It appears that there is no way to sign an RPM package unattended with the default tools. However,
expect comes to the rescue. I found two descriptions on other blogs how to do it:
- from 2008 here: GPG signing RPMs unattended
- from 2011 here: Batch Rpm Signing
The first one worked flawlessly for me. Thanks to the respective authors for sharing.