Which token are you referring to when you say JWT token? Is the a client-side refresh token? If so then it should contain both an “exp” claim and an “expires_in” claim. Depending on how you look at them either can be used to determine when the refresh token expires. You can also pass the refresh_token to the AM introspect endpoint and the response will have the “exp” claim indicating when the refresh token expires.