2.36-.25,1.92-1.74,1.67-3.23-.25-1.5-.57-2.73-2.63-2.16-1.93.53-3.98.61-5.93,1.1-1.37.35-2.04.26-2.32-1.34-.31-1.73.65-1.87,1.87-2.06,2.17-.32,4.32-.74,6.49-1.05,1.39-.21,2.45-.6,1.89-2.34-.45-1.4.19-3.62-2.7-3.02-4.12.86-8.26,1.58-12.43,2.11-1.99.25-2.27,1.14-1.97,2.8,1.07,6.15,2.12,12.3,3.17,18.42h0Z"/>
+  <path class="cls-13" d="M265.88,312.76c-1.54.62-3.11,1.16-4.7,1.62-1.32.42-2.28.96-1.49,2.64.63,1.3.46,3.45,2.96,2.45.46-.18.95-.62,1.4-.06.45.56.15,1.22-.07,1.75-.64,1.51-1.99,2.16-3.5,2.43s-2.76-.46-3.51-1.78c-1.06-1.82-1.77-3.83-2.11-5.91-.49-3.08,2.43-5.76,5.22-4.42,2.3,1.11,4.03.22,5.98-.35,1.33-.39,1.34-1.19.57-2.16-1.78-2.25-4.22-2.96-6.98-3.08-2.91-.01-5.72,1.04-7.9,2.95-2.63,2.36-3.69,5.36-2.63,8.78,1.33,4.48,2.11,9.49,7.67,10.97,4.27,1.12,8.03-.2,11.07-3.23,3.28-3.29,2.49-7.13,1.05-11.03-.63-1.67-1.24-2.37-3.02-1.59Z"/>
+  <path class="cls-13" d="M298.56,302.8c-1.93,1.51-4.03,2.8-5.96,4.31-1.05.82-1.58.56-2.26-.43-.68-.99-.89-1.58.24-2.33,1.75-1.15,3.44-2.42,5.14-3.64.56-.4,1.23-.73,1.17-1.7-.45-1.2-1.21-2.26-2.21-3.06-.98-.69-1.74.36-2.5.89-1.58,1.1-3.24,2.11-4.71,3.34-1.23,1.02-1.58.09-2.19-.64-.73-.85-.74-1.38.28-2.04,1.98-1.29,3.8-2.81,5.8-4.07,1.63-1.02,1.29-2.01.33-3.2-.85-1.06-1.36-2.64-3.24-1.21-3.44,2.56-6.97,5-10.48,7.47-1.11.78-1.15,1.55-.38,2.64,3.64,5.05,7.22,10.13,10.82,15.2.65.92,1.29,1.28,2.37.5,3.6-2.64,7.24-5.23,10.9-7.78,1.72-1.2.68-2.19-.06-3.27-.74-1.08-1.44-2.27-3.07-.99h0Z"/>
+  <path class="cls-13" d="M162.45,294.24c-.74-.53-1.52-.28-2.18.24-5.33,4.15-10.66,8.3-15.98,12.47-.7.53-1.22,1.3-.21,1.87,1.87,1.05,3.57,3.69,6.05.91.12-.18.31-.31.52-.36.22-.05.44,0,.62.11,1.98,1.3,3.98,2.57,5.95,3.87.53.36.35.92.29,1.43-.28,2.26,1.29,4.81,3.54,4.93,2.35.12,1.24-2.36,1.98-3.53.09-.15.15-.32.18-.5,1.37-5.62,2.74-11.24,4.22-17.32-.59-2.28-3.2-2.75-4.99-4.11h0ZM159.08,308.33q-4.12-2.42-.77-5.09c.67-.53,1.37-1.06,2.36-1.81-.25,2.36-.78,4.67-1.59,6.9h0Z"/>
