Summary says it all.
I was not able to replicate this problem. The update perl package that
is available at ftp://updates.redhat.com is signed properly.
Does this mean that there are fake perl packages (possibly trojaned)
on many mirrors?!
Can you confirm the MD5 chacksum:
Header+Archive size OK: 3644191 bytes
MD5 sum OK: 24992db679d3a421038aa0ebc1ffe065
I got my RPM from rufus.w3.org
This was discarded in error. It has been verfied to be true as well
with the dump package recently added to the errata list. We are
working on getting this resolved quickl;y as possible.
Fixed on the ftp site