if one set MaxPathLen=0 for a trusted CA with a follow certificate, that certpath will cause validation fail. According to API (CCC4408222), the validation should pass.

How to reproduce the problem :

1. untar the attached tar file in a workdir.
2. set JAVA_HOME to merlin beta3
3. cd $workdir.
4. sh Run.sh

You will observe that the output of the program illustrates the problem description.