+  <path class="cls-13" d="M155.65,116.48c2.64,3.66,6.68,4.75,10.97,3.16,4.46-1.61,7.9-5.97,7.73-9.95-.09-.95-.31-1.89-.65-2.79-.05-.26-.19-.5-.39-.66-.21-.17-.46-.26-.73-.25-1.53,0-4.34,2.74-4.36,4.38-.03,2.21-1.44,3.32-3.2,4.02-1.67.66-3.16,0-4.15-1.39-1.17-1.63-2.22-3.35-3.13-5.14-.74-1.51-.6-3.16.77-4.34,1.38-1.18,3.08-1.97,5.03-.9,1.37.75,5.06-.53,5.85-1.86.53-.85-.15-1.33-.57-1.81-.71-.8-1.59-1.44-2.57-1.87-.98-.43-2.05-.63-3.12-.6-7.05.03-12.55,5.46-11.8,11.4.42,3.34,2.49,5.98,4.33,8.6Z"/>
+  <path class="cls-13" d="M230.51,316.76c-1.79-4.65-3.01-5.27-7.79-4.22-.39.04-.76.19-1.07.44-.31.25-.53.57-.66.95-2,6.41-4,12.84-5.99,19.27-.17.56-.43,1.23.25,1.67,1.44.95,5.22-.38,5.87-2.05.27-.7.27-1.55,1.43-1.52,2.11.04,4.22,0,6.32-.1.75-.03,1.21.25,1.34.93.41,2.11,1.67,2.73,3.41,2.28,3.57-.09,3.58-.1,2.41-3.16-1.84-4.84-3.69-9.66-5.53-14.48h0ZM224.95,326.29c-1.58,0-1.81-.44-1.34-1.79.57-1.65,1.05-3.32,1.72-5.46.7,1.79,1.22,3.09,1.71,4.38,1.1,2.94,1.07,2.84-2.09,2.87Z"/>
+  <path class="cls-13" d="M276.82,119.29c1.23.68,2.41,2.47,3.83.09,1.88-3.16,3.92-6.22,5.88-9.32,2.36-3.73,2.42-3.84,6.22-1.46,2.02,1.28,2.55-.1,3.4-1.33.91-1.32,1.26-2.33-.53-3.38-4.22-2.51-8.35-5.14-12.41-7.87-1.72-1.15-2.58-.84-3.69.86-1.23,1.88-.98,2.88.93,3.9,1.11.59,2.35,1.12,3.11,2.22-.39.63-.71,1.15-1.05,1.67-2.39,3.78-4.71,7.59-7.18,11.31-1.33,2.05.21,2.59,1.49,3.3h0Z"/>
+  <path class="cls-10" d="M376.08,459c-.11,0-.23-.02-.34-.05-16.22-4.56-32.83-8.45-49.38-11.55-.33-.06-.62-.25-.8-.52-.19-.27-.26-.61-.2-.94l3.23-17.17c-35.68-6.63-72.14-9.98-108.38-9.98s-72.7,3.36-108.38,9.98l3.23,17.17c.06.33,0,.66-.2.94-.19.27-.48.46-.8.52-16.55,3.11-33.16,7-49.38,11.55-.11.03-.23.05-.34.05-.31,0-.6-.11-.84-.32-.32-.29-.47-.72-.4-1.14,2.01-11.83,4.35-23.8,6.94-35.6-7.86-9.01-16.07-17.97-24.4-26.64-.31-.32-.42-.77-.31-1.2.12-.42.45-.76.87-.88,10.13-2.85,20.47-5.48,30.73-7.83l-3.86-17.06c-.15-.67.27-1.35.94-1.5,47.33-10.72,95.98-16.21,144.59-16.33.06,0,.12-.01.18-.01h1.41s1.41,0,1.41,0c.06,0,.12,0,.18.01,48.61.12,97.26,5.61,144.59,16.33.32.07.61.27.78.55.18.28.24.62.16.94l-3.86,17.06c10.27,2.35,20.6,4.98,30.73,7.83.42.12.75.45.87.88.12.42,0,.88-.31,1.2-8.33,8.67-16.54,17.63-24.4,26.64,2.59,11.8,4.93,23.77,6.94,35.6.07.42-.08.85-.4,1.14-.23.21-.53.32-.84.32Z"/>
+  <path class="cls-1" d="M221.48,417.52c-44.49-.09-88.99,4.8-132.65,14.69-4.84-21.38-9.68-42.76-14.53-64.14,48.49-10.98,97.91-16.42,147.32-16.31"/>
