When manufacturer produces devices, they generate attestation batch certificate and attestation batch private key every 100,000 devices. That means that getting individual attestation can not be used for tracking and therefor, you can not ban individual key without banning the entire 100,000 key batch.

The metadata simply contains root certificate that is used to validate attestation batch certificate, which proves validity.