Due to the way the management CLI currently handles authentication (i.e. relying on the cached credentials from running "pulp-admin auth login"), it gives a really misleading error message when those credentials are stale.

Traceback (most recent call last):
  File "/usr/lib64/python2.7/runpy.py", line 162, in _run_module_as_main
    "__main__", fname, loader, pkg_name)
  File "/usr/lib64/python2.7/runpy.py", line 72, in _run_code
    exec code in run_globals
  File "/home/bne/ncoghlan/pulpdist/src/pulpdist/manage_repos.py", line 18, in <module>
    sys.exit(main(sys.argv[1:]))
  File "/usr/lib/python2.7/site-packages/pulpdist/cli/repo_cli.py", line 46, in main
    return args.command_factory(args)()
  File "/usr/lib/python2.7/site-packages/pulpdist/cli/commands.py", line 146, in __call__
    repos = self._get_repos()
  File "/usr/lib/python2.7/site-packages/pulpdist/cli/commands.py", line 131, in _get_repos
    repo_configs = self.site_config.get_repo_configs(
  File "/usr/lib/python2.7/site-packages/pulpdist/cli/commands.py", line 83, in site_config
    self._load_site_config()
  File "/usr/lib/python2.7/site-packages/pulpdist/cli/commands.py", line 103, in _load_site_config
    config_data = server.get_repos()
  File "/usr/lib/python2.7/site-packages/pulpdist/core/pulpapi.py", line 138, in get_repos
    return PulpRepositories(self).get_list()
  File "/usr/lib/python2.7/site-packages/pulpdist/core/pulpapi.py", line 49, in get_list
    return _response_data(self.server.GET(path))
  File "/usr/lib/python2.7/site-packages/pulp/client/api/server.py", line 317, in GET
    return self._request('GET', path, queries)
  File "/usr/lib/python2.7/site-packages/pulp/client/api/server.py", line 268, in _request
    raise ServerRequestError(None, str(err), None)
pulp.client.api.server.ServerRequestError: (None, 'sslv3 alert certificate expired', None)

This makes it look as if the SSL cert on the server has expired, when it is in fact a problem with a stale cert in the local cache.