+  <path class="cls-1" d="M78.05,386.44c-10.55,2.4-21.05,5.06-31.5,8,8.56,8.9,16.85,17.96,24.86,27.16-2.66,12.05-5.01,24.11-7.07,36.15,16.36-4.6,32.87-8.46,49.49-11.58-1.2-6.37-2.39-12.74-3.59-19.11"/>
+  <path class="cls-4" d="M88.83,432.21c8.69,4.78,16.75,8.81,25,13.96"/>
+  <path class="cls-1" d="M218.94,417.52c44.49-.09,88.99,4.8,132.65,14.69,4.84-21.38,9.68-42.76,14.53-64.14-48.49-10.98-97.91-16.42-147.32-16.31"/>
+  <path class="cls-1" d="M362.38,386.44c10.55,2.4,21.05,5.06,31.5,8-8.56,8.9-16.85,17.96-24.86,27.16,2.66,12.05,5.02,24.11,7.07,36.15-16.36-4.6-32.87-8.46-49.49-11.58,1.2-6.37,2.39-12.74,3.59-19.11"/>
+  <path class="cls-8" d="M351.6,432.21c-8.69,4.78-16.54,8.19-24.8,13.34"/>
+  <g>
+    <path class="cls-13" d="M100.24,389.69c-.26-2.04-.52-7.62,7.07-8.52,6.72-.78,8.3,3.41,8.73,5.81.09.56-.15.93-.71,1.12-1.17.39-2.33.78-3.49,1.18-.62.2-1-.04-1.14-.69-.3-1.48-.94-2.29-2.75-2.07-2.35.28-2.33,1.76-2.05,4.15.18,1.49.36,2.98.54,4.47.29,2.39.62,3.83,2.94,3.56,2.32-.27,2.31-1.75,2.13-3.27-.61.07-1.22.14-1.83.21-.6.07-.98-.23-1.05-.82-.1-.83-.2-1.66-.29-2.49-.07-.62.24-.97.84-1.04,2.11-.25,4.22-.49,6.33-.72.63-.07.98.21,1.05.83.15,1.4.31,2.8.46,4.2.23,2.06.38,7.59-7.01,8.45-7.38.88-8.52-4.53-8.78-6.59-.33-2.59-.65-5.17-.98-7.76Z"/>
+    <path class="cls-13" d="M146.25,398.21c.5.78.07,1.69-.9,1.77-1.19.09-2.38.19-3.57.29-.31.03-.61-.11-.76-.38-1.26-2-2.53-3.99-3.81-5.99-.07-.09-.17-.14-.27-.13-.42.04-.84.07-1.26.11-.57.05-.94.49-.89,1.05.15,1.64.3,3.28.45,4.93.05.56-.32,1-.88,1.05-1.17.11-2.34.22-3.5.33-.56.05-1.01-.31-1.06-.87-.64-6.62-1.28-13.25-1.91-19.87-.06-.56.32-1.01.9-1.06,2.34-.22,4.67-.44,7.01-.64,5.7-.5,8.2,1.7,8.6,6.82.23,2.9-.34,4.99-1.91,6.31-.12.1-.14.26-.06.41,1.28,1.96,2.56,3.92,3.83,5.88ZM134.84,384.29c-.57.05-.95.49-.9,1.06.07.77.14,1.54.21,2.31.05.56.5.93,1.07.88.54-.05,1.08-.1,1.62-.14,1.52-.13,2.27-.38,2.1-2.32-.16-1.93-.95-2.06-2.47-1.92-.54.05-1.08.1-1.62.14Z"/>
