You’d best check back with them, because it’s most definitely coming from your server (assuming your server’s IP address starts with 34.226.
)
% curl -sv "https://rentaprestige.com.au/wp-json/rankmath/v1/updateMeta?_locale=user" --connect-to ::34.226.xxx.xxx
* Connecting to hostname: 34.226.xxx.xxx
* Trying 34.226.xxx.xxx:443...
* Connected to 34.226.xxx.xxx (34.226.xxx.xxx port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
* CAfile: /etc/ssl/cert.pem
* CApath: none
* (304) (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-ECDSA-AES256-GCM-SHA384
* ALPN: server did not agree on a protocol. Uses default.
* Server certificate:
* subject: CN=rentaprestige.com.au
* start date: Dec 10 11:52:23 2023 GMT
* expire date: Mar 9 11:52:22 2024 GMT
* subjectAltName: host "rentaprestige.com.au" matched cert's "rentaprestige.com.au"
* issuer: C=US; O=Let's Encrypt; CN=R3
* SSL certificate verify ok.
* using HTTP/1.x
> GET /wp-json/rankmath/v1/updateMeta?_locale=user HTTP/1.1
> Host: rentaprestige.com.au
> User-Agent: curl/8.4.0
> Accept: */*
>
< HTTP/1.1 401 Unauthorized
< Date: Wed, 13 Dec 2023 04:23:24 GMT
< Server: Apache/2.4.37 (Debian)
< X-Powered-By: PHP/7.4.16
< X-Robots-Tag: noindex
< Link: <https://rentaprestige.com.au/wp-json/>; rel="https://api.w.org/"
< X-Content-Type-Options: nosniff
< Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
< Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
< Vary: Origin
< Transfer-Encoding: chunked
< Content-Type: application/json; charset=UTF-8
<
* Connection #0 to host 34.226.xxx.xxx left intact
{"code":"rest_authentication_error","message":"Sorry, you do not have permission to make REST API requests.","data":{"status":401}}%