It’s not. There’s no table involved in the check. It calculates the current time - the time the token was created (which is part of the token) and checks to see if it’s less than PASSWORD_RESET_TIMEOUT.
What is it exactly that you’re trying to do here? Is it possible that you’re looking for the wrong “thing”?