+    <path class="cls-13" d="M172.99,397.12c.03.69-.26,1.08-.89,1.11-1.17.06-2.34.12-3.51.19-.6.03-.96-.26-.99-.88-.05-.91-.1-1.81-.15-2.72-.03-.63-.37-.92-1-.88-.9.05-1.81.1-2.71.16-.6.04-.93.37-.89.99.06.91.11,1.81.17,2.72.04.62-.26.96-.88.99-1.17.07-2.34.15-3.51.22-.59.04-.96-.31-1.01-1-.29-4.41-.59-8.83-.88-13.24-.26-3.93.09-8.18,7.32-8.61,7.23-.41,8.07,3.77,8.27,7.7.22,4.42.44,8.83.67,13.25ZM166.85,384.16c-.08-1.5-.35-2.24-2.45-2.12-2.1.12-2.28.89-2.19,2.39.07,1.13.14,2.27.21,3.4.04.59.41.92,1.01.88.91-.05,1.82-.11,2.72-.16.63-.07.93-.4.9-1.02-.06-1.12-.13-2.25-.19-3.37Z"/>
+    <path class="cls-13" d="M192.73,375.48c6.04-.17,8.08,2.19,8.18,7.31.05,2.28.09,4.57.14,6.85.1,5.13-1.8,7.57-7.69,7.73-2.33.07-4.66.14-6.99.23-.6.02-.95-.31-.98-.9-.25-6.66-.49-13.32-.74-19.98-.02-.63.29-.95.93-1.01,2.39-.09,4.77-.16,7.16-.23ZM193.3,391.99c1.51-.04,2.26-.31,2.22-2.19,0-.03-.18-6.85-.18-6.88-.05-1.94-.82-2.11-2.35-2.06-.57.02-1.15.03-1.72.05-.61.02-.95.34-.93.97.1,3.09.19,6.17.29,9.26.02.59.38.93.98.91.57-.02,1.14-.03,1.7-.05Z"/>
+    <path class="cls-13" d="M217.64,375.09c.64,0,.96.31.96.94,0,4.09.02,8.18.02,12.27,0,2.41.17,3.88,2.5,3.88,2.33,0,2.5-1.46,2.5-3.88.01-4.09.03-8.18.04-12.27,0-.63.36-.94.97-.94,1.2,0,2.4.01,3.6.02.64,0,.96.32.96.95-.04,4.64-.08,9.28-.13,13.93-.02,2.07-.52,7.58-7.94,7.57-7.42,0-7.91-5.51-7.93-7.58-.04-4.64-.07-9.28-.11-13.93,0-.63.35-.94.96-.95,1.2,0,2.4-.01,3.6-.02Z"/>
+    <path class="cls-13" d="M256.61,396.62c-.03.69-.35,1.05-.98,1.03-1.17-.04-2.34-.09-3.51-.12-.59-.02-.93-.34-.91-.97.03-.91.06-1.81.09-2.72.02-.63-.28-.95-.91-.97-.9-.03-1.81-.06-2.71-.08-.6-.02-.95.29-.97.91-.03.91-.05,1.81-.08,2.72-.02.63-.34.93-.97.91-1.17-.03-2.34-.06-3.51-.09-.6-.01-.93-.4-.92-1.09.1-4.42.19-8.84.29-13.27.08-3.94.82-8.14,8.05-7.93,7.23.23,7.71,4.47,7.55,8.4-.17,4.42-.34,8.84-.51,13.26ZM251.65,383.16c.05-1.5-.15-2.26-2.26-2.33-2.11-.06-2.35.68-2.39,2.19-.03,1.14-.06,2.27-.09,3.41-.02.59.32.95.93.96.91.03,1.82.05,2.73.08.63-.01.96-.31.98-.94.04-1.13.07-2.25.11-3.38Z"/>
+    <path class="cls-13" d="M274.22,382.91c.04-.62-.27-.96-.9-.99-1.49-.08-2.98-.16-4.46-.24-.61-.03-.94-.39-.91-.99.06-1.17.12-2.33.17-3.5.03-.63.4-.92,1.01-.89,5.47.28,10.95.6,16.42.97.64.04.94.38.9,1-.08,1.17-.16,2.33-.24,3.5-.04.59-.38.91-1.02.87-1.49-.1-2.97-.2-4.46-.29-.61-.04-.97.25-1.01.88-.3,4.87-.6,9.75-.9,14.62-.04.59-.37.92-1,.88-1.17-.07-2.34-.14-3.51-.21-.6-.03-.92-.4-.89-.99.27-4.87.55-9.75.82-14.62Z"/>
