EncipherOnly is defined in RFC 5280
as a Key Usage bit
that is asserted when the Certificate Subject Public Key
is used only
for enciphering data
while performing Key agreement
EncipherOnly is bit is undefined in the absence of the keyAgreement bit.
There might be more information for this subject on one of the following: