As of 2025-02-01 CDK does not provide a way to get the managed prefix lists which VPC Lattice automatically creates in the account after you create your first `CfnServiceNetworkVpcAssociation`. This custom resource looks them up for use in e.g. Peers on security groups in other constructs.

VPCLatticePrefixLists.ts

import { Construct } from 'constructs';
import * as customResources from 'aws-cdk-lib/custom-resources';
import * as vpclattice from 'aws-cdk-lib/aws-vpclattice';

export interface VPCLatticePrefixListsProps {
  region: string;
  serviceNetworkVpcAssociation: vpclattice.CfnServiceNetworkVpcAssociation;
}

export class VPCLatticePrefixLists extends Construct {
  public readonly prefixListIds: string[];

  constructor(scope: Construct, id: string, props: VPCLatticePrefixListsProps) {
    super(scope, id);

    const { region, serviceNetworkVpcAssociation } = props;

    this.node.addDependency(serviceNetworkVpcAssociation);

    const vpcLatticePrefixListCall = new customResources.AwsCustomResource(this, 'GetVpcLatticePrefixListIDs', {
      resourceType: 'Custom::GetVpcLatticePrefixListIDs',
      onUpdate: {
        region,
        service: 'EC2',
        action: 'describeManagedPrefixLists',
        parameters: {
          Filters: [
            {
              Name: 'prefix-list-name',
              Values: [`com.amazonaws.${region}.vpc-lattice`, `com.amazonaws.${region}.ipv6.vpc-lattice`],
            },
          ],
        },
        physicalResourceId: customResources.PhysicalResourceId.of('GetVpcLatticePrefixListIDsFunction')
      },
      policy: customResources.AwsCustomResourcePolicy.fromSdkCalls({
        resources: customResources.AwsCustomResourcePolicy.ANY_RESOURCE
      })
    });

    this.prefixListIds = [
      vpcLatticePrefixListCall.getResponseField('PrefixLists.0.PrefixListId'),
      vpcLatticePrefixListCall.getResponseField('PrefixLists.1.PrefixListId'),
    ];
  }
}

Didn't use but looks nice!