+    <path class="cls-13" d="M312.44,379.47c.64.06.93.4.87,1.03-.11,1.16-.22,2.33-.34,3.49-.06.59-.41.9-1.05.84-2.57-.25-5.13-.48-7.7-.71-.61-.05-.98.23-1.04.85-.03.33-.06.66-.09,1-.05.59.27.97.87,1.02,1.64.14,3.28.29,4.92.44.64.06.92.4.86,1.02-.11,1.16-.22,2.33-.33,3.49-.06.59-.4.91-1.03.85-1.63-.15-3.26-.3-4.89-.44-.6-.05-.97.23-1.03.85-.03.33-.06.67-.09,1-.05.59.26.96.86,1.02,2.54.22,5.08.45,7.61.7.63.06.91.4.85,1.02-.11,1.16-.22,2.33-.34,3.49-.06.62-.4.9-1.03.84-4.38-.42-8.76-.81-13.14-1.16-.59-.05-.91-.42-.86-1.01.54-6.65,1.07-13.31,1.61-19.96.05-.62.43-.91,1.04-.86,4.48.37,8.96.76,13.44,1.19Z"/>
+    <path class="cls-13" d="M333.53,381.72c6.01.71,7.69,3.34,7.04,8.43-.29,2.27-.57,4.53-.86,6.8-.65,5.09-2.88,7.23-8.75,6.53-2.32-.27-4.64-.54-6.96-.79-.59-.07-.9-.45-.84-1.04.72-6.63,1.45-13.25,2.17-19.88.07-.62.42-.9,1.06-.86,2.38.26,4.75.53,7.12.81ZM331.69,398.15c1.51.18,2.29.02,2.52-1.84,0-.03.82-6.81.82-6.84.23-1.92-.51-2.21-2.03-2.39-.57-.07-1.14-.13-1.71-.2-.6-.07-.99.2-1.06.82-.35,3.07-.71,6.14-1.06,9.2-.07.59.24.97.84,1.04.56.07,1.13.13,1.69.2Z"/>
+  </g>
+  <g class="cls-12">
+    <path class="cls-6" d="M65.66,185.21c22.36,0,22.36,10.55,44.71,10.55s22.36-10.55,44.72-10.55,22.35,10.55,44.71,10.55,22.35-10.55,44.71-10.55,22.36,10.55,44.71,10.55,22.36-10.55,44.72-10.55,22.36,10.55,44.72,10.55"/>
+    <path class="cls-7" d="M65.66,206.3c22.36,0,22.36,10.55,44.71,10.55s22.36-10.55,44.72-10.55,22.35,10.55,44.71,10.55,22.35-10.55,44.71-10.55,22.36,10.55,44.71,10.55,22.36-10.55,44.72-10.55,22.36,10.55,44.72,10.55"/>
+    <path class="cls-2" d="M65.66,231.62c22.36,0,22.36,10.55,44.71,10.55s22.36-10.55,44.72-10.55,22.35,10.55,44.71,10.55,22.35-10.55,44.71-10.55,22.36,10.55,44.71,10.55,22.36-10.55,44.72-10.55,22.36,10.55,44.72,10.55"/>
+  </g>
+  <path class="cls-11" d="M212.31,146.65c-2.24,1.41-4.13,3.26-5.58,5.41-2.57,3.82-3.72,8.56-2.82,13.36,1.28,6.86,5.31,11.65,11.86,14.2.25.09.48.21.7.35.12.09.22.21.28.34.07.14.1.28.09.43v5.44c0,.12-.02.25-.07.36-.05.11-.12.22-.21.31-.09.09-.19.16-.31.2s-.24.07-.36.07c-4.56-.05-9.12-.03-13.7,0-.63,0-1.24-.21-1.74-.59-1.3-.99-2.93-1.45-4.56-1.28-1.63.17-3.13.94-4.2,2.18-1.08,1.21-1.67,2.78-1.65,4.4.02,1.62.63,3.18,1.73,4.37,1.1,1.19,2.61,1.93,4.22,2.07,1.61.14,3.22-.33,4.51-1.31.49-.39,1.11-.59,1.74-.57,4.42,0,8.85.06,13.27,0,.4-.06.8.03,1.14.24.05.05.1.11.12.18.03.07.04.14.04.22v57.91c0,.13-.03.27-.08.39s-.13.23-.23.33c-.1.09-.22.16-.34.2-.13.04-.26.06-.4.05-5.37-.45-10.69-1.34-15.92-2.64-3.21-.77-6.33-1.87-9.32-3.27-.05-.02-.1-.05-.15-.08-4.21-2.96-7.73-6.81-10.3-11.27-.07-.1-.12-.23-.13-.35-.01-.13.01-.25.06-.37.05-.11.14-.21.24-.29.1-.07.22-.12.35-.13l1.4-.28c.28-.06.53-.2.74-.39.21-.19.36-.44.45-.71.09-.27.1-.56.04-.84-.06-.28-.19-.53-.39-.74l-12.26-13.37c-.19-.21-.43-.37-.7-.46s-.56-.1-.83-.04c-.28.06-.53.2-.74.39-.21.19-.36.44-.44.71-1.81,5.74-3.58,11.35-5.37,17.04-.09.3-.11.61-.04.92.07.3.21.59.43.81.21.23.48.4.78.49.3.09.61.1.92.03l.95-.22c.58-.13,1.19-.07,1.74.18.54.25.99.68,1.26,1.21,7.05,13.71,17.65,23.63,31.68,29.9,5.48,2.45,7.65,3.16,12.38,3.89.2.03.38.12.53.27l7.2,7.15c.48.47,1.13.73,1.8.73s1.32-.26,1.81-.73l7-6.86c.16-.16.37-.25.59-.27,7.01-.66,10.13-2.39,17.67-5.85,11.67-5.34,20.94-14.64,26.91-26.01.53-1.01.99-1.13,1.89-.83.34.12.69.23,1.05.33.37.12.76.13,1.14.04.38-.09.72-.28,1-.54.28-.27.48-.61.59-.98.1-.37.11-.77.01-1.14h0c-1.35-5.56-2.69-11.03-4.05-16.57-.07-.29-.21-.55-.42-.77-.2-.22-.46-.37-.75-.46-.28-.08-.59-.09-.87-.02-.29.07-.55.22-.77.42l-13.03,12.48c-.2.2-.35.44-.43.71-.08.27-.08.56-.02.83.07.27.21.53.4.73.2.2.44.35.71.43.48.14.96.27,1.44.37,1.05.23.95.58.46,1.32-2.73,4.16-6.32,7.68-10.54,10.33l-.11.06c-3.63,1.73-7.48,2.97-11.43,3.69-4.09.79-8.24,1.27-12.4,1.43-.13,0-.26-.02-.38-.07-.12-.05-.23-.12-.33-.21-.09-.09-.17-.2-.22-.32-.05-.12-.07-.25-.07-.38v-58.21c0-.07.01-.15.04-.22.03-.07.07-.13.12-.18s.12-.09.18-.12c.07-.03.14-.04.22-.04.53,0,1.17.1,2.71.09,3.04-.03,6.2-.03,9.24-.21.99-.06,1.54-.03,2.18.45,1.28,1.02,2.9,1.51,4.54,1.38s3.16-.86,4.27-2.06c1.1-1.21,1.71-2.78,1.72-4.41.01-1.63-.58-3.21-1.67-4.43-1.09-1.22-2.6-1.99-4.23-2.14-1.63-.16-3.25.31-4.55,1.31-.36.34-.84.54-1.33.57-4.24-.02-8.48-.02-12.72,0-.26.03-.52-.04-.73-.2v-6.66c0-.23.08-.45.22-.62.3-.31.66-.57,1.05-.74,6.85-3.48,10.4-9.2,10.41-16.81,0-3.44-.96-6.61-2.59-9.31M221.68,171.81c-1.23-.04-2.44-.33-3.56-.85-1.12-.51-2.13-1.25-2.97-2.15-.84-.91-1.49-1.97-1.91-3.13-.42-1.16-.61-2.39-.56-3.62.09-2.01.76-3.83,1.82-5.31,1.85-2.58,4.9-4.13,8.19-3.88,3.14.24,5.72,1.81,7.29,4.05,1.15,1.65,1.75,3.67,1.64,5.8-.3,5.5-4.8,9.47-9.94,9.09Z"/>
+  <g id="p9f4cy">
+    <path class="cls-13" d="M227.05,163.11c-6.85,0-13.3-1.59-19.22-4.75-2.44-1.3-4.22-2.69-5.61-4.39-1.04-1.27-1.45-2.71-1.26-4.39.23-2.02.44-4.04.65-6.06.26-2.46.52-4.92.81-7.37.08-.66-.04-.86-.68-1.12-3.34-1.41-6.92-2.96-11.27-4.88-.84-.37-1.51-.78-2.04-1.24-.74-.64-1.12-1.5-1.04-2.35s.61-1.62,1.46-2.11c.68-.39,1.48-.68,2.27-.82,10.85-1.9,21.7-3.77,32.56-5.63,2.6-.45,5.16-.18,7.58.78,10.23,4.08,20.45,8.19,30.66,12.31.75.3,1.44.71,1.99,1.17.83.7,1.24,1.63,1.13,2.54-.11.88-.71,1.64-1.64,2.09-.95.46-1.99.68-3,.9l-.43.1c-.45.1-.55.2-.58.62-.11,1.25-.25,2.49-.38,3.74-.11,1.04-.23,2.08-.33,3.13-.04.4,0,.86.1,1.36.44,2.14.89,4.28,1.34,6.42l.65,3.09c.36,1.7,0,2.34-1.63,2.96-2.67,1.02-5.24.64-7.85-1.18-.86-.6-1.04-1.47-.54-2.58l.61-1.37c1.06-2.37,2.16-4.83,3.2-7.26.32-.74.54-1.58.68-2.5.18-1.23.3-2.49.42-3.71l.13-1.34c.02-.17.03-.33.04-.52l-1.63.33c-1.87.38-3.66.74-5.47,1.09-.25.05-.28.09-.33.56-.14,1.37-.29,2.68-.44,4-.34,3.05-.69,6.2-.93,9.3-.18,2.28-1.21,3.93-3.22,5.18-3.08,1.91-6.69,3.06-11.36,3.6-1.82.21-3.62.32-5.38.32ZM257.04,156.02h0s0,0,0,0Z"/>
+  </g>
+  <path class="cls-5" d="M205.66,136.51s15.11,7.64,19.26,7.64,21.51-4.13,21.51-4.13"/>
+</svg>
\ No newline at end of file
diff --git a/static/styles.css b/static/styles.css
index b389110..568ccb6 100644
--- a/static/styles.css
+++ b/static/styles.css
@@ -9,7 +9,7 @@ html {
   background-attachment: fixed;
   font-family: "Montserrat", Helvetica, Arial, serif;
   color: #fff;
-  font-size: 16px;
+  font-size: 24px;
 }
 
 .wrapper {
@@ -227,11 +227,12 @@ tr th {
   border-bottom: 2px solid rgba(1, 75, 188, 0.5);
   font-size: 20px;
 }
+/*
 tr th:last-child,
 tr td:last-child {
   text-align: right;
   width: 200px;
-}
+}*/
 tr td {
   padding: 12px 10px;
   border-bottom: 2px solid rgba(1, 75, 188, 0.15);
@@ -244,3 +245,6 @@ tr td.limit {
 	max-width: 200px;
 }
 
+input[type="radio"] {
+  box-shadow: 0px;
+}